$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft File: pVDumUQoL8_DhLCCv_qI-G2wQXk.mft (raw, json) Hash identifier: UpLW+EKsumM8vBUQf/nDDv1BB3P8ZFiUaiIKY8sFjfU= Subject key identifier: 09:56:B6:B0:CC:31:52:55:E5:DB:B2:2E:FA:FC:46:A3:0B:B0:58:5D Authority key identifier: A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 Certificate issuer: /CN=A91CD5B5/serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft Manifest number: 0194 Signing time: Sat 09 Aug 2025 03:52:19 +0000 Manifest this update: Sat 09 Aug 2025 03:52:18 +0000 Manifest next update: Sat 16 Aug 2025 03:52:18 +0000 Files and hashes: 1: pVDumUQoL8_DhLCCv_qI-G2wQXk.crl (hash: wkNl8ZnCP7aZB7qiFDRfBdc1IzhwU3Qoz0/HPTPiEqI=) 2: 935947E8234B11F0B6DF721FC4F9AE02.roa (hash: wUur8hr6UOENzZrUofd56u0ua+u6fpIC9vNGe/0Q0+E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD5B5, serialNumber=A550EE9944282FCFC384B082BFFA88F86DB04179 Validity Not Before: Aug 9 03:52:18 2025 GMT Not After : Aug 16 03:52:18 2025 GMT Subject: CN=6896c5f3-6b73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5c:7e:c0:95:dc:ac:22:6e:5a:74:e0:ff:00: 14:49:71:a5:c4:e1:04:97:92:3a:5e:8a:1b:ca:3d: f7:7f:2e:d4:e6:7a:11:11:79:e2:4d:ae:cc:5a:cc: ba:06:71:b4:9b:90:4d:d9:f0:c6:8a:c7:10:6f:a4: d0:79:4e:23:56:bf:1d:cb:25:de:b2:06:2b:b2:a5: eb:82:f8:c2:1b:09:4b:66:d9:09:f4:ef:43:48:cd: 6a:fb:a5:35:c2:cd:f6:95:1b:04:43:55:5d:5f:ff: 34:d0:74:b6:ab:d4:87:99:88:4d:82:af:81:e3:25: ff:d7:77:12:9e:55:2f:f9:36:24:e5:ba:3b:b5:54: f5:f3:27:76:fd:82:7d:f4:11:af:e8:3b:20:db:26: cf:c7:26:90:21:c1:b7:2f:ea:2f:6b:77:6c:de:c0: 4f:82:f4:5f:79:58:e3:17:e5:9e:14:9f:a9:35:6f: 46:e5:36:64:21:ae:41:d1:85:53:75:1e:df:fc:a2: 87:bc:08:0c:0b:b8:2a:59:ff:7f:3c:08:7d:f0:9a: a9:f5:63:3a:39:1c:80:40:aa:91:21:b0:e5:72:6c: 6b:57:b7:30:1e:bf:79:e2:14:83:9a:31:f5:90:a7: 3e:d9:10:9c:34:2f:05:0f:8e:52:c8:92:e8:9c:fe: 82:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:56:B6:B0:CC:31:52:55:E5:DB:B2:2E:FA:FC:46:A3:0B:B0:58:5D X509v3 Authority Key Identifier: keyid:A5:50:EE:99:44:28:2F:CF:C3:84:B0:82:BF:FA:88:F8:6D:B0:41:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pVDumUQoL8_DhLCCv_qI-G2wQXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD5B5/A46B9912164D11EE96858534C4F9AE02/pVDumUQoL8_DhLCCv_qI-G2wQXk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a5:f8:90:7b:75:ad:6c:89:d4:32:bd:db:a0:c4:ae:12:01: ab:87:e3:ce:7c:69:10:8e:5e:e3:8c:f5:3b:3e:f0:c8:f4:78: 79:a3:20:25:31:ce:06:c1:a3:16:59:f7:60:6a:21:03:82:65: cd:c4:65:70:1f:93:e9:79:2c:6f:e0:55:00:95:66:e9:bc:85: 02:a2:e4:5c:d2:8b:8e:cd:dc:e7:42:73:82:3e:e5:15:ad:a9: ce:dc:b5:a9:38:09:7f:71:ee:dd:25:04:c2:50:65:ee:a3:a2: f4:b4:fe:02:91:e3:a4:ce:8e:78:d1:f9:24:f2:4c:15:3d:11: 14:4e:6e:8b:d9:34:66:9b:e6:31:bb:35:e4:37:02:75:63:61: ba:d3:01:c8:13:62:f3:d4:44:75:cf:ad:16:fb:a5:a3:50:69: 03:54:2f:8f:bf:3a:34:b1:a9:4f:72:d8:15:86:1e:b1:16:37: 3e:b9:88:64:2e:66:b6:03:29:39:8e:3d:22:ae:34:d1:9c:b8: df:ac:c9:86:60:76:d7:48:3a:c2:6c:e1:14:8e:85:36:b3:32: 0d:cc:c6:88:76:98:79:0a:97:38:fb:b1:49:75:9b:a9:aa:69: 34:3a:8d:4a:04:7f:97:da:c3:59:47:ef:86:1d:1e:4d:7e:60: d8:07:45:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q1QjUxMTAvBgNVBAUTKEE1NTBFRTk5NDQyODJGQ0ZDMzg0QjA4MkJGRkE4OEY4 NkRCMDQxNzkwHhcNMjUwODA5MDM1MjE4WhcNMjUwODE2MDM1MjE4WjAYMRYwFAYD VQQDEw02ODk2YzVmMy02YjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlx+wJXcrCJuWnTg/wAUSXGlxOEEl5I6Xoobyj33fy7U5noREXniTa7MWsy6 BnG0m5BN2fDGiscQb6TQeU4jVr8dyyXesgYrsqXrgvjCGwlLZtkJ9O9DSM1q+6U1 ws32lRsEQ1VdX/800HS2q9SHmYhNgq+B4yX/13cSnlUv+TYk5bo7tVT18yd2/YJ9 9BGv6Dsg2ybPxyaQIcG3L+ova3ds3sBPgvRfeVjjF+WeFJ+pNW9G5TZkIa5B0YVT dR7f/KKHvAgMC7gqWf9/PAh98Jqp9WM6ORyAQKqRIbDlcmxrV7cwHr954hSDmjH1 kKc+2RCcNC8FD45SyJLonP6CBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAlWtrDM MVJV5duyLvr8RqMLsFhdMB8GA1UdIwQYMBaAFKVQ7plEKC/Pw4Swgr/6iPhtsEF5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDVCNS9BNDZCOTkxMjE2 NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4X0RoTENDdl9xSS1HMndR WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BWRHVtVVFvTDhfRGhMQ0N2X3FJLUcyd1FYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDVCNS9BNDZCOTkxMjE2NEQxMUVFOTY4NTg1MzRDNEY5QUUwMi9wVkR1bVVRb0w4 X0RoTENDdl9xSS1HMndRWGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAppfiQe3WtbInUMr3boMSuEgGrh+POfGkQjl7jjPU7PvDI9Hh5oyAl Mc4GwaMWWfdgaiEDgmXNxGVwH5PpeSxv4FUAlWbpvIUCouRc0ouOzdznQnOCPuUV ranO3LWpOAl/ce7dJQTCUGXuo6L0tP4CkeOkzo540fkk8kwVPREUTm6L2TRmm+Yx uzXkNwJ1Y2G60wHIE2Lz1ER1z60W+6WjUGkDVC+Pvzo0salPctgVhh6xFjc+uYhk Lma2Ayk5jj0irjTRnLjfrMmGYHbXSDrCbOEUjoU2szINzMaIdph5Cpc4+7FJdZup qmk0Oo1KBH+X2sNZR++GHR5NfmDYB0Uu -----END CERTIFICATE-----Generated at Sat Aug 9 14:27:44 2025 by rpki-client