$ rpki-client -vvf rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft File: s40rj01btqU-m0GSYQSBpdiBZUY.mft (raw, json) Hash identifier: wOhld581+pkv0w22tl+VJkciwMTYF1d1HBt+1VE7M/E= Subject key identifier: AD:5B:89:84:B5:95:C9:93:A8:5C:1B:06:98:7D:5B:9F:A0:E6:70:C1 Authority key identifier: B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 Certificate issuer: /CN=A91E12AD/serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Certificate serial: 0B08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft Manifest number: 0B00 Signing time: Tue 12 Aug 2025 19:35:46 +0000 Manifest this update: Tue 12 Aug 2025 19:35:45 +0000 Manifest next update: Tue 19 Aug 2025 19:35:45 +0000 Files and hashes: 1: s40rj01btqU-m0GSYQSBpdiBZUY.crl (hash: 2S/lrUtAmHqGMBJgr6dmUDCC4ZJhf8Qj1wt1XsS3tSg=) 2: 1E1E9122565411EBA14ED510C4F9AE02.roa (hash: 7dou7EZJS0k+10u39gMW4DiImFVNtTINLLrPstsJeHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 19:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2824 (0xb08) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E12AD, serialNumber=B38D2B8F4D5BB6A53E9B4192610481A5D8816546 Validity Not Before: Aug 12 19:35:45 2025 GMT Not After : Aug 19 19:35:45 2025 GMT Subject: CN=689b9792-1561 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:23:10:e2:f2:fb:d9:24:70:1c:4c:30:a4:8b: ce:22:f8:36:8c:af:0b:41:33:38:35:5e:51:95:9f: 8a:d6:c3:a8:49:d3:9d:32:d9:0d:b0:45:f0:30:19: 43:81:d8:f2:cb:9d:57:eb:ff:37:00:97:6e:a5:56: 6d:58:c5:24:8d:b5:9a:fc:5e:ab:b5:f0:45:12:b1: 49:ab:c4:a9:02:84:dd:cf:67:c6:db:f2:72:ea:60: 8a:59:03:ab:be:50:e2:b5:5f:7b:4c:6c:75:69:cd: 82:aa:03:12:c0:85:34:36:51:74:41:4e:55:2b:7a: d1:2b:97:82:6e:f9:80:64:9e:30:a1:ec:fa:5c:a8: 39:49:e1:a4:e0:d8:4b:45:6c:bc:dc:a0:cd:ca:d4: 7c:4f:34:bd:3c:0b:73:11:cf:62:dd:0a:3b:3c:be: 76:d1:5b:97:b1:5d:f0:75:48:85:18:b0:75:54:a6: 02:94:00:1a:cb:d0:0b:a3:1c:82:11:4e:a4:e2:ee: 6c:8e:69:f1:e3:cf:b0:85:1b:c5:70:79:48:60:b6: 19:6d:0a:2b:bb:98:de:d6:20:29:04:9a:ee:f7:12: ac:23:58:a4:f1:dc:4a:2f:02:79:e5:7e:94:6c:73: 48:2b:a1:2d:71:99:ce:64:b9:74:c1:2c:fd:4e:6a: 75:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5B:89:84:B5:95:C9:93:A8:5C:1B:06:98:7D:5B:9F:A0:E6:70:C1 X509v3 Authority Key Identifier: keyid:B3:8D:2B:8F:4D:5B:B6:A5:3E:9B:41:92:61:04:81:A5:D8:81:65:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s40rj01btqU-m0GSYQSBpdiBZUY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E12AD/38DAA06C4B2111EAB7A00558C4F9AE02/s40rj01btqU-m0GSYQSBpdiBZUY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:b5:a0:be:33:f3:99:ea:43:da:4a:4d:78:19:9b:b7:3b:2e: c6:64:44:34:bc:0f:63:2d:b7:93:a4:93:16:94:65:10:fb:53: 66:84:e1:c7:43:a8:3c:01:aa:a8:bf:21:08:73:74:43:ee:b0: 63:90:d7:9b:8f:54:81:c2:35:c9:c7:ee:ae:3d:3b:89:67:70: 13:09:b1:03:05:46:42:67:68:33:c2:91:54:73:26:d9:60:db: 28:d2:ed:ca:12:e1:1a:8b:c5:c6:f7:b4:80:cc:5e:44:53:f0: a5:ca:aa:98:78:8c:6c:61:f3:51:68:d7:9d:80:34:ec:76:29: 20:24:4a:94:b2:ab:6c:94:97:0c:b3:95:53:f0:a7:c5:99:cf: 10:cb:be:f5:ab:21:9e:cd:85:d0:73:a6:d9:75:2d:76:36:fa: 02:75:53:db:73:c2:9d:fd:56:28:a7:97:6f:90:ec:e6:74:ba: e1:0c:c0:f3:2b:2e:56:c8:88:f2:84:15:8a:60:68:79:ef:5d: 2f:89:d3:e8:13:3b:eb:5a:cd:a9:7f:c3:be:a2:21:66:ad:40: 8b:1d:78:23:ef:f9:df:00:1a:79:d5:e4:c7:eb:e0:ad:94:22: e0:6b:9a:80:a5:4f:e3:0c:0b:46:49:76:a0:88:55:77:96:14: 18:d4:64:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTEyQUQxMTAvBgNVBAUTKEIzOEQyQjhGNEQ1QkI2QTUzRTlCNDE5MjYxMDQ4MUE1 RDg4MTY1NDYwHhcNMjUwODEyMTkzNTQ1WhcNMjUwODE5MTkzNTQ1WjAYMRYwFAYD VQQDEw02ODliOTc5Mi0xNTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiMQ4vL72SRwHEwwpIvOIvg2jK8LQTM4NV5RlZ+K1sOoSdOdMtkNsEXwMBlD gdjyy51X6/83AJdupVZtWMUkjbWa/F6rtfBFErFJq8SpAoTdz2fG2/Jy6mCKWQOr vlDitV97TGx1ac2CqgMSwIU0NlF0QU5VK3rRK5eCbvmAZJ4woez6XKg5SeGk4NhL RWy83KDNytR8TzS9PAtzEc9i3Qo7PL520VuXsV3wdUiFGLB1VKYClAAay9ALoxyC EU6k4u5sjmnx48+whRvFcHlIYLYZbQoru5je1iApBJru9xKsI1ik8dxKLwJ55X6U bHNIK6EtcZnOZLl0wSz9Tmp1fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK1biYS1 lcmTqFwbBph9W5+g5nDBMB8GA1UdIwQYMBaAFLONK49NW7alPptBkmEEgaXYgWVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTJBRC8zOERBQTA2QzRC MjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRxVS1tMEdTWVFTQnBkaUJa VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M0MHJqMDFidHFVLW0wR1NZUVNCcGRpQlpVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTJBRC8zOERBQTA2QzRCMjExMUVBQjdBMDA1NThDNEY5QUUwMi9zNDByajAxYnRx VS1tMEdTWVFTQnBkaUJaVVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGtaC+M/OZ6kPaSk14GZu3Oy7GZEQ0vA9jLbeTpJMWlGUQ+1NmhOHH Q6g8AaqovyEIc3RD7rBjkNebj1SBwjXJx+6uPTuJZ3ATCbEDBUZCZ2gzwpFUcybZ YNso0u3KEuEai8XG97SAzF5EU/ClyqqYeIxsYfNRaNedgDTsdikgJEqUsqtslJcM s5VT8KfFmc8Qy771qyGezYXQc6bZdS12NvoCdVPbc8Kd/VYop5dvkOzmdLrhDMDz Ky5WyIjyhBWKYGh5710vidPoEzvrWs2pf8O+oiFmrUCLHXgj7/nfABp51eTH6+Ct lCLga5qApU/jDAtGSXagiFV3lhQY1GRl -----END CERTIFICATE-----Generated at Tue Aug 12 22:46:04 2025 by rpki-client