$ rpki-client -vvf rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft File: l7tUs9I8N8PdPgFpypdNJ9up8FA.mft (raw, json) Hash identifier: 32sdshd2KgLtmjRgaE8EmRrPv7owJCRMet6H/xZI9jE= Subject key identifier: 38:67:EE:1D:C3:50:25:CF:01:7C:B2:A5:14:0A:7D:89:BA:77:4C:11 Authority key identifier: 97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 Certificate issuer: /CN=A91D51C1/serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Certificate serial: 05FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft Manifest number: 05F1 Signing time: Fri 22 Aug 2025 23:08:22 +0000 Manifest this update: Fri 22 Aug 2025 23:08:22 +0000 Manifest next update: Fri 29 Aug 2025 23:08:22 +0000 Files and hashes: 1: l7tUs9I8N8PdPgFpypdNJ9up8FA.crl (hash: V/wMjvwZhGsU0P6Lze/KEnJM/ZdmSKo9qKXz8rDZvHs=) 2: 1E8ADFD0C1F211EBA984726AC4F9AE02.roa (hash: 9l/idt3LJislssNxfPBsqgjifz4U+6PzxoXpIp44G34=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1530 (0x5fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D51C1, serialNumber=97BB54B3D23C37C3DD3E0169CA974D27DBA9F050 Validity Not Before: Aug 22 23:08:22 2025 GMT Not After : Aug 29 23:08:22 2025 GMT Subject: CN=68a8f866-7f36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:dd:af:6b:51:3f:ec:9d:6e:8a:77:b6:4e:2b: 6b:99:29:5f:82:2c:f2:ed:40:4f:ff:7f:cd:2a:6c: 7f:4f:19:f6:d7:ef:bf:c3:6c:a9:1d:39:ae:d9:d1: 2e:9d:50:b0:21:73:67:cd:7b:1c:b6:0f:74:55:74: af:37:3b:f3:97:20:e5:44:63:6d:a8:34:78:bc:c4: e2:9f:9e:6e:4e:1e:d2:f6:a0:30:b4:41:5a:d0:79: 9e:b2:9e:26:82:60:8b:4d:7c:ae:0b:f1:9c:da:5d: c2:6d:83:d2:c8:cf:8a:bb:b5:20:ed:75:64:e6:68: 61:d3:9f:9d:e5:29:45:3c:b6:e0:c2:0a:3b:78:d5: 52:fd:90:b9:89:1a:e1:cd:21:bf:5c:7f:13:a2:19: bd:e1:6a:69:b5:3d:cf:fc:de:bb:17:4d:4d:3a:71: 7e:de:0b:62:d5:ea:17:93:0b:52:78:ce:ae:af:ae: 39:74:e8:70:55:54:9f:05:d0:8b:c7:fd:9f:24:dd: 80:a4:43:03:ad:ee:6a:3f:24:70:d6:37:dc:91:f0: 7f:c8:03:d3:25:f5:1a:ee:d5:4b:02:c6:96:d9:4e: de:e7:93:24:90:51:5f:ad:22:46:9e:dd:09:db:71: 6b:d3:36:40:af:39:d6:4d:f0:c9:e0:e8:9d:d2:b8: 9e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:67:EE:1D:C3:50:25:CF:01:7C:B2:A5:14:0A:7D:89:BA:77:4C:11 X509v3 Authority Key Identifier: keyid:97:BB:54:B3:D2:3C:37:C3:DD:3E:01:69:CA:97:4D:27:DB:A9:F0:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l7tUs9I8N8PdPgFpypdNJ9up8FA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D51C1/D92E69AAC1EE11EBBFD57E2AC4F9AE02/l7tUs9I8N8PdPgFpypdNJ9up8FA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:aa:73:0e:94:52:85:1c:49:3e:3d:bc:b2:18:61:06:48:62: 