$ rpki-client -vvf rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft File: CkMWPL6xv3mMnOQcHF50ociDesY.mft (raw, json) Hash identifier: KAO9iOYppK7FgPEZGBl5aHVJRv6+NjJZkYNKpSqflu4= Subject key identifier: 81:25:2F:1B:1A:06:70:58:07:6A:C9:D5:20:66:E0:18:26:2F:22:AC Authority key identifier: 0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 Certificate issuer: /CN=A91A95C1/serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Certificate serial: 02A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft Manifest number: 02A0 Signing time: Sat 23 Aug 2025 01:49:20 +0000 Manifest this update: Sat 23 Aug 2025 01:49:20 +0000 Manifest next update: Sat 30 Aug 2025 01:49:20 +0000 Files and hashes: 1: CkMWPL6xv3mMnOQcHF50ociDesY.crl (hash: YyW00uGqIp1BzlTUj7efb9W12hbRq2IobLUh7LFlsSE=) 2: DA61302A0F0211EDABBE3C6AC4F9AE02.roa (hash: vW2EZP2Cwb4m+zHwX4dxc62MHLuj24Kv3gEJBseD9aY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 677 (0x2a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A95C1, serialNumber=0A43163CBEB1BF798C9CE41C1C5E74A1C8837AC6 Validity Not Before: Aug 23 01:49:20 2025 GMT Not After : Aug 30 01:49:20 2025 GMT Subject: CN=68a91e20-f11b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:66:e4:95:f0:6b:0c:c1:7d:74:49:5f:35:90: e0:2b:93:1e:82:7c:9d:a0:1a:e3:d2:f2:18:03:30: 45:04:e7:43:f0:50:9e:6f:34:05:9b:91:ee:a8:e0: 6a:25:db:16:d6:69:3b:cf:1b:49:68:94:85:2d:7b: 9d:72:1b:f9:fa:37:70:94:f5:34:71:19:de:88:e8: c5:63:d8:0d:db:14:fb:af:2c:ea:36:00:35:58:c0: 45:bc:68:93:71:3f:09:51:a7:34:bb:04:00:79:47: 28:cc:e3:93:5a:da:9b:32:86:0d:7c:61:9c:df:ca: 93:01:f7:f0:a8:11:12:5c:d3:d8:4e:a6:8c:7a:fa: 93:48:1f:bb:01:a9:9a:c7:73:bd:c6:b4:67:3e:6c: ac:b2:e2:41:12:e9:c2:be:c8:03:ab:6b:9b:2a:4f: 6e:a9:96:cc:b7:2c:e8:b8:28:31:29:53:79:7e:a2: 9f:33:7a:3a:3e:40:07:0b:a5:65:be:12:8f:47:10: 25:fd:34:c2:6e:de:fe:6d:a2:a3:d5:b7:08:c0:3f: 72:5d:72:1f:49:5c:43:ab:55:7c:fa:01:b0:fe:74: 4b:82:ca:e6:03:e9:69:df:22:60:b9:30:05:69:74: 9b:52:4f:25:f9:68:4b:6a:7c:57:37:cd:50:dc:9e: 66:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:25:2F:1B:1A:06:70:58:07:6A:C9:D5:20:66:E0:18:26:2F:22:AC X509v3 Authority Key Identifier: keyid:0A:43:16:3C:BE:B1:BF:79:8C:9C:E4:1C:1C:5E:74:A1:C8:83:7A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkMWPL6xv3mMnOQcHF50ociDesY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A95C1/CBE6BC740F0011EDA744066AC4F9AE02/CkMWPL6xv3mMnOQcHF50ociDesY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:cc:31:6c:a7:dc:6a:6a:84:d9:e0:d3:7f:dd:37:5d:be:d0: 