$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft File: vAWTxH2s9senekHgfeuaBhYxpIQ.mft (raw, json) Hash identifier: pmdd9MJzAJ0x79n4aKECY2GN20kzKBk/UIudcauAD7c= Subject key identifier: 02:01:91:36:40:3E:FB:B2:4A:83:08:3F:C1:04:DC:07:99:7D:DA:4F Authority key identifier: BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 Certificate issuer: /CN=A91D0B40/serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft Manifest number: D7 Signing time: Sat 23 Aug 2025 05:43:39 +0000 Manifest this update: Sat 23 Aug 2025 05:43:39 +0000 Manifest next update: Sat 30 Aug 2025 05:43:39 +0000 Files and hashes: 1: vAWTxH2s9senekHgfeuaBhYxpIQ.crl (hash: pAvPcNYITqEVrUZQ3ZwH0UcyeZzP//otId1v8Qgq6TQ=) 2: 0D5C00AC38E311EF99F62432C4F9AE02.roa (hash: xQMEY6P6f4jmqeDgv/TImb1ka64GtPCQvQqQLQx2M8U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:43:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B40, serialNumber=BC0593C47DACF6C7A77A41E07DEB9A061631A484 Validity Not Before: Aug 23 05:43:39 2025 GMT Not After : Aug 30 05:43:39 2025 GMT Subject: CN=68a9550b-d92f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:de:b9:f0:62:bd:a1:98:f8:e3:79:06:6a: 2d:a7:d2:61:e4:b9:4c:9c:e3:7a:ce:65:b1:a8:3d: 38:7e:e1:d0:2f:d6:e0:bd:55:de:19:b6:3e:e8:85: f7:4c:01:4c:f4:ab:bb:b3:83:9b:e8:7c:d1:6c:f6: f7:42:c9:93:5c:2a:8a:5e:33:fa:51:4c:65:e0:5c: 7d:ef:58:64:af:e6:59:60:0f:d3:06:75:1d:de:22: f3:6e:ec:b4:32:5a:81:cc:49:18:4f:62:6d:cf:4b: 4a:a2:3d:c8:9d:35:89:6e:7f:75:01:a5:a6:65:5c: 9f:df:40:a0:2c:e7:b1:e3:ae:c3:d0:2c:77:3d:82: 15:05:1a:0a:90:e2:c9:9b:63:67:59:e2:b9:2b:49: eb:07:ef:41:08:64:87:60:f7:87:56:0f:67:8f:bc: b8:83:62:65:f2:29:c6:67:f5:8e:54:43:bb:9a:cd: 7e:e1:fc:c5:c7:2d:54:64:29:5c:16:37:68:4a:bd: 36:f5:dc:42:8d:0e:09:95:fc:67:3d:69:ff:f7:5a: a9:79:ed:4f:5f:f2:84:98:34:4b:04:f6:2f:11:a9: cb:da:d2:a6:61:8b:c3:87:97:e6:9e:d1:97:e8:17: 51:22:30:1e:c1:f4:04:02:36:4a:82:20:1c:2e:b3: 04:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:01:91:36:40:3E:FB:B2:4A:83:08:3F:C1:04:DC:07:99:7D:DA:4F X509v3 Authority Key Identifier: keyid:BC:05:93:C4:7D:AC:F6:C7:A7:7A:41:E0:7D:EB:9A:06:16:31:A4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vAWTxH2s9senekHgfeuaBhYxpIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B40/2840C8A638E011EF94B84D7FC4F9AE02/vAWTxH2s9senekHgfeuaBhYxpIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:c6:78:8e:85:34:02:34:e9:e8:cb:9c:e5:0d:1e:b1:64:e4: