$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft File: mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft (raw, json) Hash identifier: cIyvPvcxI4HR0M30MXKYNS1DoBQ4ZVD5+eu77fbnLmU= Subject key identifier: 18:0D:67:A4:A8:76:09:57:F9:6E:6D:72:31:3B:D0:25:56:F7:A4:9D Authority key identifier: 9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 Certificate issuer: /CN=A91CB21D/serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Certificate serial: 01DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft Manifest number: 01D9 Signing time: Sat 23 Aug 2025 02:49:14 +0000 Manifest this update: Sat 23 Aug 2025 02:49:14 +0000 Manifest next update: Sat 30 Aug 2025 02:49:14 +0000 Files and hashes: 1: mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl (hash: JSU0nLnCZt5uX/m5G4dYhovKpWQIzeBNz9/lclI6Pis=) 2: 11F911FAA8D811ED90192E3CC4F9AE02.roa (hash: 1slDbS6OMsVzRicTRklA2Gp5/wmmSnjZBoyP9DPcUVQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 477 (0x1dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB21D, serialNumber=9B1E8188CE64397E8B4241E6758D429DA0FF2E70 Validity Not Before: Aug 23 02:49:14 2025 GMT Not After : Aug 30 02:49:14 2025 GMT Subject: CN=68a92c2a-939e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d5:0a:ea:9f:7a:ab:a5:a4:00:70:7b:0d:2e: cb:01:62:dc:b9:ba:d6:75:a6:4c:ac:2a:df:10:c8: 5c:38:37:a3:70:e8:03:29:8b:2d:3c:78:36:f8:12: 50:f1:23:68:1a:c0:d3:5e:bc:d2:b4:8e:cb:7a:aa: 0a:89:55:84:19:68:2a:72:59:5c:14:f4:e1:02:f9: ad:13:3b:3f:a5:71:6c:b3:0a:1d:8e:1d:7a:e6:ad: ca:1e:85:9a:ba:25:6e:9f:38:9f:14:76:9f:43:6e: 72:91:76:e0:a6:7c:8b:05:5c:c9:e6:63:2e:ae:8a: c0:90:92:86:8a:e5:6e:73:41:39:37:91:42:5f:38: 69:ca:6c:fe:f2:b9:d4:f1:57:69:40:55:dd:39:56: 94:53:63:69:6b:df:3d:48:70:84:ed:77:b4:e1:4f: dc:d3:84:e6:d1:4b:b5:9f:1a:80:a3:75:74:cb:96: e3:b0:f7:cd:01:b0:2d:d3:72:c5:84:f4:af:d1:7a: ec:99:8b:c5:27:4c:44:be:2e:ec:27:59:df:44:cf: 5f:1c:18:ca:99:b0:f8:d4:4e:bd:b1:2e:33:0f:6a: e7:cb:8f:89:6f:a5:8b:d7:67:be:4d:73:2a:a2:5a: e6:47:42:db:b8:45:e2:5d:f5:d9:ae:8f:b9:56:e3: 09:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:0D:67:A4:A8:76:09:57:F9:6E:6D:72:31:3B:D0:25:56:F7:A4:9D X509v3 Authority Key Identifier: keyid:9B:1E:81:88:CE:64:39:7E:8B:42:41:E6:75:8D:42:9D:A0:FF:2E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mx6BiM5kOX6LQkHmdY1CnaD_LnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB21D/632CD3E6A7F611EDB9D60C43C4F9AE02/mx6BiM5kOX6LQkHmdY1CnaD_LnA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:71:16:32:29:88:b7:df:5c:cc:3f:3d:28:92:6e:57:e5:a1: 