$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft File: vO4SgFOJtXjDX9i0JVpggdJoP3w.mft (raw, json) Hash identifier: 8i1tJJ13OILyW5tWLD/mdwBDxPrx37CWhGORpMpJe7A= Subject key identifier: DF:8C:FE:A6:A1:B6:7F:42:3D:A3:E2:C3:FC:C1:52:44:66:94:85:34 Authority key identifier: BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C Certificate issuer: /CN=A91B4B33/serialNumber=BCEE12805389B578C35FD8B4255A6081D2683F7C Certificate serial: DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft Manifest number: DD Signing time: Sat 09 Aug 2025 05:53:49 +0000 Manifest this update: Sat 09 Aug 2025 05:53:48 +0000 Manifest next update: Sat 16 Aug 2025 05:53:48 +0000 Files and hashes: 1: vO4SgFOJtXjDX9i0JVpggdJoP3w.crl (hash: RX1PlTfGOHvcRPJ0/4oHd5C3gBO67zS8apuhBjV0xco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.crl rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4B33, serialNumber=BCEE12805389B578C35FD8B4255A6081D2683F7C Validity Not Before: Aug 9 05:53:48 2025 GMT Not After : Aug 16 05:53:48 2025 GMT Subject: CN=6896e26d-fb19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4d:2b:53:e6:52:ba:58:1c:8f:c8:f7:a9:12: b0:a5:b0:52:26:2c:8f:64:e0:03:70:eb:37:df:a8: 18:95:01:d8:18:e4:5d:7f:cc:c3:6b:00:94:74:3c: c5:2f:39:2d:b1:c8:39:dd:9c:d6:3a:e6:c4:0f:e9: cf:17:f0:a9:55:ff:a8:25:6a:92:d9:ae:1a:bd:dc: 68:bf:58:91:86:4c:c2:7a:41:79:46:86:ab:4b:d2: 97:96:49:17:f0:db:c9:9d:07:a1:c3:56:90:0e:aa: 91:fe:76:5d:82:45:64:e6:be:35:49:eb:0f:ad:9f: a0:9d:f8:a7:b3:51:42:2a:22:a1:8e:83:35:11:81: f6:5f:75:90:43:b0:11:2f:0e:79:de:cc:d8:af:ca: 7e:82:70:ec:2a:7f:5f:13:c3:3a:57:7d:98:e2:c6: 68:0d:ff:60:6a:99:e4:6b:b7:92:0b:6a:6f:2c:a2: d5:0a:df:d7:4f:5b:b6:98:e9:b6:34:82:4a:2e:c5: 3c:92:83:70:30:30:ed:31:5a:8d:f2:83:4d:00:8a: 4f:ae:a5:2e:56:71:6c:67:e4:35:b5:73:c6:d4:12: 80:b8:ec:73:ef:e5:e4:88:00:29:e7:08:b3:1d:ab: d4:3f:b7:3c:78:48:7d:9f:94:fa:a6:63:d2:d6:d6: ab:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:8C:FE:A6:A1:B6:7F:42:3D:A3:E2:C3:FC:C1:52:44:66:94:85:34 X509v3 Authority Key Identifier: keyid:BC:EE:12:80:53:89:B5:78:C3:5F:D8:B4:25:5A:60:81:D2:68:3F:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vO4SgFOJtXjDX9i0JVpggdJoP3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4B33/244F849A221E11EF9344A309C4F9AE02/vO4SgFOJtXjDX9i0JVpggdJoP3w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:ed:c9:4d:0a:85:58:19:0a:34:8b:c2:8e:d7:a1:97:98:ad: 