$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft File: 1sP4E3joVAB4unmUQu7b7HgOD3s.mft (raw, json) Hash identifier: eo4e8TvCKyHAlggsLLaIBoy5FN/UblrY55ysIKoTedo= Subject key identifier: 55:30:E3:34:5E:8E:63:72:5E:7B:E0:4D:85:39:24:FD:A4:51:46:16 Authority key identifier: D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B Certificate issuer: /CN=A91C8DD5/serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Certificate serial: 1B71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft Manifest number: 1B67 Signing time: Fri 08 Aug 2025 16:25:22 +0000 Manifest this update: Fri 08 Aug 2025 16:25:21 +0000 Manifest next update: Fri 15 Aug 2025 16:25:21 +0000 Files and hashes: 1: 1sP4E3joVAB4unmUQu7b7HgOD3s.crl (hash: onH5ahJeG+yc3fa/KlGnS/nUw52xCdSWgldw/Dcmewg=) 2: 020A31F812B011E7A7C42661C4F9AE02.roa (hash: XaEt+47rBdBuIr1qA7i6V/F+AJaSo/IaiolwteWY5gM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7025 (0x1b71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8DD5, serialNumber=D6C3F81378E8540078BA799442EEDBEC780E0F7B Validity Not Before: Aug 8 16:25:21 2025 GMT Not After : Aug 15 16:25:21 2025 GMT Subject: CN=689624f2-e410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8f:ce:7f:29:17:8a:4e:fd:bf:16:a8:a6:1c: e7:d8:b6:8c:08:75:cd:a9:e6:77:ec:9d:ad:58:d4: dd:80:69:67:57:81:7f:92:5e:24:40:2d:94:b9:01: 59:d2:56:73:c5:95:83:c4:ac:e4:b4:a0:c2:f3:7e: e5:58:5f:bc:f5:56:5b:74:66:1d:63:cd:7c:8e:77: 17:ad:a8:3b:dc:42:96:8d:09:5f:10:a2:16:9c:b6: 84:01:70:e7:76:d6:c1:f3:ca:2f:92:e2:4f:ce:04: 14:36:ca:b3:98:0d:0d:6a:12:dd:71:c6:5e:82:d6: 0d:48:8c:c7:45:a1:d8:d9:2e:de:01:17:ce:bd:4c: ed:9d:ba:d2:8b:1f:4c:ef:9b:48:42:e0:bc:c9:16: 76:4d:f3:fe:28:c4:d0:10:a0:06:43:57:d1:8c:4a: fe:e9:58:6b:00:0f:af:27:7b:7c:7e:04:2f:f3:aa: b3:a5:cc:d1:49:9f:a4:97:6f:b9:94:ff:f6:e8:99: e7:26:03:89:05:ec:26:36:c5:ec:3f:b5:5d:a5:2f: 44:e2:ed:18:d3:ee:aa:7f:5a:55:b8:58:2d:94:1d: 16:8e:1e:19:53:b5:15:b5:15:f9:74:6a:24:6c:20: 74:51:6a:54:a0:14:15:2d:52:60:db:cc:3d:6a:ef: b1:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:30:E3:34:5E:8E:63:72:5E:7B:E0:4D:85:39:24:FD:A4:51:46:16 X509v3 Authority Key Identifier: keyid:D6:C3:F8:13:78:E8:54:00:78:BA:79:94:42:EE:DB:EC:78:0E:0F:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1sP4E3joVAB4unmUQu7b7HgOD3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8DD5/D5A1A1C612A711E7ADB4DE4DC4F9AE02/1sP4E3joVAB4unmUQu7b7HgOD3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:12:89:47:3a:d6:36:f7:f8:0f:f1:60:29:c6:4f:db:6b:9b: 