$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: Vv+Jvc4KbXU1xWu+LEZShDRZZr/aVuaEIDmP39DcWyo= Subject key identifier: 21:E3:4A:E8:4B:43:70:B8:E3:52:83:FC:E7:11:58:BC:EB:2A:C0:7A Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 0118 Signing time: Sat 09 Aug 2025 05:13:58 +0000 Manifest this update: Sat 09 Aug 2025 05:13:58 +0000 Manifest next update: Sat 16 Aug 2025 05:13:58 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: DFAfYs/Tn458pjfgs1E/p4AAfg0SpLFSjErwoMlq2AM=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Aug 9 05:13:58 2025 GMT Not After : Aug 16 05:13:58 2025 GMT Subject: CN=6896d916-fae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:89:ca:cb:3e:10:e1:03:ba:75:c4:74:a5:83: b5:11:f2:b3:89:1f:3c:0a:5e:8d:5b:d0:fc:f2:7b: 49:3d:75:71:30:bd:30:f8:41:3c:84:23:73:20:21: e2:b8:0d:4f:4a:7e:b0:cf:98:0a:62:04:be:46:36: ad:32:7a:09:6c:48:16:c3:88:f1:09:22:1f:27:45: 5c:42:3e:0c:a1:d4:67:1f:eb:9d:e8:c0:4e:62:6f: b4:8c:a8:dc:90:b9:42:33:43:86:95:86:87:cb:c2: 1c:7b:8c:c9:3f:ba:f9:fe:86:69:7d:f2:a0:ac:21: e1:fc:88:67:99:a3:2b:84:68:e9:95:4b:3a:73:51: 8c:4d:cb:a8:90:55:09:a7:03:da:2b:da:05:ab:78: 74:2c:dc:1e:01:3b:ea:a0:29:17:2c:3c:6c:ea:8c: f7:c4:11:e5:9d:a6:96:11:73:37:55:b4:59:f7:f4: 72:54:fb:35:fd:3d:d9:9f:cb:29:04:3f:ff:73:4f: 32:6b:89:e9:3d:3f:d9:61:62:d1:80:86:91:44:45: 85:e3:4a:be:ee:08:38:67:69:9e:1c:20:1c:7f:78: db:44:5a:cf:3c:f6:56:94:04:46:7f:5d:94:47:fc: 08:76:78:3b:ae:5a:be:31:12:58:f6:08:25:16:0f: 55:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E3:4A:E8:4B:43:70:B8:E3:52:83:FC:E7:11:58:BC:EB:2A:C0:7A X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:38:81:5e:98:9e:bc:d7:73:ab:c3:bd:dc:6c:a0:c5:32:34: a5:dd:eb:45:db:6f:e0:db:10:1c:bc:2b:e2:1e:37:f5:27:9b: b0:13:2b:cd:0f:73:6f:c7:c7:45:f1:f3:25:07:28:7f:2a:72: 7b:ac:9b:90:90:b3:6e:ae:05:33:26:cf:53:92:57:bf:4a:0a: a1:61:b6:65:39:fa:4b:d2:b1:a9:6c:77:b8:be:93:d5:6a:be: 7c:0e:60:d3:f2:86:b0:e0:2e:5b:93:79:7d:53:0a:2b:9d:75: d3:c8:7b:d8:e2:04:11:78:98:00:89:65:3e:f9:ce:6d:da:79: c2:eb:8d:ab:12:c5:8f:16:18:2f:3c:e0:12:2e:77:ed:97:16: 35:de:80:f5:0f:3d:8d:02:8b:ca:6f:ee:3b:1f:0e:d2:6c:84: 36:2c:0f:5a:5f:2d:56:fb:41:c3:0f:cf:33:f6:b3:16:b0:f8: de:4a:5a:ab:69:49:1c:01:97:4f:69:ea:93:37:81:fc:35:df: 65:be:bb:12:87:86:17:c0:14:e6:49:2b:0b:61:81:18:11:4c: c1:e1:24:16:bb:bb:2c:98:83:e6:af:1a:58:d6:af:61:4f:8f: 86:19:3a:76:8b:e0:26:d8:d3:53:db:25:e3:91:62:62:69:22: cd:4f:8e:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUwODA5MDUxMzU4WhcNMjUwODE2MDUxMzU4WjAYMRYwFAYD VQQDEw02ODk2ZDkxNi1mYWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxonKyz4Q4QO6dcR0pYO1EfKziR88Cl6NW9D88ntJPXVxML0w+EE8hCNzICHi uA1PSn6wz5gKYgS+RjatMnoJbEgWw4jxCSIfJ0VcQj4ModRnH+ud6MBOYm+0jKjc kLlCM0OGlYaHy8Ice4zJP7r5/oZpffKgrCHh/IhnmaMrhGjplUs6c1GMTcuokFUJ pwPaK9oFq3h0LNweATvqoCkXLDxs6oz3xBHlnaaWEXM3VbRZ9/RyVPs1/T3Zn8sp BD//c08ya4npPT/ZYWLRgIaRREWF40q+7gg4Z2meHCAcf3jbRFrPPPZWlARGf12U R/wIdng7rlq+MRJY9gglFg9VFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHjSuhL Q3C441KD/OcRWLzrKsB6MB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgOIFemJ6813Orw73cbKDFMjSl3etF22/g2xAcvCviHjf1J5uwEyvN D3Nvx8dF8fMlByh/KnJ7rJuQkLNurgUzJs9Tkle/SgqhYbZlOfpL0rGpbHe4vpPV ar58DmDT8oaw4C5bk3l9UwornXXTyHvY4gQReJgAiWU++c5t2nnC642rEsWPFhgv POASLnftlxY13oD1Dz2NAovKb+47Hw7SbIQ2LA9aXy1W+0HDD88z9rMWsPjeSlqr aUkcAZdPaeqTN4H8Nd9lvrsSh4YXwBTmSSsLYYEYEUzB4SQWu7ssmIPmrxpY1q9h T4+GGTp2i+Am2NNT2yXjkWJiaSLNT45Q -----END CERTIFICATE-----Generated at Sun Aug 10 18:47:28 2025 by rpki-client