$ rpki-client -vvf rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft File: rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft (raw, json) Hash identifier: d5LwwI3RuDmrZ2pKglpRJSok0aNpqtYbLzsCVVYY1mU= Subject key identifier: A4:0E:97:6D:51:F0:6D:92:62:2C:72:30:FD:A2:DE:5F:D1:CD:7D:56 Authority key identifier: AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 Certificate issuer: /CN=A917138D/serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Certificate serial: 080D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft Manifest number: 07FC Signing time: Fri 08 Aug 2025 21:21:38 +0000 Manifest this update: Fri 08 Aug 2025 21:21:37 +0000 Manifest next update: Fri 15 Aug 2025 21:21:37 +0000 Files and hashes: 1: rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl (hash: VeXP8f3k/HgrsVxYuSL45fh0cQGHnTfXJmGtlsVW1lA=) 2: 7D0F62FAF3EF11EA82F3C251C4F9AE02.roa (hash: qjMMlEqEvaBO7XAFYzvleISXKC2IIZdSXJalJOe7pw0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2061 (0x80d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917138D, serialNumber=AE0F0E9ED4A6706E92E10B789BAC2C625A565156 Validity Not Before: Aug 8 21:21:37 2025 GMT Not After : Aug 15 21:21:37 2025 GMT Subject: CN=68966a62-55de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:6a:6c:ee:0c:a6:17:4c:19:0f:63:cd:83:ee: 51:43:4c:48:72:78:99:92:4e:a4:2a:28:cb:41:b6: 18:bf:e6:00:db:d4:37:57:09:2f:e9:08:b0:f6:ef: 34:06:18:e5:e9:b1:59:27:8d:db:78:33:2c:1a:84: 2e:cc:32:20:ba:19:03:28:65:50:74:25:f7:ef:af: 73:a1:1c:b9:dd:9e:3d:17:f7:e7:ea:e3:2b:87:58: 1c:dd:7c:96:a6:dc:ca:93:49:23:dd:d2:80:37:02: d3:9a:5d:df:ad:19:e8:48:8b:79:54:37:d6:ca:c8: 3f:32:de:05:6c:c7:6f:18:c7:10:81:e5:d8:24:a3: 03:b2:c7:64:82:e5:d2:53:81:81:04:3a:34:c5:3f: 9b:29:22:65:0b:81:f7:ca:05:82:0f:75:71:f1:07: 77:f7:2a:17:66:ae:d8:2f:04:4a:20:88:e8:44:b4: 14:3a:4f:93:fb:88:0e:59:fa:3c:b2:3f:33:0e:f4: dc:21:3b:fa:c8:79:e4:71:bc:2c:57:00:19:a6:e0: 20:dc:de:2e:b5:5c:3b:1a:5e:b5:36:45:55:6d:a3: c4:80:c6:92:87:cf:d0:da:2a:b7:9f:cf:53:29:c5: 16:3d:08:80:7a:81:e2:1e:8b:57:5e:fe:9f:49:29: a3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0E:97:6D:51:F0:6D:92:62:2C:72:30:FD:A2:DE:5F:D1:CD:7D:56 X509v3 Authority Key Identifier: keyid:AE:0F:0E:9E:D4:A6:70:6E:92:E1:0B:78:9B:AC:2C:62:5A:56:51:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rg8OntSmcG6S4Qt4m6wsYlpWUVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917138D/4F6E9318F3ED11EAA4A1D64DC4F9AE02/rg8OntSmcG6S4Qt4m6wsYlpWUVY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:96:d4:98:1b:0d:10:15:3d:3d:b4:f5:93:c1:80:a4:b4:8c: