$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft File: cOaM6FoDjZ4wcEODfKbmsaZglu4.mft (raw, json) Hash identifier: VeTybu8rb6VMJX7OFZ4TTXNDGF08OFa9c/bmOc7yuYQ= Subject key identifier: D1:F1:63:9B:C0:66:3E:BD:CA:F7:12:56:D8:02:16:53:53:C9:29:BD Authority key identifier: 70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE Certificate issuer: /CN=A91F6ADE/serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Certificate serial: 04A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft Manifest number: 04A3 Signing time: Tue 05 Aug 2025 00:26:28 +0000 Manifest this update: Tue 05 Aug 2025 00:26:27 +0000 Manifest next update: Tue 12 Aug 2025 00:26:27 +0000 Files and hashes: 1: cOaM6FoDjZ4wcEODfKbmsaZglu4.crl (hash: WHtdvuD+fSq8URsWbgBT5maJ4XUtKtrv3pc3rctc3E8=) 2: FD0DCDCA41E111EC98FA0C0AC4F9AE02.roa (hash: CzraaquDZ9Uo+Rh3T+BRvbMkjKbruCD1g9kPUW6icAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1193 (0x4a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6ADE, serialNumber=70E68CE85A038D9E307043837CA6E6B1A66096EE Validity Not Before: Aug 5 00:26:27 2025 GMT Not After : Aug 12 00:26:27 2025 GMT Subject: CN=68914fb4-ee1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:76:10:72:c4:d6:15:9e:20:25:cd:c5:a6:69: d5:dc:07:96:4a:2f:37:0c:53:83:80:5f:e3:a7:c6: 87:51:ce:5c:66:ed:88:7e:ad:e5:bf:89:5d:f9:a9: 5c:eb:ec:5a:5f:94:be:e4:f1:68:a3:1e:38:a5:27: 88:9f:99:53:19:67:7e:8e:9b:d8:fc:9e:89:31:0f: 24:ef:da:83:2f:fe:37:5c:14:92:cd:66:cf:b0:47: 07:83:94:0b:66:13:70:5c:3d:70:a6:c1:e1:2a:cd: 1d:df:8d:19:98:79:c3:17:bc:dc:b4:62:90:b1:85: c6:97:07:4b:01:ec:66:48:30:a7:01:6c:40:58:11: f3:7b:8f:04:4e:0e:de:d8:cc:eb:82:6c:db:b1:b9: ef:c8:6f:40:c3:5e:b9:7f:1f:b5:e2:68:40:81:31: 2a:88:6e:3c:f8:61:ce:f4:a2:e9:5f:43:82:ff:13: 10:0e:b3:22:ea:89:f1:93:01:fe:70:03:90:83:4e: 90:8f:4a:33:63:53:18:e9:2e:53:9e:fc:0b:bb:58: 38:b1:2c:90:df:4f:4d:20:6b:4f:44:a3:bc:09:ff: f8:46:04:89:16:6b:36:a7:49:92:2c:73:73:e9:2d: 73:33:45:a9:ce:d9:55:4b:ca:cc:ad:7c:ff:19:aa: cd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F1:63:9B:C0:66:3E:BD:CA:F7:12:56:D8:02:16:53:53:C9:29:BD X509v3 Authority Key Identifier: keyid:70:E6:8C:E8:5A:03:8D:9E:30:70:43:83:7C:A6:E6:B1:A6:60:96:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cOaM6FoDjZ4wcEODfKbmsaZglu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6ADE/28739D3A41DF11ECA3DC2F85C4F9AE02/cOaM6FoDjZ4wcEODfKbmsaZglu4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:5c:f2:b6:df:37:24:f6:7e:10:ee:f7:63:ef:16:c0:b9:98: 