$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft File: o7CyBZyzB2t17aMkt2UH08KVUoM.mft (raw, json) Hash identifier: orlDoFfkWnifZ0IONmtJDX9uaaosbTSB8z9guplSbMA= Subject key identifier: AC:1C:E6:91:71:5E:85:E3:31:1E:7C:60:C8:D6:7C:6D:C7:32:E3:F9 Authority key identifier: A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 Certificate issuer: /CN=A91C2AAE/serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Certificate serial: 0A50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft Manifest number: 0A49 Signing time: Fri 22 Aug 2025 19:50:40 +0000 Manifest this update: Fri 22 Aug 2025 19:50:39 +0000 Manifest next update: Fri 29 Aug 2025 19:50:39 +0000 Files and hashes: 1: o7CyBZyzB2t17aMkt2UH08KVUoM.crl (hash: GpiGn56KrvkCKDxG8UWSsScC7WCMdPKfpzRAXaWepc0=) 2: 11502BAC719111EAAC505266C4F9AE02.roa (hash: 88XJabgqaxcByEwqNaBfgRLdg8FbkNPUbRQuluXcClA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:50:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2640 (0xa50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2AAE, serialNumber=A3B0B2059CB3076B75EDA324B76507D3C2955283 Validity Not Before: Aug 22 19:50:39 2025 GMT Not After : Aug 29 19:50:39 2025 GMT Subject: CN=68a8ca10-2ae7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:73:34:45:c6:68:d9:6b:c4:44:26:5a:5f:dc: b6:08:14:b4:1b:81:66:9f:5c:d2:5c:b9:f2:a3:fd: 4c:55:21:ef:f8:8c:5a:64:85:19:39:e2:75:f1:68: 39:9b:b9:b1:00:c8:2e:c1:f3:ec:16:9a:5b:da:b3: 67:ab:bf:3c:5f:fa:be:32:92:51:f3:e7:d5:c6:02: ba:5b:1b:4e:52:c1:76:ad:87:1b:3b:8e:47:f7:94: ec:1d:ff:67:bd:7a:9c:ef:af:7e:a3:2d:b6:11:f3: 20:50:ce:49:ea:0f:15:95:17:88:cb:0a:0d:1b:dd: b4:fc:19:19:0d:81:cb:ba:df:a2:b9:a7:2d:77:d9: 53:0b:7c:40:c7:e8:3b:d3:31:34:74:35:a1:96:a2: 47:5f:e2:d5:19:05:bb:5a:f3:72:8a:f3:8d:c5:62: 13:ae:bd:c9:2a:f4:36:90:f6:b1:4b:d7:09:20:56: ef:84:95:8a:e2:d1:75:8e:83:c9:84:64:b6:96:e8: d7:86:e0:e2:1d:7a:f4:00:a9:23:40:38:3f:bc:aa: 56:d9:8e:7e:f5:1f:44:c0:ec:27:40:15:c1:92:97: 22:da:67:55:ae:24:df:c2:5d:1a:8a:88:a2:7c:7c: 11:2c:41:c2:02:85:63:23:10:97:77:04:b9:95:92: 4c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:1C:E6:91:71:5E:85:E3:31:1E:7C:60:C8:D6:7C:6D:C7:32:E3:F9 X509v3 Authority Key Identifier: keyid:A3:B0:B2:05:9C:B3:07:6B:75:ED:A3:24:B7:65:07:D3:C2:95:52:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7CyBZyzB2t17aMkt2UH08KVUoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2AAE/57537D5E704511EA8A941D1AC4F9AE02/o7CyBZyzB2t17aMkt2UH08KVUoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:d4:79:63:c9:70:aa:1e:a8:f4:d7:3e:53:fe:b9:05:66:94: 