$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft File: mFpmWpz7T1ygDsqL_rgGML9PSBY.mft (raw, json) Hash identifier: AXExi0ZOhNRjF0XVbl652qWG+wCq62BKOwQPiAh6Jh4= Subject key identifier: E4:32:9B:50:35:17:FC:22:F4:0D:AD:3C:55:5B:DE:F1:DD:43:22:7C Authority key identifier: 98:5A:66:5A:9C:FB:4F:5C:A0:0E:CA:8B:FE:B8:06:30:BF:4F:48:16 Certificate issuer: /CN=A91E6D5D/serialNumber=985A665A9CFB4F5CA00ECA8BFEB80630BF4F4816 Certificate serial: 255C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft Manifest number: 9FCD Signing time: Wed 06 Aug 2025 14:30:23 +0000 Manifest this update: Wed 06 Aug 2025 14:30:23 +0000 Manifest next update: Wed 13 Aug 2025 14:30:23 +0000 Files and hashes: 1: mFpmWpz7T1ygDsqL_rgGML9PSBY.crl (hash: vCjYW0qgXsT+FypY0blu8yAPDuD1xRVeukeiArVoamQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.crl rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 14:30:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9564 (0x255c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6D5D, serialNumber=985A665A9CFB4F5CA00ECA8BFEB80630BF4F4816 Validity Not Before: Aug 6 14:30:23 2025 GMT Not After : Aug 13 14:30:23 2025 GMT Subject: CN=689366ff-d418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c6:3f:f0:6d:46:d5:b2:41:c1:ad:1a:ac:c5: 98:5a:73:22:0f:47:31:6d:c4:d3:54:c6:79:1f:4b: ae:9c:0e:08:c3:0b:57:de:29:86:2a:e5:cf:41:93: 7c:b3:12:6d:be:20:b6:b8:d3:2c:6f:32:ce:d2:36: a3:46:f9:01:72:8b:a5:1a:0c:6c:c9:c5:1a:1b:93: e6:67:09:a6:a2:c5:75:02:d3:cf:98:d9:a3:5d:d5: 25:6c:0e:7b:30:5f:38:76:0b:a4:63:04:65:ce:4f: 99:bd:d6:c4:35:0c:df:88:57:ca:f7:4c:13:ce:1b: 32:84:2f:e1:47:78:97:e5:51:3d:14:24:07:f9:a0: f2:33:1f:20:64:3e:b8:35:b6:08:0b:ad:c2:c7:af: 12:e9:c8:e8:1b:17:02:4f:ed:08:c5:cc:e7:ab:cc: f1:a5:06:0d:8f:6b:da:cc:88:64:2a:6a:b8:4e:81: 20:a5:9c:09:a7:1c:cf:82:c2:9e:8a:ed:25:1a:af: 31:ed:3a:51:82:04:6e:a1:91:8d:85:2b:d4:c1:fd: ba:cd:f1:58:44:61:74:c9:39:a9:8b:07:6e:8e:d4: 3d:1c:4f:db:2a:09:95:ed:8a:9d:10:9d:c1:d6:2f: d9:16:8c:92:da:db:e8:69:94:bb:fd:6e:27:fa:29: 24:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:32:9B:50:35:17:FC:22:F4:0D:AD:3C:55:5B:DE:F1:DD:43:22:7C X509v3 Authority Key Identifier: keyid:98:5A:66:5A:9C:FB:4F:5C:A0:0E:CA:8B:FE:B8:06:30:BF:4F:48:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFpmWpz7T1ygDsqL_rgGML9PSBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6D5D/9DCB68E01D8811E294B955E108B02CD2/mFpmWpz7T1ygDsqL_rgGML9PSBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:01:32:13:6c:c2:11:a6:15:65:c2:7a:0c:ea:81:e3:a2:44: