$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft File: BUM8OuqKSXAsmoLuyV0WtVA86mA.mft (raw, json) Hash identifier: Dc4bpC5oDgCOu+i43S64fsSQRMIuwR08QVUh0AgctVk= Subject key identifier: DE:10:53:FB:A0:4F:C8:D1:7B:40:22:E9:0D:E6:53:9F:F7:74:63:1F Authority key identifier: 05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 Certificate issuer: /CN=A91CFFA0/serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Certificate serial: 0D7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft Manifest number: 0D5C Signing time: Fri 22 Aug 2025 18:06:35 +0000 Manifest this update: Fri 22 Aug 2025 18:06:35 +0000 Manifest next update: Fri 29 Aug 2025 18:06:35 +0000 Files and hashes: 1: BUM8OuqKSXAsmoLuyV0WtVA86mA.crl (hash: pC57Rnv0UuWT8+Y/RA7KVkStNUBiOuECoZ2Jbh2q6iA=) 2: 83ECD7C40CCA11ED97820077C4F9AE02.roa (hash: tsWCAJh3hDUuF0jt3mDhnNo48pJ1cTxWnbkE+ZQXBxw=) 3: 0E3F36D8C43D11EBAB31777FC4F9AE02.roa (hash: BThAKf2icEZsZqpXgnFl9VpqvpRKYGs7e0515Blb0yw=) 4: 1F4E1CC014D311EA81309110C4F9AE02.roa (hash: zPumQuSa3V5Do5kU4HAy8QEzfyGrDVZPMvaKh+jhJxk=) 5: E6F0F39214CE11EA9E740182C4F9AE02.roa (hash: zpETj3vTU+4JGJFNH2bJangxDJpoV//my0UXRjaLeMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=05433C3AEA8A49702C9A82EEC95D16B5503CEA60 Validity Not Before: Aug 22 18:06:35 2025 GMT Not After : Aug 29 18:06:35 2025 GMT Subject: CN=68a8b1ab-ab84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:77:7a:4d:9e:bc:2b:1d:96:2f:a9:fa:b8:f7: 2f:39:7a:ce:14:b8:a8:ec:2b:fd:0d:12:bc:a7:da: bd:2e:e9:38:40:98:ef:8b:22:26:61:d3:ed:cd:c5: d4:9e:b9:af:ab:0b:df:e8:6c:77:39:6a:74:c3:be: 50:09:e3:10:c4:c8:98:de:3b:fb:0c:72:c1:7f:41: a6:61:c7:4d:3a:db:d5:55:90:48:13:b9:81:76:29: 7d:34:0e:9f:08:1d:68:1c:6b:71:b7:0c:d9:09:00: 87:1b:74:6a:ad:fe:27:fb:1d:13:d3:2b:20:c9:5b: 74:66:9e:aa:d6:2e:cc:05:ac:42:7a:27:71:dd:ca: 58:21:43:72:6e:7d:1f:e2:e5:2c:4b:5a:d0:6b:80: ad:0b:15:43:a4:bb:35:9e:60:de:03:3d:e3:11:8b: 14:27:e5:d3:26:6c:c1:ee:3b:7a:19:16:bc:d7:27: 16:46:66:8f:a5:ce:a7:9c:61:2f:01:8c:9d:66:11: 70:e5:d4:b8:ac:a5:69:b0:9d:af:6f:d7:c8:e2:01: b8:23:fd:ee:8d:79:45:30:6e:73:76:01:b0:85:0b: 5c:70:d1:ea:7c:e4:e0:1b:3d:3c:aa:e6:cb:31:2f: 02:57:fc:56:77:12:9e:52:e4:6d:43:82:8e:af:07: 40:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:10:53:FB:A0:4F:C8:D1:7B:40:22:E9:0D:E6:53:9F:F7:74:63:1F X509v3 Authority Key Identifier: keyid:05:43:3C:3A:EA:8A:49:70:2C:9A:82:EE:C9:5D:16:B5:50:3C:EA:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BUM8OuqKSXAsmoLuyV0WtVA86mA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/150BF690D8CB11E9BAE24D21C4F9AE02/BUM8OuqKSXAsmoLuyV0WtVA86mA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:2c:d6:6e:84:13:4f:c0:95:6f:ca:55:e8:38:6a:3c:0a:3d: ca:23:7d:71:e9:5c:93:4e:38:42:03:d4:92:8f:1a:3a:4e:be: c0:04:c0:34:70:bf:30:33:20:33:37:a1:59:f5:1e:a8:99:9e: 8d:0d:90:bb:66:ea:2a:0a:b2:b3:9d:f3:f2:f7:cf:55:0a:de: 02:4b:3f:44:52:a7:0d:98:c8:71:2f:27:07:a9:60:20:62:14: 3f:c4:7a:7c:88:55:dc:50:d5:d0:10:8c:9f:42:94:c4:86:cb: b3:00:10:66:b4:04:a3:51:b2:ea:4d:4e:8f:60:2f:02:d1:fe: 77:41:0a:db:68:cb:8a:7c:cc:3b:d9:44:39:89:2c:b6:91:6e: d8:70:c3:83:c8:4a:1c:21:a8:2c:1f:2f:8f:29:97:9e:da:cd: 50:b0:a6:f1:5c:96:94:91:f3:be:d5:d3:1a:47:13:5c:17:85: a6:73:a6:c5:f2:53:fd:a6:c2:cd:ae:12:ec:63:dd:ea:6b:d5: 6c:91:ca:85:9d:83:ed:36:fa:46:48:4b:d9:37:cf:31:13:50: 1b:99:5e:d2:0c:45:d5:63:fb:8b:b9:c3:00:65:d2:82:18:71: cd:6b:ab:84:ae:fd:73:c9:27:6b:b9:12:a9:ae:d0:d2:58:1f: 66:85:43:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKDA1NDMzQzNBRUE4QTQ5NzAyQzlBODJFRUM5NUQxNkI1 NTAzQ0VBNjAwHhcNMjUwODIyMTgwNjM1WhcNMjUwODI5MTgwNjM1WjAYMRYwFAYD VQQDEw02OGE4YjFhYi1hYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXd6TZ68Kx2WL6n6uPcvOXrOFLio7Cv9DRK8p9q9Luk4QJjviyImYdPtzcXU nrmvqwvf6Gx3OWp0w75QCeMQxMiY3jv7DHLBf0GmYcdNOtvVVZBIE7mBdil9NA6f CB1oHGtxtwzZCQCHG3Rqrf4n+x0T0ysgyVt0Zp6q1i7MBaxCeidx3cpYIUNybn0f 4uUsS1rQa4CtCxVDpLs1nmDeAz3jEYsUJ+XTJmzB7jt6GRa81ycWRmaPpc6nnGEv AYydZhFw5dS4rKVpsJ2vb9fI4gG4I/3ujXlFMG5zdgGwhQtccNHqfOTgGz08qubL MS8CV/xWdxKeUuRtQ4KOrwdARQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4QU/ug T8jRe0Ai6Q3mU5/3dGMfMB8GA1UdIwQYMBaAFAVDPDrqiklwLJqC7sldFrVQPOpg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xNTBCRjY5MEQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NYQXNtb0x1eVYwV3RWQTg2 bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JVTThPdXFLU1hBc21vTHV5VjBXdFZBODZtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkZBMC8xNTBCRjY5MEQ4Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9CVU04T3VxS1NY QXNtb0x1eVYwV3RWQTg2bUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOLNZuhBNPwJVvylXoOGo8Cj3KI31x6VyTTjhCA9SSjxo6Tr7ABMA0 cL8wMyAzN6FZ9R6omZ6NDZC7ZuoqCrKznfPy989VCt4CSz9EUqcNmMhxLycHqWAg YhQ/xHp8iFXcUNXQEIyfQpTEhsuzABBmtASjUbLqTU6PYC8C0f53QQrbaMuKfMw7 2UQ5iSy2kW7YcMODyEocIagsHy+PKZee2s1QsKbxXJaUkfO+1dMaRxNcF4Wmc6bF 8lP9psLNrhLsY93qa9VskcqFnYPtNvpGSEvZN88xE1AbmV7SDEXVY/uLucMAZdKC GHHNa6uErv1zySdruRKprtDSWB9mhUNh -----END CERTIFICATE-----Generated at Sat Aug 23 19:38:49 2025 by rpki-client