$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft File: cn1G1OfHecpnYSxgtGVS68IZkPs.mft (raw, json) Hash identifier: 8Gj6ZnNPOti7nFZ3uOLSeQUZmxeCm5L4M1HVH0VeH8Y= Subject key identifier: F4:75:45:4A:3E:D8:EF:D2:C6:DB:3B:63:F6:77:09:BC:35:D9:8B:DB Authority key identifier: 72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB Certificate issuer: /CN=A91D4D97/serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Certificate serial: 0474 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft Manifest number: 0470 Signing time: Wed 13 Aug 2025 00:36:28 +0000 Manifest this update: Wed 13 Aug 2025 00:36:28 +0000 Manifest next update: Wed 20 Aug 2025 00:36:28 +0000 Files and hashes: 1: cn1G1OfHecpnYSxgtGVS68IZkPs.crl (hash: p1WqMMU2j8b4zcGKKnsW0kcllHrKN2LScgW3k2O8bWQ=) 2: A9E2BE54567B11ECB346816BC4F9AE02.roa (hash: TPVU1s6exIqwh/rpq/ezgL4ll5z3zJFyVmt+0YWYn8g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1140 (0x474) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4D97, serialNumber=727D46D4E7C779CA67612C60B46552EBC21990FB Validity Not Before: Aug 13 00:36:28 2025 GMT Not After : Aug 20 00:36:28 2025 GMT Subject: CN=689bde0c-2004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:13:1a:4f:6d:73:b4:09:ab:06:ca:89:73: 13:ed:55:62:c0:e8:28:9e:5d:fc:93:52:3d:de:00: 04:84:9d:55:38:52:bb:d9:0a:3b:05:23:1e:9f:cb: 9e:da:cb:47:99:10:e6:f5:79:02:b1:d4:c3:b5:98: 25:53:83:f6:0f:f8:ae:bd:1d:55:20:06:26:9a:3e: 04:64:09:4e:ea:34:29:7e:82:47:bb:ef:e3:47:8d: 5a:7b:c4:94:cf:d5:12:48:a1:c7:9d:15:f0:d7:df: 76:d2:f0:07:72:fe:bd:14:ee:39:d2:3a:8a:fc:88: 9a:7d:c4:75:db:37:96:07:0b:b2:ce:14:c8:8b:ba: 1d:2e:60:73:a6:f0:a6:78:0c:63:4a:92:5f:1b:6d: 95:ae:b6:74:a2:c6:8f:db:e3:d3:ed:d2:72:a8:1a: 05:73:3d:05:d7:55:2d:c4:9d:c4:ef:0b:d3:13:15: 01:28:3c:fa:cb:aa:98:9d:d3:f8:80:be:1c:6d:88: 91:0b:a2:a9:3d:02:a7:e3:ad:00:ff:6e:fb:4e:61: 23:5b:eb:85:e8:dd:b0:62:27:d6:7e:bb:85:34:93: 88:ee:a9:a2:44:f2:bb:b6:82:69:75:d8:ce:28:8c: 60:8e:4f:db:09:82:20:33:55:91:e0:57:ea:38:f9: cc:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:75:45:4A:3E:D8:EF:D2:C6:DB:3B:63:F6:77:09:BC:35:D9:8B:DB X509v3 Authority Key Identifier: keyid:72:7D:46:D4:E7:C7:79:CA:67:61:2C:60:B4:65:52:EB:C2:19:90:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cn1G1OfHecpnYSxgtGVS68IZkPs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4D97/1F6146E0567811EC922A3567C4F9AE02/cn1G1OfHecpnYSxgtGVS68IZkPs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:40:1e:b9:ba:48:da:d4:ed:8e:4f:43:61:56:78:dd:6a:bd: 