$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft File: mZsvZTnCPq60aeZ1OfstyTPZgEA.mft (raw, json) Hash identifier: IOzkm3SKlTdF+2Jo/q9UMD1XAYdL3q6x7rNQyXPpp10= Subject key identifier: 92:18:46:6B:2E:91:50:10:DF:10:3E:20:14:30:81:74:33:91:D0:FE Authority key identifier: 99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 Certificate issuer: /CN=A91AB055/serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Certificate serial: 0102 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft Manifest number: 0100 Signing time: Sat 23 Aug 2025 05:14:27 +0000 Manifest this update: Sat 23 Aug 2025 05:14:27 +0000 Manifest next update: Sat 30 Aug 2025 05:14:26 +0000 Files and hashes: 1: mZsvZTnCPq60aeZ1OfstyTPZgEA.crl (hash: TK8bI8eHpl7oSxw9DXY1kM/0Q5EQydBAT5pBVziDr3U=) 2: 83CA613CF55611EE8CE6274DC4F9AE02.roa (hash: BonjniXMbmI4yDYc3ynOZLv8pgVSOdRZa/c5jpsq0Ug=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:14:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB055, serialNumber=999B2F6539C23EAEB469E67539FB2DC933D98040 Validity Not Before: Aug 23 05:14:27 2025 GMT Not After : Aug 30 05:14:26 2025 GMT Subject: CN=68a94e33-5d3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:18:0e:ff:42:3b:d4:0c:71:0d:10:81:aa:ee: 37:cf:34:e4:d4:2e:48:02:1d:b8:05:01:06:7a:95: 9e:18:2e:fa:ba:12:9f:8b:db:40:ec:80:ed:cf:b1: 77:06:48:8c:f5:91:d8:7c:49:e0:75:04:5a:5c:17: 67:e3:e1:63:3e:c4:af:15:41:be:e5:f8:b2:ef:22: e8:76:79:49:9c:c1:5e:51:66:62:9d:9f:11:85:63: bb:d3:b0:40:9b:d8:9b:e7:7d:3d:85:50:0f:53:e2: 9e:21:ac:96:6d:12:0b:b9:27:5a:bf:60:02:25:76: cf:88:bb:c9:21:28:9c:0d:36:cf:27:48:2f:80:4d: 75:64:b5:92:5b:39:cd:de:d2:48:a3:96:d4:2f:dc: e0:d3:52:08:a4:bb:53:de:a3:a2:03:64:87:58:d7: 33:3c:f1:76:14:16:fb:67:4a:6e:02:70:c8:48:4b: fb:ca:74:94:31:f7:69:99:bf:58:6b:1d:9e:11:b3: 04:c0:cf:0d:b8:37:b5:36:1b:eb:62:6d:5f:ff:95: 3b:56:7e:09:e6:96:10:a6:dd:3d:e8:f1:00:54:45: 5f:ed:e5:69:23:73:21:0a:96:2d:f6:c3:51:32:bb: 7d:51:08:a4:f7:73:d6:38:ea:57:2c:ff:8e:7b:7e: a3:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:18:46:6B:2E:91:50:10:DF:10:3E:20:14:30:81:74:33:91:D0:FE X509v3 Authority Key Identifier: keyid:99:9B:2F:65:39:C2:3E:AE:B4:69:E6:75:39:FB:2D:C9:33:D9:80:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZsvZTnCPq60aeZ1OfstyTPZgEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB055/4ABBC01CF55511EEACF1234BC4F9AE02/mZsvZTnCPq60aeZ1OfstyTPZgEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:aa:90:5b:47:59:bd:b3:c6:c4:8c:f5:26:f9:79:36:4b:b1: