$ rpki-client -vvf rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft File: s8j34GTam1qm6nlgF-xg0okDeCo.mft (raw, json) Hash identifier: kWHuJ6BTO8X6OinPKAQoc2S2aMVVkIkuiI1RC8Zsaqw= Subject key identifier: A5:BC:07:97:4F:47:75:8B:E0:9A:88:33:A9:A9:85:44:74:6E:AC:20 Authority key identifier: B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A Certificate issuer: /CN=A91D671F/serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Certificate serial: 164A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft Manifest number: 1635 Signing time: Fri 22 Aug 2025 16:50:34 +0000 Manifest this update: Fri 22 Aug 2025 16:50:33 +0000 Manifest next update: Fri 29 Aug 2025 16:50:33 +0000 Files and hashes: 1: s8j34GTam1qm6nlgF-xg0okDeCo.crl (hash: 8vCL2SvWm7OSSvDvedtSf6wfv5ppOchBPq3Itl3vTI8=) 2: A135DDD4162211EC9B4B6F77C4F9AE02.roa (hash: CGg33H9/VkhPgziJXWcA6Qz7BN3epjzI9EHcIP++h+Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:50:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5706 (0x164a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D671F, serialNumber=B3C8F7E064DA9B5AA6EA796017EC60D28903782A Validity Not Before: Aug 22 16:50:33 2025 GMT Not After : Aug 29 16:50:33 2025 GMT Subject: CN=68a89fd9-227a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9d:43:a6:ce:b5:f1:88:77:9a:c4:5d:1d:6c: f0:b6:30:e4:e6:b9:6b:9f:de:d4:0f:28:4a:56:da: fd:6c:cc:b0:9a:c8:6f:fd:3e:71:0f:0b:82:39:0b: c0:14:1d:28:5a:08:18:be:00:56:fa:17:54:37:f2: e2:ef:f1:5d:45:6f:7a:ac:4d:30:b4:96:a2:5a:80: 5c:fc:41:06:a9:2c:40:87:e4:2c:fe:28:59:31:5d: 3a:78:4f:4a:d8:97:00:0d:37:54:c8:0c:6c:55:a4: c1:d6:42:4f:ae:4e:5f:b6:87:bc:9f:7a:51:19:96: 5c:97:e6:f3:d1:a2:ff:d7:03:21:3f:68:dc:33:21: 7e:91:b0:41:32:1d:1d:c8:1e:ca:01:93:c8:11:26: 4a:e2:c3:34:57:35:e1:e0:e9:40:41:c1:be:ff:4f: dd:b4:3c:47:89:ef:db:cc:a2:7e:97:0c:06:d6:59: e9:95:38:68:f5:a4:02:2e:a2:41:54:00:e6:78:29: b0:07:ef:2e:a0:86:64:98:c9:f9:ae:85:4b:50:08: 19:0f:cd:8f:8e:ba:bf:71:cb:cf:7a:99:8e:23:a9: d2:6f:c8:35:21:b9:ca:bb:81:1f:61:5c:f8:2b:de: 1b:cb:2b:6b:e3:46:4c:10:70:f5:2d:e0:ca:77:64: 7e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BC:07:97:4F:47:75:8B:E0:9A:88:33:A9:A9:85:44:74:6E:AC:20 X509v3 Authority Key Identifier: keyid:B3:C8:F7:E0:64:DA:9B:5A:A6:EA:79:60:17:EC:60:D2:89:03:78:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s8j34GTam1qm6nlgF-xg0okDeCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D671F/1EDC10BC171E11E8856BC443C4F9AE02/s8j34GTam1qm6nlgF-xg0okDeCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:ac:a6:50:d4:85:9c:5a:75:78:40:1d:31:79:22:84:94:1d: 