$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: X2J2Yqjrztu2ybUS8pEguPwvKUSjlSZwb9KuxhX/y4k= Subject key identifier: 11:60:30:83:7E:67:15:20:6A:C9:BC:89:4D:9D:D0:C2:CC:AF:B5:F1 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 1642 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 162D Signing time: Wed 06 Aug 2025 16:50:28 +0000 Manifest this update: Wed 06 Aug 2025 16:50:27 +0000 Manifest next update: Wed 13 Aug 2025 16:50:27 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: XobzyXfq6ew+OijS5OLjLHJSbtjUnvXfbef5+XXlnhk=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: CGg33H9/VkhPgziJXWcA6Qz7BN3epjzI9EHcIP++h+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5698 (0x1642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Aug 6 16:50:27 2025 GMT Not After : Aug 13 16:50:27 2025 GMT Subject: CN=689387d3-6757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:56:46:44:00:c1:e2:b0:a8:8f:59:55:9b:b0: fe:6c:b9:22:23:1c:1d:1d:75:39:00:ff:c2:51:5f: 89:dd:c4:22:0b:f6:9c:ca:71:22:61:da:77:ca:8b: 03:d6:d7:59:0d:3b:2e:75:2f:02:19:44:ff:85:aa: 8b:e2:67:2a:01:dd:cc:27:92:9e:fc:d4:ac:20:47: 72:a2:d9:90:be:f4:7a:b9:7c:7a:47:dc:b9:28:01: 56:04:be:f2:77:8c:4e:bc:90:7b:f8:d2:7d:1c:0a: 6a:59:20:33:9d:f2:d0:d3:fe:25:fe:2d:6e:13:8c: 2c:e7:57:9b:9e:1b:c8:ea:6a:e3:11:64:9d:c6:73: be:27:b9:c5:eb:39:f3:7f:f6:54:e4:7b:7f:52:25: 71:a0:f5:e0:5c:58:b7:5d:92:70:19:63:ed:eb:45: 9a:5f:99:8e:ac:4c:76:30:bb:97:cf:a6:79:d7:4f: b8:fd:ef:84:ab:14:32:ec:aa:f4:82:c6:5e:b1:67: 5b:87:16:7b:32:e2:f5:c8:03:d2:4f:d7:ea:0c:3e: 76:77:b1:27:0d:73:a3:46:a6:ec:03:f0:95:9b:15: 52:3b:06:4e:d9:7d:a1:02:45:a4:f1:7f:48:1d:7c: 15:3c:88:fe:56:ed:da:5b:c6:b6:e1:65:eb:ca:ba: b9:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:60:30:83:7E:67:15:20:6A:C9:BC:89:4D:9D:D0:C2:CC:AF:B5:F1 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:0a:65:f6:8e:b7:b0:6d:1a:a5:6f:77:c0:3b:2f:28:94:0f: 6f:b2:fb:bc:ac:1f:a8:fc:31:f2:d1:b0:18:42:d2:e0:ad:82: 2e:0d:30:f7:3e:2c:21:62:37:b5:95:bf:64:d2:5a:32:6a:a0: da:e8:ce:cc:5e:32:3b:0a:1c:03:f9:0e:2b:4e:26:69:23:ff: 36:46:01:f3:0c:60:70:3f:13:d6:e8:b3:9e:3e:d9:3f:59:61: 76:23:37:74:a1:a6:07:87:72:03:7c:68:a8:d2:49:73:ce:c5: c1:59:8f:37:7e:9c:47:40:e5:62:47:b4:3c:61:bd:b1:5f:92: 59:00:d1:54:f1:6d:7c:49:eb:c0:f0:1a:f3:e9:1d:c6:ea:87: 14:a5:b3:f7:ed:49:e4:15:00:98:a7:23:bf:ae:4f:c6:03:d0: 6a:ee:9c:d0:3e:83:68:59:e4:33:b3:fd:3b:0c:a0:53:65:1b: c1:95:32:8c:60:10:20:dc:b4:93:8f:81:f2:33:71:06:8c:92: 8c:94:50:28:3c:71:12:43:04:60:20:4e:97:69:41:ad:5f:94: cf:f3:69:ae:e0:b1:36:84:93:ae:b6:e7:fe:c2:a1:a9:75:e1: 79:5b:8b:62:2e:c8:85:5d:01:b8:43:84:90:db:04:af:a9:e0: 6f:f8:4e:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUwODA2MTY1MDI3WhcNMjUwODEzMTY1MDI3WjAYMRYwFAYD VQQDEw02ODkzODdkMy02NzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1FZGRADB4rCoj1lVm7D+bLkiIxwdHXU5AP/CUV+J3cQiC/acynEiYdp3yosD 1tdZDTsudS8CGUT/haqL4mcqAd3MJ5Ke/NSsIEdyotmQvvR6uXx6R9y5KAFWBL7y d4xOvJB7+NJ9HApqWSAznfLQ0/4l/i1uE4ws51ebnhvI6mrjEWSdxnO+J7nF6znz f/ZU5Ht/UiVxoPXgXFi3XZJwGWPt60WaX5mOrEx2MLuXz6Z510+4/e+EqxQy7Kr0 gsZesWdbhxZ7MuL1yAPST9fqDD52d7EnDXOjRqbsA/CVmxVSOwZO2X2hAkWk8X9I HXwVPIj+Vu3aW8a24WXryrq5lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBFgMIN+ ZxUgasm8iU2d0MLMr7XxMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1CmX2jrewbRqlb3fAOy8olA9vsvu8rB+o/DHy0bAYQtLgrYIuDTD3 PiwhYje1lb9k0loyaqDa6M7MXjI7ChwD+Q4rTiZpI/82RgHzDGBwPxPW6LOePtk/ WWF2Izd0oaYHh3IDfGio0klzzsXBWY83fpxHQOViR7Q8Yb2xX5JZANFU8W18SevA 8Brz6R3G6ocUpbP37UnkFQCYpyO/rk/GA9Bq7pzQPoNoWeQzs/07DKBTZRvBlTKM YBAg3LSTj4HyM3EGjJKMlFAoPHESQwRgIE6XaUGtX5TP82mu4LE2hJOutuf+wqGp deF5W4tiLsiFXQG4Q4SQ2wSvqeBv+E41 -----END CERTIFICATE-----Generated at Thu Aug 7 01:10:10 2025 by rpki-client