$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft File: r9CVWn3X-bDsKkShHZNyB8J1SmM.mft (raw, json) Hash identifier: 9XaYWzMX8rUNrfsqMvD34HfOJiUJTU2GqXSIx2Kig0c= Subject key identifier: 59:FA:AD:ED:22:C0:E6:9D:46:CC:6D:A6:0F:29:DF:8C:B4:07:26:C9 Authority key identifier: AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 Certificate issuer: /CN=A91B1018/serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Certificate serial: 041D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft Manifest number: 0408 Signing time: Sat 23 Aug 2025 00:45:15 +0000 Manifest this update: Sat 23 Aug 2025 00:45:15 +0000 Manifest next update: Sat 30 Aug 2025 00:45:15 +0000 Files and hashes: 1: r9CVWn3X-bDsKkShHZNyB8J1SmM.crl (hash: iIUGQ56X+m2SZ6QWPiCz9bASdOMVTJQJZQGe/iO9oOg=) 2: E69ABF78033911EFBE28FC1FC4F9AE02.roa (hash: Rg7/HWvbLuN8QkYRlBgqkedDJt7Lv8j0nbDNMsIVYIo=) 3: CB8AA43A4D9B11EFB201E984C4F9AE02.roa (hash: IBTL0V7J1tBYqG7NDXusQxEwJubmZUah6ZmQZ+9P3Us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:45:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1018, serialNumber=AFD0955A7DD7F9B0EC2A44A11D937207C2754A63 Validity Not Before: Aug 23 00:45:15 2025 GMT Not After : Aug 30 00:45:15 2025 GMT Subject: CN=68a90f1b-2f66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:96:71:b3:98:82:34:53:ec:28:6d:2d:36:2f: 99:a1:a4:c1:bf:29:55:15:cf:38:c3:a0:5b:0c:64: ad:2c:98:3f:0f:dc:f8:b6:cf:de:93:c2:16:4c:26: 3c:45:a5:f9:d6:39:ea:ec:b9:10:1e:c8:c9:bb:e4: 3c:6e:8e:13:ec:91:1d:69:e0:29:a7:d2:fa:63:85: b6:38:3d:dc:73:02:eb:f0:9b:9c:f5:be:97:7a:54: 49:27:e4:df:68:1b:47:cc:74:22:fe:7c:cb:55:4b: 88:b0:53:e5:78:8f:2b:1d:7d:ba:26:16:9f:13:73: b4:9f:aa:8d:6b:36:e5:b2:92:91:bd:f4:df:55:77: e0:6b:1f:de:87:04:77:6f:2c:76:24:1d:bd:c1:c6: ec:b1:9f:68:7c:f2:0d:09:bf:b9:ac:81:49:62:2a: 30:65:58:59:83:1f:27:39:a0:8e:b9:b6:81:d9:a9: 95:d7:a6:ce:ba:e1:34:a4:ab:3e:e0:b8:c8:dd:92: 87:a8:1f:c7:2e:26:f6:31:b5:02:81:e5:d0:74:bc: f4:34:21:96:ad:04:d2:f9:54:3c:cc:62:80:0f:09: 5d:da:e6:96:31:4b:00:1d:95:3c:78:23:d7:3a:2a: d1:49:99:ad:06:13:ef:f4:4b:ee:c6:72:97:0f:73: 15:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:FA:AD:ED:22:C0:E6:9D:46:CC:6D:A6:0F:29:DF:8C:B4:07:26:C9 X509v3 Authority Key Identifier: keyid:AF:D0:95:5A:7D:D7:F9:B0:EC:2A:44:A1:1D:93:72:07:C2:75:4A:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9CVWn3X-bDsKkShHZNyB8J1SmM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1018/8836FA608D4C11EC988AE85DC4F9AE02/r9CVWn3X-bDsKkShHZNyB8J1SmM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:e3:05:17:13:d0:0b:be:71:31:ef:f2:72:c8:1f:d8:ea:27: 