$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: RdGBok+uE7ZEJ2+PGfHd1conF9LIRwgFgBxp0Zr/zQY= Subject key identifier: 2E:6E:7C:77:23:0E:1C:4B:EB:C2:FF:23:F4:68:5C:99:70:CD:5A:DB Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 01AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 01A7 Signing time: Tue 05 Aug 2025 03:40:23 +0000 Manifest this update: Tue 05 Aug 2025 03:40:22 +0000 Manifest next update: Tue 12 Aug 2025 03:40:22 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: nMo+tXpo4godPEI7uypbao7a9NfDnRHAnEb2Qmw4vQw=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Aug 5 03:40:22 2025 GMT Not After : Aug 12 03:40:22 2025 GMT Subject: CN=68917d27-afba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:82:f6:8e:aa:ac:d7:d7:07:3b:bf:83:42:a5: c2:02:de:07:b1:9e:e6:e6:24:26:42:ee:0e:6e:34: 9a:52:21:12:32:07:3d:b2:0b:44:b3:25:f5:52:ff: 1e:32:fb:ef:82:8d:b0:2c:8e:57:b4:f6:68:46:15: 3d:d5:b2:0e:ad:e1:c3:31:7f:20:05:24:48:0f:92: 63:39:41:1b:d7:31:22:98:93:59:3f:e7:0d:6c:15: b8:45:cf:04:93:56:d2:24:09:cc:ef:44:14:60:47: 15:7b:2b:04:e6:69:6e:4f:ba:66:64:3d:93:09:94: c6:c8:43:0a:67:84:de:99:b7:e1:15:1a:70:06:fe: 1c:92:02:e5:45:5e:86:bc:bb:9e:4d:96:55:5f:dd: 4a:a6:0d:2f:77:48:02:43:43:fa:37:fe:94:2c:b7: 4c:ee:7e:b2:20:b7:fe:0c:e1:72:48:c5:8f:9d:bd: 29:6e:f1:1b:b0:8b:7b:47:57:55:67:8b:fe:b8:60: 9c:af:0e:e5:58:33:f2:9d:df:01:e5:9e:20:75:29: ce:07:a7:52:72:ff:cd:82:bb:6c:b9:79:3e:c1:8d: c7:ff:59:11:a6:01:d8:53:6f:8f:68:bd:d4:f2:a7: 93:92:a5:9e:99:14:7e:48:da:6f:06:88:4a:e0:bf: be:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:6E:7C:77:23:0E:1C:4B:EB:C2:FF:23:F4:68:5C:99:70:CD:5A:DB X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:19:92:24:e3:77:ff:37:f3:2e:3a:14:60:f1:bb:09:40:4d: 47:95:c9:d6:59:66:3e:0b:d6:ab:67:e1:3e:6f:a0:aa:9c:28: 39:c3:b5:55:e3:00:ff:32:9a:7f:60:c7:5b:9f:7d:41:1e:32: 3e:2d:e6:4d:7f:9b:08:f5:b1:44:c7:99:27:b9:f8:4a:fc:06: 54:e7:c0:f4:3c:71:0f:7b:60:32:a1:d9:99:89:d1:e4:ab:7c: 5d:11:9d:fc:4e:86:9e:c8:8f:92:81:35:60:4a:0d:97:b0:00: 24:ca:90:bf:49:94:65:85:4f:f2:43:8c:88:81:ad:86:95:df: 05:06:1f:8d:74:cc:f0:94:c1:29:95:44:f8:c4:a9:ac:41:13: 4d:36:23:a7:29:ac:d6:ab:59:c0:e4:5f:f8:7b:6f:29:06:15: 91:37:43:e3:ec:c2:49:e4:26:8a:3c:16:e6:1e:bc:80:66:91: a0:67:e9:ec:96:d3:b9:98:1c:26:61:ef:95:29:88:55:8a:a9: f4:0a:f9:ce:99:88:ec:af:ee:ea:59:17:e6:7e:13:e0:a2:0b: b1:9b:4e:8e:b9:58:68:1e:dd:f5:7f:4e:6f:fe:47:9b:76:4d: 7c:5a:6b:9a:ab:c5:3f:9e:43:cf:4a:ce:08:aa:4c:5a:3e:64: a8:b9:a7:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUwODA1MDM0MDIyWhcNMjUwODEyMDM0MDIyWjAYMRYwFAYD VQQDEw02ODkxN2QyNy1hZmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuYL2jqqs19cHO7+DQqXCAt4HsZ7m5iQmQu4ObjSaUiESMgc9sgtEsyX1Uv8e Mvvvgo2wLI5XtPZoRhU91bIOreHDMX8gBSRID5JjOUEb1zEimJNZP+cNbBW4Rc8E k1bSJAnM70QUYEcVeysE5mluT7pmZD2TCZTGyEMKZ4TembfhFRpwBv4ckgLlRV6G vLueTZZVX91Kpg0vd0gCQ0P6N/6ULLdM7n6yILf+DOFySMWPnb0pbvEbsIt7R1dV Z4v+uGCcrw7lWDPynd8B5Z4gdSnOB6dScv/NgrtsuXk+wY3H/1kRpgHYU2+PaL3U 8qeTkqWemRR+SNpvBohK4L++0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC5ufHcj DhxL68L/I/RoXJlwzVrbMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmGZIk43f/N/MuOhRg8bsJQE1HlcnWWWY+C9arZ+E+b6CqnCg5w7VV 4wD/Mpp/YMdbn31BHjI+LeZNf5sI9bFEx5knufhK/AZU58D0PHEPe2AyodmZidHk q3xdEZ38ToaeyI+SgTVgSg2XsAAkypC/SZRlhU/yQ4yIga2Gld8FBh+NdMzwlMEp lUT4xKmsQRNNNiOnKazWq1nA5F/4e28pBhWRN0Pj7MJJ5CaKPBbmHryAZpGgZ+ns ltO5mBwmYe+VKYhViqn0CvnOmYjsr+7qWRfmfhPgoguxm06OuVhoHt31f05v/keb dk18Wmuaq8U/nkPPSs4IqkxaPmSouacY -----END CERTIFICATE-----Generated at Wed Aug 6 16:10:13 2025 by rpki-client