$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft File: rroZtvzB0hrnExdw57HaPhR17JA.mft (raw, json) Hash identifier: EdcfK7qUx6Y3uq2nzl26pB8gRyymIwpo+ci4VdKAS58= Subject key identifier: 3B:3E:B9:2C:00:11:D8:B5:D6:8C:ED:0B:A7:18:9A:C3:E7:3F:18:3C Authority key identifier: AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 Certificate issuer: /CN=A91FE7DB/serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Certificate serial: 0B4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft Manifest number: 0B47 Signing time: Wed 20 Aug 2025 19:13:56 +0000 Manifest this update: Wed 20 Aug 2025 19:13:56 +0000 Manifest next update: Wed 27 Aug 2025 19:13:56 +0000 Files and hashes: 1: rroZtvzB0hrnExdw57HaPhR17JA.crl (hash: hvGS3p5GIv4zT45mQQ2zR0qrzgv05FcC0aN7QhImdCI=) 2: 078AE946642A11EAA019224CC4F9AE02.roa (hash: mTWsYywMPiMfrhBIpNOsBljvGA4XjVbx+hSty7byGCw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 19:13:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2894 (0xb4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DB, serialNumber=AEBA19B6FCC1D21AE7131770E7B1DA3E1475EC90 Validity Not Before: Aug 20 19:13:56 2025 GMT Not After : Aug 27 19:13:56 2025 GMT Subject: CN=68a61e74-47cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:8d:29:f9:87:71:85:61:d3:0e:c1:96:60: cc:7e:1a:6c:55:47:32:bd:d9:df:e1:f0:1d:ee:63: 4e:82:50:22:46:28:ef:81:7f:87:7a:aa:05:f8:71: 1a:1c:a2:92:4d:94:52:ab:19:18:c8:0f:28:53:05: ef:b1:30:9d:07:4c:b3:d1:87:24:b6:00:95:b4:88: 08:46:ca:de:7a:dd:c0:da:0b:49:2d:2e:9e:52:f3: 07:07:c4:fe:8b:77:73:22:47:f6:16:0a:db:8c:b4: 02:fd:e9:d5:c6:89:ac:2d:47:9d:c4:ae:5c:a4:41: bf:67:e3:0a:0e:4f:e0:88:f2:17:91:ff:c7:d9:d9: 24:15:a7:04:a5:48:0e:62:07:63:b5:c7:c9:9a:90: af:3c:cb:f9:79:7a:5a:90:58:67:41:93:aa:29:6f: 73:62:50:d5:d9:df:f6:97:bf:21:4c:b1:25:55:18: 27:21:48:20:7f:d9:4b:7d:ee:fc:d1:3f:ba:2a:77: 27:bc:d6:87:c7:ef:dd:0a:e3:11:b8:04:d6:77:14: b0:9c:43:cf:0d:0c:82:d6:cd:61:d7:8b:0e:96:a9: e0:06:a3:59:a8:4e:e7:76:36:4d:47:dc:21:1e:42: 0c:e4:34:bd:14:cc:74:dd:4a:ba:e3:5b:28:84:04: 87:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:3E:B9:2C:00:11:D8:B5:D6:8C:ED:0B:A7:18:9A:C3:E7:3F:18:3C X509v3 Authority Key Identifier: keyid:AE:BA:19:B6:FC:C1:D2:1A:E7:13:17:70:E7:B1:DA:3E:14:75:EC:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rroZtvzB0hrnExdw57HaPhR17JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DB/B951E28C3DCA11EA81B9D352C4F9AE02/rroZtvzB0hrnExdw57HaPhR17JA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:73:1c:a1:8c:7b:0e:34:11:6c:76:f3:75:85:b0:de:9f:d9: 