$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft File: 379fgwtQs7_B5TULnGBbt1YSLhE.mft (raw, json) Hash identifier: AKJXdvvEa/3HCP0dpYWp3iEqs6+RZFmiYT+uK3dYtYk= Subject key identifier: A0:21:CE:E1:B5:37:8F:85:40:A6:41:56:EE:C6:D9:DD:FC:70:95:03 Authority key identifier: DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 Certificate issuer: /CN=A91DBB7D/serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Certificate serial: 04ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft Manifest number: 04E6 Signing time: Wed 13 Aug 2025 00:13:13 +0000 Manifest this update: Wed 13 Aug 2025 00:13:12 +0000 Manifest next update: Wed 20 Aug 2025 00:13:12 +0000 Files and hashes: 1: 379fgwtQs7_B5TULnGBbt1YSLhE.crl (hash: NfDmqlrybV4QphLsax9f6VfILUYMp+hHD0kIOM6j+7w=) 2: D5C4A54A617B11EC82058668C4F9AE02.roa (hash: lRFgE9XZ6iDD+G2GlIBwvnuaHaRG9VvqEjSSiJJQVDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:13:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1261 (0x4ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB7D, serialNumber=DFBF5F830B50B3BFC1E5350B9C605BB756122E11 Validity Not Before: Aug 13 00:13:12 2025 GMT Not After : Aug 20 00:13:12 2025 GMT Subject: CN=689bd899-6b47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f3:18:37:ea:be:02:12:d5:d7:59:8f:92:e3: 7f:ac:cd:d7:e0:91:bc:a2:d1:ac:cc:ae:e0:91:d7: 1d:8e:37:0f:57:d0:ca:c7:b1:a2:f1:c4:5e:a8:d3: a6:5d:93:ce:ee:93:99:3b:86:dd:75:fe:eb:9b:d2: 7a:2d:76:32:86:8c:f6:20:e0:4c:fe:c1:1a:bb:20: ec:36:cc:e8:3e:a4:f9:8e:73:88:1d:a9:4d:42:57: e7:2e:c3:9c:e7:09:05:dd:db:36:b5:d5:84:1f:47: 5b:30:84:0b:ca:ec:e1:d0:d0:ab:cb:10:79:7a:75: 88:8e:0a:72:14:ad:86:e2:7e:e1:e9:3e:a1:51:06: 68:c5:97:50:99:b9:ad:1f:5a:fb:55:f8:f5:f8:48: 83:94:59:74:41:47:1a:81:e7:03:fc:b1:df:8d:71: dd:c4:1e:93:2d:23:2c:d1:01:3f:ce:57:6f:65:c0: a0:55:81:0b:91:de:fe:eb:09:1f:fd:85:98:81:4a: 4c:a4:a9:ab:66:9e:69:50:b7:d0:85:37:0d:33:ad: 29:01:d2:c1:fc:7a:bb:2d:51:39:c0:ad:78:72:ad: 7d:36:9b:c7:76:cd:49:c5:2f:5b:1b:c5:a6:4e:b8: 5b:d2:10:33:9e:c0:cf:21:fe:3e:27:ab:20:3b:9d: 64:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:21:CE:E1:B5:37:8F:85:40:A6:41:56:EE:C6:D9:DD:FC:70:95:03 X509v3 Authority Key Identifier: keyid:DF:BF:5F:83:0B:50:B3:BF:C1:E5:35:0B:9C:60:5B:B7:56:12:2E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/379fgwtQs7_B5TULnGBbt1YSLhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB7D/3017096E2BB911ECB2B3674FC4F9AE02/379fgwtQs7_B5TULnGBbt1YSLhE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:3d:89:c3:b2:c9:cf:09:bb:45:ac:16:c9:0d:fd:00:89:56: 