$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft File: iOe1QfQimNbptRZdllJGzBzB9aI.mft (raw, json) Hash identifier: 2uFTod3Uk29ssz5FxvgnladHHPmOPnHu+hUW6dnKOXI= Subject key identifier: CD:44:3F:9A:96:1B:93:3D:79:21:36:50:B2:1F:D8:F7:B6:49:5C:F4 Authority key identifier: 88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 Certificate issuer: /CN=A91A9D0F/serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Certificate serial: 0F85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft Manifest number: 0F4A Signing time: Fri 08 Aug 2025 17:49:54 +0000 Manifest this update: Fri 08 Aug 2025 17:49:54 +0000 Manifest next update: Fri 15 Aug 2025 17:49:54 +0000 Files and hashes: 1: iOe1QfQimNbptRZdllJGzBzB9aI.crl (hash: oRKVLbX5bzugcZKXbj3tZjo4yRKHMfSumVfQk0q9vEY=) 2: 13C1EDA8767911EE9A957930C4F9AE02.roa (hash: rMgdKojSnMQn5zP9ArOeE344pCaixcohoQsewhOoy54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3973 (0xf85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9D0F, serialNumber=88E7B541F42298D6E9B5165D965246CC1CC1F5A2 Validity Not Before: Aug 8 17:49:54 2025 GMT Not After : Aug 15 17:49:54 2025 GMT Subject: CN=689638c2-9084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d3:53:57:ca:31:b2:1e:7f:51:eb:57:f9:99: 0f:56:b0:4d:8d:2f:00:22:27:1c:ea:a8:0e:52:ca: f9:3a:34:90:58:32:1f:66:32:56:53:cc:09:8c:84: d5:1c:79:73:51:66:85:73:73:7c:62:58:aa:7b:9e: 47:61:f7:01:be:91:97:ad:77:56:37:ae:47:d9:85: c9:4d:f8:f5:42:37:7c:5a:2c:d4:62:a4:f2:e4:36: a1:34:1b:dd:38:50:67:7d:5d:5a:06:bf:3e:06:46: 6c:28:50:75:ec:25:ae:17:24:41:72:12:4d:c6:33: 2b:f1:4c:54:46:c6:5e:c1:39:70:d8:fb:8f:c8:e0: ee:fe:15:13:16:01:ce:81:bb:2e:a5:3e:c5:77:94: 55:cf:cb:d6:69:2d:9e:ad:39:62:d0:20:43:1e:2b: dd:b7:97:f1:08:87:20:5b:02:20:d4:4f:54:5b:16: 8c:72:fb:d4:d7:1b:dd:a4:ad:1b:ac:30:c0:62:f1: 8a:37:22:8a:b3:ad:c7:fd:61:ab:9e:4b:b0:6c:f9: 67:56:93:59:5a:4e:ed:ca:c5:0d:f6:c3:e4:7e:29: f2:2d:da:5a:c8:14:c8:82:d0:c8:58:30:5a:6c:ab: ed:40:d9:c2:f0:2a:8f:65:98:e8:eb:b8:f7:93:c0: 5a:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:44:3F:9A:96:1B:93:3D:79:21:36:50:B2:1F:D8:F7:B6:49:5C:F4 X509v3 Authority Key Identifier: keyid:88:E7:B5:41:F4:22:98:D6:E9:B5:16:5D:96:52:46:CC:1C:C1:F5:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iOe1QfQimNbptRZdllJGzBzB9aI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9D0F/74BE38D680CF11E9ACD71B50C4F9AE02/iOe1QfQimNbptRZdllJGzBzB9aI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d8:81:52:52:c5:e1:84:8a:e2:d3:ff:5c:c6:a0:86:ef:fe: f6:91:bf:ab:ef:c8:28:6c:66:07:2d:35:28:41:f2:a5:92:b4: 3e:c2:f0:fc:5b:d7:21:d3:15:35:3a:25:d5:7f:76:d7:3a:40: eb:bb:92:be:b1:cd:b5:61:e5:37:10:c1:ed:4e:f1:31:ff:d9: 83:5d:fa:b3:52:9c:a9:e2:ae:24:c9:e6:9b:18:0a:07:c2:75: 2f:12:29:4c:90:06:76:a4:e7:86:7a:72:e9:cf:2f:78:9f:71: cb:08:6f:c6:ec:6e:83:9c:24:34:63:20:75:4b:89:e4:f2:09: 82:12:ce:26:b3:fd:d4:3c:72:69:cd:ea:3e:2f:77:a9:77:37: 38:f3:59:d5:00:a4:14:65:89:cb:65:fc:00:21:cd:20:02:88: 77:19:76:76:78:5d:ae:55:5b:ac:f5:55:74:e3:22:73:29:f1: 4a:a2:63:22:84:08:86:27:7b:b3:20:28:f4:ac:ab:ff:a3:37: 32:be:e9:4f:42:ee:8d:34:c4:89:6c:55:4c:8a:93:de:af:4d: c3:c5:1b:36:61:af:cb:f1:8e:e6:77:a2:b0:5b:92:7f:b6:59: 22:c5:18:ef:80:43:52:2f:df:d1:d6:9d:1d:39:9d:9f:6f:eb: a6:ea:ae:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD4UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlEMEYxMTAvBgNVBAUTKDg4RTdCNTQxRjQyMjk4RDZFOUI1MTY1RDk2NTI0NkND MUNDMUY1QTIwHhcNMjUwODA4MTc0OTU0WhcNMjUwODE1MTc0OTU0WjAYMRYwFAYD VQQDEw02ODk2MzhjMi05MDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9NTV8oxsh5/UetX+ZkPVrBNjS8AIicc6qgOUsr5OjSQWDIfZjJWU8wJjITV HHlzUWaFc3N8Yliqe55HYfcBvpGXrXdWN65H2YXJTfj1Qjd8WizUYqTy5DahNBvd OFBnfV1aBr8+BkZsKFB17CWuFyRBchJNxjMr8UxURsZewTlw2PuPyODu/hUTFgHO gbsupT7Fd5RVz8vWaS2erTli0CBDHivdt5fxCIcgWwIg1E9UWxaMcvvU1xvdpK0b rDDAYvGKNyKKs63H/WGrnkuwbPlnVpNZWk7tysUN9sPkfinyLdpayBTIgtDIWDBa bKvtQNnC8CqPZZjo67j3k8BakQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM1EP5qW G5M9eSE2ULIf2Pe2SVz0MB8GA1UdIwQYMBaAFIjntUH0IpjW6bUWXZZSRswcwfWi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUQwRi83NEJFMzhENjgw Q0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1OYnB0UlpkbGxKR3pCekI5 YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lPZTFRZlFpbU5icHRSWmRsbEpHekJ6QjlhSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUQwRi83NEJFMzhENjgwQ0YxMUU5QUNENzFCNTBDNEY5QUUwMi9pT2UxUWZRaW1O YnB0UlpkbGxKR3pCekI5YUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB22IFSUsXhhIri0/9cxqCG7/72kb+r78gobGYHLTUoQfKlkrQ+wvD8 W9ch0xU1OiXVf3bXOkDru5K+sc21YeU3EMHtTvEx/9mDXfqzUpyp4q4kyeabGAoH wnUvEilMkAZ2pOeGenLpzy94n3HLCG/G7G6DnCQ0YyB1S4nk8gmCEs4ms/3UPHJp zeo+L3epdzc481nVAKQUZYnLZfwAIc0gAoh3GXZ2eF2uVVus9VV04yJzKfFKomMi hAiGJ3uzICj0rKv/ozcyvulPQu6NNMSJbFVMipPer03DxRs2Ya/L8Y7md6KwW5J/ tlkixRjvgENSL9/R1p0dOZ2fb+um6q4A -----END CERTIFICATE-----Generated at Sat Aug 9 23:18:09 2025 by rpki-client