$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft File: o1D687bxS8juGymW7tSOJwIOEIM.mft (raw, json) Hash identifier: BQUb/N4XTO/rNXaOL1zXyjzvK6u5iQ/Lhg9tvasOCD0= Subject key identifier: CE:2F:D3:9D:31:74:7E:68:A3:9C:1E:00:0F:27:35:D1:5E:14:8E:12 Authority key identifier: A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 Certificate issuer: /CN=A91D4834/serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Certificate serial: 088B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft Manifest number: 0879 Signing time: Sat 23 Aug 2025 01:38:13 +0000 Manifest this update: Sat 23 Aug 2025 01:38:12 +0000 Manifest next update: Sat 30 Aug 2025 01:38:12 +0000 Files and hashes: 1: o1D687bxS8juGymW7tSOJwIOEIM.crl (hash: CZNcWUb7SX6KF9Tl69uj98FgMpNgIkFPaPzgjR3BDGw=) 2: D32DB3AE7FC111F0B3BEC06AC4F9AE02.roa (hash: /uldeOBBVv+zaXl5jNRHeGbB+ckh7FIYfUU0p3GU20E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4834, serialNumber=A350FAF3B6F14BC8EE1B2996EED48E27020E1083 Validity Not Before: Aug 23 01:38:12 2025 GMT Not After : Aug 30 01:38:12 2025 GMT Subject: CN=68a91b85-6d76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:09:a9:51:53:21:d5:29:6c:e8:41:a0:6b:c4: e0:b2:57:01:db:23:43:99:47:27:c0:98:05:69:57: 03:ff:ec:4b:75:2a:3f:66:84:58:2b:b4:a4:ec:7f: b2:70:0d:a9:50:5b:c2:87:34:d4:67:db:40:96:5d: e4:c8:6c:35:5f:74:21:15:f1:19:05:bf:4b:a0:77: 1d:8d:33:b6:b1:8c:6c:02:33:e4:24:b6:1a:93:5e: e2:25:8f:73:9a:f0:1d:85:0a:e6:d6:62:d7:87:7a: 74:2a:0c:cb:98:c2:71:c1:ea:6b:fa:c0:44:af:76: 2d:a7:a5:43:1a:1f:ba:91:e1:d4:aa:39:cd:9b:92: 40:d3:89:71:83:9f:36:45:c2:e6:4f:31:f8:40:65: 83:50:07:f5:cf:82:a8:34:37:9a:37:76:90:d5:49: f0:f8:90:78:c6:bf:98:cb:13:f0:d5:85:c0:f5:17: 0d:91:a1:e7:86:f9:1c:06:6d:ac:aa:c9:9f:25:2e: ef:30:b4:33:40:2f:16:8b:6c:73:d2:d9:28:11:83: b0:ca:fa:a6:50:f2:ae:0f:bd:37:06:8b:1a:6c:5e: d6:48:7b:ef:8c:af:03:ab:55:6d:0d:c1:fa:db:4d: 62:43:88:1c:3f:9d:f7:01:f2:c4:e2:33:5d:e9:bc: b3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2F:D3:9D:31:74:7E:68:A3:9C:1E:00:0F:27:35:D1:5E:14:8E:12 X509v3 Authority Key Identifier: keyid:A3:50:FA:F3:B6:F1:4B:C8:EE:1B:29:96:EE:D4:8E:27:02:0E:10:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1D687bxS8juGymW7tSOJwIOEIM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4834/51BEDFC4CC8D11EAAFFEDB36C4F9AE02/o1D687bxS8juGymW7tSOJwIOEIM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:53:d8:4a:98:c0:15:a6:83:b1:8b:74:cc:4c:06:ef:03:35: 