$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft File: b8Lt8MURUqO-wRSaG9su2yk8nZU.mft (raw, json) Hash identifier: Ds1eoxut+CFSSQNhMCr7dRYzISdJayhCVMRYe/QmIFM= Subject key identifier: 28:21:9B:EA:27:4D:18:20:56:08:EF:B6:26:04:93:73:4A:C2:41:D4 Authority key identifier: 6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 Certificate issuer: /CN=A91AA28B/serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Certificate serial: 0D81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft Manifest number: 0D56 Signing time: Fri 08 Aug 2025 18:14:17 +0000 Manifest this update: Fri 08 Aug 2025 18:14:16 +0000 Manifest next update: Fri 15 Aug 2025 18:14:16 +0000 Files and hashes: 1: b8Lt8MURUqO-wRSaG9su2yk8nZU.crl (hash: 7rmbLKHkVbQG1R7j1a5JW1HGVQNHfDe8eS1ARdxGgMY=) 2: 4DD0C31C0E2011F0A0825648C4F9AE02.roa (hash: 8r7MWVk5x8o1qlWsJdhw0htq1GLcuT7GZDff98YKUWg=) 3: 11815E36135311EE94A8A114C4F9AE02.roa (hash: 4RiRLEUaqFnMyzAxg+jhTtVSLZnRrw+D1OLV5ZjDtiE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3457 (0xd81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA28B, serialNumber=6FC2EDF0C51152A3BEC1149A1BDB2EDB293C9D95 Validity Not Before: Aug 8 18:14:16 2025 GMT Not After : Aug 15 18:14:16 2025 GMT Subject: CN=68963e78-37ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:57:cc:c9:5d:20:51:dd:2f:bf:97:80:90:68: f1:2e:e7:95:ea:f7:d4:b8:34:e6:83:64:24:17:f2: ff:69:28:86:70:41:04:5d:51:a0:01:ed:6b:1a:f3: 16:5e:60:16:e0:90:0a:94:1a:6a:36:2a:60:6d:1c: b6:46:b2:ff:34:1a:36:b3:a7:ff:c4:b5:b3:2b:dc: d9:37:89:93:24:c9:62:14:e7:a4:25:52:ef:63:b5: 5c:8b:9a:d0:11:3b:e0:4f:44:27:5c:c0:c6:2d:63: 50:19:ad:c7:cd:26:99:dc:8a:7a:d1:bc:93:44:12: 08:64:3f:d9:e1:2f:0e:b4:53:1c:c0:fc:ee:0a:86: 04:2a:4e:d9:9f:b9:a6:01:42:21:2e:89:0b:2f:49: c2:92:6e:6f:a7:37:0a:98:22:73:80:a8:56:d7:57: 7e:ea:3f:17:75:e3:45:d1:c1:17:6f:5f:d9:8c:da: 31:ea:4e:64:da:b5:0a:d7:fb:b9:d0:f2:81:a1:e4: 6e:af:e2:48:c0:f5:47:f1:fb:59:8c:b0:0b:12:3e: 71:30:c0:7a:7b:00:39:a5:9d:35:28:35:e3:b7:81: 65:a3:fe:57:43:9b:6d:6d:10:28:e9:07:ac:0a:ab: e1:8b:8a:97:ad:ec:7c:26:04:fc:5a:1d:f4:01:90: 70:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:21:9B:EA:27:4D:18:20:56:08:EF:B6:26:04:93:73:4A:C2:41:D4 X509v3 Authority Key Identifier: keyid:6F:C2:ED:F0:C5:11:52:A3:BE:C1:14:9A:1B:DB:2E:DB:29:3C:9D:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8Lt8MURUqO-wRSaG9su2yk8nZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA28B/1E0264AADBC811E9BEA91051C4F9AE02/b8Lt8MURUqO-wRSaG9su2yk8nZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b9:1a:9d:e3:a3:3d:e2:14:20:b7:bd:12:a1:5c:68:95:be: