$ rpki-client -vvf rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft File: -c2wYYjVT9E3MDC5IMjkRdstPVc.mft (raw, json) Hash identifier: nBg0xqnWJhXn+LraEwBHBJUq/JhMZWQlwdgNojDY9Vo= Subject key identifier: 35:ED:93:42:E8:A6:0C:A0:2C:E4:C5:83:9E:B9:6F:7F:4B:9E:48:29 Authority key identifier: F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 Certificate issuer: /CN=A91A99F8/serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft Manifest number: 4E Signing time: Thu 07 Aug 2025 07:59:50 +0000 Manifest this update: Thu 07 Aug 2025 07:59:49 +0000 Manifest next update: Thu 14 Aug 2025 07:59:49 +0000 Files and hashes: 1: -c2wYYjVT9E3MDC5IMjkRdstPVc.crl (hash: naZpFgd+RsstXtOQP/pLPw5FZlI458nDumJ5qOM3FOE=) 2: 2C85E816062011F0B0CCFB73C4F9AE02.roa (hash: 8aYqOb0WxmeZs6QAtf0y7rudLC0LQSdIL+LI3T4/O2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A99F8, serialNumber=F9CDB06188D54FD1373030B920C8E445DB2D3D57 Validity Not Before: Aug 7 07:59:49 2025 GMT Not After : Aug 14 07:59:49 2025 GMT Subject: CN=68945cf6-dee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2f:fb:61:0c:f6:62:cd:d3:68:95:32:69:6b: 6a:04:51:31:97:e0:04:1f:0e:06:a1:1e:77:df:e0: f8:d7:9b:d1:5e:88:8d:fb:8b:de:bd:16:a6:33:e1: 39:50:2a:9c:a3:a4:ab:da:45:6d:28:6d:4e:77:e7: 5d:e8:34:4a:0c:df:d0:8b:fe:3c:22:2c:50:05:f7: 55:6a:fc:6f:de:e8:b3:bd:e5:e2:7c:7d:62:0a:99: aa:51:c1:70:d9:d1:15:dd:57:38:f0:25:c2:24:81: a3:60:80:11:77:94:32:1e:5e:dd:3a:7f:49:62:c7: 9c:21:4c:02:7f:e8:0e:80:ca:dc:2e:ee:ee:42:8e: c1:68:6e:de:f2:88:0f:7b:86:83:44:8e:29:a0:36: d9:dd:32:e3:53:de:c9:3c:f7:16:02:d3:40:72:ac: c8:fe:03:08:c3:db:7d:95:99:30:30:4b:78:4e:ed: 5c:80:f3:ad:2e:0b:af:b8:b1:9c:ca:80:12:78:2f: ad:2d:bd:93:95:e9:e3:e1:1f:90:67:d2:39:6f:e9: ae:01:5f:a8:c1:79:14:da:0c:84:b8:f7:ca:36:0b: f9:36:9e:84:aa:56:95:9e:64:54:b3:1e:a7:8d:cb: 8b:93:a1:a8:d9:77:8a:b3:0e:21:c0:6a:2e:60:46: 7d:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:ED:93:42:E8:A6:0C:A0:2C:E4:C5:83:9E:B9:6F:7F:4B:9E:48:29 X509v3 Authority Key Identifier: keyid:F9:CD:B0:61:88:D5:4F:D1:37:30:30:B9:20:C8:E4:45:DB:2D:3D:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-c2wYYjVT9E3MDC5IMjkRdstPVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A99F8/7A4D7B8804A711F0B4D73982C4F9AE02/-c2wYYjVT9E3MDC5IMjkRdstPVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:75:39:9e:1e:75:17:86:8e:c7:db:04:84:16:15:64:1c:a9: 