89:25:b1:24:86:25:44:2f:68:62:42:a3:08:18:eb:b9:57:37: d8:43:c2:cf:04:10:1f:7d:7c:88:ea:83:50:d3:04:83:c7:a5: 57:52:f2:5f:5b:0f:48:a1:ee:a0:26:b2:f2:d6:af:02:ee:fa: 52:f9:72:2a:89:f1:34:2a:09:95:72:c0:a5:30:02:c1:d2:68: 6c:c6:4a:f4:29:93:f8:e1:01:7d:0b:b5:bf:5d:71:3b:94:65: f9:c5:b2:78:5f:9b:02:c6:8c:36:93:b6:91:42:3f:73:d0:25: 69:0a:69:6c:09:e8:3c:e4:43:7e:1e:c1:4c:e5:ef:13:63:e5: d4:ed:f0:96:08:be:fb:a8:7e:16:10:a6:7d:65:01:49:f8:7d: 79:1d:ce:4a:85:4f:e6:cd:bf:f5:34:55:03:69:f4:60:df:8c: db:5b:f0:19:56:6b:47:c6:c6:dd:d4:ed:df:6f:bf:2a:b6:51: d0:39:9b:09:de:bf:6b:b6:d1:e6:94:9c:c6:72:dc:58:ec:f4: 56:62:6f:dc:cf:27:bd:cf:01:1a:7f:a9:75:c5:ba:26:ec:f5: b3:d1:eb:fd:7f:88:74:ae:ad:24:36:59:cf:5e:f5:9b:50:14: e9:50:d0:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUxQzExMTAvBgNVBAUTKDk3QkI1NEIzRDIzQzM3QzNERDNFMDE2OUNBOTc0RDI3 REJBOUYwNTAwHhcNMjUwODIyMjMwODIyWhcNMjUwODI5MjMwODIyWjAYMRYwFAYD VQQDEw02OGE4Zjg2Ni03ZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy92va1E/7J1uine2TitrmSlfgizy7UBP/3/NKmx/Txn21++/w2ypHTmu2dEu nVCwIXNnzXsctg90VXSvNzvzlyDlRGNtqDR4vMTin55uTh7S9qAwtEFa0Hmesp4m gmCLTXyuC/Gc2l3CbYPSyM+Ku7Ug7XVk5mhh05+d5SlFPLbgwgo7eNVS/ZC5iRrh zSG/XH8Tohm94WpptT3P/N67F01NOnF+3gti1eoXkwtSeM6ur645dOhwVVSfBdCL x/2fJN2ApEMDre5qPyRw1jfckfB/yAPTJfUa7tVLAsaW2U7e55MkkFFfrSJGnt0J 23Fr0zZArznWTfDJ4Oid0rievwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhn7h3D UCXPAXyypRQKfYm6d0wRMB8GA1UdIwQYMBaAFJe7VLPSPDfD3T4BacqXTSfbqfBQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTFDMS9EOTJFNjlBQUMx RUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44UGRQZ0ZweXBkTko5dXA4 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w3dFVzOUk4TjhQZFBnRnB5cGROSjl1cDhGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTFDMS9EOTJFNjlBQUMxRUUxMUVCQkZENTdFMkFDNEY5QUUwMi9sN3RVczlJOE44 UGRQZ0ZweXBkTko5dXA4RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzqnMOlFKFHEk+PbyyGGEGSGKJJbEkhiVEL2hiQqMIGOu5VzfYQ8LP BBAffXyI6oNQ0wSDx6VXUvJfWw9Ioe6gJrLy1q8C7vpS+XIqifE0KgmVcsClMALB 0mhsxkr0KZP44QF9C7W/XXE7lGX5xbJ4X5sCxow2k7aRQj9z0CVpCmlsCeg85EN+ HsFM5e8TY+XU7fCWCL77qH4WEKZ9ZQFJ+H15Hc5KhU/mzb/1NFUDafRg34zbW/AZ VmtHxsbd1O3fb78qtlHQOZsJ3r9rttHmlJzGctxY7PRWYm/czye9zwEaf6l1xbom 7PWz0ev9f4h0rq0kNlnPXvWbUBTpUNDR -----END CERTIFICATE-----Generated at Sat Aug 23 12:30:53 2025 by rpki-client