$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: OyaYu8xHo1OrtId45swqLvBh4r2tllsS2irIxUXBrjU= Subject key identifier: 3E:99:FC:3D:0D:C7:8B:7F:83:E7:7D:D7:E8:15:05:2B:5E:0F:74:55 Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 0147 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 0144 Signing time: Mon 11 Aug 2025 04:28:58 +0000 Manifest this update: Mon 11 Aug 2025 04:28:57 +0000 Manifest next update: Mon 18 Aug 2025 04:28:57 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: 9ynwk2fvubbCaaU9nrHGMj9VnJkAr3Rq2XmpPXIa1e4=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: kfUd7cLCmHmQ/k7ENeRjEkFUrum5OXV/qc4Vt8EOcIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 327 (0x147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Aug 11 04:28:57 2025 GMT Not After : Aug 18 04:28:57 2025 GMT Subject: CN=68997189-1d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bc:1b:e3:96:47:aa:7a:0c:ba:69:1c:d0:68: 62:d5:48:86:a3:54:f5:e1:7d:ed:38:b7:17:13:3d: 58:5f:7d:76:71:5a:f5:e7:59:65:b4:96:98:25:ca: 14:87:e5:c8:c2:a8:30:55:ee:8f:26:bb:b7:92:8a: 60:c8:ec:3c:e8:5c:84:b6:e9:80:e3:3f:f6:13:58: 52:36:ae:d8:cb:a1:d2:42:5f:d4:8d:cc:03:f5:d0: 6b:f3:11:12:d3:75:8f:78:9a:3b:79:0d:55:04:0e: 24:08:04:03:9f:e4:b3:85:00:19:d3:b5:b1:41:02: 79:9b:2a:b9:4d:7c:6f:12:a3:e8:67:fb:e3:23:38: 4b:39:99:02:28:ad:76:9a:bc:c8:5d:b3:98:27:ff: 27:3e:5f:54:2e:60:2f:9c:d5:3d:8e:cc:72:98:da: fa:9a:b1:3b:2d:d5:41:5e:f2:f7:5f:f6:69:67:05: 64:1b:6c:5a:59:23:4b:ca:d1:ea:bf:fb:2c:05:a4: 28:4b:d5:1f:e2:37:08:cf:33:6d:86:ae:21:d7:3b: 29:5f:7e:4f:dd:1c:63:7d:d2:ca:2e:51:29:ae:e4: 67:3d:cb:1c:2a:d6:06:03:74:7c:dc:5f:fb:de:33: 20:05:5d:27:37:e0:08:e4:55:0f:c6:7d:a5:80:85: ae:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:99:FC:3D:0D:C7:8B:7F:83:E7:7D:D7:E8:15:05:2B:5E:0F:74:55 X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:86:9a:ae:2e:27:ed:4e:12:f5:6d:c2:a6:bd:93:f0:b6:d6: b1:c9:c2:63:28:b1:ff:7d:d8:b7:53:a0:58:d9:f0:df:5d:8a: 2b:be:f7:f5:16:f0:5f:c2:53:7d:e5:94:01:55:d7:d9:05:25: 7c:8b:f0:45:d9:50:e3:d6:0a:b5:54:49:ad:79:cc:ae:31:f2: 93:db:2a:30:3f:7b:4d:c6:3f:d7:57:05:7a:85:ed:c1:39:f7: 1c:9a:f4:77:0a:a7:14:22:fb:a2:26:29:d1:8a:29:97:50:33: 19:ab:71:2f:53:c6:9b:51:1a:80:26:e1:70:4f:dd:71:57:da: 66:d7:71:a9:4c:34:0e:45:3f:ad:63:6d:b0:9b:9a:d6:71:52: d3:e3:ea:04:fe:1a:93:a5:17:fb:a8:33:a2:90:c0:6d:09:52: 44:e8:6d:83:53:f1:40:49:f3:15:3a:98:25:a5:ea:c5:4b:cf: 8a:e2:f3:85:29:f7:c5:5f:22:e1:2a:46:8e:8a:cd:2d:ea:0e: 46:2e:cf:c6:3a:e9:ae:63:41:54:44:c9:73:40:b9:48:a0:9b: 10:4f:9b:c8:9a:8b:80:6c:35:86:29:6a:61:e7:92:82:7e:60: 8f:67:d1:bd:04:65:e5:4a:af:64:cc:b7:6f:3f:19:eb:59:f9: a3:36:ed:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUwODExMDQyODU3WhcNMjUwODE4MDQyODU3WjAYMRYwFAYD VQQDEw02ODk5NzE4OS0xZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrwb45ZHqnoMumkc0Ghi1UiGo1T14X3tOLcXEz1YX312cVr151lltJaYJcoU h+XIwqgwVe6PJru3kopgyOw86FyEtumA4z/2E1hSNq7Yy6HSQl/UjcwD9dBr8xES 03WPeJo7eQ1VBA4kCAQDn+SzhQAZ07WxQQJ5myq5TXxvEqPoZ/vjIzhLOZkCKK12 mrzIXbOYJ/8nPl9ULmAvnNU9jsxymNr6mrE7LdVBXvL3X/ZpZwVkG2xaWSNLytHq v/ssBaQoS9Uf4jcIzzNthq4h1zspX35P3RxjfdLKLlEpruRnPcscKtYGA3R83F/7 3jMgBV0nN+AI5FUPxn2lgIWuKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6Z/D0N x4t/g+d91+gVBSteD3RVMB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9hpquLiftThL1bcKmvZPwttaxycJjKLH/fdi3U6BY2fDfXYorvvf1 FvBfwlN95ZQBVdfZBSV8i/BF2VDj1gq1VEmtecyuMfKT2yowP3tNxj/XVwV6he3B OfccmvR3CqcUIvuiJinRiimXUDMZq3EvU8abURqAJuFwT91xV9pm13GpTDQORT+t Y22wm5rWcVLT4+oE/hqTpRf7qDOikMBtCVJE6G2DU/FASfMVOpglperFS8+K4vOF KffFXyLhKkaOis0t6g5GLs/GOumuY0FURMlzQLlIoJsQT5vImouAbDWGKWph55KC fmCPZ9G9BGXlSq9kzLdvPxnrWfmjNu3p -----END CERTIFICATE-----Generated at Mon Aug 11 12:56:28 2025 by rpki-client