6c:d2:a5:ec:1b:d6:61:b2:09:16:0a:f7:5f:35:b5:81:55:0e: d6:e2:b5:b1:fa:5d:98:a8:88:58:29:72:0f:d9:69:87:97:9d: e0:8d:8d:1f:b2:06:bb:ae:55:87:18:6e:63:1d:09:a4:a6:7e: b6:2d:b7:cb:b4:ae:3f:61:99:07:c8:be:94:04:e4:a0:88:49: d6:0b:33:1a:e5:c8:6b:db:d9:c7:7d:90:16:33:af:e4:a7:09: 4b:a8:d1:a4:5b:2e:c1:99:11:db:4c:8a:e4:16:43:47:6a:39: c0:ed:b2:ad:67:5d:6c:aa:81:95:35:83:7c:c4:0b:1c:94:60: 64:4c:bd:fd:6a:8e:72:12:55:a5:57:5b:bf:c6:f4:55:92:fe: ae:6c:9d:33:96:f2:74:40:55:62:a8:42:b1:83:05:be:4a:bf: e8:68:98:62:29:4d:8c:35:d6:69:d2:d6:dd:27:55:48:77:64: fe:66:e9:b7:d5:21:12:59:79:81:9b:54:09:a2:2e:18:b3:22: 21:d0:2b:34:1f:f6:9c:67:56:75:bb:18:69:ac:5d:eb:eb:8b: c8:78:74:ca:d1:cd:09:14:a8:43:6a:bf:1b:69:56:36:f9:55: a4:e8:c1:80 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTlGODExMC8GA1UEBRMoRjlDREIwNjE4OEQ1NEZEMTM3MzAzMEI5MjBDOEU0NDVE QjJEM0Q1NzAeFw0yNTA4MDcwNzU5NDlaFw0yNTA4MTQwNzU5NDlaMBgxFjAUBgNV BAMTDTY4OTQ1Y2Y2LWRlZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuL/thDPZizdNolTJpa2oEUTGX4AQfDgahHnff4PjXm9FeiI37i969FqYz4TlQ KpyjpKvaRW0obU53513oNEoM39CL/jwiLFAF91Vq/G/e6LO95eJ8fWIKmapRwXDZ 0RXdVzjwJcIkgaNggBF3lDIeXt06f0lix5whTAJ/6A6Aytwu7u5CjsFobt7yiA97 hoNEjimgNtndMuNT3sk89xYC00ByrMj+AwjD232VmTAwS3hO7VyA860uC6+4sZzK gBJ4L60tvZOV6ePhH5Bn0jlv6a4BX6jBeRTaDIS498o2C/k2noSqVpWeZFSzHqeN y4uToajZd4qzDiHAai5gRn3pAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUNe2TQuim DKAs5MWDnrlvf0ueSCkwHwYDVR0jBBgwFoAU+c2wYYjVT9E3MDC5IMjkRdstPVcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5OUY4LzdBNEQ3Qjg4MDRB NzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlFM01EQzVJTWprUmRzdFBW Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWMyd1lZalZUOUUzTURDNUlNamtSZHN0UFZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5 OUY4LzdBNEQ3Qjg4MDRBNzExRjBCNEQ3Mzk4MkM0RjlBRTAyLy1jMndZWWpWVDlF M01EQzVJTWprUmRzdFBWYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAC11OZ4edReGjsfbBIQWFWQcqWzSpewb1mGyCRYK9181tYFVDtbitbH6 XZioiFgpcg/ZaYeXneCNjR+yBruuVYcYbmMdCaSmfrYtt8u0rj9hmQfIvpQE5KCI SdYLMxrlyGvb2cd9kBYzr+SnCUuo0aRbLsGZEdtMiuQWQ0dqOcDtsq1nXWyqgZU1 g3zECxyUYGRMvf1qjnISVaVXW7/G9FWS/q5snTOW8nRAVWKoQrGDBb5Kv+homGIp TYw11mnS1t0nVUh3ZP5m6bfVIRJZeYGbVAmiLhizIiHQKzQf9pxnVnW7GGmsXevr i8h4dMrRzQkUqENqvxtpVjb5VaTowYA= -----END CERTIFICATE-----Generated at Sat Aug 9 02:53:29 2025 by rpki-client