$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft File: rKpuJqXy3KoUzfyezI6c9oKaQCE.mft (raw, json) Hash identifier: CrjpjLucFzwYgZvU086456UxJunGrtgGsZsixKnycMc= Subject key identifier: CE:76:BE:DF:CB:BB:D8:96:80:FF:38:04:87:86:F9:37:F4:5B:B3:EB Authority key identifier: AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 Certificate issuer: /CN=A91AEF45/serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Certificate serial: 03BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft Manifest number: 03B5 Signing time: Sat 09 Aug 2025 01:13:54 +0000 Manifest this update: Sat 09 Aug 2025 01:13:54 +0000 Manifest next update: Sat 16 Aug 2025 01:13:54 +0000 Files and hashes: 1: rKpuJqXy3KoUzfyezI6c9oKaQCE.crl (hash: azfHUZfkCiw4LdnBVaWIWoE83e9KjYio0wBFAohPj/o=) 2: 1AE323249F2D11EC897FD30CC4F9AE02.roa (hash: n9RCBLHpgjOAFQhIl7OXxEtavy0mL+5/7gM0zNsjfBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEF45, serialNumber=ACAA6E26A5F2DCAA14CDFC9ECC8E9CF6829A4021 Validity Not Before: Aug 9 01:13:54 2025 GMT Not After : Aug 16 01:13:54 2025 GMT Subject: CN=6896a0d2-6d4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5a:57:b8:b1:61:1f:ec:57:ec:eb:f9:09:85: 9a:14:52:a3:3f:a8:be:b2:88:cd:aa:ba:a8:4d:7b: a2:27:c3:5b:84:4b:cc:9a:6c:81:1d:fd:ea:ff:bf: 47:f0:88:f0:6c:94:37:2d:c3:ea:61:7a:1e:95:93: e6:99:46:a6:4f:85:8b:c1:9c:41:f4:5e:79:af:5a: 61:fc:17:97:f1:1c:eb:82:9a:01:ef:bd:1e:be:83: 41:9b:2e:ca:f8:e3:64:7e:ee:82:8d:40:42:21:cc: e3:5d:3b:67:ca:47:59:e1:e3:d9:19:f6:4f:61:89: 61:8b:6b:90:2d:d4:c4:97:fc:75:62:ff:79:e0:d5: 7c:1b:9d:f7:3b:06:94:01:78:81:dd:33:da:2a:6e: 4c:33:2d:3d:ac:fa:5a:8a:32:bd:98:ae:d4:12:43: e6:40:b2:7b:63:ea:2c:c2:9c:a7:40:79:b6:61:d7: ff:75:05:00:02:d4:60:7d:e0:03:87:81:40:bc:6b: cc:7d:80:f9:bf:cd:e1:31:3f:84:68:38:77:d4:e2: a5:2b:f4:98:13:db:96:79:dd:de:25:6d:91:97:74: 6f:fb:5e:37:98:66:f6:3e:26:c5:01:cf:f0:b1:df: 20:60:76:fd:96:cb:0d:f3:bb:de:ce:d8:86:47:ce: ec:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:76:BE:DF:CB:BB:D8:96:80:FF:38:04:87:86:F9:37:F4:5B:B3:EB X509v3 Authority Key Identifier: keyid:AC:AA:6E:26:A5:F2:DC:AA:14:CD:FC:9E:CC:8E:9C:F6:82:9A:40:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rKpuJqXy3KoUzfyezI6c9oKaQCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEF45/5D8B9B829F2A11ECA7CFAD0AC4F9AE02/rKpuJqXy3KoUzfyezI6c9oKaQCE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:c9:32:00:34:69:62:b9:59:01:4a:57:4e:5a:59:90:b3:5e: da:93:e8:6f:dd:b2:41:f0:95:2b:12:d5:b6:99:54:42:a4:05: d9:4f:f0:cd:30:3b:da:e1:9e:1f:f8:18:1f:24:2a:b8:3e:d2: 7d:65:10:08:87:8e:98:8f:69:6b:51:75:20:fc:81:16:ee:2e: 4c:76:b6:ee:df:35:9e:de:cd:c6:44:eb:17:51:23:1b:55:ba: e1:b4:1e:3e:09:05:34:86:0d:b2:6e:1a:4a:4b:42:ec:2f:b4: 2f:ff:90:c0:bc:4b:04:57:2b:72:f2:1b:43:85:2c:91:a9:8f: a1:c3:af:d3:51:f9:86:48:cf:ca:2c:8a:21:89:cd:6f:5b:4f: a5:61:5c:e7:a9:7b:3c:54:27:36:db:83:f9:28:1e:d0:19:07: 80:05:a1:82:c9:ce:3f:cc:6e:65:4a:b1:15:5d:8c:3c:11:8e: 53:e5:78:28:4f:40:0d:17:d0:5f:2a:c7:01:c0:ea:82:25:7d: ad:fa:56:5b:24:94:06:7c:af:fd:ef:47:b3:06:2e:c0:c1:b2: d7:ec:33:ae:00:8f:da:71:dd:08:dc:df:89:b1:87:36:77:a0: 04:d8:95:2f:49:15:38:f0:19:2f:fe:93:64:41:eb:35:da:b6: 55:d2:2e:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVGNDUxMTAvBgNVBAUTKEFDQUE2RTI2QTVGMkRDQUExNENERkM5RUNDOEU5Q0Y2 ODI5QTQwMjEwHhcNMjUwODA5MDExMzU0WhcNMjUwODE2MDExMzU0WjAYMRYwFAYD VQQDEw02ODk2YTBkMi02ZDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlpXuLFhH+xX7Ov5CYWaFFKjP6i+sojNqrqoTXuiJ8NbhEvMmmyBHf3q/79H 8IjwbJQ3LcPqYXoelZPmmUamT4WLwZxB9F55r1ph/BeX8RzrgpoB770evoNBmy7K +ONkfu6CjUBCIczjXTtnykdZ4ePZGfZPYYlhi2uQLdTEl/x1Yv954NV8G533OwaU AXiB3TPaKm5MMy09rPpaijK9mK7UEkPmQLJ7Y+oswpynQHm2Ydf/dQUAAtRgfeAD h4FAvGvMfYD5v83hMT+EaDh31OKlK/SYE9uWed3eJW2Rl3Rv+143mGb2PibFAc/w sd8gYHb9lssN87veztiGR87sxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM52vt/L u9iWgP84BIeG+Tf0W7PrMB8GA1UdIwQYMBaAFKyqbial8tyqFM38nsyOnPaCmkAh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUY0NS81RDhCOUI4MjlG MkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNLb1V6Znllekk2YzlvS2FR Q0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JLcHVKcVh5M0tvVXpmeWV6STZjOW9LYVFDRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RUY0NS81RDhCOUI4MjlGMkExMUVDQTdDRkFEMEFDNEY5QUUwMi9yS3B1SnFYeTNL b1V6Znllekk2YzlvS2FRQ0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnyTIANGliuVkBSldOWlmQs17ak+hv3bJB8JUrEtW2mVRCpAXZT/DN MDva4Z4f+BgfJCq4PtJ9ZRAIh46Yj2lrUXUg/IEW7i5Mdrbu3zWe3s3GROsXUSMb VbrhtB4+CQU0hg2ybhpKS0LsL7Qv/5DAvEsEVyty8htDhSyRqY+hw6/TUfmGSM/K LIohic1vW0+lYVznqXs8VCc224P5KB7QGQeABaGCyc4/zG5lSrEVXYw8EY5T5Xgo T0ANF9BfKscBwOqCJX2t+lZbJJQGfK/970ezBi7AwbLX7DOuAI/acd0I3N+JsYc2 d6AE2JUvSRU48Bkv/pNkQes12rZV0i6h -----END CERTIFICATE-----Generated at Sun Aug 10 16:09:24 2025 by rpki-client