84:f9:9b:34:cd:73:32:d7:a5:a3:ae:60:fd:75:d2:54:d1:3f: 63:25:12:ed:ce:15:de:fd:cb:bf:63:d8:31:94:75:e9:e5:dc: 8b:29:81:79:f2:3a:3f:c3:f3:de:e1:3e:b9:a7:73:b2:7e:b6: fa:40:c6:f3:02:ba:79:10:8f:b1:0d:9b:b2:66:bf:5f:03:2f: c6:80:06:e8:96:99:08:5b:dd:f5:b7:98:12:ec:af:bd:65:10: 5e:60:94:0e:87:fe:a2:2b:a4:df:a4:ef:a9:82:35:b5:c0:51: b3:a7:fe:19:d7:7d:81:16:12:64:66:41:3b:64:b7:37:a9:3b: e4:0a:c9:ee:a9:c3:18:d4:2d:2f:90:ce:04:5e:e6:b5:a5:35: ef:e0:b6:1f:57:ce:86:11:43:db:94:06:74:cc:c4:83:29:23: c5:b9:4a:48:db:4b:99:86:a6:ca:06:e2:e5:76:a3:9c:08:4d: de:ae:26:a9:b9:d3:3c:2a:e4:aa:60:5e:3c:3f:01:ee:f0:d2: 5e:ed:5f:06:09:aa:85:5b:30:cb:f7:88:6e:b4:eb:9d:c0:2e: a8:81:13:60:dc:fd:4b:97:58:82:1a:ec:2a:3d:f7:54:47:e2: 7d:3c:ff:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJCN0QxMTAvBgNVBAUTKERGQkY1RjgzMEI1MEIzQkZDMUU1MzUwQjlDNjA1QkI3 NTYxMjJFMTEwHhcNMjUwODEzMDAxMzEyWhcNMjUwODIwMDAxMzEyWjAYMRYwFAYD VQQDEw02ODliZDg5OS02YjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/MYN+q+AhLV11mPkuN/rM3X4JG8otGszK7gkdcdjjcPV9DKx7Gi8cReqNOm XZPO7pOZO4bddf7rm9J6LXYyhoz2IOBM/sEauyDsNszoPqT5jnOIHalNQlfnLsOc 5wkF3ds2tdWEH0dbMIQLyuzh0NCryxB5enWIjgpyFK2G4n7h6T6hUQZoxZdQmbmt H1r7Vfj1+EiDlFl0QUcagecD/LHfjXHdxB6TLSMs0QE/zldvZcCgVYELkd7+6wkf /YWYgUpMpKmrZp5pULfQhTcNM60pAdLB/Hq7LVE5wK14cq19NpvHds1JxS9bG8Wm Trhb0hAznsDPIf4+J6sgO51kTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKAhzuG1 N4+FQKZBVu7G2d38cJUDMB8GA1UdIwQYMBaAFN+/X4MLULO/weU1C5xgW7dWEi4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkI3RC8zMDE3MDk2RTJC QjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3X0I1VFVMbkdCYnQxWVNM aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM3OWZnd3RRczdfQjVUVUxuR0JidDFZU0xoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkI3RC8zMDE3MDk2RTJCQjkxMUVDQjJCMzY3NEZDNEY5QUUwMi8zNzlmZ3d0UXM3 X0I1VFVMbkdCYnQxWVNMaEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFPYnDssnPCbtFrBbJDf0AiVaE+Zs0zXMy16WjrmD9ddJU0T9jJRLt zhXe/cu/Y9gxlHXp5dyLKYF58jo/w/Pe4T65p3Oyfrb6QMbzArp5EI+xDZuyZr9f Ay/GgAbolpkIW931t5gS7K+9ZRBeYJQOh/6iK6TfpO+pgjW1wFGzp/4Z132BFhJk ZkE7ZLc3qTvkCsnuqcMY1C0vkM4EXua1pTXv4LYfV86GEUPblAZ0zMSDKSPFuUpI 20uZhqbKBuLldqOcCE3eriapudM8KuSqYF48PwHu8NJe7V8GCaqFWzDL94hutOud wC6ogRNg3P1Ll1iCGuwqPfdUR+J9PP/M -----END CERTIFICATE-----Generated at Wed Aug 13 02:42:58 2025 by rpki-client