bb:07:61:3a:18:66:9f:49:1f:10:28:13:2b:9e:df:c1:37:f5: da:57:04:65:99:4a:84:77:f0:55:85:d9:1d:0a:ab:cc:eb:98: a5:df:bf:27:31:c9:d3:1f:4a:1f:1c:4a:56:4c:3e:02:73:be: 8b:a3:39:34:1a:ea:7b:fe:66:c6:da:5c:af:43:63:70:db:c1: 3c:41:53:60:11:fe:2e:cc:f5:72:b6:05:2a:7c:e4:7f:08:c4: af:f8:36:e8:52:45:dd:46:77:e3:67:70:7c:5d:36:27:26:54: 66:39:65:5c:0b:34:53:09:74:19:d3:a8:48:0b:ac:2a:75:89: a1:db:c3:58:25:85:ba:02:72:82:55:dc:c4:c6:6a:6e:23:f5: aa:d5:6f:00:f4:2f:80:a7:f7:3d:a8:2c:65:24:53:4a:fc:86: 82:9a:38:5e:61:a2:4a:51:eb:2b:fa:e4:22:28:aa:65:b7:4e: a7:be:87:b4:d8:8d:35:90:c8:7d:ab:c1:d3:85:97:54:df:26: 71:d2:ea:13:d3:f8:4d:c7:cb:ac:51:40:42:92:c3:79:28:62: 0a:9b:ab:45:f7:3b:76:14:1c:1b:23:ef:a6:cf:9a:04:81:f5: 8f:e0:84:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZENUQxMTAvBgNVBAUTKDk4NUE2NjVBOUNGQjRGNUNBMDBFQ0E4QkZFQjgwNjMw QkY0RjQ4MTYwHhcNMjUwODA2MTQzMDIzWhcNMjUwODEzMTQzMDIzWjAYMRYwFAYD VQQDEw02ODkzNjZmZi1kNDE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocY/8G1G1bJBwa0arMWYWnMiD0cxbcTTVMZ5H0uunA4IwwtX3imGKuXPQZN8 sxJtviC2uNMsbzLO0jajRvkBcoulGgxsycUaG5PmZwmmosV1AtPPmNmjXdUlbA57 MF84dgukYwRlzk+ZvdbENQzfiFfK90wTzhsyhC/hR3iX5VE9FCQH+aDyMx8gZD64 NbYIC63Cx68S6cjoGxcCT+0Ixcznq8zxpQYNj2vazIhkKmq4ToEgpZwJpxzPgsKe iu0lGq8x7TpRggRuoZGNhSvUwf26zfFYRGF0yTmpiwdujtQ9HE/bKgmV7YqdEJ3B 1i/ZFoyS2tvoaZS7/W4n+ikkYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOQym1A1 F/wi9A2tPFVb3vHdQyJ8MB8GA1UdIwQYMBaAFJhaZlqc+09coA7Ki/64BjC/T0gW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkQ1RC85RENCNjhFMDFE ODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9tRnBtV3B6N1QxeWdEc3FMX3JnR01MOVBT QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21GcG1XcHo3VDF5Z0RzcUxfcmdHTUw5UFNCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkQ1RC85RENCNjhFMDFEODgxMUUyOTRCOTU1RTEwOEIwMkNEMi9tRnBtV3B6N1Qx eWdEc3FMX3JnR01MOVBTQlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaATITbMIRphVlwnoM6oHjokS7B2E6GGafSR8QKBMrnt/BN/XaVwRl mUqEd/BVhdkdCqvM65il378nMcnTH0ofHEpWTD4Cc76Lozk0Gup7/mbG2lyvQ2Nw 28E8QVNgEf4uzPVytgUqfOR/CMSv+DboUkXdRnfjZ3B8XTYnJlRmOWVcCzRTCXQZ 06hIC6wqdYmh28NYJYW6AnKCVdzExmpuI/Wq1W8A9C+Ap/c9qCxlJFNK/IaCmjhe YaJKUesr+uQiKKplt06nvoe02I01kMh9q8HThZdU3yZx0uoT0/hNx8usUUBCksN5 KGIKm6tF9zt2FBwbI++mz5oEgfWP4ISi -----END CERTIFICATE-----Generated at Thu Aug 7 17:33:35 2025 by rpki-client