$ rpki-client -vvf rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft File: 34Jss7t6i7KhHuS64uCH6sOnIdI.mft (raw, json) Hash identifier: tP7bBOPzY4xfHxetNt8azNY9EvhjStObYUWTNyxNbCU= Subject key identifier: 2B:DF:64:29:F1:07:D0:FC:63:5C:FA:99:E1:11:08:06:DF:3C:18:9A Authority key identifier: DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2 Certificate issuer: /CN=A91162DE/serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2 Certificate serial: 02A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft Manifest number: 0297 Signing time: Sat 23 Aug 2025 01:52:47 +0000 Manifest this update: Sat 23 Aug 2025 01:52:46 +0000 Manifest next update: Sat 30 Aug 2025 01:52:46 +0000 Files and hashes: 1: 34Jss7t6i7KhHuS64uCH6sOnIdI.crl (hash: dXthNIz28fDIgTwyK0w8SWOeCJdpolXqKFW9NbvZVUI=) 2: 7C754058415411ED8133414DC4F9AE02.roa (hash: l47Gy8uLHHO9oyMWzHntqbTvL69ppWBGcq5K8U2N6Ws=) 3: C303879E415111EDBC3A1D19C4F9AE02.roa (hash: S+ycEkxlExSiIAk8iubLwdKE1ijDKJmAZke+yPsWDEw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.crl rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 672 (0x2a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91162DE, serialNumber=DF826CB3BB7A8BB2A11EE4BAE2E087EAC3A721D2 Validity Not Before: Aug 23 01:52:46 2025 GMT Not After : Aug 30 01:52:46 2025 GMT Subject: CN=68a91eef-284d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:37:71:0c:c0:8e:7b:3b:9f:8e:46:0c:79:30: 83:0c:96:ba:80:0d:6e:ad:1f:35:07:3c:fc:52:bb: 95:0f:7d:23:69:ba:a9:bb:41:05:36:48:49:60:92: ec:3f:36:f6:78:cf:42:08:2f:30:80:03:5e:bb:01: 98:aa:d9:64:e8:0d:e9:e3:d3:3f:d6:c0:a8:38:32: fa:8d:5e:bd:9a:cd:c5:15:6e:3d:a4:57:97:27:14: 49:6e:7c:73:41:aa:60:35:7a:b9:e0:e0:54:98:6a: 6e:5d:e3:3e:5b:b6:72:fe:88:44:38:9f:e6:bd:90: 86:2e:ac:d3:47:f0:6a:10:37:cc:28:ca:d3:8f:39: 7a:bf:ab:86:81:a6:28:e3:f2:79:47:fc:94:20:37: 3a:b8:0f:43:3b:c9:90:59:ca:18:1c:76:aa:88:66: 7b:01:0a:f9:11:e8:c3:11:ac:84:6b:c4:99:63:2b: d2:64:4e:18:21:91:ac:26:a3:00:5f:16:f2:a2:a7: 6c:9b:0f:00:6d:52:de:74:c7:05:81:a5:e5:ba:4a: 27:c7:87:74:76:a4:ce:2f:c9:72:3c:ac:05:f8:73: 6c:e3:36:07:f6:3b:27:f0:58:6b:0b:58:c5:62:50: c6:19:13:50:06:ee:17:8c:b3:19:ce:8c:57:8d:8e: 00:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:DF:64:29:F1:07:D0:FC:63:5C:FA:99:E1:11:08:06:DF:3C:18:9A X509v3 Authority Key Identifier: keyid:DF:82:6C:B3:BB:7A:8B:B2:A1:1E:E4:BA:E2:E0:87:EA:C3:A7:21:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34Jss7t6i7KhHuS64uCH6sOnIdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91162DE/176794D4155A11EDB0A12720C4F9AE02/34Jss7t6i7KhHuS64uCH6sOnIdI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:3c:ac:31:7f:bb:f7:01:d6:35:c2:d0:85:be:34:3f:1b:1e: d2:59:99:f0:b9:96:e6:14:e9:9f:bd:ab:b9:58:87:3c:9b:91: 15:b3:f0:e4:04:00:06:55:eb:54:22:d4:8f:08:7a:41:5d:6a: 97:8e:e9:25:25:69:fd:39:15:80:b5:58:05:6b:d3:ac:02:85: 49:9d:4f:4a:55:35:58:59:43:05:2e:37:fb:e1:aa:f7:21:76: f1:65:50:f5:12:6a:ce:69:2a:0a:2a:fa:16:31:25:bb:eb:e0: 2d:d7:81:db:60:ee:40:29:00:a0:25:f2:aa:2f:39:f3:f2:70: e7:16:22:67:be:82:48:5a:37:e2:9e:c7:ad:25:9e:e5:ae:a5: fd:02:c3:19:e1:64:99:bd:be:55:fc:aa:0c:37:27:ab:d0:4c: 7e:4f:83:4a:76:3b:a5:25:bd:24:c4:ea:72:00:b0:c2:73:99: e3:09:94:fe:22:db:44:22:ff:85:a3:37:8e:e4:c9:0e:89:86: 3b:d7:68:b2:e1:03:79:d7:88:49:0f:74:b5:b7:28:e0:17:88: 58:98:aa:1e:d0:60:bb:a4:48:d4:53:f7:6a:bf:f0:08:3f:fb: 66:f3:c7:9b:4d:f3:95:4f:d8:07:c4:07:22:72:93:1d:da:de: 59:46:b4:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYyREUxMTAvBgNVBAUTKERGODI2Q0IzQkI3QThCQjJBMTFFRTRCQUUyRTA4N0VB QzNBNzIxRDIwHhcNMjUwODIzMDE1MjQ2WhcNMjUwODMwMDE1MjQ2WjAYMRYwFAYD VQQDEw02OGE5MWVlZi0yODRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8TdxDMCOezufjkYMeTCDDJa6gA1urR81Bzz8UruVD30jabqpu0EFNkhJYJLs Pzb2eM9CCC8wgANeuwGYqtlk6A3p49M/1sCoODL6jV69ms3FFW49pFeXJxRJbnxz QapgNXq54OBUmGpuXeM+W7Zy/ohEOJ/mvZCGLqzTR/BqEDfMKMrTjzl6v6uGgaYo 4/J5R/yUIDc6uA9DO8mQWcoYHHaqiGZ7AQr5EejDEayEa8SZYyvSZE4YIZGsJqMA Xxbyoqdsmw8AbVLedMcFgaXlukonx4d0dqTOL8lyPKwF+HNs4zYH9jsn8FhrC1jF YlDGGRNQBu4XjLMZzoxXjY4AxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvfZCnx B9D8Y1z6meERCAbfPBiaMB8GA1UdIwQYMBaAFN+CbLO7eouyoR7kuuLgh+rDpyHS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjJERS8xNzY3OTRENDE1 NUExMUVEQjBBMTI3MjBDNEY5QUUwMi8zNEpzczd0Nmk3S2hIdVM2NHVDSDZzT25J ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0SnNzN3Q2aTdLaEh1UzY0dUNINnNPbklkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjJERS8xNzY3OTRENDE1NUExMUVEQjBBMTI3MjBDNEY5QUUwMi8zNEpzczd0Nmk3 S2hIdVM2NHVDSDZzT25JZEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKPKwxf7v3AdY1wtCFvjQ/Gx7SWZnwuZbmFOmfvau5WIc8m5EVs/Dk BAAGVetUItSPCHpBXWqXjuklJWn9ORWAtVgFa9OsAoVJnU9KVTVYWUMFLjf74ar3 IXbxZVD1EmrOaSoKKvoWMSW76+At14HbYO5AKQCgJfKqLznz8nDnFiJnvoJIWjfi nsetJZ7lrqX9AsMZ4WSZvb5V/KoMNyer0Ex+T4NKdjulJb0kxOpyALDCc5njCZT+ IttEIv+FozeO5MkOiYY712iy4QN514hJD3S1tyjgF4hYmKoe0GC7pEjUU/dqv/AI P/tm88ebTfOVT9gHxAcicpMd2t5ZRrRq -----END CERTIFICATE-----Generated at Sat Aug 23 11:01:34 2025 by rpki-client