$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft File: 49O0eIJzzkWSmwmYOr9ktdRNHwg.mft (raw, json) Hash identifier: ddmrUCkwVJ3UUsUhRuzJdoH/HjLplaHDFZ73QqiXogw= Subject key identifier: 76:0D:21:A2:D0:82:FF:C0:B5:A6:8E:9A:7B:AB:E3:DF:0F:B8:15:87 Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 Certificate issuer: /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Certificate serial: 1157 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft Manifest number: 1140 Signing time: Sun 24 Aug 2025 17:14:20 +0000 Manifest this update: Sun 24 Aug 2025 17:14:19 +0000 Manifest next update: Sun 31 Aug 2025 17:14:19 +0000 Files and hashes: 1: 49O0eIJzzkWSmwmYOr9ktdRNHwg.crl (hash: qqo+Co5kPDPGOW4w1Upcjd1LZqGik0Ny0Nj6gb0/OTc=) 2: 97F937E440BC11EAA2B89432C4F9AE02.roa (hash: YvhnTG1A1W5kz0Vch4cPsIzgbILMaDioP1ySIyj5aeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:14:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4439 (0x1157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF634, serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Validity Not Before: Aug 24 17:14:19 2025 GMT Not After : Aug 31 17:14:19 2025 GMT Subject: CN=68ab486c-bf4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c2:7c:53:ad:fb:95:34:f7:f7:7b:48:5c:29: b0:ef:08:a9:e7:0c:1c:f1:56:bc:8d:33:2f:e7:cc: 51:7d:a7:26:39:82:6f:87:c8:0a:50:37:6a:3a:1f: 0c:bb:0d:3a:ee:aa:16:95:9a:8a:d1:e2:12:77:5e: a2:a9:73:22:d6:35:94:fd:27:37:9f:25:66:a0:3b: 03:ee:04:8b:5c:11:c6:95:b4:01:75:a9:5c:87:c6: e7:7f:03:38:77:a4:34:41:ac:68:4a:3f:6d:45:d7: ab:7e:cc:99:35:52:d2:1a:b3:55:ed:73:6d:38:bd: ac:83:78:d2:1b:b6:58:ae:c8:da:b6:fc:94:28:97: e4:39:0d:72:3f:bc:df:52:58:a2:c3:e7:86:93:18: 17:60:f7:2b:42:f4:51:ec:ef:71:02:85:25:1c:f0: 7c:1e:25:36:d0:24:ef:17:2c:1a:e1:33:73:03:18: f5:74:bf:60:19:57:71:31:19:df:77:cd:07:3c:6b: 37:88:2d:f5:8d:32:03:56:4e:56:36:51:33:6c:db: c4:2a:5a:4e:1c:a4:a9:54:87:7e:eb:8e:71:15:24: 98:55:17:ea:e5:c4:4f:17:9f:90:11:ec:19:ab:54: ec:2c:63:59:4b:96:53:ec:eb:92:fe:22:60:ec:ca: 87:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0D:21:A2:D0:82:FF:C0:B5:A6:8E:9A:7B:AB:E3:DF:0F:B8:15:87 X509v3 Authority Key Identifier: keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:66:17:fc:3a:53:da:2a:b6:9b:67:b9:cb:44:68:b0:0e:d9: 18:53:f3:e7:5e:0d:98:9d:7a:ec:3a:29:d2:be:cf:77:2c:38: 2d:17:6c:4a:26:c1:17:60:d3:d5:0d:f3:96:fb:da:0c:83:45: 5c:cb:ea:9b:10:4b:c5:79:5d:53:d9:d2:0f:14:43:51:37:3f: f1:7e:5d:45:82:f7:1a:59:cc:02:54:12:36:a0:45:62:7b:17: 85:20:92:50:5c:d1:0b:a1:3f:f9:33:1a:91:e8:e6:c6:37:04: df:e3:4b:8f:8a:64:cb:82:6a:2c:bd:08:55:1f:e7:8c:c3:e1: 80:2c:b4:d1:b9:2c:ab:8e:98:f8:60:79:5b:96:37:fb:57:44: cb:74:3f:6b:79:53:82:68:c8:e7:6e:63:28:21:08:cd:41:c7: 24:1b:fd:44:60:37:76:4e:92:b0:0f:0c:e5:5e:7d:e8:c4:36: 4c:fd:0d:70:c7:6d:ed:1b:2e:d7:e7:08:91:ac:14:e3:90:f8: d0:43:eb:d3:9d:59:ba:36:b0:4f:57:3d:f6:c3:8d:63:ce:25: 6f:6c:7b:04:db:76:71:f8:73:ac:c2:3d:f8:e9:ae:08:3d:ee: 25:b8:6a:6f:b6:d6:cb:1c:a1:8e:a6:1d:cd:fc:76:94:e4:8c: ed:96:00:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5ODNBQkY2NEI1 RDQ0RDFGMDgwHhcNMjUwODI0MTcxNDE5WhcNMjUwODMxMTcxNDE5WjAYMRYwFAYD VQQDEw02OGFiNDg2Yy1iZjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8J8U637lTT393tIXCmw7wip5wwc8Va8jTMv58xRfacmOYJvh8gKUDdqOh8M uw067qoWlZqK0eISd16iqXMi1jWU/Sc3nyVmoDsD7gSLXBHGlbQBdalch8bnfwM4 d6Q0QaxoSj9tRderfsyZNVLSGrNV7XNtOL2sg3jSG7ZYrsjatvyUKJfkOQ1yP7zf Uliiw+eGkxgXYPcrQvRR7O9xAoUlHPB8HiU20CTvFywa4TNzAxj1dL9gGVdxMRnf d80HPGs3iC31jTIDVk5WNlEzbNvEKlpOHKSpVId+645xFSSYVRfq5cRPF5+QEewZ q1TsLGNZS5ZT7OuS/iJg7MqH9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYNIaLQ gv/AtaaOmnur498PuBWHMB8GA1UdIwQYMBaAFOPTtHiCc85FkpsJmDq/ZLXUTR8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzNC8xMzI3QTczRTE3 MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenprV1Ntd21ZT3I5a3RkUk5I d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ5TzBlSUp6emtXU213bVlPcjlrdGRSTkh3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjYzNC8xMzI3QTczRTE3MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenpr V1Ntd21ZT3I5a3RkUk5Id2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjZhf8OlPaKrabZ7nLRGiwDtkYU/PnXg2YnXrsOinSvs93LDgtF2xK JsEXYNPVDfOW+9oMg0Vcy+qbEEvFeV1T2dIPFENRNz/xfl1FgvcaWcwCVBI2oEVi exeFIJJQXNELoT/5MxqR6ObGNwTf40uPimTLgmosvQhVH+eMw+GALLTRuSyrjpj4 YHlbljf7V0TLdD9reVOCaMjnbmMoIQjNQcckG/1EYDd2TpKwDwzlXn3oxDZM/Q1w x23tGy7X5wiRrBTjkPjQQ+vTnVm6NrBPVz32w41jziVvbHsE23Zx+HOswj346a4I Pe4luGpvttbLHKGOph3N/HaU5IztlgBX -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:16 2025 by rpki-client