92:55:95:2e:d2:11:a9:3f:24:fe:71:26:f6:82:97:63:f4:c8: 35:c9:cf:6e:41:af:55:07:52:1d:18:b3:6b:5c:4c:23:6c:31: be:5c:d9:7b:41:bc:91:93:1a:6d:1a:25:d9:d4:46:a9:40:59: 60:96:bb:c3:ab:e9:67:a1:3e:93:a2:18:ec:16:d5:6a:ec:e1: e5:e9:51:e7:ef:c4:ca:a1:17:27:2c:63:96:10:15:09:ef:60: 3e:9d:b6:13:b5:11:c9:20:67:90:19:09:25:b3:8b:f4:03:7f: 31:9a:a2:1a:87:5d:87:42:fe:26:56:59:ed:fe:ab:7e:bb:6c: e6:15:f3:49:86:63:4d:b9:e7:f8:62:23:ab:b4:66:b0:ba:6d: 06:07:00:99:30:28:22:52:fd:f3:2f:e9:a9:33:38:93:f6:1c: cd:3d:7a:5d:71:30:77:30:8b:f3:59:7f:ef:fe:e2:37:01:1e: b9:f2:af:89:53:70:e5:91:54:27:a9:de:4c:1e:e9:cf:1a:78: f6:25:ad:3d:f7:2d:98:e2:54:0e:df:26:c1:15:c3:17:a4:48: ad:a6:24:7a:51:2d:41:d5:ee:8b:b7:8e:79:f8:4a:0d:65:fa: b3:02:77:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG3EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhERDUxMTAvBgNVBAUTKEQ2QzNGODEzNzhFODU0MDA3OEJBNzk5NDQyRUVEQkVD NzgwRTBGN0IwHhcNMjUwODA4MTYyNTIxWhcNMjUwODE1MTYyNTIxWjAYMRYwFAYD VQQDEw02ODk2MjRmMi1lNDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4/OfykXik79vxaophzn2LaMCHXNqeZ37J2tWNTdgGlnV4F/kl4kQC2UuQFZ 0lZzxZWDxKzktKDC837lWF+89VZbdGYdY818jncXrag73EKWjQlfEKIWnLaEAXDn dtbB88ovkuJPzgQUNsqzmA0NahLdccZegtYNSIzHRaHY2S7eARfOvUztnbrSix9M 75tIQuC8yRZ2TfP+KMTQEKAGQ1fRjEr+6VhrAA+vJ3t8fgQv86qzpczRSZ+kl2+5 lP/26JnnJgOJBewmNsXsP7VdpS9E4u0Y0+6qf1pVuFgtlB0Wjh4ZU7UVtRX5dGok bCB0UWpUoBQVLVJg28w9au+x4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFUw4zRe jmNyXnvgTYU5JP2kUUYWMB8GA1UdIwQYMBaAFNbD+BN46FQAeLp5lELu2+x4Dg97 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOERENS9ENUExQTFDNjEy QTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZBQjR1bm1VUXU3YjdIZ09E M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFzUDRFM2pvVkFCNHVubVVRdTdiN0hnT0Qzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OERENS9ENUExQTFDNjEyQTcxMUU3QURCNERFNERDNEY5QUUwMi8xc1A0RTNqb1ZB QjR1bm1VUXU3YjdIZ09EM3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUEolHOtY29/gP8WApxk/ba5uSVZUu0hGpPyT+cSb2gpdj9Mg1yc9u Qa9VB1IdGLNrXEwjbDG+XNl7QbyRkxptGiXZ1EapQFlglrvDq+lnoT6TohjsFtVq 7OHl6VHn78TKoRcnLGOWEBUJ72A+nbYTtRHJIGeQGQkls4v0A38xmqIah12HQv4m Vlnt/qt+u2zmFfNJhmNNuef4YiOrtGawum0GBwCZMCgiUv3zL+mpMziT9hzNPXpd cTB3MIvzWX/v/uI3AR658q+JU3DlkVQnqd5MHunPGnj2Ja099y2Y4lQO3ybBFcMX pEitpiR6US1B1e6Lt455+EoNZfqzAncP -----END CERTIFICATE-----Generated at Sat Aug 9 20:51:45 2025 by rpki-client