$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft File: RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft (raw, json) Hash identifier: CWrl1s+Q5zsCRRryChagsRM3NIzAz7CZ5DiP/oKR6q0= Subject key identifier: 36:FD:64:38:9A:E0:9D:E0:D9:85:EB:8B:8C:0F:EB:15:48:42:F2:F0 Authority key identifier: 44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47 Certificate issuer: /CN=A91F3C11/serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447 Certificate serial: 09A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft Manifest number: 09A8 Signing time: Fri 08 Aug 2025 15:03:00 +0000 Manifest this update: Fri 08 Aug 2025 15:03:00 +0000 Manifest next update: Fri 15 Aug 2025 15:03:00 +0000 Files and hashes: 1: RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl (hash: tTw3gjAsV6jVFJ6BQsIC//CeA+qNqVNbso4zsgmunKQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2472 (0x9a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3C11, serialNumber=44F8D153B77B092B11EDF00A93E4BB64091C2447 Validity Not Before: Aug 8 15:03:00 2025 GMT Not After : Aug 15 15:03:00 2025 GMT Subject: CN=689611a4-b1a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c3:cb:9a:f6:ae:5e:ae:f8:c5:75:34:82:43: 4c:5f:9d:47:b6:99:1d:40:ff:7b:24:10:3c:6e:e4: 64:51:24:0a:d8:6a:4e:57:d8:f1:c3:f5:60:f3:09: 07:79:c4:eb:2d:04:17:00:fe:2f:6c:7a:df:e4:2c: 6b:67:6d:48:07:73:a8:af:e6:6e:0c:a7:96:8e:61: 8a:bf:ae:d2:97:92:d7:45:f4:6a:27:f2:18:bd:80: 6a:85:34:03:23:60:06:85:47:9d:e4:8d:ee:34:0c: f4:d0:ee:a0:23:79:79:9b:28:af:c2:f0:79:eb:6c: f4:f3:4e:5d:94:c0:40:a7:67:c6:6c:1e:e5:3e:64: 24:4e:4f:fb:7c:7f:10:4b:85:09:38:17:11:73:9a: d3:87:69:eb:b0:79:50:8f:43:eb:a1:af:89:22:38: 03:93:f5:e4:b4:7c:97:2f:41:d2:b4:58:7a:78:6e: 3a:30:99:f6:af:f9:93:dc:fb:54:ac:1a:39:94:2e: 43:2b:94:62:44:4e:81:c0:e4:37:a5:15:05:d2:e2: 85:b9:65:06:60:a2:c2:18:71:dd:5b:3b:eb:13:c5: 4f:b3:8a:0b:4d:47:5a:4b:f1:71:a0:97:01:e0:85: d9:36:e5:20:1c:cd:8b:10:9b:9f:38:02:7d:8c:19: 3d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:FD:64:38:9A:E0:9D:E0:D9:85:EB:8B:8C:0F:EB:15:48:42:F2:F0 X509v3 Authority Key Identifier: keyid:44:F8:D1:53:B7:7B:09:2B:11:ED:F0:0A:93:E4:BB:64:09:1C:24:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3C11/5198FB968F7B11EA9ACB7E7FC4F9AE02/RPjRU7d7CSsR7fAKk-S7ZAkcJEc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:2f:ae:2a:2f:37:df:0c:c0:d1:b4:08:7f:6f:73:1a:d4:9a: c6:32:47:8c:3f:f2:66:52:21:b5:e6:91:3d:4d:94:b9:c7:98: 8a:a9:51:b8:f7:59:3c:11:4d:fd:f0:fa:bc:3b:c8:cc:0a:b4: e8:43:8b:5c:c2:f0:cf:bb:6b:01:4a:85:cc:83:4b:de:4d:78: db:9e:36:ad:b6:41:7b:69:3a:43:c7:33:7a:04:0a:50:a5:e3: 2f:ac:b2:42:1f:b0:ca:55:27:5e:0a:55:23:77:36:c6:f4:a3: 52:f1:d7:59:e4:72:b4:40:c6:40:c8:fd:79:9b:8b:eb:c2:de: 17:fb:4e:09:5f:96:6e:5d:73:97:ac:22:de:13:4e:22:db:0a: d0:11:a1:76:0e:7b:15:ff:b7:20:97:07:42:c5:1c:ae:db:fc: d9:9f:d0:eb:2c:c6:56:08:2e:2b:15:d6:27:ea:94:4a:eb:09: 1f:0f:a5:a7:00:c0:81:87:db:c7:d5:60:ff:16:46:cf:04:f1: d4:32:3d:95:7e:9f:87:87:c3:c3:fa:3b:2f:a5:8a:29:a4:32: 8d:4d:4c:08:7e:d1:7f:13:d1:72:33:a1:65:51:c8:ad:47:35: 62:a1:94:1e:f1:b5:f6:2d:3d:be:32:8a:ff:98:ee:99:57:19: 38:2c:4e:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDMTExMTAvBgNVBAUTKDQ0RjhEMTUzQjc3QjA5MkIxMUVERjAwQTkzRTRCQjY0 MDkxQzI0NDcwHhcNMjUwODA4MTUwMzAwWhcNMjUwODE1MTUwMzAwWjAYMRYwFAYD VQQDEw02ODk2MTFhNC1iMWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsPLmvauXq74xXU0gkNMX51HtpkdQP97JBA8buRkUSQK2GpOV9jxw/Vg8wkH ecTrLQQXAP4vbHrf5CxrZ21IB3Oor+ZuDKeWjmGKv67Sl5LXRfRqJ/IYvYBqhTQD I2AGhUed5I3uNAz00O6gI3l5myivwvB562z0805dlMBAp2fGbB7lPmQkTk/7fH8Q S4UJOBcRc5rTh2nrsHlQj0Proa+JIjgDk/XktHyXL0HStFh6eG46MJn2r/mT3PtU rBo5lC5DK5RiRE6BwOQ3pRUF0uKFuWUGYKLCGHHdWzvrE8VPs4oLTUdaS/FxoJcB 4IXZNuUgHM2LEJufOAJ9jBk9PQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDb9ZDia 4J3g2YXri4wP6xVIQvLwMB8GA1UdIwQYMBaAFET40VO3ewkrEe3wCpPku2QJHCRH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0MxMS81MTk4RkI5NjhG N0IxMUVBOUFDQjdFN0ZDNEY5QUUwMi9SUGpSVTdkN0NTc1I3ZkFLay1TN1pBa2NK RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JQalJVN2Q3Q1NzUjdmQUtrLVM3WkFrY0pFYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0MxMS81MTk4RkI5NjhGN0IxMUVBOUFDQjdFN0ZDNEY5QUUwMi9SUGpSVTdkN0NT c1I3ZkFLay1TN1pBa2NKRWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIL64qLzffDMDRtAh/b3Ma1JrGMkeMP/JmUiG15pE9TZS5x5iKqVG4 91k8EU398Pq8O8jMCrToQ4tcwvDPu2sBSoXMg0veTXjbnjattkF7aTpDxzN6BApQ peMvrLJCH7DKVSdeClUjdzbG9KNS8ddZ5HK0QMZAyP15m4vrwt4X+04JX5ZuXXOX rCLeE04i2wrQEaF2DnsV/7cglwdCxRyu2/zZn9DrLMZWCC4rFdYn6pRK6wkfD6Wn AMCBh9vH1WD/FkbPBPHUMj2Vfp+Hh8PD+jsvpYoppDKNTUwIftF/E9FyM6FlUcit RzVioZQe8bX2LT2+Mor/mO6ZVxk4LE7h -----END CERTIFICATE-----Generated at Sat Aug 9 01:23:23 2025 by rpki-client