ae:11:a9:8a:d3:8c:80:ec:49:cf:5a:9c:a3:06:1b:23:fb:a1: 6c:64:7c:14:21:de:34:00:91:e8:44:84:14:fd:9b:0c:a4:b7: 3e:0c:db:41:d6:22:00:e0:96:4a:d8:96:2b:3e:3d:96:35:5e: f2:9f:08:c1:2c:02:41:ee:5d:4c:b7:e7:a8:06:ea:09:39:b8: ac:b2:ba:96:3c:57:3b:81:15:fb:8f:f2:7a:5b:ce:35:25:34: f7:23:5b:7d:51:0e:86:89:48:2c:71:c1:26:3f:58:25:11:c6: 09:59:e0:da:27:4b:56:84:f3:5d:ea:a5:6b:52:8d:5e:bc:dd: 78:14:10:09:f0:bb:34:b9:96:82:29:ee:eb:4f:c5:52:9b:87: 07:e5:36:2d:73:0a:c9:86:2c:62:66:d3:37:08:d6:c5:f1:4b: 51:54:e6:45:eb:88:f0:63:29:cd:ee:e8:5e:85:ba:a1:82:21: 43:6a:87:54:c3:29:8c:5b:c8:8a:40:d3:eb:fb:91:79:fa:d2: d0:7e:10:f7:48:64:0e:ac:63:6c:b1:4b:49:20:f6:6a:15:eb: 5b:8c:6e:98:92:cc:bd:d0:24:78:e2:ab:a9:c3:50:f1:ef:d5: 2f:9e:a9:03 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEzOEQxMTAvBgNVBAUTKEFFMEYwRTlFRDRBNjcwNkU5MkUxMEI3ODlCQUMyQzYy NUE1NjUxNTYwHhcNMjUwODA4MjEyMTM3WhcNMjUwODE1MjEyMTM3WjAYMRYwFAYD VQQDEw02ODk2NmE2Mi01NWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA52ps7gymF0wZD2PNg+5RQ0xIcniZkk6kKijLQbYYv+YA29Q3Vwkv6Qiw9u80 Bhjl6bFZJ43beDMsGoQuzDIguhkDKGVQdCX3769zoRy53Z49F/fn6uMrh1gc3XyW ptzKk0kj3dKANwLTml3frRnoSIt5VDfWysg/Mt4FbMdvGMcQgeXYJKMDssdkguXS U4GBBDo0xT+bKSJlC4H3ygWCD3Vx8Qd39yoXZq7YLwRKIIjoRLQUOk+T+4gOWfo8 sj8zDvTcITv6yHnkcbwsVwAZpuAg3N4utVw7Gl61NkVVbaPEgMaSh8/Q2iq3n89T KcUWPQiAeoHiHotXXv6fSSmjOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKQOl21R 8G2SYixyMP2i3l/RzX1WMB8GA1UdIwQYMBaAFK4PDp7UpnBukuELeJusLGJaVlFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTM4RC80RjZFOTMxOEYz RUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNHNlM0UXQ0bTZ3c1lscFdV VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JnOE9udFNtY0c2UzRRdDRtNndzWWxwV1VWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTM4RC80RjZFOTMxOEYzRUQxMUVBQTRBMUQ2NERDNEY5QUUwMi9yZzhPbnRTbWNH NlM0UXQ0bTZ3c1lscFdVVlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZltSYGw0QFT09tPWTwYCktIyuEamK04yA7EnPWpyjBhsj+6FsZHwU Id40AJHoRIQU/ZsMpLc+DNtB1iIA4JZK2JYrPj2WNV7ynwjBLAJB7l1Mt+eoBuoJ ObissrqWPFc7gRX7j/J6W841JTT3I1t9UQ6GiUgsccEmP1glEcYJWeDaJ0tWhPNd 6qVrUo1evN14FBAJ8Ls0uZaCKe7rT8VSm4cH5TYtcwrJhixiZtM3CNbF8UtRVOZF 64jwYynN7uhehbqhgiFDaodUwymMW8iKQNPr+5F5+tLQfhD3SGQOrGNssUtJIPZq FetbjG6Yksy90CR44qupw1Dx79UvnqkD -----END CERTIFICATE-----Generated at Sat Aug 9 15:16:47 2025 by rpki-client