$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft File: 4idah1qSyusBBPicRvSlhbet9bY.mft (raw, json) Hash identifier: OhE6VAZU8yXWmlVBIIXRilhbGlW9wJGXchYdtnuPc1U= Subject key identifier: F4:30:E3:8C:64:C7:EA:96:B1:5E:91:33:10:8E:1B:37:5C:53:F4:EC Authority key identifier: E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 Certificate issuer: /CN=A91CC561/serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Certificate serial: 0D15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft Manifest number: 0D09 Signing time: Tue 12 Aug 2025 18:15:15 +0000 Manifest this update: Tue 12 Aug 2025 18:15:14 +0000 Manifest next update: Tue 19 Aug 2025 18:15:14 +0000 Files and hashes: 1: 4idah1qSyusBBPicRvSlhbet9bY.crl (hash: 42HZqrU6m0frEiYA85tdk9V4sEZ+mgvZQQkvbU4mPsE=) 2: 5A395E26E2DB11EB8608EA87C4F9AE02.roa (hash: qxCxFSPkCJMsK7i3RHMxc9Lr9Tcp57aZA1WThFY3ZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 18:15:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3349 (0xd15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC561, serialNumber=E2275A875A92CAEB0104F89C46F4A585B7ADF5B6 Validity Not Before: Aug 12 18:15:14 2025 GMT Not After : Aug 19 18:15:14 2025 GMT Subject: CN=689b84b2-fd80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c0:05:31:b3:ef:4e:99:57:c8:25:8c:41:98: 6c:0d:11:68:81:ef:d8:04:36:24:41:ea:f1:e2:6e: ff:a6:87:8c:e6:40:3b:10:17:51:31:eb:1e:e5:ec: ce:05:73:1b:eb:69:b9:72:8b:62:60:b7:f0:b2:1b: f8:66:7c:7c:ce:79:3d:0a:69:f3:69:d7:b7:24:29: 5d:2a:97:d5:0a:2b:44:36:3f:20:b1:aa:5a:c2:15: 6b:75:fe:5d:99:78:72:29:d0:84:76:83:5c:26:cb: 75:5d:d2:d8:74:11:94:6c:55:4b:db:42:13:0b:b1: 9b:99:da:71:e7:7e:53:dd:94:11:93:e0:a4:14:d6: ec:e7:40:5f:04:c1:0c:30:27:c3:2a:f7:4f:4e:85: 17:3e:8d:31:cb:7f:59:1c:b9:69:c8:fe:07:ff:9e: 1e:d2:0c:c6:3f:ab:a6:35:20:55:92:4f:45:f7:91: a5:08:a1:2f:8a:3e:b8:8e:35:de:82:c9:36:8d:9e: a3:67:bb:56:e4:44:16:42:92:cb:82:06:08:cf:27: b1:6c:90:a4:fa:bb:15:68:2a:78:b1:c2:1a:07:74: 14:12:bf:08:fc:28:fb:17:1e:ff:c3:76:ec:33:2f: 85:d8:66:bf:ab:ae:d4:1c:9f:ee:9a:c3:ae:c3:6a: b0:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:30:E3:8C:64:C7:EA:96:B1:5E:91:33:10:8E:1B:37:5C:53:F4:EC X509v3 Authority Key Identifier: keyid:E2:27:5A:87:5A:92:CA:EB:01:04:F8:9C:46:F4:A5:85:B7:AD:F5:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4idah1qSyusBBPicRvSlhbet9bY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC561/86C30482E73411E99D8EAF47C4F9AE02/4idah1qSyusBBPicRvSlhbet9bY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:e8:42:d1:c7:54:f8:f9:d3:8b:b1:fb:40:ab:29:fb:78:aa: 