$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft File: rehZrZQNGhc_pkzXBYZ9SH5nNog.mft (raw, json) Hash identifier: L7TBfvj6pfixLv0CaVW8667xHDfiZ75USFq3qaW1Zcs= Subject key identifier: B5:5A:E4:0F:DA:A7:51:BA:99:0B:F3:86:92:9C:62:9A:2D:B8:00:2D Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 022C Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft Manifest number: 0227 Signing time: Sun 07 Sep 2025 00:42:00 +0000 Manifest this update: Sun 07 Sep 2025 00:41:59 +0000 Manifest next update: Sun 14 Sep 2025 00:41:59 +0000 Files and hashes: 1: rehZrZQNGhc_pkzXBYZ9SH5nNog.crl (hash: zaefxJNCDtkYwagNiL9A0hP/5v0yd2dYkDIeed+Hn+Q=) 2: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (hash: M0LQ0bOgsXho1IONj8CXX3n4kpo/nKJprHxKVrxONpQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:41:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Sep 7 00:41:59 2025 GMT Not After : Sep 14 00:41:59 2025 GMT Subject: CN=68bcd4d8-d225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e7:4b:8b:25:39:38:7c:c4:7a:b9:26:09:86: 39:e4:30:7a:04:b0:5d:c6:f3:b3:2b:1f:c2:28:9f: 41:b2:36:47:08:21:44:47:d9:b5:6a:80:f4:88:5d: 41:db:1a:29:33:ff:33:45:5e:d7:e0:71:7e:33:b0: ac:85:70:7e:5d:8f:b7:11:bb:2f:50:35:7b:12:6a: de:a5:76:ae:6a:5e:0f:61:26:e4:d0:99:c0:26:d5: 0b:6c:a9:ab:ce:29:a2:da:37:01:5a:2c:a8:f5:ca: 2c:ae:c7:bc:93:30:99:e7:dd:85:86:fb:12:87:fe: fe:b4:37:c7:8c:68:44:a4:22:d5:55:b2:27:c0:96: 12:86:31:90:d2:c1:0f:7c:ae:e2:e7:e2:31:96:4a: 76:f5:a7:92:5b:07:81:6e:fd:32:a3:88:18:e7:96: 7a:a2:86:f1:d6:31:e2:c6:5d:72:28:d6:fa:c3:db: ea:8d:99:76:2c:43:92:49:0a:34:73:b8:fd:57:a5: eb:20:e3:62:67:34:3b:5c:39:d2:f6:58:6a:fc:c9: 39:44:28:54:ef:94:a6:59:64:fc:2c:8c:e3:f7:c3: 9c:0f:f8:9a:ca:37:e3:67:72:72:62:d9:ba:b2:cd: 29:6b:16:8a:de:ef:7a:44:38:cf:1e:0e:4f:75:60: 72:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5A:E4:0F:DA:A7:51:BA:99:0B:F3:86:92:9C:62:9A:2D:B8:00:2D X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:c5:9a:82:41:4a:ff:cf:bc:c2:86:ef:51:3c:4e:e7:b3:12: 60:76:06:46:70:18:65:76:60:4b:ce:88:da:54:67:53:ad:3f: 52:94:bc:d9:59:c6:4b:c1:16:4a:a1:9d:9c:e4:82:61:4f:88: d2:50:98:ed:46:e6:57:ab:ec:a0:67:09:1c:06:f1:a3:fe:a6: d0:1f:52:99:a6:5d:4d:f7:1a:03:1e:b9:74:56:51:61:25:a8: a7:4c:0f:f3:cf:ea:31:58:98:6f:a2:19:48:fb:1b:24:80:18: 7a:ed:bf:49:72:03:58:5e:54:68:ea:2f:16:89:66:16:2f:17: 89:7a:e0:42:a3:d2:a8:e1:6e:8f:d3:e5:4b:e7:4a:53:26:57: 74:a8:d6:69:57:ba:29:a8:b2:22:e7:a1:c9:a4:ae:46:9d:2a: 8f:58:0c:26:8e:16:a4:ac:32:59:c5:ee:4b:f0:fa:87:c4:f6: ad:23:17:00:19:6b:39:5d:ca:b0:90:b6:50:37:c0:bf:57:dc: da:90:c4:ad:91:db:e7:70:e5:61:6b:56:61:6d:aa:71:a9:c4: 62:97:2b:a6:00:c0:0b:5f:e2:2e:af:ba:e1:8f:be:50:cb:2e: 5d:3a:a0:02:97:cb:89:10:f1:0f:3b:62:2d:f8:35:97:72:ce: d5:e8:bc:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjUwOTA3MDA0MTU5WhcNMjUwOTE0MDA0MTU5WjAYMRYwFAYD VQQDEw02OGJjZDRkOC1kMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0edLiyU5OHzEerkmCYY55DB6BLBdxvOzKx/CKJ9BsjZHCCFER9m1aoD0iF1B 2xopM/8zRV7X4HF+M7CshXB+XY+3EbsvUDV7EmrepXaual4PYSbk0JnAJtULbKmr zimi2jcBWiyo9cosrse8kzCZ592FhvsSh/7+tDfHjGhEpCLVVbInwJYShjGQ0sEP fK7i5+Ixlkp29aeSWweBbv0yo4gY55Z6oobx1jHixl1yKNb6w9vqjZl2LEOSSQo0 c7j9V6XrIONiZzQ7XDnS9lhq/Mk5RChU75SmWWT8LIzj98OcD/iayjfjZ3JyYtm6 ss0paxaK3u96RDjPHg5PdWByuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVa5A/a p1G6mQvzhpKcYpotuAAtMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG REFENC9DODVFODM3QTQzOTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdo Y19wa3pYQllaOVNINW5Ob2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADxZqCQUr/z7zChu9RPE7nsxJgdgZGcBhldmBLzojaVGdTrT9SlLzZ WcZLwRZKoZ2c5IJhT4jSUJjtRuZXq+ygZwkcBvGj/qbQH1KZpl1N9xoDHrl0VlFh JainTA/zz+oxWJhvohlI+xskgBh67b9JcgNYXlRo6i8WiWYWLxeJeuBCo9Ko4W6P 0+VL50pTJld0qNZpV7opqLIi56HJpK5GnSqPWAwmjhakrDJZxe5L8PqHxPatIxcA GWs5XcqwkLZQN8C/V9zakMStkdvncOVha1ZhbapxqcRilyumAMALX+Iur7rhj75Q yy5dOqACl8uJEPEPO2It+DWXcs7V6Lzb -----END CERTIFICATE-----Generated at Mon Sep 8 10:05:40 2025 by rpki-client