$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft File: 0gZrYZNOd88mep3MOL9d7iHwe6M.mft (raw, json) Hash identifier: zjTT3Iq5mewgvJvZb/W2j5QJGMwtnCNqrAIkpx902CE= Subject key identifier: 3C:BF:15:99:1A:4E:8C:AB:D8:00:09:D8:EB:47:26:48:4F:50:97:D5 Authority key identifier: D2:06:6B:61:93:4E:77:CF:26:7A:9D:CC:38:BF:5D:EE:21:F0:7B:A3 Certificate issuer: /CN=A91EBBAF/serialNumber=D2066B61934E77CF267A9DCC38BF5DEE21F07BA3 Certificate serial: 2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft Manifest number: 29 Signing time: Tue 05 Aug 2025 08:25:40 +0000 Manifest this update: Tue 05 Aug 2025 08:25:39 +0000 Manifest next update: Tue 12 Aug 2025 08:25:39 +0000 Files and hashes: 1: 0gZrYZNOd88mep3MOL9d7iHwe6M.crl (hash: vXOjwGalHaMiJ7TdUAWfTQLf2M43jAS3mrKBXOTZguI=) 2: C3C056A636DD11F08C82E269C4F9AE02.roa (hash: HBKXI2AjuuTAqBzBKbi8y9q49xdsPFITyMYY5p5WuOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.crl rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 08:25:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBBAF, serialNumber=D2066B61934E77CF267A9DCC38BF5DEE21F07BA3 Validity Not Before: Aug 5 08:25:39 2025 GMT Not After : Aug 12 08:25:39 2025 GMT Subject: CN=6891c003-d307 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5f:d0:bb:98:ff:10:88:1a:25:68:a9:b1:28: d6:f5:c8:89:78:65:d3:72:e6:ae:45:2f:9e:5f:c6: 53:86:90:81:49:b2:68:4f:68:06:5c:7d:fe:12:52: 3b:d1:58:08:13:0f:03:9d:5b:a8:4d:fb:5d:95:a3: f8:f5:cd:82:9b:8e:a9:c0:de:07:7e:f3:fa:df:e1: fe:a9:09:27:f4:7b:40:d7:c0:c7:9a:3e:25:42:86: 29:a9:2f:52:7c:86:c5:eb:03:28:f1:82:85:4c:09: d6:ff:b9:cc:94:c2:f1:22:0c:db:7d:47:8e:94:53: 6f:fc:6e:f0:1d:4d:68:8d:6a:50:45:08:51:9e:29: dc:d7:32:19:2f:bf:91:19:63:03:6f:26:63:a1:c9: d5:a1:81:05:18:31:08:d3:e5:4a:86:32:b5:7c:bf: cd:86:6b:0e:4a:4d:c2:ca:7b:02:fd:32:42:57:52: a2:9c:6f:ab:40:e8:11:b3:d7:5b:ba:ba:24:f0:0e: d7:fa:29:ef:bf:16:a8:69:74:c3:16:45:5d:24:3d: 90:c2:2b:26:7b:ad:4a:0f:ca:a2:c9:a0:63:64:18: a1:35:0f:17:f1:c9:72:4b:a9:7b:84:f9:0d:8c:d5: 9d:ed:fc:8e:33:32:a0:4b:d9:22:8b:2b:f2:d5:23: 3b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:BF:15:99:1A:4E:8C:AB:D8:00:09:D8:EB:47:26:48:4F:50:97:D5 X509v3 Authority Key Identifier: keyid:D2:06:6B:61:93:4E:77:CF:26:7A:9D:CC:38:BF:5D:EE:21:F0:7B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0gZrYZNOd88mep3MOL9d7iHwe6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBBAF/10C19D3036DD11F096862166C4F9AE02/0gZrYZNOd88mep3MOL9d7iHwe6M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a8:d1:ce:1f:ea:94:8f:dd:58:ba:74:81:2a:0d:11:dd:df: e4:ea:30:b2:fa:70:2b:14:58:f6:26:a3:05:b0:c5:68:6d:e3: fa:2a:71:56:ef:b9:c9:f8:79:e7:11:f6:6a:5d:90:56:59:1a: a9:c7:68:20:d7:db:63:71:ed:dd:d8:58:50:85:3c:37:34:b1: cf:bc:53:b5:09:af:f8:c5:a7:ab:9c:d5:6a:fc:b7:9c:b9:b9: 7e:5b:86:34:b9:ec:84:20:3b:dd:dc:30:37:98:ee:1d:5b:aa: 10:31:84:8c:26:a3:45:a5:81:54:fd:ad:2c:9d:a4:4a:c5:ab: 4a:c3:77:4e:3d:f5:c2:3e:b3:d9:32:e3:9b:4b:fc:13:2c:65: 9d:d8:ef:95:c1:03:e5:2e:05:9e:90:0e:0f:fe:e7:a5:6c:97: fe:3a:53:06:c3:de:93:81:ec:a6:0f:ce:58:45:6b:0e:3f:df: 80:94:1c:62:aa:01:f1:06:9b:3c:48:53:10:54:ba:8e:3a:6e: aa:c3:57:df:b2:4c:e9:af:9a:13:c5:12:9a:17:4f:5a:d2:1b: 16:0d:71:82:e6:8f:8e:39:10:06:07:12:50:7b:54:7f:cb:85: 14:33:80:93:0a:9f:22:c0:b2:33:a4:dc:66:fd:29:3e:f4:6a: 0e:ac:7b:e7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QkJBRjExMC8GA1UEBRMoRDIwNjZCNjE5MzRFNzdDRjI2N0E5RENDMzhCRjVERUUy MUYwN0JBMzAeFw0yNTA4MDUwODI1MzlaFw0yNTA4MTIwODI1MzlaMBgxFjAUBgNV BAMTDTY4OTFjMDAzLWQzMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0X9C7mP8QiBolaKmxKNb1yIl4ZdNy5q5FL55fxlOGkIFJsmhPaAZcff4SUjvR WAgTDwOdW6hN+12Vo/j1zYKbjqnA3gd+8/rf4f6pCSf0e0DXwMeaPiVChimpL1J8 hsXrAyjxgoVMCdb/ucyUwvEiDNt9R46UU2/8bvAdTWiNalBFCFGeKdzXMhkvv5EZ YwNvJmOhydWhgQUYMQjT5UqGMrV8v82Gaw5KTcLKewL9MkJXUqKcb6tA6BGz11u6 uiTwDtf6Ke+/FqhpdMMWRV0kPZDCKyZ7rUoPyqLJoGNkGKE1DxfxyXJLqXuE+Q2M 1Z3t/I4zMqBL2SKLK/LVIzuVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUPL8VmRpO jKvYAAnY60cmSE9Ql9UwHwYDVR0jBBgwFoAU0gZrYZNOd88mep3MOL9d7iHwe6Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVCQkFGLzEwQzE5RDMwMzZE RDExRjA5Njg2MjE2NkM0RjlBRTAyLzBnWnJZWk5PZDg4bWVwM01PTDlkN2lId2U2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMGdacllaTk9kODhtZXAzTU9MOWQ3aUh3ZTZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVC QkFGLzEwQzE5RDMwMzZERDExRjA5Njg2MjE2NkM0RjlBRTAyLzBnWnJZWk5PZDg4 bWVwM01PTDlkN2lId2U2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACqo0c4f6pSP3Vi6dIEqDRHd3+TqMLL6cCsUWPYmowWwxWht4/oqcVbv ucn4eecR9mpdkFZZGqnHaCDX22Nx7d3YWFCFPDc0sc+8U7UJr/jFp6uc1Wr8t5y5 uX5bhjS57IQgO93cMDeY7h1bqhAxhIwmo0WlgVT9rSydpErFq0rDd0499cI+s9ky 45tL/BMsZZ3Y75XBA+UuBZ6QDg/+56Vsl/46UwbD3pOB7KYPzlhFaw4/34CUHGKq AfEGmzxIUxBUuo46bqrDV9+yTOmvmhPFEpoXT1rSGxYNcYLmj445EAYHElB7VH/L hRQzgJMKnyLAsjOk3Gb9KT70ag6se+c= -----END CERTIFICATE-----Generated at Thu Aug 7 01:11:25 2025 by rpki-client