5d:34:ae:ba:1b:c8:d1:b2:b4:f4:fb:33:02:14:48:7c:48:ae: 12:b4:cd:0b:4d:9e:df:12:94:cc:ae:0d:70:59:da:f2:19:6e: e0:f0:7d:28:bb:94:5f:5f:aa:3a:bc:3d:3f:a5:95:fa:4f:36: bb:3c:77:52:91:e4:df:fd:3b:c4:af:4f:f6:10:dc:a7:39:a1: 74:81:9c:3a:c6:bc:82:b3:ba:2c:01:54:9f:d8:a0:7a:70:85: bc:e6:37:e7:5d:3a:31:4e:2a:63:6e:6a:55:ad:15:09:b9:74: 81:a5:2b:58:30:de:52:5e:d7:69:e1:98:ad:14:5f:36:b3:5c: f1:c7:68:de:b9:92:ca:12:17:a6:85:1c:41:a7:af:5a:6e:bf: 80:2f:68:39:10:ed:0b:d9:aa:88:41:d5:9d:07:8b:ad:69:c9: 48:64:77:c2:66:94:25:89:1c:38:6c:97:6b:5a:ec:8a:10:73: 85:8e:5b:2b:df:82:e6:3c:fb:e7:4c:f1:05:33:f3:0e:b5:cf: c3:64:12:69:62:db:64:a2:7b:a8:ee:81:ab:56:0e:2a:68:03: 5c:e9:01:e5:7c:49:bd:06:4f:a8:b0:fe:d5:96:25:8c:c6:11: 74:d2:e4:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk1QzExMTAvBgNVBAUTKDBBNDMxNjNDQkVCMUJGNzk4QzlDRTQxQzFDNUU3NEEx Qzg4MzdBQzYwHhcNMjUwODIzMDE0OTIwWhcNMjUwODMwMDE0OTIwWjAYMRYwFAYD VQQDEw02OGE5MWUyMC1mMTFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42bklfBrDMF9dElfNZDgK5MegnydoBrj0vIYAzBFBOdD8FCebzQFm5HuqOBq JdsW1mk7zxtJaJSFLXudchv5+jdwlPU0cRneiOjFY9gN2xT7ryzqNgA1WMBFvGiT cT8JUac0uwQAeUcozOOTWtqbMoYNfGGc38qTAffwqBESXNPYTqaMevqTSB+7Aama x3O9xrRnPmyssuJBEunCvsgDq2ubKk9uqZbMtyzouCgxKVN5fqKfM3o6PkAHC6Vl vhKPRxAl/TTCbt7+baKj1bcIwD9yXXIfSVxDq1V8+gGw/nRLgsrmA+lp3yJguTAF aXSbUk8l+WhLanxXN81Q3J5m2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIElLxsa BnBYB2rJ1SBm4BgmLyKsMB8GA1UdIwQYMBaAFApDFjy+sb95jJzkHBxedKHIg3rG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTVDMS9DQkU2QkM3NDBG MDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYzbU1uT1FjSEY1MG9jaURl c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrTVdQTDZ4djNtTW5PUWNIRjUwb2NpRGVzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTVDMS9DQkU2QkM3NDBGMDAxMUVEQTc0NDA2NkFDNEY5QUUwMi9Da01XUEw2eHYz bU1uT1FjSEY1MG9jaURlc1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBozDFsp9xqaoTZ4NN/3TddvtBdNK66G8jRsrT0+zMCFEh8SK4StM0L TZ7fEpTMrg1wWdryGW7g8H0ou5RfX6o6vD0/pZX6Tza7PHdSkeTf/TvEr0/2ENyn OaF0gZw6xryCs7osAVSf2KB6cIW85jfnXToxTipjbmpVrRUJuXSBpStYMN5SXtdp 4ZitFF82s1zxx2jeuZLKEhemhRxBp69abr+AL2g5EO0L2aqIQdWdB4utaclIZHfC ZpQliRw4bJdrWuyKEHOFjlsr34LmPPvnTPEFM/MOtc/DZBJpYttkonuo7oGrVg4q aANc6QHlfEm9Bk+osP7VliWMxhF00uSF -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:57 2025 by rpki-client