cf:08:2c:84:63:e5:b8:e0:d7:f9:09:ed:30:0a:6f:b0:91:32: c9:0a:ad:61:97:9d:c4:28:9e:e5:77:7e:fd:ba:5b:60:56:c8: 2a:27:7b:41:dd:58:9f:c9:a3:0f:a8:1e:ac:6b:95:29:4b:fa: b2:62:89:e7:3b:18:db:d9:7f:c7:97:b0:7f:2d:d0:eb:6e:42: f6:2c:08:95:26:3c:68:0a:4b:4b:23:71:95:3b:66:08:03:6e: 36:72:75:23:d8:fe:63:1b:cd:62:0c:2d:c7:d5:f0:3e:2a:bc: 77:2e:93:cf:5f:f0:61:48:ae:9f:d7:f1:8e:de:b8:91:19:6a: 59:26:36:64:a2:11:cd:45:bd:75:97:2f:79:de:d8:79:16:ad: 69:8d:ba:89:0c:cd:55:69:f1:1c:9a:6b:c2:b5:e9:a8:c1:e6: 2b:b0:d5:ba:40:5f:55:20:99:c1:2e:38:8c:fa:11:10:74:94: 3f:f8:cd:b1:99:35:c1:c3:88:10:4d:2d:9a:0a:2c:70:54:e0: 0d:32:e6:fe:09:e3:40:00:61:97:38:cb:c6:2c:98:99:ee:cd: c1:c8:cb:88:28:49:f8:76:f6:08:c3:15:98:71:81:23:53:50: 87:24:b9:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNDAxMTAvBgNVBAUTKEJDMDU5M0M0N0RBQ0Y2QzdBNzdBNDFFMDdERUI5QTA2 MTYzMUE0ODQwHhcNMjUwODIzMDU0MzM5WhcNMjUwODMwMDU0MzM5WjAYMRYwFAYD VQQDEw02OGE5NTUwYi1kOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoK/eufBivaGY+ON5Bmotp9Jh5LlMnON6zmWxqD04fuHQL9bgvVXeGbY+6IX3 TAFM9Ku7s4Ob6HzRbPb3QsmTXCqKXjP6UUxl4Fx971hkr+ZZYA/TBnUd3iLzbuy0 MlqBzEkYT2Jtz0tKoj3InTWJbn91AaWmZVyf30CgLOex467D0Cx3PYIVBRoKkOLJ m2NnWeK5K0nrB+9BCGSHYPeHVg9nj7y4g2Jl8inGZ/WOVEO7ms1+4fzFxy1UZClc FjdoSr029dxCjQ4JlfxnPWn/91qpee1PX/KEmDRLBPYvEanL2tKmYYvDh5fmntGX 6BdRIjAewfQEAjZKgiAcLrMELwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIBkTZA PvuySoMIP8EE3AeZfdpPMB8GA1UdIwQYMBaAFLwFk8R9rPbHp3pB4H3rmgYWMaSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI0MC8yODQwQzhBNjM4 RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlzZW5la0hnZmV1YUJoWXhw SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZBV1R4SDJzOXNlbmVrSGdmZXVhQmhZeHBJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEI0MC8yODQwQzhBNjM4RTAxMUVGOTRCODREN0ZDNEY5QUUwMi92QVdUeEgyczlz ZW5la0hnZmV1YUJoWXhwSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIxniOhTQCNOnoy5zlDR6xZOTPCCyEY+W44Nf5Ce0wCm+wkTLJCq1h l53EKJ7ld379ultgVsgqJ3tB3VifyaMPqB6sa5UpS/qyYonnOxjb2X/Hl7B/LdDr bkL2LAiVJjxoCktLI3GVO2YIA242cnUj2P5jG81iDC3H1fA+Krx3LpPPX/BhSK6f 1/GO3riRGWpZJjZkohHNRb11ly953th5Fq1pjbqJDM1VafEcmmvCtemoweYrsNW6 QF9VIJnBLjiM+hEQdJQ/+M2xmTXBw4gQTS2aCixwVOANMub+CeNAAGGXOMvGLJiZ 7s3ByMuIKEn4dvYIwxWYcYEjU1CHJLlz -----END CERTIFICATE-----Generated at Sat Aug 23 21:23:23 2025 by rpki-client