42:b3:11:ad:06:13:c3:23:9d:7d:59:dd:7c:9a:f9:bf:56:a8: b5:78:6b:bb:31:da:e9:31:22:e6:96:2c:6e:19:dc:67:f1:de: 35:af:64:f7:34:20:5a:b3:d9:be:83:a2:d5:98:0c:28:83:01: 13:1e:ac:40:29:f7:57:26:5e:3f:0d:72:e4:a2:6b:0f:78:b4: 53:a4:35:2c:19:96:c7:0c:58:53:c4:e9:fd:3e:a9:ad:41:31: c0:2c:ee:42:fb:96:17:3b:ed:e0:05:36:d8:a1:18:bd:4d:2a: b8:57:c1:35:de:03:5c:3c:e4:9f:b7:9f:89:54:01:61:a9:e1: 11:e8:84:e4:66:ec:84:87:ae:a0:f9:3d:2e:89:3f:8d:2c:be: 87:f8:a0:62:fd:96:7c:cd:ba:4c:d1:3d:f1:f8:c2:10:93:8a: 07:ea:24:ef:94:43:0c:a4:73:2b:83:49:66:ff:0e:65:44:05: e7:95:54:34:0a:57:30:21:b0:bd:4d:e2:03:8b:b8:bd:b2:72: 8c:34:c4:84:40:8a:3c:5e:de:e0:0c:20:ab:e8:d9:f1:a0:70: 78:f9:2c:10:2c:ad:f2:fd:0d:f0:b1:9d:b0:9a:ab:d1:8f:19: 4c:db:85:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ4MzQxMTAvBgNVBAUTKEEzNTBGQUYzQjZGMTRCQzhFRTFCMjk5NkVFRDQ4RTI3 MDIwRTEwODMwHhcNMjUwODIzMDEzODEyWhcNMjUwODMwMDEzODEyWjAYMRYwFAYD VQQDEw02OGE5MWI4NS02ZDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1AmpUVMh1Sls6EGga8TgslcB2yNDmUcnwJgFaVcD/+xLdSo/ZoRYK7Sk7H+y cA2pUFvChzTUZ9tAll3kyGw1X3QhFfEZBb9LoHcdjTO2sYxsAjPkJLYak17iJY9z mvAdhQrm1mLXh3p0KgzLmMJxwepr+sBEr3Ytp6VDGh+6keHUqjnNm5JA04lxg582 RcLmTzH4QGWDUAf1z4KoNDeaN3aQ1Unw+JB4xr+YyxPw1YXA9RcNkaHnhvkcBm2s qsmfJS7vMLQzQC8Wi2xz0tkoEYOwyvqmUPKuD703BosabF7WSHvvjK8Dq1VtDcH6 201iQ4gcP533AfLE4jNd6byz0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4v050x dH5oo5weAA8nNdFeFI4SMB8GA1UdIwQYMBaAFKNQ+vO28UvI7hsplu7UjicCDhCD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDgzNC81MUJFREZDNEND OEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4anVHeW1XN3RTT0p3SU9F SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRDY4N2J4UzhqdUd5bVc3dFNPSndJT0VJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDgzNC81MUJFREZDNENDOEQxMUVBQUZGRURCMzZDNEY5QUUwMi9vMUQ2ODdieFM4 anVHeW1XN3RTT0p3SU9FSU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpU9hKmMAVpoOxi3TMTAbvAzVCsxGtBhPDI519Wd18mvm/Vqi1eGu7 MdrpMSLmlixuGdxn8d41r2T3NCBas9m+g6LVmAwogwETHqxAKfdXJl4/DXLkomsP eLRTpDUsGZbHDFhTxOn9PqmtQTHALO5C+5YXO+3gBTbYoRi9TSq4V8E13gNcPOSf t5+JVAFhqeER6ITkZuyEh66g+T0uiT+NLL6H+KBi/ZZ8zbpM0T3x+MIQk4oH6iTv lEMMpHMrg0lm/w5lRAXnlVQ0ClcwIbC9TeIDi7i9snKMNMSEQIo8Xt7gDCCr6Nnx oHB4+SwQLK3y/Q3wsZ2wmqvRjxlM24VS -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:37 2025 by rpki-client