3e:ad:96:18:2a:f7:9e:c6:df:13:ba:93:4d:fd:e1:3c:75:0b: eb:5a:b4:39:27:e5:24:b9:5d:4f:7d:2b:5f:b6:55:a7:5e:ae: 7a:09:f7:ca:53:68:c3:21:22:97:49:17:8d:9d:14:7d:0c:4e: 89:e1:7b:9f:e1:d5:28:09:b0:b7:f6:1f:6c:b8:8d:f4:70:a0: ab:46:bd:7d:ae:c4:30:95:31:cc:f7:e4:23:d4:73:f1:9f:55: 0f:12:b6:c4:e2:11:7e:2a:14:0e:35:a4:0a:e3:e7:6e:7c:55: 2c:8e:bb:e3:7c:ba:6e:db:6f:fb:e5:4d:7d:2d:0d:d0:d6:9f: 64:09:65:52:da:95:a8:90:0c:36:a7:9f:2e:06:94:20:67:af: 46:9f:e5:0f:cb:18:d9:7d:dc:30:c7:6a:0a:b4:fc:ce:0b:c3: 45:cd:17:8d:26:84:43:25:79:9a:78:3e:09:28:5c:c3:26:d4: 20:a4:b7:ad:d8:b0:57:0b:64:00:37:b7:6e:9f:94:48:b1:47: f7:b3:a2:e9:0f:7c:92:f1:93:a4:63:f2:5d:4c:90:74:ff:c9: 98:9f:92:ab:3a:7a:d6:08:0e:6c:c6:81:70:73:e6:ab:6e:ad: 1d:8f:ce:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjExMTAvBgNVBAUTKEUyMjc1QTg3NUE5MkNBRUIwMTA0Rjg5QzQ2RjRBNTg1 QjdBREY1QjYwHhcNMjUwODEyMTgxNTE0WhcNMjUwODE5MTgxNTE0WjAYMRYwFAYD VQQDEw02ODliODRiMi1mZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMAFMbPvTplXyCWMQZhsDRFoge/YBDYkQerx4m7/poeM5kA7EBdRMese5ezO BXMb62m5cotiYLfwshv4Znx8znk9Cmnzade3JCldKpfVCitENj8gsapawhVrdf5d mXhyKdCEdoNcJst1XdLYdBGUbFVL20ITC7Gbmdpx535T3ZQRk+CkFNbs50BfBMEM MCfDKvdPToUXPo0xy39ZHLlpyP4H/54e0gzGP6umNSBVkk9F95GlCKEvij64jjXe gsk2jZ6jZ7tW5EQWQpLLggYIzyexbJCk+rsVaCp4scIaB3QUEr8I/Cj7Fx7/w3bs My+F2Ga/q67UHJ/umsOuw2qwhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQw44xk x+qWsV6RMxCOGzdcU/TsMB8GA1UdIwQYMBaAFOInWodaksrrAQT4nEb0pYW3rfW2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2MS84NkMzMDQ4MkU3 MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1c0JCUGljUnZTbGhiZXQ5 YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRpZGFoMXFTeXVzQkJQaWNSdlNsaGJldDliWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzU2MS84NkMzMDQ4MkU3MzQxMUU5OUQ4RUFGNDdDNEY5QUUwMi80aWRhaDFxU3l1 c0JCUGljUnZTbGhiZXQ5YlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAq6ELRx1T4+dOLsftAqyn7eKo+rZYYKveext8TupNN/eE8dQvrWrQ5 J+UkuV1PfStftlWnXq56CffKU2jDISKXSReNnRR9DE6J4Xuf4dUoCbC39h9suI30 cKCrRr19rsQwlTHM9+Qj1HPxn1UPErbE4hF+KhQONaQK4+dufFUsjrvjfLpu22/7 5U19LQ3Q1p9kCWVS2pWokAw2p58uBpQgZ69Gn+UPyxjZfdwwx2oKtPzOC8NFzReN JoRDJXmaeD4JKFzDJtQgpLet2LBXC2QAN7dun5RIsUf3s6LpD3yS8ZOkY/JdTJB0 /8mYn5KrOnrWCA5sxoFwc+arbq0dj85j -----END CERTIFICATE-----Generated at Wed Aug 13 02:59:52 2025 by rpki-client