ce:86:6a:b5:43:e9:4c:4b:f6:48:f0:e8:d5:b1:b7:92:dd:50: 5f:a8:26:77:42:80:53:a9:0f:37:7d:0d:c7:e5:a2:55:44:ce: 8c:34:59:fe:60:16:f9:e1:a8:a7:da:97:7d:57:b1:c1:0f:95: 07:7b:3f:96:45:95:d2:a6:81:67:a2:ae:5c:c5:b4:fb:04:c2: fc:27:d0:8a:58:f8:9c:1b:fc:e6:62:10:d8:52:83:66:53:b0: ed:c1:c2:7b:ff:bb:43:6f:15:22:4f:9f:0d:ab:06:60:d9:ba: ec:a3:1c:c6:04:3d:22:16:50:35:1d:eb:6c:80:d7:fc:7b:c1: 07:6c:32:ae:c3:71:50:aa:0b:44:5a:0b:82:79:a3:ee:49:a1: cb:9b:e5:ca:22:11:99:af:a7:2a:a7:7d:86:eb:6a:93:12:d2: d9:b5:46:c6:c4:42:6a:c9:31:8f:5e:08:3a:e0:7f:64:3f:10: ff:85:92:ae:63:50:91:c9:6a:1c:f9:53:b2:ed:79:df:46:f8: 05:56:42:03:52:7a:f6:7b:af:b8:6a:8a:9f:e3:19:78:35:e4: 82:e2:6e:ca:63:00:05:4c:67:6a:2a:f1:a5:6f:a7:c2:9e:c5: d5:c6:e2:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEyOEIxMTAvBgNVBAUTKDZGQzJFREYwQzUxMTUyQTNCRUMxMTQ5QTFCREIyRURC MjkzQzlEOTUwHhcNMjUwODA4MTgxNDE2WhcNMjUwODE1MTgxNDE2WjAYMRYwFAYD VQQDEw02ODk2M2U3OC0zN2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1fMyV0gUd0vv5eAkGjxLueV6vfUuDTmg2QkF/L/aSiGcEEEXVGgAe1rGvMW XmAW4JAKlBpqNipgbRy2RrL/NBo2s6f/xLWzK9zZN4mTJMliFOekJVLvY7Vci5rQ ETvgT0QnXMDGLWNQGa3HzSaZ3Ip60byTRBIIZD/Z4S8OtFMcwPzuCoYEKk7Zn7mm AUIhLokLL0nCkm5vpzcKmCJzgKhW11d+6j8XdeNF0cEXb1/ZjNox6k5k2rUK1/u5 0PKBoeRur+JIwPVH8ftZjLALEj5xMMB6ewA5pZ01KDXjt4Flo/5XQ5ttbRAo6Qes Cqvhi4qXrex8JgT8Wh30AZBwWQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCghm+on TRggVgjvtiYEk3NKwkHUMB8GA1UdIwQYMBaAFG/C7fDFEVKjvsEUmhvbLtspPJ2V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTI4Qi8xRTAyNjRBQURC QzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVxTy13UlNhRzlzdTJ5azhu WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4THQ4TVVSVXFPLXdSU2FHOXN1MnlrOG5aVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTI4Qi8xRTAyNjRBQURCQzgxMUU5QkVBOTEwNTFDNEY5QUUwMi9iOEx0OE1VUlVx Ty13UlNhRzlzdTJ5azhuWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxuRqd46M94hQgt70SoVxolb7Ohmq1Q+lMS/ZI8OjVsbeS3VBfqCZ3 QoBTqQ83fQ3H5aJVRM6MNFn+YBb54ain2pd9V7HBD5UHez+WRZXSpoFnoq5cxbT7 BML8J9CKWPicG/zmYhDYUoNmU7DtwcJ7/7tDbxUiT58NqwZg2brsoxzGBD0iFlA1 HetsgNf8e8EHbDKuw3FQqgtEWguCeaPuSaHLm+XKIhGZr6cqp32G62qTEtLZtUbG xEJqyTGPXgg64H9kPxD/hZKuY1CRyWoc+VOy7XnfRvgFVkIDUnr2e6+4aoqf4xl4 NeSC4m7KYwAFTGdqKvGlb6fCnsXVxuKi -----END CERTIFICATE-----Generated at Sun Aug 10 04:56:20 2025 by rpki-client