$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft File: o222tflxI3VeVEH6xWqmu6BbCAo.mft (raw, json) Hash identifier: QREUWIBXAgWMy3fb79w0Cf+OT2VMIyQ0VJVPqlg25Og= Subject key identifier: 0C:E6:06:E3:81:A8:7E:80:38:62:B3:F8:3F:64:66:4A:FB:BA:B5:D5 Authority key identifier: A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A Certificate issuer: /CN=A91BD4DF/serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft Manifest number: D2 Signing time: Sat 09 Aug 2025 06:04:59 +0000 Manifest this update: Sat 09 Aug 2025 06:04:58 +0000 Manifest next update: Sat 16 Aug 2025 06:04:58 +0000 Files and hashes: 1: o222tflxI3VeVEH6xWqmu6BbCAo.crl (hash: yFvgHNTqt7pVhc4D0EAtLLRYl6cjhin0FmrxYDVqk60=) 2: 4136642C39AA11EF933F9583C4F9AE02.roa (hash: +fFDWaDnFu7mpfAvBElCeG8uNXNIs5iwZjBDkX/SJz0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD4DF, serialNumber=A36DB6B5F97123755E5441FAC56AA6BBA05B080A Validity Not Before: Aug 9 06:04:58 2025 GMT Not After : Aug 16 06:04:58 2025 GMT Subject: CN=6896e50b-11e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:f5:34:16:47:27:63:7f:5d:d3:5a:b9:c1: ae:28:c7:01:64:81:a5:aa:5b:62:c7:93:3f:ab:f1: a9:d8:f3:05:7d:f4:ed:61:23:17:ab:10:b4:1b:f5: b8:63:9c:73:12:b8:db:bc:c1:00:2a:50:00:ea:26: d4:57:37:71:7c:a5:72:98:80:c9:86:fb:8c:01:50: a6:f2:27:29:5b:bd:53:01:95:da:df:79:d6:5a:50: 96:a9:f4:13:de:e1:57:a7:9b:e7:15:57:78:e7:01: 66:e2:e1:76:17:51:8d:55:46:06:ca:c8:92:34:0b: 1f:9d:d4:67:88:50:f1:39:15:2f:da:45:9e:55:dc: 67:82:5a:34:52:9c:80:a1:ee:88:6a:17:bd:f5:56: 4d:5f:87:8b:4b:69:34:31:f3:fa:3f:4c:45:8a:7d: 2f:44:f2:6f:f8:b7:83:6c:e3:e3:62:26:a1:ed:68: d2:3a:25:86:87:3a:b9:b5:de:c4:5c:fa:c3:38:fa: 55:a1:04:20:3f:db:46:15:55:c0:d8:b7:e1:27:23: 60:81:51:b9:3d:54:bb:bc:20:1e:ca:ad:f6:d4:01: 62:e9:3f:6c:92:9a:9d:73:e4:5e:6e:39:84:18:f0: a6:7b:03:aa:48:cc:22:5d:91:f8:88:42:c4:41:62: ca:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E6:06:E3:81:A8:7E:80:38:62:B3:F8:3F:64:66:4A:FB:BA:B5:D5 X509v3 Authority Key Identifier: keyid:A3:6D:B6:B5:F9:71:23:75:5E:54:41:FA:C5:6A:A6:BB:A0:5B:08:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o222tflxI3VeVEH6xWqmu6BbCAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD4DF/310D3542399311EFA08D2E1BC4F9AE02/o222tflxI3VeVEH6xWqmu6BbCAo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:5f:b7:08:87:a7:e5:d2:00:25:c1:b1:0d:be:6d:96:14:28: dc:96:a1:1a:d7:d2:94:7a:2e:79:e3:d4:92:48:65:75:89:68: 7a:ff:d2:28:81:0e:93:71:d4:9c:56:0a:a1:a4:10:57:df:69: 3a:bb:d7:46:fc:eb:8d:4f:06:47:cd:c3:c8:1d:76:32:38:97: e0:61:4f:69:d1:72:a2:03:9b:a5:33:e6:28:b5:88:96:f4:45: 05:77:a5:cc:b6:94:77:ca:0d:da:3f:66:06:a5:27:ad:e3:51: 40:8d:3c:be:cc:36:0c:2c:1f:80:9f:5f:76:ed:bc:b2:c9:d9: 37:05:dc:98:c1:0a:e2:ac:e6:d8:fb:4a:65:3c:be:45:1b:eb: 34:a5:e4:d7:1d:4a:26:d1:7c:82:25:1f:bd:88:48:83:23:3d: 07:9f:34:49:bc:43:2d:bd:36:5a:3a:ea:d9:2a:2e:d3:da:62: 26:ba:86:2b:be:8f:54:86:fe:6f:8f:f2:2f:d7:be:34:e9:45: db:e4:9f:69:8b:4a:8b:9f:38:71:da:e4:a9:cf:fa:ec:f6:17: 8d:60:85:86:8e:6a:bc:fc:02:ac:70:95:3a:7d:4f:e2:74:af: 72:28:28:72:00:02:18:ef:47:a0:c7:2e:9a:ff:8e:0d:ac:3a: 8a:5a:64:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ0REYxMTAvBgNVBAUTKEEzNkRCNkI1Rjk3MTIzNzU1RTU0NDFGQUM1NkFBNkJC QTA1QjA4MEEwHhcNMjUwODA5MDYwNDU4WhcNMjUwODE2MDYwNDU4WjAYMRYwFAYD VQQDEw02ODk2ZTUwYi0xMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWr1NBZHJ2N/XdNaucGuKMcBZIGlqltix5M/q/Gp2PMFffTtYSMXqxC0G/W4 Y5xzErjbvMEAKlAA6ibUVzdxfKVymIDJhvuMAVCm8icpW71TAZXa33nWWlCWqfQT 3uFXp5vnFVd45wFm4uF2F1GNVUYGysiSNAsfndRniFDxORUv2kWeVdxnglo0UpyA oe6Iahe99VZNX4eLS2k0MfP6P0xFin0vRPJv+LeDbOPjYiah7WjSOiWGhzq5td7E XPrDOPpVoQQgP9tGFVXA2LfhJyNggVG5PVS7vCAeyq321AFi6T9skpqdc+RebjmE GPCmewOqSMwiXZH4iELEQWLKnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzmBuOB qH6AOGKz+D9kZkr7urXVMB8GA1UdIwQYMBaAFKNttrX5cSN1XlRB+sVqprugWwgK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDRERi8zMTBEMzU0MjM5 OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkzVmVWRUg2eFdxbXU2QmJD QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yMjJ0Zmx4STNWZVZFSDZ4V3FtdTZCYkNBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDRERi8zMTBEMzU0MjM5OTMxMUVGQTA4RDJFMUJDNEY5QUUwMi9vMjIydGZseEkz VmVWRUg2eFdxbXU2QmJDQW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNX7cIh6fl0gAlwbENvm2WFCjclqEa19KUei5549SSSGV1iWh6/9Io gQ6TcdScVgqhpBBX32k6u9dG/OuNTwZHzcPIHXYyOJfgYU9p0XKiA5ulM+YotYiW 9EUFd6XMtpR3yg3aP2YGpSet41FAjTy+zDYMLB+An1927byyydk3BdyYwQrirObY +0plPL5FG+s0peTXHUom0XyCJR+9iEiDIz0HnzRJvEMtvTZaOurZKi7T2mImuoYr vo9Uhv5vj/Iv17406UXb5J9pi0qLnzhx2uSpz/rs9heNYIWGjmq8/AKscJU6fU/i dK9yKChyAAIY70egxy6a/44NrDqKWmQx -----END CERTIFICATE-----Generated at Sun Aug 10 18:51:09 2025 by rpki-client