$ rpki-client -vvf rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft File: tADiGrPTJXQtuHeDDrxEB233CUg.mft (raw, json) Hash identifier: zj+L5DhSC/AVTPm4C0AZOdRn/dmJQQX92teieMcshlM= Subject key identifier: 80:0E:7B:5D:18:C7:2C:7B:A2:CB:9D:E3:F3:5B:86:9B:29:D7:8B:64 Authority key identifier: B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 Certificate issuer: /CN=A91658EF/serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Certificate serial: 0F2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft Manifest number: 2C0A Signing time: Fri 22 Aug 2025 16:54:49 +0000 Manifest this update: Fri 22 Aug 2025 16:54:49 +0000 Manifest next update: Fri 29 Aug 2025 16:54:49 +0000 Files and hashes: 1: tADiGrPTJXQtuHeDDrxEB233CUg.crl (hash: czC8J5cjZJZBkPHThVPtTeuPOzehmk/nFaabb49KcBM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3886 (0xf2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91658EF, serialNumber=B400E21AB3D325742DB877830EBC44076DF70948 Validity Not Before: Aug 22 16:54:49 2025 GMT Not After : Aug 29 16:54:49 2025 GMT Subject: CN=68a8a0d9-b598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6e:c3:aa:f5:95:a7:51:65:a8:d7:73:3f:7a: 62:8f:80:5b:40:2a:e4:86:4a:b0:65:2b:8c:35:29: e8:38:b1:81:2f:d6:f8:ba:56:8f:9c:34:d2:df:f7: c2:4c:05:15:b1:5a:00:2b:d2:83:88:ea:5b:a2:e8: 86:6f:53:1c:52:ca:3c:77:2b:30:71:54:05:10:16: c2:a8:6d:19:0d:68:a7:29:9f:d0:6c:cd:5d:17:ae: f9:c2:be:63:c0:54:60:9b:ca:54:73:b8:6e:eb:22: 3f:0a:27:1a:7b:29:e2:7d:c3:ed:94:05:02:9e:d2: b2:08:02:59:16:44:c0:f3:c8:4b:94:ca:8e:59:a3: 50:92:e4:62:35:5b:c3:a4:3d:58:2f:b1:6a:b6:70: 1e:7c:34:8c:48:ea:52:4d:c1:15:35:96:54:5e:a6: a8:88:a2:80:b8:ab:e7:dd:01:55:0f:d5:ad:a9:e4: f7:b4:e5:31:85:62:2d:e6:98:8c:30:88:c6:4c:87: 6f:87:86:a1:c3:b1:8d:61:92:5c:49:3e:23:e6:c4: 26:8f:d1:e2:e1:83:e3:ee:b0:af:3b:2c:ae:08:27: 6a:b2:04:30:d5:f1:1f:11:a2:31:10:48:9f:92:2b: 53:4e:5d:e5:69:7e:32:8c:0d:4c:c0:cf:76:a9:5c: bc:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:0E:7B:5D:18:C7:2C:7B:A2:CB:9D:E3:F3:5B:86:9B:29:D7:8B:64 X509v3 Authority Key Identifier: keyid:B4:00:E2:1A:B3:D3:25:74:2D:B8:77:83:0E:BC:44:07:6D:F7:09:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tADiGrPTJXQtuHeDDrxEB233CUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91658EF/D24337964AEC11E88417F34AC4F9AE02/tADiGrPTJXQtuHeDDrxEB233CUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:4e:f7:62:c0:80:8b:40:fc:12:9c:cd:7d:4e:49:18:d9:a3: 