31:97:86:39:b5:02:f9:a9:34:49:fe:ac:d2:ef:a2:23:b7:02: ab:d1:80:f0:9b:92:24:21:03:7c:8b:ed:28:00:47:8e:cd:7a: c7:04:b9:ed:0f:2d:7d:e0:02:7d:74:19:37:c2:56:10:74:2f: c0:ef:9c:cd:4e:b2:7d:09:a8:7a:44:25:31:7b:91:a8:6c:01: b1:c4:7d:62:8f:91:32:35:8e:60:08:92:bb:bd:01:e9:fc:69: 28:1f:06:31:bf:49:43:c3:e6:5e:d9:83:de:20:54:17:81:a2: d5:e4:aa:7c:33:15:30:2b:f5:e2:66:36:eb:89:27:ac:a5:06: e6:fc:48:cc:eb:61:4a:2b:ce:76:ac:e6:16:d4:46:b5:43:3d: 04:09:ad:0d:15:13:83:71:01:a4:7b:64:9e:b5:4d:cc:96:c0: ef:67:56:6a:6a:db:37:41:26:d8:98:36:37:a4:a5:71:a9:02: 43:3b:21:40:04:a2:97:34:4f:b2:bf:79:e1:4a:fd:74:5a:1b: ac:ad:ae:f8:2d:42:72:a5:15:24:e7:fd:97:ec:e6:68:b4:e9: 79:52:2a:3f:da:1f:f5:0b:1b:36:4f:f0:ed:0e:6a:a0:44:94: fa:4a:f3:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMTgxMTAvBgNVBAUTKEFGRDA5NTVBN0REN0Y5QjBFQzJBNDRBMTFEOTM3MjA3 QzI3NTRBNjMwHhcNMjUwODIzMDA0NTE1WhcNMjUwODMwMDA0NTE1WjAYMRYwFAYD VQQDEw02OGE5MGYxYi0yZjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZZxs5iCNFPsKG0tNi+ZoaTBvylVFc84w6BbDGStLJg/D9z4ts/ek8IWTCY8 RaX51jnq7LkQHsjJu+Q8bo4T7JEdaeApp9L6Y4W2OD3ccwLr8Juc9b6XelRJJ+Tf aBtHzHQi/nzLVUuIsFPleI8rHX26JhafE3O0n6qNazblspKRvfTfVXfgax/ehwR3 byx2JB29wcbssZ9ofPINCb+5rIFJYiowZVhZgx8nOaCOubaB2amV16bOuuE0pKs+ 4LjI3ZKHqB/HLib2MbUCgeXQdLz0NCGWrQTS+VQ8zGKADwld2uaWMUsAHZU8eCPX OirRSZmtBhPv9EvuxnKXD3MVTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFn6re0i wOadRsxtpg8p34y0BybJMB8GA1UdIwQYMBaAFK/QlVp91/mw7CpEoR2TcgfCdUpj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAxOC84ODM2RkE2MDhE NEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1iRHNLa1NoSFpOeUI4SjFT bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5Q1ZXbjNYLWJEc0trU2hIWk55QjhKMVNtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTAxOC84ODM2RkE2MDhENEMxMUVDOTg4QUU4NURDNEY5QUUwMi9yOUNWV24zWC1i RHNLa1NoSFpOeUI4SjFTbU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAf4wUXE9ALvnEx7/JyyB/Y6icxl4Y5tQL5qTRJ/qzS76IjtwKr0YDw m5IkIQN8i+0oAEeOzXrHBLntDy194AJ9dBk3wlYQdC/A75zNTrJ9Cah6RCUxe5Go bAGxxH1ij5EyNY5gCJK7vQHp/GkoHwYxv0lDw+Ze2YPeIFQXgaLV5Kp8MxUwK/Xi ZjbriSespQbm/EjM62FKK852rOYW1Ea1Qz0ECa0NFRODcQGke2SetU3MlsDvZ1Zq ats3QSbYmDY3pKVxqQJDOyFABKKXNE+yv3nhSv10Whusra74LUJypRUk5/2X7OZo tOl5Uio/2h/1Cxs2T/DtDmqgRJT6SvNZ -----END CERTIFICATE-----Generated at Sun Aug 24 00:02:01 2025 by rpki-client