42:19:d8:2f:4b:a0:f2:b6:58:88:4e:c3:f2:68:a7:07:05:3b: 44:3a:8d:37:78:a4:0f:81:b0:1c:72:79:1a:6c:c2:18:b1:28: 54:5b:e3:5f:a2:76:18:f7:3f:31:91:65:ca:b2:de:c4:ff:d3: e7:65:5e:96:65:30:23:76:1a:d8:a8:6a:f7:72:a9:16:0c:22: 44:de:19:eb:c7:cf:19:68:90:d5:33:75:6b:6d:03:0a:60:5f: 3d:0f:ad:2b:78:a8:e9:d1:82:bc:6c:50:af:a9:cb:39:45:16: ff:51:65:53:c9:77:34:fb:48:e9:d7:2b:79:69:d3:12:3d:28: a2:81:00:b1:c8:e7:1d:1d:f5:84:f6:c8:47:fb:f6:a4:b2:e8: 85:c3:bb:63:cc:ad:70:24:70:c5:63:e5:bb:33:71:b2:40:96: 47:06:7f:a4:56:15:de:fd:e4:3d:e3:ff:93:f9:8f:79:34:ca: 6b:4e:de:4d:00:ec:74:0f:55:43:0e:c6:3b:26:75:fb:cf:9e: ce:bf:bb:a6:59:f6:59:e9:21:49:30:8e:80:da:cc:e6:4b:19: 65:f5:12:56:b9:83:41:cf:f8:04:3b:2a:2b:a9:71:9b:57:a3: 2a:4e:fe:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjZBREUxMTAvBgNVBAUTKDcwRTY4Q0U4NUEwMzhEOUUzMDcwNDM4MzdDQTZFNkIx QTY2MDk2RUUwHhcNMjUwODA1MDAyNjI3WhcNMjUwODEyMDAyNjI3WjAYMRYwFAYD VQQDEw02ODkxNGZiNC1lZTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXYQcsTWFZ4gJc3FpmnV3AeWSi83DFODgF/jp8aHUc5cZu2Ifq3lv4ld+alc 6+xaX5S+5PFoox44pSeIn5lTGWd+jpvY/J6JMQ8k79qDL/43XBSSzWbPsEcHg5QL ZhNwXD1wpsHhKs0d340ZmHnDF7zctGKQsYXGlwdLAexmSDCnAWxAWBHze48ETg7e 2MzrgmzbsbnvyG9Aw165fx+14mhAgTEqiG48+GHO9KLpX0OC/xMQDrMi6onxkwH+ cAOQg06Qj0ozY1MY6S5TnvwLu1g4sSyQ309NIGtPRKO8Cf/4RgSJFms2p0mSLHNz 6S1zM0WpztlVS8rMrXz/GarNxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNHxY5vA Zj69yvcSVtgCFlNTySm9MB8GA1UdIwQYMBaAFHDmjOhaA42eMHBDg3ym5rGmYJbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNkFERS8yODczOUQzQTQx REYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpaNHdjRU9EZktibXNhWmds dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NPYU02Rm9Ealo0d2NFT0RmS2Jtc2FaZ2x1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NkFERS8yODczOUQzQTQxREYxMUVDQTNEQzJGODVDNEY5QUUwMi9jT2FNNkZvRGpa NHdjRU9EZktibXNhWmdsdTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQXPK23zck9n4Q7vdj7xbAuZhCGdgvS6DytliITsPyaKcHBTtEOo03 eKQPgbAccnkabMIYsShUW+NfonYY9z8xkWXKst7E/9PnZV6WZTAjdhrYqGr3cqkW DCJE3hnrx88ZaJDVM3VrbQMKYF89D60reKjp0YK8bFCvqcs5RRb/UWVTyXc0+0jp 1yt5adMSPSiigQCxyOcdHfWE9shH+/aksuiFw7tjzK1wJHDFY+W7M3GyQJZHBn+k VhXe/eQ94/+T+Y95NMprTt5NAOx0D1VDDsY7JnX7z57Ov7umWfZZ6SFJMI6A2szm Sxll9RJWuYNBz/gEOyorqXGbV6MqTv6A -----END CERTIFICATE-----Generated at Tue Aug 5 23:12:20 2025 by rpki-client