0b:11:1f:ad:e0:06:b0:9d:bc:c9:7c:fe:89:67:be:5e:93:10: bc:47:6e:65:2b:72:96:ec:1d:d8:52:27:0c:d7:91:04:21:9b: e1:de:af:13:03:06:e9:e2:a3:7d:a6:28:f5:67:52:8c:e6:c7: c8:84:d6:d0:86:5a:55:a4:3a:02:ef:93:af:8d:e4:47:0a:e4: 88:e5:15:4d:5a:b3:a6:89:32:8d:b4:ed:23:b5:37:49:17:f4: ed:95:74:40:3b:4c:c8:4f:75:9a:d3:0e:87:7e:75:86:7a:4c: 7a:1a:67:b2:13:ab:36:73:21:60:2e:58:20:39:e9:92:73:26: 96:c3:6e:62:67:f4:a0:8c:f7:bb:17:f4:d8:c5:c1:23:03:3e: ed:4c:b0:93:33:9d:e5:f8:31:a1:04:fc:f8:c9:0e:c0:fc:e2: 21:18:8f:0b:3e:ea:4a:21:f7:07:1e:1e:80:c5:0e:ae:0a:f7: d9:fb:87:bf:e0:77:81:8f:d7:4c:40:2b:f6:19:33:76:10:e9: 51:9f:87:27:9a:04:c8:3e:76:31:1c:76:28:8b:fb:6a:f5:53: 7a:7c:81:ca:7d:28:a3:ee:75:f6:4b:7e:a9:6d:33:30:41:b7: 28:e4:2d:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REIxMTAvBgNVBAUTKEFFQkExOUI2RkNDMUQyMUFFNzEzMTc3MEU3QjFEQTNF MTQ3NUVDOTAwHhcNMjUwODIwMTkxMzU2WhcNMjUwODI3MTkxMzU2WjAYMRYwFAYD VQQDEw02OGE2MWU3NC00N2NiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsOSNKfmHcYVh0w7BlmDMfhpsVUcyvdnf4fAd7mNOglAiRijvgX+HeqoF+HEa HKKSTZRSqxkYyA8oUwXvsTCdB0yz0YcktgCVtIgIRsreet3A2gtJLS6eUvMHB8T+ i3dzIkf2FgrbjLQC/enVxomsLUedxK5cpEG/Z+MKDk/giPIXkf/H2dkkFacEpUgO YgdjtcfJmpCvPMv5eXpakFhnQZOqKW9zYlDV2d/2l78hTLElVRgnIUggf9lLfe78 0T+6KncnvNaHx+/dCuMRuATWdxSwnEPPDQyC1s1h14sOlqngBqNZqE7ndjZNR9wh HkIM5DS9FMx03Uq641sohASH7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDs+uSwA Edi11oztC6cYmsPnPxg8MB8GA1UdIwQYMBaAFK66Gbb8wdIa5xMXcOex2j4UdeyQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdEQi9COTUxRTI4QzNE Q0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBocm5FeGR3NTdIYVBoUjE3 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jyb1p0dnpCMGhybkV4ZHc1N0hhUGhSMTdKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTdEQi9COTUxRTI4QzNEQ0ExMUVBODFCOUQzNTJDNEY5QUUwMi9ycm9adHZ6QjBo cm5FeGR3NTdIYVBoUjE3SkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+cxyhjHsONBFsdvN1hbDen9kLER+t4AawnbzJfP6JZ75ekxC8R25l K3KW7B3YUicM15EEIZvh3q8TAwbp4qN9pij1Z1KM5sfIhNbQhlpVpDoC75OvjeRH CuSI5RVNWrOmiTKNtO0jtTdJF/TtlXRAO0zIT3Wa0w6HfnWGekx6GmeyE6s2cyFg LlggOemScyaWw25iZ/SgjPe7F/TYxcEjAz7tTLCTM53l+DGhBPz4yQ7A/OIhGI8L PupKIfcHHh6AxQ6uCvfZ+4e/4HeBj9dMQCv2GTN2EOlRn4cnmgTIPnYxHHYoi/tq 9VN6fIHKfSij7nX2S36pbTMwQbco5C01 -----END CERTIFICATE-----Generated at Fri Aug 22 16:19:03 2025 by rpki-client