4c:66:25:fd:11:eb:be:bd:66:82:0d:d0:a9:35:17:3a:60:88: f9:fe:77:9f:65:35:8c:40:d3:22:1f:05:1a:cc:f6:ef:4c:33: 67:95:9c:ee:21:0f:d2:27:ef:dd:ce:68:7c:f9:ce:d3:56:9b: 80:0b:79:35:c1:13:bc:76:51:c7:d9:c3:5c:4c:b9:fb:7a:a3: 9c:6a:a8:ac:77:a2:c9:ec:15:38:b7:2f:ac:d9:08:40:8e:85: bd:f3:3e:1c:af:64:fb:f6:4e:a1:3b:4c:94:95:be:44:fa:a0: dc:a7:3e:34:ee:b0:73:28:48:21:50:4f:90:ca:05:91:b2:77: 9a:81:87:b1:e0:ac:19:1d:83:5c:9a:51:fc:01:5b:52:db:e0: d2:1b:d9:b8:09:56:31:48:06:6f:08:55:09:16:87:a1:84:66: 3a:c8:c7:ea:87:62:f4:18:ae:d1:a9:75:7c:3a:c4:3f:e4:9d: ea:73:7a:a6:57:84:ea:f3:1c:3e:f4:78:75:25:db:d9:13:2e: dc:de:4d:88:ae:1b:c8:fc:8e:9d:ef:62:a4:e6:c5:eb:14:33: fc:e4:2c:5e:10:da:04:d8:0c:81:68:0a:5d:07:23:c8:68:e8: 82:2b:37:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREOTcxMTAvBgNVBAUTKDcyN0Q0NkQ0RTdDNzc5Q0E2NzYxMkM2MEI0NjU1MkVC QzIxOTkwRkIwHhcNMjUwODEzMDAzNjI4WhcNMjUwODIwMDAzNjI4WjAYMRYwFAYD VQQDEw02ODliZGUwYy0yMDA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2MTGk9tc7QJqwbKiXMT7VViwOgonl38k1I93gAEhJ1VOFK72Qo7BSMen8ue 2stHmRDm9XkCsdTDtZglU4P2D/iuvR1VIAYmmj4EZAlO6jQpfoJHu+/jR41ae8SU z9USSKHHnRXw19920vAHcv69FO450jqK/IiafcR12zeWBwuyzhTIi7odLmBzpvCm eAxjSpJfG22VrrZ0osaP2+PT7dJyqBoFcz0F11UtxJ3E7wvTExUBKDz6y6qYndP4 gL4cbYiRC6KpPQKn460A/277TmEjW+uF6N2wYifWfruFNJOI7qmiRPK7toJpddjO KIxgjk/bCYIgM1WR4FfqOPnMcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPR1RUo+ 2O/Sxts7Y/Z3Cbw12YvbMB8GA1UdIwQYMBaAFHJ9RtTnx3nKZ2EsYLRlUuvCGZD7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENEQ5Ny8xRjYxNDZFMDU2 NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVjcG5ZU3hndEdWUzY4SVpr UHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NuMUcxT2ZIZWNwbllTeGd0R1ZTNjhJWmtQcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEQ5Ny8xRjYxNDZFMDU2NzgxMUVDOTIyQTM1NjdDNEY5QUUwMi9jbjFHMU9mSGVj cG5ZU3hndEdWUzY4SVprUHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsQB65ukja1O2OT0NhVnjdar1MZiX9Eeu+vWaCDdCpNRc6YIj5/nef ZTWMQNMiHwUazPbvTDNnlZzuIQ/SJ+/dzmh8+c7TVpuAC3k1wRO8dlHH2cNcTLn7 eqOcaqisd6LJ7BU4ty+s2QhAjoW98z4cr2T79k6hO0yUlb5E+qDcpz407rBzKEgh UE+QygWRsneagYex4KwZHYNcmlH8AVtS2+DSG9m4CVYxSAZvCFUJFoehhGY6yMfq h2L0GK7RqXV8OsQ/5J3qc3qmV4Tq8xw+9Hh1JdvZEy7c3k2IrhvI/I6d72Kk5sXr FDP85CxeENoE2AyBaApdByPIaOiCKzf7 -----END CERTIFICATE-----Generated at Wed Aug 13 09:47:57 2025 by rpki-client