76:74:3d:5a:07:a7:ad:91:66:4f:b8:80:b3:ca:2a:e2:c7:ab: ee:c3:d0:03:69:0e:cb:b3:b2:59:ff:dd:61:a7:25:96:13:86: c1:df:6a:ea:b2:de:4f:a1:84:b8:f2:c4:7d:80:52:37:bc:6f: 96:ce:f3:8f:f6:07:1f:91:15:4d:4c:22:86:b8:93:ef:77:e1: bb:5c:f9:c0:49:8b:8a:27:aa:d4:40:50:5c:28:70:23:00:bb: 42:27:45:bf:36:24:93:79:2b:59:16:d4:93:98:c5:7e:82:f0: 55:da:03:cb:dd:8f:6c:2e:f8:ee:31:bc:69:29:2a:d6:0f:cb: b7:2d:c4:42:01:b5:ae:d5:03:37:7e:6a:40:65:df:85:63:a4: 30:fe:91:91:93:28:54:15:5b:da:3a:08:ec:47:a4:a4:08:96: 45:04:11:d0:c9:83:e2:3d:2b:a2:7d:dd:1a:7c:be:45:79:7d: 82:39:6a:78:3e:fb:19:77:7d:ed:76:7c:d2:79:c4:03:2d:a2: 2c:75:0a:56:f2:fa:6c:81:25:c5:ed:d8:31:df:44:52:35:05: 83:fe:24:b6:b3:f0:0a:19:4c:9c:5b:68:1c:cf:af:98:c7:7a: 1e:14:4c:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICClAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJBQUUxMTAvBgNVBAUTKEEzQjBCMjA1OUNCMzA3NkI3NUVEQTMyNEI3NjUwN0Qz QzI5NTUyODMwHhcNMjUwODIyMTk1MDM5WhcNMjUwODI5MTk1MDM5WjAYMRYwFAYD VQQDEw02OGE4Y2ExMC0yYWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XM0RcZo2WvERCZaX9y2CBS0G4Fmn1zSXLnyo/1MVSHv+IxaZIUZOeJ18Wg5 m7mxAMguwfPsFppb2rNnq788X/q+MpJR8+fVxgK6WxtOUsF2rYcbO45H95TsHf9n vXqc769+oy22EfMgUM5J6g8VlReIywoNG920/BkZDYHLut+iuactd9lTC3xAx+g7 0zE0dDWhlqJHX+LVGQW7WvNyivONxWITrr3JKvQ2kPaxS9cJIFbvhJWK4tF1joPJ hGS2lujXhuDiHXr0AKkjQDg/vKpW2Y5+9R9EwOwnQBXBkpci2mdVriTfwl0aioii fHwRLEHCAoVjIxCXdwS5lZJMZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwc5pFx XoXjMR58YMjWfG3HMuP5MB8GA1UdIwQYMBaAFKOwsgWcswdrde2jJLdlB9PClVKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkFBRS81NzUzN0Q1RTcw NDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIydDE3YU1rdDJVSDA4S1ZV b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283Q3lCWnl6QjJ0MTdhTWt0MlVIMDhLVlVvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MkFBRS81NzUzN0Q1RTcwNDUxMUVBOEE5NDFEMUFDNEY5QUUwMi9vN0N5Qlp5ekIy dDE3YU1rdDJVSDA4S1ZVb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC1HljyXCqHqj01z5T/rkFZpR2dD1aB6etkWZPuICzyirix6vuw9AD aQ7Ls7JZ/91hpyWWE4bB32rqst5PoYS48sR9gFI3vG+WzvOP9gcfkRVNTCKGuJPv d+G7XPnASYuKJ6rUQFBcKHAjALtCJ0W/NiSTeStZFtSTmMV+gvBV2gPL3Y9sLvju MbxpKSrWD8u3LcRCAbWu1QM3fmpAZd+FY6Qw/pGRkyhUFVvaOgjsR6SkCJZFBBHQ yYPiPSuifd0afL5FeX2COWp4PvsZd33tdnzSecQDLaIsdQpW8vpsgSXF7dgx30RS NQWD/iS2s/AKGUycW2gcz6+Yx3oeFExf -----END CERTIFICATE-----Generated at Sun Aug 24 03:03:19 2025 by rpki-client