$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft File: b2FOWP6Tat901zb1OS3tX9FrdYc.mft (raw, json) Hash identifier: SczOfvldp/HDgkm/olLuBpIkOfDfETEpkW2CIsF4cdc= Subject key identifier: 9A:22:D4:6C:06:2C:97:4E:C0:5E:E8:15:A3:6D:2E:57:AB:78:68:BD Authority key identifier: 6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 Certificate issuer: /CN=A91A9B3C/serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft Manifest number: 0680 Signing time: Fri 22 Aug 2025 22:33:26 +0000 Manifest this update: Fri 22 Aug 2025 22:33:25 +0000 Manifest next update: Fri 29 Aug 2025 22:33:25 +0000 Files and hashes: 1: b2FOWP6Tat901zb1OS3tX9FrdYc.crl (hash: lvfkeUvbiaHpshUNBeD+XIs4qEW1Fv9wLnyP8txCPgg=) 2: 00D8BE5286FC11EB8A95642DC4F9AE02.roa (hash: k0J17sE1EdNCFMHPLLouV8rIaMP7CAywUqJdG5phE9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:33:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B3C, serialNumber=6F614E58FE936ADF74D736F5392DED5FD16B7587 Validity Not Before: Aug 22 22:33:25 2025 GMT Not After : Aug 29 22:33:25 2025 GMT Subject: CN=68a8f035-69e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:63:83:3c:74:40:57:1a:fa:74:60:82:1d:55: 53:fb:52:d4:c3:a5:f6:6b:cc:5f:e7:7f:14:ba:8a: dd:db:77:58:ce:dd:56:32:64:f0:25:e5:b9:97:bc: e9:31:b0:4d:d0:87:12:4d:d1:28:82:4e:7a:c6:24: 17:04:03:39:9c:81:f2:69:2b:1a:ef:a9:b0:85:cc: c4:50:a3:8b:e8:08:be:10:63:90:0c:fb:54:85:42: 41:94:1d:18:05:ab:7b:da:88:94:1f:13:44:8f:93: 97:1b:74:22:0f:c3:c4:cf:b8:bc:61:fa:f0:68:a1: e6:36:c6:61:86:07:d1:ba:02:8b:c4:16:31:c8:09: 2f:d1:06:71:71:37:d7:90:ee:08:fe:10:27:2b:6f: 6b:e8:26:bb:ff:d0:35:ba:db:0e:09:43:ea:b2:70: 4f:00:60:08:f2:f1:d0:62:06:fe:b5:89:3b:dd:5e: 82:0a:d7:88:1b:85:25:6d:d1:b3:8f:bc:fd:97:5a: 73:b4:2c:b4:29:cf:70:58:2d:ff:1f:a7:7a:84:70: cf:ff:3e:68:15:8f:2d:bc:30:a6:7f:98:1d:11:59: a1:c5:5e:9e:5c:8c:b8:77:d8:8f:45:ec:15:4d:34: 8f:45:a8:d3:73:08:ea:13:b7:d2:c0:4d:f6:66:ba: 26:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:22:D4:6C:06:2C:97:4E:C0:5E:E8:15:A3:6D:2E:57:AB:78:68:BD X509v3 Authority Key Identifier: keyid:6F:61:4E:58:FE:93:6A:DF:74:D7:36:F5:39:2D:ED:5F:D1:6B:75:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2FOWP6Tat901zb1OS3tX9FrdYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B3C/3F3362DA86FA11EBB3C7BB29C4F9AE02/b2FOWP6Tat901zb1OS3tX9FrdYc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:dd:3e:9c:3e:d1:35:eb:ca:74:77:33:5f:47:ea:86:70:fa: cc:22:c0:44:1b:ab:2e:90:8d:c4:e4:52:4d:de:10:53:25:4d: 7d:5d:43:1c:17:e4:75:ce:47:94:af:d6:5f:3b:56:9b:72:d8: 9e:92:e4:48:f0:fb:a8:e9:6e:5a:b7:da:40:9a:da:08:ff:27: 8e:eb:9d:ad:40:57:e0:03:f5:e9:ab:7b:8e:8f:78:18:b6:a4: 87:8c:d2:13:22:4b:4c:90:3e:47:f7:6a:a5:bf:6e:c1:a0:15: 15:3c:53:01:ab:71:31:30:5f:61:5d:d0:0a:4d:f4:b4:ec:c5: 36:7e:27:88:61:af:db:86:3e:31:bb:45:29:2d:91:c4:e3:df: 8a:97:66:2a:e2:9c:e6:07:84:f6:17:89:b6:71:95:19:c4:41: 14:ab:b3:79:ee:e5:fa:37:6a:31:10:23:94:26:d2:7a:69:a7: 50:56:a5:84:92:bf:94:82:fa:ea:08:6c:bc:d3:61:d9:f4:72: 33:8f:23:22:f5:ef:5c:06:a5:c1:5c:df:07:d0:1e:68:47:99: 58:da:cb:60:8e:c8:89:d5:db:ee:cd:d4:02:08:ac:78:b4:c0: b3:cf:44:97:ea:35:60:c1:d3:59:0f:a5:52:75:55:17:9d:96: e3:df:ff:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCM0MxMTAvBgNVBAUTKDZGNjE0RTU4RkU5MzZBREY3NEQ3MzZGNTM5MkRFRDVG RDE2Qjc1ODcwHhcNMjUwODIyMjIzMzI1WhcNMjUwODI5MjIzMzI1WjAYMRYwFAYD VQQDEw02OGE4ZjAzNS02OWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2ODPHRAVxr6dGCCHVVT+1LUw6X2a8xf538Uuord23dYzt1WMmTwJeW5l7zp MbBN0IcSTdEogk56xiQXBAM5nIHyaSsa76mwhczEUKOL6Ai+EGOQDPtUhUJBlB0Y Bat72oiUHxNEj5OXG3QiD8PEz7i8YfrwaKHmNsZhhgfRugKLxBYxyAkv0QZxcTfX kO4I/hAnK29r6Ca7/9A1utsOCUPqsnBPAGAI8vHQYgb+tYk73V6CCteIG4UlbdGz j7z9l1pztCy0Kc9wWC3/H6d6hHDP/z5oFY8tvDCmf5gdEVmhxV6eXIy4d9iPRewV TTSPRajTcwjqE7fSwE32ZromlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoi1GwG LJdOwF7oFaNtLlereGi9MB8GA1UdIwQYMBaAFG9hTlj+k2rfdNc29Tkt7V/Ra3WH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIzQy8zRjMzNjJEQTg2 RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0OTAxemIxT1MzdFg5RnJk WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyRk9XUDZUYXQ5MDF6YjFPUzN0WDlGcmRZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUIzQy8zRjMzNjJEQTg2RkExMUVCQjNDN0JCMjlDNEY5QUUwMi9iMkZPV1A2VGF0 OTAxemIxT1MzdFg5RnJkWWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAk3T6cPtE168p0dzNfR+qGcPrMIsBEG6sukI3E5FJN3hBTJU19XUMc F+R1zkeUr9ZfO1abctiekuRI8Puo6W5at9pAmtoI/yeO652tQFfgA/Xpq3uOj3gY tqSHjNITIktMkD5H92qlv27BoBUVPFMBq3ExMF9hXdAKTfS07MU2fieIYa/bhj4x u0UpLZHE49+Kl2Yq4pzmB4T2F4m2cZUZxEEUq7N57uX6N2oxECOUJtJ6aadQVqWE kr+UgvrqCGy802HZ9HIzjyMi9e9cBqXBXN8H0B5oR5lY2stgjsiJ1dvuzdQCCKx4 tMCzz0SX6jVgwdNZD6VSdVUXnZbj3/8h -----END CERTIFICATE-----Generated at Sat Aug 23 20:17:46 2025 by rpki-client