$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft File: 0PiwBllsfAN8tUkwWzlpAACq6KQ.mft (raw, json) Hash identifier: bbaYXwvDsNd12aYbStWN9qlm2fXBtnJJAaNqRB1xlRQ= Subject key identifier: 1C:2E:0D:F7:13:FA:86:14:26:42:CA:66:B0:CE:C5:AB:50:89:2A:E0 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft Manifest number: 011C Signing time: Sat 23 Aug 2025 04:56:21 +0000 Manifest this update: Sat 23 Aug 2025 04:56:20 +0000 Manifest next update: Sat 30 Aug 2025 04:56:20 +0000 Files and hashes: 1: 0PiwBllsfAN8tUkwWzlpAACq6KQ.crl (hash: IOyL9ju8wTeBp1uvBCdUY5P5juKm8+T01zansCQKW8Y=) 2: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (hash: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk=) 3: 6BA3FEA4CCBD11EEBADDFC4AC4F9AE02.roa (hash: qBQp3vvSD9elb8dQbwCPuGirBXWWVwR3GT0tS3LqEZA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:56:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Aug 23 04:56:20 2025 GMT Not After : Aug 30 04:56:20 2025 GMT Subject: CN=68a949f5-624c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1a:a6:e6:05:92:ab:8d:90:22:6e:12:66:64: e4:08:8d:84:c0:a7:f2:c1:54:6f:91:a4:85:44:d2: 74:6d:63:ee:12:7e:e7:bc:93:27:2e:ad:26:cc:13: ed:97:24:1b:a5:0f:4e:33:e9:c6:9b:9f:55:fd:1e: 00:5b:98:d4:00:66:d9:cc:96:ed:46:86:f3:d8:65: 38:c2:9f:4b:ee:36:e3:0f:22:40:bd:d1:29:9a:6a: d7:42:e1:c3:e4:ab:09:3f:1d:77:1f:09:24:a2:44: df:8e:8e:e0:e9:09:cf:84:76:cf:e8:39:0b:89:49: 2f:cc:33:1f:42:b8:aa:17:12:c9:ef:de:ed:1f:90: b8:e2:b3:eb:3b:fc:ea:a1:5b:f7:97:eb:33:b5:0d: 04:9e:8b:6a:74:07:a4:29:4e:ae:aa:e3:e0:b2:86: 3b:e0:6b:2b:3f:68:8b:7e:d2:02:50:e1:75:29:6f: c3:d2:81:d4:51:7c:d4:f4:8a:54:fb:fb:bd:2f:3c: 07:da:2b:32:60:b4:0a:01:c2:eb:bb:a4:a8:2e:0b: cf:c1:34:42:d5:64:5e:a6:d0:b7:6f:88:bc:d2:55: 25:03:e2:9b:96:d9:ad:fe:fd:3d:97:d1:40:d0:ad: d0:86:05:d1:3a:c6:22:fd:30:bc:06:c9:12:23:27: 59:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2E:0D:F7:13:FA:86:14:26:42:CA:66:B0:CE:C5:AB:50:89:2A:E0 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:a0:e2:fd:34:34:a7:4b:31:2d:cf:7f:f9:5e:d9:72:93:3e: da:f3:ec:1d:4c:fa:0c:64:a5:8b:67:cc:d0:5c:16:f7:51:d3: 1e:04:f2:28:22:4b:15:76:5a:2a:fe:14:21:f0:80:f2:25:f3: 6e:dd:2c:f3:af:27:d0:94:81:66:e6:b1:8b:73:af:88:cd:5c: 67:0d:6a:99:b0:11:88:f3:d6:67:16:bd:ca:c5:b8:13:64:bb: 88:c6:d3:b3:60:ba:e6:6f:55:b0:73:fd:ee:e5:1d:ee:54:b4: 71:1b:98:7e:da:7a:52:d1:bf:aa:86:4b:5d:95:26:0b:af:88: 3c:11:7d:e7:a3:82:82:34:33:6a:6d:95:d9:07:c4:9b:c1:f0: 0f:75:bd:67:56:14:a7:cb:7c:b7:85:69:f9:78:6c:d0:b5:31: e8:38:2b:d8:56:d3:06:03:85:86:cc:62:e0:29:97:27:a4:4d: f2:d6:a7:67:65:00:c0:a2:92:8c:f4:6c:e1:51:a8:a1:39:8e: 91:6b:e6:e8:14:a6:aa:93:88:77:ef:6f:b1:fd:7c:ce:b6:3e: 6d:e9:58:ad:5f:37:93:f8:7b:72:ae:b2:07:10:4f:20:84:0e: c0:9d:a2:04:58:43:5a:fb:5f:a6:0d:68:94:39:21:85:e8:41: b7:c8:54:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUwODIzMDQ1NjIwWhcNMjUwODMwMDQ1NjIwWjAYMRYwFAYD VQQDEw02OGE5NDlmNS02MjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBqm5gWSq42QIm4SZmTkCI2EwKfywVRvkaSFRNJ0bWPuEn7nvJMnLq0mzBPt lyQbpQ9OM+nGm59V/R4AW5jUAGbZzJbtRobz2GU4wp9L7jbjDyJAvdEpmmrXQuHD 5KsJPx13HwkkokTfjo7g6QnPhHbP6DkLiUkvzDMfQriqFxLJ797tH5C44rPrO/zq oVv3l+sztQ0EnotqdAekKU6uquPgsoY74GsrP2iLftICUOF1KW/D0oHUUXzU9IpU +/u9LzwH2isyYLQKAcLru6SoLgvPwTRC1WReptC3b4i80lUlA+Kbltmt/v09l9FA 0K3QhgXROsYi/TC8BskSIydZgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBwuDfcT +oYUJkLKZrDOxatQiSrgMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTRDMC9GRURGNTcyRUNDQkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZB Tjh0VWt3V3pscEFBQ3E2S1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRoOL9NDSnSzEtz3/5Xtlykz7a8+wdTPoMZKWLZ8zQXBb3UdMeBPIo IksVdloq/hQh8IDyJfNu3SzzryfQlIFm5rGLc6+IzVxnDWqZsBGI89ZnFr3KxbgT ZLuIxtOzYLrmb1Wwc/3u5R3uVLRxG5h+2npS0b+qhktdlSYLr4g8EX3no4KCNDNq bZXZB8SbwfAPdb1nVhSny3y3hWn5eGzQtTHoOCvYVtMGA4WGzGLgKZcnpE3y1qdn ZQDAopKM9GzhUaihOY6Ra+boFKaqk4h372+x/XzOtj5t6VitXzeT+HtyrrIHEE8g hA7AnaIEWENa+1+mDWiUOSGF6EG3yFQ9 -----END CERTIFICATE-----Generated at Sat Aug 23 10:41:32 2025 by rpki-client