35:d8:d8:75:7f:fd:03:ed:3f:67:5e:ef:fb:b9:3e:76:a2:2c: 10:2e:9f:0b:8c:7e:e5:46:e5:91:b1:df:cf:f7:f9:26:1c:96: c8:7a:3c:54:45:90:18:ea:69:72:27:a5:9e:d2:22:3d:5d:eb: bd:ee:86:6c:cf:dd:73:45:e2:f9:79:2e:62:88:34:30:31:64: 7a:0c:13:85:78:b9:dd:af:6d:b6:f8:91:84:5c:2f:46:35:2f: 34:e5:30:63:ae:e2:68:b5:ac:57:52:c0:41:61:b7:30:12:9f: 23:a8:10:06:da:a6:92:f2:23:da:ce:8d:ed:bf:f2:ef:95:70: 88:0e:77:4f:f1:57:ce:b8:33:ab:74:78:e9:6d:60:b7:79:5f: 83:61:c2:fd:4a:3c:19:f8:da:21:76:9b:0a:9f:d2:05:00:4c: eb:b9:40:52:38:c5:55:2d:0c:13:1a:b1:d1:f0:cb:37:53:47: 1f:9b:9f:43:cc:17:42:c4:2d:05:65:07:9b:5b:ec:a4:c0:3b: 18:95:1a:2c:c3:54:68:c2:df:e8:3c:d0:92:f8:26:fc:a2:01: cc:30:9b:5d:4d:ee:76:86:af:bb:02:c6:05:5c:72:9c:b3:3c: 74:52:c2:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0IyMUQxMTAvBgNVBAUTKDlCMUU4MTg4Q0U2NDM5N0U4QjQyNDFFNjc1OEQ0MjlE QTBGRjJFNzAwHhcNMjUwODIzMDI0OTE0WhcNMjUwODMwMDI0OTE0WjAYMRYwFAYD VQQDEw02OGE5MmMyYS05MzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdUK6p96q6WkAHB7DS7LAWLcubrWdaZMrCrfEMhcODejcOgDKYstPHg2+BJQ 8SNoGsDTXrzStI7LeqoKiVWEGWgqcllcFPThAvmtEzs/pXFsswodjh165q3KHoWa uiVunzifFHafQ25ykXbgpnyLBVzJ5mMurorAkJKGiuVuc0E5N5FCXzhpymz+8rnU 8VdpQFXdOVaUU2Npa989SHCE7Xe04U/c04Tm0Uu1nxqAo3V0y5bjsPfNAbAt03LF hPSv0XrsmYvFJ0xEvi7sJ1nfRM9fHBjKmbD41E69sS4zD2rny4+Jb6WL12e+TXMq olrmR0LbuEXiXfXZro+5VuMJswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgNZ6So dglX+W5tcjE70CVW96SdMB8GA1UdIwQYMBaAFJsegYjOZDl+i0JB5nWNQp2g/y5w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjIxRC82MzJDRDNFNkE3 RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09YNkxRa0htZFkxQ25hRF9M bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL214NkJpTTVrT1g2TFFrSG1kWTFDbmFEX0xuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjIxRC82MzJDRDNFNkE3RjYxMUVEQjlENjBDNDNDNEY5QUUwMi9teDZCaU01a09Y NkxRa0htZFkxQ25hRF9MbkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1cRYyKYi331zMPz0okm5X5aE12Nh1f/0D7T9nXu/7uT52oiwQLp8L jH7lRuWRsd/P9/kmHJbIejxURZAY6mlyJ6We0iI9Xeu97oZsz91zReL5eS5iiDQw MWR6DBOFeLndr222+JGEXC9GNS805TBjruJotaxXUsBBYbcwEp8jqBAG2qaS8iPa zo3tv/LvlXCIDndP8VfOuDOrdHjpbWC3eV+DYcL9SjwZ+NohdpsKn9IFAEzruUBS OMVVLQwTGrHR8Ms3U0cfm59DzBdCxC0FZQebW+ykwDsYlRosw1Rowt/oPNCS+Cb8 ogHMMJtdTe52hq+7AsYFXHKcszx0UsLN -----END CERTIFICATE-----Generated at Sat Aug 23 17:02:33 2025 by rpki-client