$ rpki-client -vvf rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft File: sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft (raw, json) Hash identifier: iaOM3ocSVdBFylQscvsK6mR9l4XOe6PQrG3BEu8Yvc8= Subject key identifier: AD:51:20:1D:4C:CC:B8:F7:4C:FF:A8:CD:02:EC:0A:CD:55:8A:3D:DE Authority key identifier: B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD Certificate issuer: /CN=A91144C9/serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft Manifest number: 4E Signing time: Sat 23 Aug 2025 07:36:08 +0000 Manifest this update: Sat 23 Aug 2025 07:36:08 +0000 Manifest next update: Sat 30 Aug 2025 07:36:08 +0000 Files and hashes: 1: sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl (hash: GeVLkRrAHlNAydR+a9pbJoJe3Q6XCF0tx5OAfmEx73I=) 2: 9F25E6340ECA11F0BAAE344AC4F9AE02.roa (hash: S0xpbapYuUp7EVUcnIqHkGByKZFeAz8MROSbzxDfhw4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91144C9, serialNumber=B0D525EA99D4C8EC75607126A49EF6707BD6F4AD Validity Not Before: Aug 23 07:36:08 2025 GMT Not After : Aug 30 07:36:08 2025 GMT Subject: CN=68a96f68-476e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:36:1e:cf:63:4d:99:58:25:5d:fd:b7:5e:df: 04:54:ec:e0:b3:af:76:fc:cf:47:b0:6d:06:e8:20: 70:9a:4e:82:59:c4:4c:4c:28:29:eb:a6:8a:3a:0c: ae:62:f8:e2:99:b0:ec:3c:e3:d1:6f:7b:b6:69:86: 0b:2d:c9:47:f6:40:ff:dc:8a:79:84:f5:96:10:da: 90:0b:e6:74:49:b3:8b:b8:c6:28:2c:d5:9e:30:63: 41:72:0b:62:08:6f:13:43:87:b1:5c:ac:d2:a8:47: c1:4e:1b:32:ca:40:e7:8c:a1:cf:2a:dd:93:97:54: b9:f4:1c:8f:b9:66:f1:b6:79:83:d8:4d:53:33:c4: 5d:d8:4d:7d:bf:24:1a:ec:9d:09:c7:2d:f5:1e:85: 43:25:d5:2f:d2:80:17:42:b4:e0:43:07:80:2b:d7: 1a:6b:43:b8:c2:91:51:20:a6:b0:e9:cc:92:17:c6: 3d:12:86:dc:6d:4b:06:93:15:9b:c1:2c:8b:7c:df: 75:0d:cc:e3:da:52:1f:3e:2f:ba:93:7e:ce:19:ac: 31:5c:c8:5a:00:91:20:fb:36:2d:3f:7e:b6:98:2c: a6:a2:6e:82:3a:53:b6:ca:82:c3:12:94:f5:26:23: f4:2c:ff:df:9e:f8:d7:97:87:b5:3b:fe:81:a7:7e: f5:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:51:20:1D:4C:CC:B8:F7:4C:FF:A8:CD:02:EC:0A:CD:55:8A:3D:DE X509v3 Authority Key Identifier: keyid:B0:D5:25:EA:99:D4:C8:EC:75:60:71:26:A4:9E:F6:70:7B:D6:F4:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sNUl6pnUyOx1YHEmpJ72cHvW9K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91144C9/7BA3E70C0EC911F0A26FF144C4F9AE02/sNUl6pnUyOx1YHEmpJ72cHvW9K0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:d4:8f:64:1c:a8:b4:2b:56:89:3e:18:6c:68:06:7c:99:af: 