2f:94:f2:7c:27:70:2e:fb:56:11:d5:82:2b:e9:6a:6b:9e:f0: 98:bb:35:4b:88:53:7c:50:8a:bd:20:fd:3a:68:0b:35:43:f8: 4b:e2:d4:c7:74:56:bd:9c:17:1a:fd:e5:ce:78:5b:e1:86:15: c1:17:22:79:37:65:a1:55:8c:b6:02:fd:9b:f1:aa:ba:ad:46: 18:cc:83:5c:80:f8:4e:32:7d:5a:eb:60:c5:3f:0a:d2:01:71: 64:fc:78:ac:82:b7:a0:7c:62:5c:11:e7:4f:b2:89:ae:2e:6e: ab:59:34:fc:32:15:b9:f6:3f:7f:c0:b8:ce:da:e9:b8:51:6b: 55:85:38:c1:69:17:26:b4:e5:ec:54:a5:30:f9:95:8a:10:1d: ff:61:2c:eb:99:23:85:5f:2e:37:30:58:d0:82:62:b1:36:8f: 2f:b3:17:5e:5e:9c:b2:d3:fa:65:a5:6b:55:72:a8:18:b8:2a: c2:9a:c3:95:f4:a7:48:af:52:7f:69:e4:d5:f8:d7:59:99:fd: 1f:16:1f:7f:bc:3c:24:42:90:c1:7b:e7:e1:e9:43:e9:70:ec: b8:e3:13:5f:c2:f7:3e:85:b3:28:4c:71:93:60:93:83:25:df: 36:af:cd:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDy4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU4RUYxMTAvBgNVBAUTKEI0MDBFMjFBQjNEMzI1NzQyREI4Nzc4MzBFQkM0NDA3 NkRGNzA5NDgwHhcNMjUwODIyMTY1NDQ5WhcNMjUwODI5MTY1NDQ5WjAYMRYwFAYD VQQDEw02OGE4YTBkOS1iNTk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzG7DqvWVp1FlqNdzP3pij4BbQCrkhkqwZSuMNSnoOLGBL9b4ulaPnDTS3/fC TAUVsVoAK9KDiOpbouiGb1McUso8dyswcVQFEBbCqG0ZDWinKZ/QbM1dF675wr5j wFRgm8pUc7hu6yI/CicaeynifcPtlAUCntKyCAJZFkTA88hLlMqOWaNQkuRiNVvD pD1YL7FqtnAefDSMSOpSTcEVNZZUXqaoiKKAuKvn3QFVD9WtqeT3tOUxhWIt5piM MIjGTIdvh4ahw7GNYZJcST4j5sQmj9Hi4YPj7rCvOyyuCCdqsgQw1fEfEaIxEEif kitTTl3laX4yjA1MwM92qVy8BQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIAOe10Y xyx7osud4/Nbhpsp14tkMB8GA1UdIwQYMBaAFLQA4hqz0yV0Lbh3gw68RAdt9wlI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NThFRi9EMjQzMzc5NjRB RUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpYUXR1SGVERHJ4RUIyMzND VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RBRGlHclBUSlhRdHVIZUREcnhFQjIzM0NVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NThFRi9EMjQzMzc5NjRBRUMxMUU4ODQxN0YzNEFDNEY5QUUwMi90QURpR3JQVEpY UXR1SGVERHJ4RUIyMzNDVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8TvdiwICLQPwSnM19TkkY2aMvlPJ8J3Au+1YR1YIr6WprnvCYuzVL iFN8UIq9IP06aAs1Q/hL4tTHdFa9nBca/eXOeFvhhhXBFyJ5N2WhVYy2Av2b8aq6 rUYYzINcgPhOMn1a62DFPwrSAXFk/HisgregfGJcEedPsomuLm6rWTT8MhW59j9/ wLjO2um4UWtVhTjBaRcmtOXsVKUw+ZWKEB3/YSzrmSOFXy43MFjQgmKxNo8vsxde Xpyy0/plpWtVcqgYuCrCmsOV9KdIr1J/aeTV+NdZmf0fFh9/vDwkQpDBe+fh6UPp cOy44xNfwvc+hbMoTHGTYJODJd82r81X -----END CERTIFICATE-----Generated at Sun Aug 24 00:06:36 2025 by rpki-client