8f:63:31:6b:1d:e7:a9:07:43:46:a2:c8:8d:b8:04:61:65:ed: b8:b6:5e:64:f4:1e:60:3e:47:c2:e6:1d:d6:93:56:f6:08:86: 75:9d:08:b1:d6:ff:bd:66:f6:10:23:4d:93:b8:94:fb:0f:4c: a5:72:0e:f7:1c:b2:de:90:52:00:a0:cc:d9:bf:eb:ac:c1:5d: db:2d:65:cd:88:9b:84:b7:28:d1:5e:40:47:b5:3c:1a:ce:28: 13:73:6d:ec:da:2d:a0:f5:01:12:a2:da:d6:2c:f7:b5:80:dd: 54:60:aa:87:9b:99:63:70:ef:a9:14:ab:ff:dd:c7:83:84:ad: ea:ab:7c:61:5f:40:f6:7a:4e:de:f3:cd:66:84:76:d9:f0:d6: 34:e9:a4:dd:a7:e3:7b:4e:67:f2:8d:3b:0e:68:8c:04:56:76: ec:1c:44:f1:dd:e6:6e:01:fb:e5:d5:12:28:03:7c:f0:73:ef: df:85:de:50:a4:d6:7c:41:fb:d8:f9:30:5b:ea:dd:1c:f2:d9: d5:33:68:33:11:f6:45:3b:7a:bc:7c:a6:66:e9:eb:21:b0:b2: 5d:fb:79:28:9c:91:a5:16:61:37:5a:f7:97:0a:2a:8e:c9:db: 63:e2:55:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY3MUYxMTAvBgNVBAUTKEIzQzhGN0UwNjREQTlCNUFBNkVBNzk2MDE3RUM2MEQy ODkwMzc4MkEwHhcNMjUwODIyMTY1MDMzWhcNMjUwODI5MTY1MDMzWjAYMRYwFAYD VQQDEw02OGE4OWZkOS0yMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArp1Dps618Yh3msRdHWzwtjDk5rlrn97UDyhKVtr9bMywmshv/T5xDwuCOQvA FB0oWggYvgBW+hdUN/Li7/FdRW96rE0wtJaiWoBc/EEGqSxAh+Qs/ihZMV06eE9K 2JcADTdUyAxsVaTB1kJPrk5ftoe8n3pRGZZcl+bz0aL/1wMhP2jcMyF+kbBBMh0d yB7KAZPIESZK4sM0VzXh4OlAQcG+/0/dtDxHie/bzKJ+lwwG1lnplTho9aQCLqJB VADmeCmwB+8uoIZkmMn5roVLUAgZD82Pjrq/ccvPepmOI6nSb8g1IbnKu4EfYVz4 K94byytr40ZMEHD1LeDKd2R+eQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKW8B5dP R3WL4JqIM6mphUR0bqwgMB8GA1UdIwQYMBaAFLPI9+Bk2ptapup5YBfsYNKJA3gq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjcxRi8xRURDMTBCQzE3 MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0xcW02bmxnRi14ZzBva0Rl Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M4ajM0R1RhbTFxbTZubGdGLXhnMG9rRGVDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjcxRi8xRURDMTBCQzE3MUUxMUU4ODU2QkM0NDNDNEY5QUUwMi9zOGozNEdUYW0x cW02bmxnRi14ZzBva0RlQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAerKZQ1IWcWnV4QB0xeSKElB2PYzFrHeepB0NGosiNuARhZe24tl5k 9B5gPkfC5h3Wk1b2CIZ1nQix1v+9ZvYQI02TuJT7D0ylcg73HLLekFIAoMzZv+us wV3bLWXNiJuEtyjRXkBHtTwazigTc23s2i2g9QESotrWLPe1gN1UYKqHm5ljcO+p FKv/3ceDhK3qq3xhX0D2ek7e881mhHbZ8NY06aTdp+N7TmfyjTsOaIwEVnbsHETx 3eZuAfvl1RIoA3zwc+/fhd5QpNZ8QfvY+TBb6t0c8tnVM2gzEfZFO3q8fKZm6esh sLJd+3konJGlFmE3WveXCiqOydtj4lXC -----END CERTIFICATE-----Generated at Sat Aug 23 13:53:44 2025 by rpki-client