6b:d5:48:b9:ef:ca:ac:46:33:28:d4:37:40:c4:23:96:15:88: e1:d1:f0:04:b8:eb:9d:4f:f4:c1:cc:08:43:fb:ee:b7:02:67: 62:cf:43:c6:41:70:21:84:00:6e:20:5e:3e:68:67:d8:d0:de: b4:2a:58:cb:4d:22:bc:bf:80:82:08:48:ef:39:7f:86:82:1f: 9a:35:fe:2e:a6:4c:49:4a:c6:ac:f2:1e:58:8c:50:87:7f:b6: f7:19:a4:fc:f1:37:ff:dd:0d:6d:9a:5a:a7:66:d8:9e:88:1a: 4e:6f:ba:76:b2:03:68:b2:64:b0:65:1d:f4:24:58:17:4f:c2: 51:41:d8:5c:07:4d:78:0b:62:c4:c4:3c:e5:53:52:ac:ba:f9: 30:08:bd:45:69:3d:c5:92:74:5a:f2:13:85:3c:92:4e:a5:17: c9:df:e7:35:1f:25:f9:a6:07:2d:bf:1e:37:06:0c:6a:4d:c2: c3:36:96:b1:fe:69:86:d0:67:b4:69:25:81:d7:02:5f:50:c1: 25:1f:2c:85:21:82:e6:57:1a:af:bf:77:7d:3e:1c:09:54:4f: 9f:ad:61:d0:62:dd:f1:10:37:c9:e1:40:dd:1a:d3:83:ed:74: 11:a0:27:38 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDRDOTExMC8GA1UEBRMoQjBENTI1RUE5OUQ0QzhFQzc1NjA3MTI2QTQ5RUY2NzA3 QkQ2RjRBRDAeFw0yNTA4MjMwNzM2MDhaFw0yNTA4MzAwNzM2MDhaMBgxFjAUBgNV BAMTDTY4YTk2ZjY4LTQ3NmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/Nh7PY02ZWCVd/bde3wRU7OCzr3b8z0ewbQboIHCaToJZxExMKCnrpoo6DK5i +OKZsOw849Fve7ZphgstyUf2QP/cinmE9ZYQ2pAL5nRJs4u4xigs1Z4wY0FyC2II bxNDh7FcrNKoR8FOGzLKQOeMoc8q3ZOXVLn0HI+5ZvG2eYPYTVMzxF3YTX2/JBrs nQnHLfUehUMl1S/SgBdCtOBDB4Ar1xprQ7jCkVEgprDpzJIXxj0ShtxtSwaTFZvB LIt833UNzOPaUh8+L7qTfs4ZrDFcyFoAkSD7Ni0/fraYLKaiboI6U7bKgsMSlPUm I/Qs/9+e+NeXh7U7/oGnfvUDAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrVEgHUzM uPdM/6jNAuwKzVWKPd4wHwYDVR0jBBgwFoAUsNUl6pnUyOx1YHEmpJ72cHvW9K0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NEM5LzdCQTNFNzBDMEVD OTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94MVlIRW1wSjcyY0h2VzlL MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc05VbDZwblV5T3gxWUhFbXBKNzJjSHZXOUswLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NEM5LzdCQTNFNzBDMEVDOTExRjBBMjZGRjE0NEM0RjlBRTAyL3NOVWw2cG5VeU94 MVlIRW1wSjcyY0h2VzlLMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKXUj2QcqLQrVok+GGxoBnyZr2vVSLnvyqxGMyjUN0DEI5YViOHR8AS4 651P9MHMCEP77rcCZ2LPQ8ZBcCGEAG4gXj5oZ9jQ3rQqWMtNIry/gIIISO85f4aC H5o1/i6mTElKxqzyHliMUId/tvcZpPzxN//dDW2aWqdm2J6IGk5vunayA2iyZLBl HfQkWBdPwlFB2FwHTXgLYsTEPOVTUqy6+TAIvUVpPcWSdFryE4U8kk6lF8nf5zUf JfmmBy2/HjcGDGpNwsM2lrH+aYbQZ7RpJYHXAl9QwSUfLIUhguZXGq+/d30+HAlU T5+tYdBi3fEQN8nhQN0a04PtdBGgJzg= -----END CERTIFICATE-----Generated at Sat Aug 23 10:35:27 2025 by rpki-client