$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft File: cwYbqQQBgewK602PbgA_g4_JxI8.mft (raw, json) Hash identifier: DI7B6LS79rZD0OzhD1GYATE3HU4YDTUe/sP1+vGho+s= Subject key identifier: 0C:EF:10:61:33:F7:A0:B5:AF:4C:88:9E:6B:32:CE:4E:50:F8:0F:35 Authority key identifier: 73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F Certificate issuer: /CN=A91B65AC/serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft Manifest number: 0109 Signing time: Mon 11 Aug 2025 05:11:24 +0000 Manifest this update: Mon 11 Aug 2025 05:11:24 +0000 Manifest next update: Mon 18 Aug 2025 05:11:24 +0000 Files and hashes: 1: cwYbqQQBgewK602PbgA_g4_JxI8.crl (hash: ywTP0x67dcpHeZITGaScY2eSOx2QvG360Chz3VG2cB8=) 2: 7D2E766CE5AF11EE9A0A642FC4F9AE02.roa (hash: Fb0vXPsGENJ9HpaLetk+Rjo+o9pYvcloVY8N7cgyCIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:11:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65AC, serialNumber=73061BA9040181EC0AEB4D8F6E003F838FC9C48F Validity Not Before: Aug 11 05:11:24 2025 GMT Not After : Aug 18 05:11:24 2025 GMT Subject: CN=68997b7c-4d8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:96:27:9c:42:aa:ab:aa:a4:ff:d5:50:3f:5e: 38:fe:42:17:c7:49:ad:75:64:61:a7:62:4e:50:31: 8f:f6:ed:e8:7c:69:13:0e:4a:42:34:7b:d8:0d:6f: 43:cc:e9:1f:ca:07:35:ff:45:ba:ec:e4:2b:db:2f: ba:7d:38:33:cf:36:da:78:a4:d6:f4:3b:88:a7:ba: c2:95:c2:97:a2:bd:c1:02:3c:b0:f6:df:d1:ad:78: 77:69:23:1c:ed:24:2c:c1:49:7f:f3:81:1d:9c:30: e1:20:b9:2b:39:b2:3e:3c:e7:ab:25:c1:a4:19:b8: eb:0d:e3:d5:67:98:70:b3:fc:82:4e:d2:70:3a:08: e5:cb:86:48:86:51:b9:1d:8e:b6:19:94:e8:45:7d: 8f:f9:b7:2f:da:97:25:47:74:e8:58:06:4f:dd:40: 21:66:d1:ed:44:31:ba:26:d3:34:35:79:30:51:bf: 1f:32:02:7c:8e:b9:77:e4:bf:0b:02:32:ae:cb:16: ad:3a:0e:15:89:92:8c:11:e6:7d:2f:8f:a8:70:22: bc:63:b3:9f:54:c4:9f:ad:23:3e:ee:ed:cd:a5:f9: 58:75:f8:9a:58:6e:36:4e:bb:d7:6e:7f:6f:e8:fa: 00:6d:b8:b7:de:f7:56:c8:21:0e:7e:b2:88:61:36: 3b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:EF:10:61:33:F7:A0:B5:AF:4C:88:9E:6B:32:CE:4E:50:F8:0F:35 X509v3 Authority Key Identifier: keyid:73:06:1B:A9:04:01:81:EC:0A:EB:4D:8F:6E:00:3F:83:8F:C9:C4:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cwYbqQQBgewK602PbgA_g4_JxI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65AC/D4F3DB9EE1E011EEAF6E1E68C4F9AE02/cwYbqQQBgewK602PbgA_g4_JxI8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:0b:0c:e1:91:85:19:8c:df:74:cc:d2:6b:bc:a7:0c:e8:cb: 