$ rpki-client -vvf rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft File: x40eWVkb4MdSTTa9-FyKxuoZD44.mft (raw, json) Hash identifier: SSsukyUd9yQi7uYRt+bag+7BXYnrZdqLVATpgIU8LeQ= Subject key identifier: 38:7A:2A:11:1E:7F:22:EF:FC:BC:1D:16:41:35:EB:FC:67:C4:E4:B1 Authority key identifier: C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E Certificate issuer: /CN=A91554E6/serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Certificate serial: 015F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft Manifest number: 0455 Signing time: Sat 23 Aug 2025 01:30:36 +0000 Manifest this update: Sat 23 Aug 2025 01:30:35 +0000 Manifest next update: Sat 30 Aug 2025 01:30:35 +0000 Files and hashes: 1: x40eWVkb4MdSTTa9-FyKxuoZD44.crl (hash: kxizLLfpBdqIze4ETZnEs9aYldvY8TZ5hxoC5BI8bAo=) 2: 2F9887306F0D11EE9B369C60C4F9AE02.roa (hash: aBiTKrdRm+ziRS/jKwG3ua8HiLf0c5Bx0y3taLaPOUU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 351 (0x15f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91554E6, serialNumber=C78D1E59591BE0C7524D36BDF85C8AC6EA190F8E Validity Not Before: Aug 23 01:30:35 2025 GMT Not After : Aug 30 01:30:35 2025 GMT Subject: CN=68a919bc-4538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3a:be:12:79:cc:49:d7:4a:6f:6c:a4:ce:55: 2c:25:2a:5a:4b:1b:40:c4:e2:da:03:14:21:bc:5e: 40:3e:d0:6e:0c:db:21:5d:c6:be:bc:f3:06:5f:50: ca:a4:8c:84:f9:85:d5:ec:62:8c:4f:a6:d6:38:e8: ba:55:e8:c7:8b:b4:66:a1:4d:0e:7c:11:2e:57:de: 8e:ae:9c:e7:6e:9c:0b:6c:5d:2a:0f:e3:1c:88:94: 2e:1a:89:a5:93:c7:79:6d:24:91:17:11:87:a5:b6: 53:9f:63:15:46:0b:c4:fd:18:fb:f8:94:d9:da:70: 9a:3e:53:93:f6:cb:86:20:f6:24:71:3f:d0:b7:db: 6d:91:09:f8:d5:46:64:a0:a4:1a:1e:40:ba:1f:1d: dd:ec:23:eb:12:92:16:4e:75:68:d1:b2:4c:17:08: 04:1b:54:e7:18:a1:38:06:60:51:09:f0:13:19:9b: 21:53:0f:cf:d3:7b:f2:3c:ab:cc:4d:97:66:9e:d2: ff:60:f9:46:f1:ef:83:9e:29:4a:05:18:a8:9f:46: 9e:8f:a2:f8:3a:f7:0c:28:07:3a:04:3e:8a:8b:33: 05:ab:d8:d5:a0:24:e3:da:41:3f:8d:07:a4:1c:60: 08:68:22:98:02:7a:29:c4:99:51:17:19:b1:26:eb: e6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7A:2A:11:1E:7F:22:EF:FC:BC:1D:16:41:35:EB:FC:67:C4:E4:B1 X509v3 Authority Key Identifier: keyid:C7:8D:1E:59:59:1B:E0:C7:52:4D:36:BD:F8:5C:8A:C6:EA:19:0F:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x40eWVkb4MdSTTa9-FyKxuoZD44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91554E6/9F067748ED4B11ECAB8FAA77C4F9AE02/x40eWVkb4MdSTTa9-FyKxuoZD44.