$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft File: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft (raw, json) Hash identifier: l7idxHdJRQlTOdoguNOkdZFZBYk+OP6ajh2y7KAURWU= Subject key identifier: 46:25:5D:3D:0C:EC:C9:28:0C:E5:14:DD:95:16:9F:64:71:39:72:94 Authority key identifier: 37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB Certificate issuer: /CN=A91E3E33/serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Certificate serial: 123A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft Manifest number: 121B Signing time: Fri 22 Aug 2025 17:16:56 +0000 Manifest this update: Fri 22 Aug 2025 17:16:55 +0000 Manifest next update: Fri 29 Aug 2025 17:16:55 +0000 Files and hashes: 1: N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl (hash: ynaLOjPvYfQGmg9hSBP05hUAQhLiqHKtd0E5v5SAzH8=) 2: D0B8C09E1BBF11EAA64ECF70C4F9AE02.roa (hash: EG7DAdh62MT15Z2IRnWNBPi8u6Tt+z9LL+klU2Atkq0=) 3: 29ED0D46839011EE946C5E63C4F9AE02.roa (hash: ieAu/eYOiYngZXOxKG9Shsj5mrubW8gne154rOLi258=) 4: 4551BE2CD19D11EAA120EE14C4F9AE02.roa (hash: Zb8K4a4S76xzShJsXA+J8BCfBTGu/Fav49T1ERobF/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4666 (0x123a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E33, serialNumber=379743714CE012230AA978BB1AA8C790E70667AB Validity Not Before: Aug 22 17:16:55 2025 GMT Not After : Aug 29 17:16:55 2025 GMT Subject: CN=68a8a608-2616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4a:a7:5f:d0:be:4c:7a:f1:43:ef:67:42:85: 7f:63:c7:69:08:64:c7:d0:92:a7:08:90:59:be:15: 23:20:19:c4:9e:d3:c4:71:20:b8:69:b1:b5:e3:2b: 24:3d:cf:f0:b4:e4:62:1b:7d:90:a8:37:dd:7d:cb: 3c:3d:97:15:5e:13:59:02:eb:60:84:44:2a:95:6e: 5f:40:58:e7:b4:b0:b4:d4:eb:5c:69:38:0b:03:30: 5c:39:ed:3f:39:2f:5d:e8:ad:06:eb:b8:17:13:2f: 83:09:b3:37:c5:62:8e:8e:96:cd:98:86:55:62:a6: d3:7f:43:f5:0f:89:2b:b7:0c:92:e0:76:14:72:bc: b9:d0:c6:96:a9:eb:b4:c4:df:26:f0:9d:75:ce:ef: 76:ee:29:b0:8c:1e:d7:07:46:2d:ec:51:79:97:9b: d1:31:29:e9:ae:f2:19:53:f5:7b:59:54:b9:31:65: a7:82:06:11:59:6f:23:a3:87:aa:d3:a7:70:42:a9: 99:42:77:b6:08:15:a1:40:5c:b5:25:59:3b:17:d2: 20:21:2c:6a:08:ac:2f:76:eb:67:41:c8:4b:47:62: 05:08:aa:78:0f:2e:36:de:c6:85:38:b8:ce:7d:7a: 1d:40:b9:ff:81:6f:c2:99:5b:d5:16:17:e8:01:2e: 3a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:25:5D:3D:0C:EC:C9:28:0C:E5:14:DD:95:16:9F:64:71:39:72:94 X509v3 Authority Key Identifier: keyid:37:97:43:71:4C:E0:12:23:0A:A9:78:BB:1A:A8:C7:90:E7:06:67:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E33/877A79B6E9D111E8AC892770C4F9AE02/N5dDcUzgEiMKqXi7GqjHkOcGZ6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:04:2f:a8:7a:ec:77:1c:f7:1f:f6:db:24:b0:39:82:77:90: 33:17:63:c8:93:a0:f2:7f:c0:14:2e:01:bf:0d:0f:e5:e2:ab: 6b:ee:07:5e:4f:48:d8:f5:41:0c:ac:6f:e1:45:89:16:99:ae: 4f:66:98:6c:21:4b:0c:ad:f8:1a:a8:45:e2:5e:77:a6:f3:c9: 6c:36:18:a1:43:46:d9:cc:91:c3:eb:f2:99:9a:31:cf:f6:a5: 89:59:67:25:65:78:a6:c4:35:0a:b4:53:27:d5:1d:be:21:4a: b6:15:97:00:d1:5d:e5:23:eb:b3:f0:fc:58:1d:99:27:4b:f6: 7c:90:6e:ae:3c:26:cf:9d:7c:b8:bc:9d:7b:c9:dc:60:04:93: be:b7:35:33:42:b2:d3:0c:da:b1:9f:4d:e1:99:92:54:d1:76: 50:72:5e:30:12:32:47:82:a0:43:c8:c6:7f:56:2d:1a:81:a9: 90:95:ba:a5:fa:bb:a5:df:7a:6a:8a:89:45:df:ac:33:12:75: 83:fa:1b:a1:b0:39:eb:98:c4:9f:de:f5:f6:a8:04:03:0e:f2: a9:a3:78:f1:ec:86:da:1e:34:fd:1d:15:35:04:66:09:5d:87: 30:32:7e:80:04:b2:44:63:f3:98:25:b5:38:ca:34:17:e4:23: 04:50:be:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNFMzMxMTAvBgNVBAUTKDM3OTc0MzcxNENFMDEyMjMwQUE5NzhCQjFBQThDNzkw RTcwNjY3QUIwHhcNMjUwODIyMTcxNjU1WhcNMjUwODI5MTcxNjU1WjAYMRYwFAYD VQQDEw02OGE4YTYwOC0yNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUqnX9C+THrxQ+9nQoV/Y8dpCGTH0JKnCJBZvhUjIBnEntPEcSC4abG14ysk Pc/wtORiG32QqDfdfcs8PZcVXhNZAutghEQqlW5fQFjntLC01OtcaTgLAzBcOe0/ OS9d6K0G67gXEy+DCbM3xWKOjpbNmIZVYqbTf0P1D4krtwyS4HYUcry50MaWqeu0 xN8m8J11zu927imwjB7XB0Yt7FF5l5vRMSnprvIZU/V7WVS5MWWnggYRWW8jo4eq 06dwQqmZQne2CBWhQFy1JVk7F9IgISxqCKwvdutnQchLR2IFCKp4Dy423saFOLjO fXodQLn/gW/CmVvVFhfoAS46EwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYlXT0M 7MkoDOUU3ZUWn2RxOXKUMB8GA1UdIwQYMBaAFDeXQ3FM4BIjCql4uxqox5DnBmer MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0UzMy84NzdBNzlCNkU5 RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0VpTUtxWGk3R3FqSGtPY0da NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL041ZERjVXpnRWlNS3FYaTdHcWpIa09jR1o2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0UzMy84NzdBNzlCNkU5RDExMUU4QUM4OTI3NzBDNEY5QUUwMi9ONWREY1V6Z0Vp TUtxWGk3R3FqSGtPY0daNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVBC+oeux3HPcf9tsksDmCd5AzF2PIk6Dyf8AULgG/DQ/l4qtr7gde T0jY9UEMrG/hRYkWma5PZphsIUsMrfgaqEXiXnem88lsNhihQ0bZzJHD6/KZmjHP 9qWJWWclZXimxDUKtFMn1R2+IUq2FZcA0V3lI+uz8PxYHZknS/Z8kG6uPCbPnXy4 vJ17ydxgBJO+tzUzQrLTDNqxn03hmZJU0XZQcl4wEjJHgqBDyMZ/Vi0agamQlbql +rul33pqiolF36wzEnWD+huhsDnrmMSf3vX2qAQDDvKpo3jx7IbaHjT9HRU1BGYJ XYcwMn6ABLJEY/OYJbU4yjQX5CMEUL5f -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:23 2025 by rpki-client