1e:1d:60:0d:64:76:3a:9e:11:41:74:7a:fa:02:16:1e:2c:1c: 66:37:0c:d7:13:0a:68:f1:7c:cc:a5:83:1f:85:03:6c:b2:60: 7b:1b:8c:0d:65:56:87:c3:87:16:73:80:24:b6:69:05:52:d4: 40:51:42:6e:30:47:ef:ed:67:38:eb:07:24:04:3e:12:60:df: c3:47:ae:96:ab:d3:f6:10:e3:08:73:b2:e7:b7:fa:a9:db:ab: fc:c1:d1:12:b6:ea:72:6c:cb:ba:5a:1e:5f:8f:f7:4b:27:db: ae:0c:65:86:63:a1:fd:c5:c6:93:41:b0:37:2d:20:c7:ba:c6: 61:3d:9f:4c:0c:c3:59:41:c9:91:51:8e:15:93:32:3e:1a:0b: 6c:63:6b:1d:fc:01:e5:00:7c:56:bd:48:fd:7d:43:72:7b:1e: 92:54:0b:97:12:eb:fc:f9:94:84:52:ba:3f:35:7d:67:8f:9d: b1:93:77:ef:2a:95:98:50:79:58:e8:42:d6:7d:75:2a:e2:b4: a1:e2:f2:0a:26:7c:63:53:d8:90:a7:aa:9b:e6:dc:29:32:d6: f8:3f:e3:67:8a:4c:1a:65:ff:e0:22:bf:ee:fc:b5:93:57:cd: 54:56:87:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1QUMxMTAvBgNVBAUTKDczMDYxQkE5MDQwMTgxRUMwQUVCNEQ4RjZFMDAzRjgz OEZDOUM0OEYwHhcNMjUwODExMDUxMTI0WhcNMjUwODE4MDUxMTI0WjAYMRYwFAYD VQQDEw02ODk5N2I3Yy00ZDhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq5YnnEKqq6qk/9VQP144/kIXx0mtdWRhp2JOUDGP9u3ofGkTDkpCNHvYDW9D zOkfygc1/0W67OQr2y+6fTgzzzbaeKTW9DuIp7rClcKXor3BAjyw9t/RrXh3aSMc 7SQswUl/84EdnDDhILkrObI+POerJcGkGbjrDePVZ5hws/yCTtJwOgjly4ZIhlG5 HY62GZToRX2P+bcv2pclR3ToWAZP3UAhZtHtRDG6JtM0NXkwUb8fMgJ8jrl35L8L AjKuyxatOg4ViZKMEeZ9L4+ocCK8Y7OfVMSfrSM+7u3NpflYdfiaWG42TrvXbn9v 6PoAbbi33vdWyCEOfrKIYTY70QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzvEGEz 96C1r0yInmsyzk5Q+A81MB8GA1UdIwQYMBaAFHMGG6kEAYHsCutNj24AP4OPycSP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVBQy9ENEYzREI5RUUx RTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdld0s2MDJQYmdBX2c0X0p4 STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N3WWJxUVFCZ2V3SzYwMlBiZ0FfZzRfSnhJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjVBQy9ENEYzREI5RUUxRTAxMUVFQUY2RTFFNjhDNEY5QUUwMi9jd1licVFRQmdl d0s2MDJQYmdBX2c0X0p4STgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbCwzhkYUZjN90zNJrvKcM6MseHWANZHY6nhFBdHr6AhYeLBxmNwzX Ewpo8XzMpYMfhQNssmB7G4wNZVaHw4cWc4AktmkFUtRAUUJuMEfv7Wc46wckBD4S YN/DR66Wq9P2EOMIc7Lnt/qp26v8wdEStupybMu6Wh5fj/dLJ9uuDGWGY6H9xcaT QbA3LSDHusZhPZ9MDMNZQcmRUY4VkzI+GgtsY2sd/AHlAHxWvUj9fUNyex6SVAuX Euv8+ZSEUro/NX1nj52xk3fvKpWYUHlY6ELWfXUq4rSh4vIKJnxjU9iQp6qb5twp Mtb4P+NnikwaZf/gIr/u/LWTV81UVocd -----END CERTIFICATE-----Generated at Wed Aug 13 05:55:02 2025 by rpki-client