39:60:9e:18:a9:50:f2:3f:20:88:16:5e:9c:19:16:73:6e:1f: 7c:7a:5e:ea:92:f6:9f:82:c3:0c:35:b7:c7:95:2d:93:bd:54: ed:2e:b8:a7:42:19:46:2c:d7:0b:40:4d:c3:ef:74:27:ed:8f: 33:95:4e:db:d8:5b:76:47:84:83:3a:bb:55:f8:06:d4:30:96: 96:74:fe:c9:e9:db:2a:ef:e4:c9:12:6d:d7:56:c9:2a:1b:9e: 93:e0:15:c9:81:aa:14:c5:41:12:ab:f7:5b:bd:82:e1:c4:5d: 85:f2:5f:e0:64:4d:39:a8:2d:b3:d2:24:e1:ed:7b:d9:8a:64: 47:02:41:7e:86:2e:90:80:f2:04:f8:1f:18:d7:90:07:b0:7f: cc:22:4e:96:16:9b:96:6b:70:de:37:b1:3e:7d:0f:cb:ec:c4: dd:38:5e:25:2e:65:ac:e6:0b:75:2e:b8:8b:d4:3b:e4:21:2b: 65:f7:54:b8:12:89:9a:5b:f3:0b:8b:76:68:7f:8a:6c:ea:72: 6a:16:d7:39:1b:b9:cd:de:f6:ba:2f:16:9b:2d:2b:cd:9a:ae: 25:67:df:05:50:aa:80:b2:fa:36:08:81:96:b6:b1:26:1a:64: f4:80:a7:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRCMzMxMTAvBgNVBAUTKEJDRUUxMjgwNTM4OUI1NzhDMzVGRDhCNDI1NUE2MDgx RDI2ODNGN0MwHhcNMjUwODA5MDU1MzQ4WhcNMjUwODE2MDU1MzQ4WjAYMRYwFAYD VQQDEw02ODk2ZTI2ZC1mYjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4U0rU+ZSulgcj8j3qRKwpbBSJiyPZOADcOs336gYlQHYGORdf8zDawCUdDzF Lzktscg53ZzWOubED+nPF/CpVf+oJWqS2a4avdxov1iRhkzCekF5RoarS9KXlkkX 8NvJnQehw1aQDqqR/nZdgkVk5r41SesPrZ+gnfins1FCKiKhjoM1EYH2X3WQQ7AR Lw553szYr8p+gnDsKn9fE8M6V32Y4sZoDf9gapnka7eSC2pvLKLVCt/XT1u2mOm2 NIJKLsU8koNwMDDtMVqN8oNNAIpPrqUuVnFsZ+Q1tXPG1BKAuOxz7+XkiAAp5wiz HavUP7c8eEh9n5T6pmPS1tarzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN+M/qah tn9CPaPiw/zBUkRmlIU0MB8GA1UdIwQYMBaAFLzuEoBTibV4w1/YtCVaYIHSaD98 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEIzMy8yNDRGODQ5QTIy MUUxMUVGOTM0NEEzMDlDNEY5QUUwMi92TzRTZ0ZPSnRYakRYOWkwSlZwZ2dkSm9Q M3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZPNFNnRk9KdFhqRFg5aTBKVnBnZ2RKb1Azdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NEIzMy8yNDRGODQ5QTIyMUUxMUVGOTM0NEEzMDlDNEY5QUUwMi92TzRTZ0ZPSnRY akRYOWkwSlZwZ2dkSm9QM3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi7clNCoVYGQo0i8KO16GXmK05YJ4YqVDyPyCIFl6cGRZzbh98el7q kvafgsMMNbfHlS2TvVTtLrinQhlGLNcLQE3D73Qn7Y8zlU7b2Ft2R4SDOrtV+AbU MJaWdP7J6dsq7+TJEm3XVskqG56T4BXJgaoUxUESq/dbvYLhxF2F8l/gZE05qC2z 0iTh7XvZimRHAkF+hi6QgPIE+B8Y15AHsH/MIk6WFpuWa3DeN7E+fQ/L7MTdOF4l LmWs5gt1LriL1DvkIStl91S4EomaW/MLi3Zof4ps6nJqFtc5G7nN3va6LxabLSvN mq4lZ98FUKqAsvo2CIGWtrEmGmT0gKdy -----END CERTIFICATE-----Generated at Mon Aug 11 01:53:34 2025 by rpki-client