$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: yj8IobtHw6W1pQuCKrEHrFR2urRc/M2OOXqmB6Ojw8g= Subject key identifier: 0B:E7:4D:EF:62:67:24:EB:2D:BF:4F:59:D5:4B:AD:4C:63:2C:04:BC Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 01EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 01E8 Signing time: Wed 02 Jul 2025 16:12:40 +0000 Manifest this update: Wed 02 Jul 2025 16:12:39 +0000 Manifest next update: Wed 09 Jul 2025 16:12:39 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: yw6Y2Q5/h6MN/mSMFNwdrJlTa1ftz4koDJYVaNkYByw=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 494 (0x1ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Jul 2 16:12:39 2025 GMT Not After : Jul 9 16:12:39 2025 GMT Subject: CN=68655a77-b54d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:a5:1b:97:f2:8b:bb:c7:8e:18:a1:bc:80:ec: e7:72:0a:1b:31:c6:fb:5f:89:e4:4b:60:39:79:6a: 0d:2f:09:eb:11:d0:f7:3b:20:ec:5e:9f:18:31:71: 31:81:d8:58:c0:80:0f:34:6a:3e:a7:f6:6f:19:24: 67:03:7c:89:81:e1:99:2f:35:62:e6:c6:6a:7a:b4: 5f:cb:4e:fa:49:0b:6e:10:db:33:b2:ec:79:2d:2d: da:b2:d4:5a:4b:df:b6:63:bd:76:57:01:1c:a5:e4: 4a:35:da:6e:d3:a4:e2:e6:bc:91:08:ca:88:52:43: 03:17:90:f7:4e:ac:7f:c2:81:a8:b9:6e:98:1a:05: 03:41:f6:34:fb:60:4d:dd:f3:bb:da:a3:68:da:ea: 19:21:74:49:15:a0:5e:a5:43:dc:4e:9d:f4:b6:5a: 59:b7:72:1a:7d:a8:01:0b:f9:f3:50:8e:74:69:61: f7:b6:80:97:82:95:ad:a0:11:a6:c4:02:86:d5:b4: dd:5e:b5:08:3f:d2:00:e8:b8:f4:d2:18:83:1c:88: b2:7a:8a:a2:27:f1:37:dc:74:1c:87:38:90:43:eb: ae:61:0f:61:43:98:fc:f0:bf:a8:96:65:f7:d8:ff: 86:40:ad:c2:33:a9:79:7e:65:5a:8e:49:e8:00:1b: 98:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:E7:4D:EF:62:67:24:EB:2D:BF:4F:59:D5:4B:AD:4C:63:2C:04:BC X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:04:37:58:6f:8c:11:4c:60:03:95:56:cc:1a:ec:05:76:b6: d7:b0:24:92:2f:9c:ce:98:2a:18:dd:0e:f3:af:79:1a:2c:d7: dc:00:01:de:e8:73:3b:95:2e:d7:1e:01:67:48:20:0c:b3:f6: 45:7f:82:cb:4e:08:67:90:7b:82:b0:c9:cd:1a:18:45:22:7d: ec:fb:70:79:a6:39:b5:e4:02:16:ab:dd:df:76:d7:0b:f0:29: 86:a4:51:45:23:e1:0c:75:30:65:1d:82:38:6b:48:87:60:be: 6c:92:00:ae:20:0b:e0:99:17:44:4c:b5:d5:23:87:9d:64:cc: 56:ef:ac:e4:4a:cb:7c:ff:dd:f1:00:d9:33:9f:f9:aa:33:3d: 76:7b:f9:f9:b4:0c:ad:e3:33:85:d8:58:58:61:ec:e8:dc:0c: 86:2e:3c:2d:25:f5:18:27:d7:78:30:95:f2:d8:51:bf:eb:ea: 90:23:6c:85:45:68:df:4f:56:1c:46:d9:c5:5e:58:4b:b5:40: 58:02:c5:f5:ac:34:87:ff:d1:b3:57:be:5b:fa:50:07:9e:c5: 58:79:64:16:3e:ce:db:46:e4:b9:18:61:3c:97:74:35:19:9e: 1c:30:a4:a9:aa:28:81:f6:83:d3:9d:fa:6e:01:b9:71:85:e9: 75:51:b4:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUwNzAyMTYxMjM5WhcNMjUwNzA5MTYxMjM5WjAYMRYwFAYD VQQDEw02ODY1NWE3Ny1iNTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4qUbl/KLu8eOGKG8gOzncgobMcb7X4nkS2A5eWoNLwnrEdD3OyDsXp8YMXEx gdhYwIAPNGo+p/ZvGSRnA3yJgeGZLzVi5sZqerRfy076SQtuENszsux5LS3astRa S9+2Y712VwEcpeRKNdpu06Ti5ryRCMqIUkMDF5D3Tqx/woGouW6YGgUDQfY0+2BN 3fO72qNo2uoZIXRJFaBepUPcTp30tlpZt3IafagBC/nzUI50aWH3toCXgpWtoBGm xAKG1bTdXrUIP9IA6Lj00hiDHIiyeoqiJ/E33HQchziQQ+uuYQ9hQ5j88L+olmX3 2P+GQK3CM6l5fmVajknoABuYNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvnTe9i ZyTrLb9PWdVLrUxjLAS8MB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUBDdYb4wRTGADlVbMGuwFdrbXsCSSL5zOmCoY3Q7zr3kaLNfcAAHe 6HM7lS7XHgFnSCAMs/ZFf4LLTghnkHuCsMnNGhhFIn3s+3B5pjm15AIWq93fdtcL 8CmGpFFFI+EMdTBlHYI4a0iHYL5skgCuIAvgmRdETLXVI4edZMxW76zkSst8/93x ANkzn/mqMz12e/n5tAyt4zOF2FhYYezo3AyGLjwtJfUYJ9d4MJXy2FG/6+qQI2yF RWjfT1YcRtnFXlhLtUBYAsX1rDSH/9GzV75b+lAHnsVYeWQWPs7bRuS5GGE8l3Q1 GZ4cMKSpqiiB9oPTnfpuAblxhel1UbTn -----END CERTIFICATE-----Generated at Thu Jul 3 23:07:42 2025 by rpki-client