$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: PddpWQqh0dWYvMnlUBUm4B7y67EcbKvwCa9GzO0JepA= Subject key identifier: E7:E0:B4:EC:53:99:F9:7F:35:4A:DB:30:86:57:A4:5A:1E:63:5A:36 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 08A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 088A Signing time: Sun 24 Aug 2025 18:02:00 +0000 Manifest this update: Sun 24 Aug 2025 18:02:00 +0000 Manifest next update: Sun 31 Aug 2025 18:02:00 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: 54FnDCCM+/Fonb2l1cM02MPEr3EbuWH3t9ZNF6IOjfc=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: qnuam7WR9nNoSALeN6aIELormJYa9PcytIxvW+OP1aE=) 3: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: /kIJQGWq5uSGzv2Hlgx55daJuqaTWlcXb9ZHCo//sns=) 4: D385E420314711EBA579873DC4F9AE02.roa (hash: o1Hw/spcKOOb0VVRRR+YO5Yydeov4PBZjAAS3/6uAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2209 (0x8a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Aug 24 18:02:00 2025 GMT Not After : Aug 31 18:02:00 2025 GMT Subject: CN=68ab5398-4f0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:21:4e:5d:3b:a8:c5:97:bf:31:24:98:1c:1c: e4:19:eb:e7:a8:25:ad:94:5f:09:b9:c8:d6:dc:e8: 22:77:ba:9d:87:87:78:01:68:1b:47:3a:7e:e1:75: 68:e9:4e:eb:62:76:c4:95:92:32:05:2b:2b:7e:ab: 6e:74:fc:5d:81:db:87:e9:c7:72:04:38:78:a1:c7: 7f:85:78:92:42:f8:32:6f:c4:ef:ec:ca:b5:d6:6a: 1e:b5:e6:ff:14:e4:44:8e:55:e0:31:d2:93:35:08: 03:ec:57:63:2a:cc:cf:e1:a8:10:f4:02:6c:be:3c: 8e:b5:2c:a7:ce:8c:5e:25:04:84:f8:26:81:cc:6b: 17:3b:33:82:d2:c9:d9:56:f5:39:f6:9f:18:8f:15: 5b:52:76:a3:ca:43:9d:97:13:e3:00:4d:2f:76:d9: 24:5d:ce:1e:0f:9c:35:b4:5b:0b:7c:f9:d6:d2:22: d0:cb:9e:db:28:ea:c2:d0:2b:c1:77:e8:3e:54:2b: d1:1b:9e:a3:ec:02:fa:98:dd:6b:d2:00:3e:97:fe: 7d:5c:59:0e:1a:d6:32:ac:e3:fb:ad:7c:ee:21:6d: 4a:bc:29:9c:91:da:f0:4b:49:d4:e6:f5:fd:44:91: 74:4f:a4:d6:86:a6:b9:c5:a9:8f:b9:e7:b2:2c:67: f2:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:E0:B4:EC:53:99:F9:7F:35:4A:DB:30:86:57:A4:5A:1E:63:5A:36 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:75:67:46:7d:bd:12:d5:29:eb:89:3a:35:ff:e7:a5:f5:af: 75:c9:d1:6c:b7:70:e6:14:96:2d:41:61:7f:8e:1d:a4:45:55: c5:77:a4:62:2c:b7:24:83:74:f5:f8:43:74:65:d4:ec:29:78: 8e:0e:f4:7d:a9:1d:e2:c5:5c:de:7c:7a:27:eb:27:9a:92:01: 8e:7e:61:c4:3f:b1:d9:7e:5b:ed:26:f2:ed:3d:23:6d:00:16: 69:81:b5:62:14:c5:e3:f2:3d:fb:b8:c8:e3:f9:f1:b1:e4:dc: 36:7a:3b:4d:75:48:aa:3c:3f:c4:1a:b9:71:9c:06:d4:25:a4: 81:86:f6:c6:10:ab:4f:c8:9a:41:64:5c:ab:21:88:b3:82:b1: c6:59:2d:dc:24:97:0f:e6:28:bb:af:f6:2d:17:45:4e:93:a3: 9d:45:af:c6:74:2d:5d:11:a3:39:32:a0:f4:d6:0b:d5:b1:bc: c9:b9:e7:39:0a:5f:50:34:57:e9:6f:64:f9:32:3e:35:3c:d0: af:9c:cf:f4:76:dd:82:d1:3d:c8:9e:0b:c7:da:72:e6:b2:c4: 5f:a3:d4:7e:df:93:7f:f4:18:22:57:98:f6:80:30:a6:08:bf: 67:c4:4e:c5:62:3c:f4:a5:af:71:58:85:5c:5a:29:30:3b:0f: 04:8c:72:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjUwODI0MTgwMjAwWhcNMjUwODMxMTgwMjAwWjAYMRYwFAYD VQQDEw02OGFiNTM5OC00ZjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmCFOXTuoxZe/MSSYHBzkGevnqCWtlF8JucjW3Ogid7qdh4d4AWgbRzp+4XVo 6U7rYnbElZIyBSsrfqtudPxdgduH6cdyBDh4ocd/hXiSQvgyb8Tv7Mq11moeteb/ FOREjlXgMdKTNQgD7FdjKszP4agQ9AJsvjyOtSynzoxeJQSE+CaBzGsXOzOC0snZ VvU59p8YjxVbUnajykOdlxPjAE0vdtkkXc4eD5w1tFsLfPnW0iLQy57bKOrC0CvB d+g+VCvRG56j7AL6mN1r0gA+l/59XFkOGtYyrOP7rXzuIW1KvCmckdrwS0nU5vX9 RJF0T6TWhqa5xamPueeyLGfyVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOfgtOxT mfl/NUrbMIZXpFoeY1o2MB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1dWdGfb0S1SnriTo1/+el9a91ydFst3DmFJYtQWF/jh2kRVXFd6Ri LLckg3T1+EN0ZdTsKXiODvR9qR3ixVzefHon6yeakgGOfmHEP7HZflvtJvLtPSNt ABZpgbViFMXj8j37uMjj+fGx5Nw2ejtNdUiqPD/EGrlxnAbUJaSBhvbGEKtPyJpB ZFyrIYizgrHGWS3cJJcP5ii7r/YtF0VOk6OdRa/GdC1dEaM5MqD01gvVsbzJuec5 Cl9QNFfpb2T5Mj41PNCvnM/0dt2C0T3IngvH2nLmssRfo9R+35N/9BgiV5j2gDCm CL9nxE7FYjz0pa9xWIVcWikwOw8EjHJZ -----END CERTIFICATE-----Generated at Mon Aug 25 23:17:09 2025 by rpki-client