cc:d0:88:26:66:ed:72:b6:b3:0f:e0:e2:15:91:12:13:da:71: 4b:84:ae:7e:80:e8:00:50:7e:fc:db:28:28:2d:35:54:5b:4a: c9:fc:da:8c:f2:84:c6:87:2d:7c:b7:26:fc:0c:c7:f6:f7:8e: 45:f4:50:cc:7c:ac:ae:a3:a1:87:2a:ea:82:53:4a:0c:50:82: e0:b3:e6:5d:f9:4e:78:bd:69:17:ac:9f:a1:e0:6d:fb:25:55: 7e:f3:05:be:70:c0:05:2a:6a:dd:b4:80:31:d7:c8:1b:48:e2: c3:fc:b3:9d:93:0e:b8:5b:b5:ca:7c:86:d8:e7:ef:96:bf:86: fa:a8:55:f8:f2:8d:ab:b3:c5:fe:b7:44:da:4c:9a:86:b0:15: c8:0c:84:0f:27:d2:dc:34:84:2f:6d:02:64:86:54:8d:e2:97: a0:6e:30:8e:35:dc:15:cd:45:5e:c2:2a:91:16:bd:e6:78:5c: 33:d3:b2:c4:f2:f4:0d:76:53:b8:7b:ba:ec:8c:49:1b:05:ba: 06:e8:ba:1d:6d:c6:61:b3:97:78:f0:07:26:ef:89:28:26:39: c0:7e:e2:0d:1b:d1:3b:a9:4a:2e:5b:c6:e2:6e:8b:30:2f:65: 54:42:39:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIwNTUxMTAvBgNVBAUTKDk5OUIyRjY1MzlDMjNFQUVCNDY5RTY3NTM5RkIyREM5 MzNEOTgwNDAwHhcNMjUwODIzMDUxNDI3WhcNMjUwODMwMDUxNDI2WjAYMRYwFAYD VQQDEw02OGE5NGUzMy01ZDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhgO/0I71AxxDRCBqu43zzTk1C5IAh24BQEGepWeGC76uhKfi9tA7IDtz7F3 BkiM9ZHYfEngdQRaXBdn4+FjPsSvFUG+5fiy7yLodnlJnMFeUWZinZ8RhWO707BA m9ib5309hVAPU+KeIayWbRILuSdav2ACJXbPiLvJISicDTbPJ0gvgE11ZLWSWznN 3tJIo5bUL9zg01IIpLtT3qOiA2SHWNczPPF2FBb7Z0puAnDISEv7ynSUMfdpmb9Y ax2eEbMEwM8NuDe1NhvrYm1f/5U7Vn4J5pYQpt096PEAVEVf7eVpI3MhCpYt9sNR Mrt9UQik93PWOOpXLP+Oe36jlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJIYRmsu kVAQ3xA+IBQwgXQzkdD+MB8GA1UdIwQYMBaAFJmbL2U5wj6utGnmdTn7Lckz2YBA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjA1NS80QUJCQzAxQ0Y1 NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1BxNjBhZVoxT2ZzdHlUUFpn RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21ac3ZaVG5DUHE2MGFlWjFPZnN0eVRQWmdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjA1NS80QUJCQzAxQ0Y1NTUxMUVFQUNGMTIzNEJDNEY5QUUwMi9tWnN2WlRuQ1Bx NjBhZVoxT2ZzdHlUUFpnRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDqpBbR1m9s8bEjPUm+Xk2S7HM0IgmZu1ytrMP4OIVkRIT2nFLhK5+ gOgAUH782ygoLTVUW0rJ/NqM8oTGhy18tyb8DMf2945F9FDMfKyuo6GHKuqCU0oM UILgs+Zd+U54vWkXrJ+h4G37JVV+8wW+cMAFKmrdtIAx18gbSOLD/LOdkw64W7XK fIbY5++Wv4b6qFX48o2rs8X+t0TaTJqGsBXIDIQPJ9LcNIQvbQJkhlSN4pegbjCO NdwVzUVewiqRFr3meFwz07LE8vQNdlO4e7rsjEkbBboG6LodbcZhs5d48Acm74ko JjnAfuING9E7qUouW8biboswL2VUQjl2 -----END CERTIFICATE-----Generated at Sun Aug 24 00:15:12 2025 by rpki-client