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:b2:74:05:28:d7:ee:2d:e7:14:6c:f4:2d:30:a6:b5:cd:89: 1f:05:f9:64:73:b5:a8:0a:0c:33:d4:8e:cd:04:bc:a0:66:2f: ca:fd:41:44:0b:91:b6:16:f7:df:c6:03:cd:ea:2a:0a:2f:0a: f9:b2:02:23:ca:e9:7f:9a:cf:d3:6d:b7:5c:49:51:74:99:55: 37:ff:bb:aa:ca:81:a8:3a:40:19:2d:24:36:7f:95:14:fb:d8: e4:ee:c1:79:30:de:98:ad:91:6b:df:7a:1e:10:e1:37:69:fe: 55:e5:b5:0e:1a:77:2a:37:16:17:c5:a0:f2:0d:6c:a5:04:1c: 06:0e:33:85:2a:f7:5a:e3:b4:b1:09:e9:04:bf:94:ad:0d:c6: 14:ca:5b:98:f3:68:f3:c1:0d:fd:ee:d1:e3:0c:64:7c:9d:b7: 15:4b:ae:70:f6:74:60:7a:c3:b6:74:76:e9:67:00:18:8c:a1: ec:f0:55:6b:98:90:68:b4:56:db:2e:59:32:44:59:1c:87:5b: 8c:05:7f:88:64:8d:10:60:50:91:5e:73:5c:fc:c5:0a:52:2f: 43:49:c3:e7:ec:cb:4a:95:a3:c4:f4:1f:b4:77:b3:2a:c9:7f: 59:b4:af:37:de:f6:0d:3b:f0:e5:dd:c3:98:e6:b2:76:6a:1e: d5:5e:73:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU0RTYxMTAvBgNVBAUTKEM3OEQxRTU5NTkxQkUwQzc1MjREMzZCREY4NUM4QUM2 RUExOTBGOEUwHhcNMjUwODIzMDEzMDM1WhcNMjUwODMwMDEzMDM1WjAYMRYwFAYD VQQDEw02OGE5MTliYy00NTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Dq+EnnMSddKb2ykzlUsJSpaSxtAxOLaAxQhvF5APtBuDNshXca+vPMGX1DK pIyE+YXV7GKMT6bWOOi6VejHi7RmoU0OfBEuV96OrpznbpwLbF0qD+MciJQuGoml k8d5bSSRFxGHpbZTn2MVRgvE/Rj7+JTZ2nCaPlOT9suGIPYkcT/Qt9ttkQn41UZk oKQaHkC6Hx3d7CPrEpIWTnVo0bJMFwgEG1TnGKE4BmBRCfATGZshUw/P03vyPKvM TZdmntL/YPlG8e+DnilKBRion0aej6L4OvcMKAc6BD6KizMFq9jVoCTj2kE/jQek HGAIaCKYAnopxJlRFxmxJuvmdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDh6KhEe fyLv/LwdFkE16/xnxOSxMB8GA1UdIwQYMBaAFMeNHllZG+DHUk02vfhcisbqGQ+O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTRFNi85RjA2Nzc0OEVE NEIxMUVDQUI4RkFBNzdDNEY5QUUwMi94NDBlV1ZrYjRNZFNUVGE5LUZ5S3h1b1pE NDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g0MGVXVmtiNE1kU1RUYTktRnlLeHVvWkQ0NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTRFNi85RjA2Nzc0OEVENEIxMUVDQUI4RkFBNzdDNEY5QUUwMi94NDBlV1ZrYjRN ZFNUVGE5LUZ5S3h1b1pENDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAsnQFKNfuLecUbPQtMKa1zYkfBflkc7WoCgwz1I7NBLygZi/K/UFE C5G2FvffxgPN6ioKLwr5sgIjyul/ms/TbbdcSVF0mVU3/7uqyoGoOkAZLSQ2f5UU +9jk7sF5MN6YrZFr33oeEOE3af5V5bUOGncqNxYXxaDyDWylBBwGDjOFKvda47Sx CekEv5StDcYUyluY82jzwQ397tHjDGR8nbcVS65w9nRgesO2dHbpZwAYjKHs8FVr mJBotFbbLlkyRFkch1uMBX+IZI0QYFCRXnNc/MUKUi9DScPn7MtKlaPE9B+0d7Mq yX9ZtK833vYNO/Dl3cOY5rJ2ah7VXnP8 -----END CERTIFICATE-----Generated at Sat Aug 23 13:39:17 2025 by rpki-client