$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft File: 0S_1veXU0upxiMsALH_wFtyZTXI.mft (raw, json) Hash identifier: p5PoxCHVZ5GWtn1a0gPSx67RsQr/PASJ4h9jgKbZrXw= Subject key identifier: C9:F0:FE:48:02:C0:8F:86:B4:9A:73:9A:75:DF:30:E6:40:A3:09:53 Authority key identifier: D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 Certificate issuer: /CN=A91EA623/serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Certificate serial: 053D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft Manifest number: 053D Signing time: Fri 22 Aug 2025 23:40:53 +0000 Manifest this update: Fri 22 Aug 2025 23:40:53 +0000 Manifest next update: Fri 29 Aug 2025 23:40:53 +0000 Files and hashes: 1: 0S_1veXU0upxiMsALH_wFtyZTXI.crl (hash: 7OaGZat/PRQZ3fvlCP4oRN5Gg5Zss3kXSzjB5KBdyuI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:40:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1341 (0x53d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA623, serialNumber=D12FF5BDE5D4D2EA7188CB002C7FF016DC994D72 Validity Not Before: Aug 22 23:40:53 2025 GMT Not After : Aug 29 23:40:53 2025 GMT Subject: CN=68a90005-889c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:99:c1:ec:25:51:ce:32:64:51:53:b4:6b:9d: 7a:63:2d:1a:a5:78:c8:38:74:cf:59:ab:2e:cd:91: 4a:8c:19:9a:c0:31:76:08:62:26:53:45:fb:ad:40: da:2c:e8:e5:01:bd:4f:fe:21:77:ef:77:31:88:79: 22:f4:5d:e0:b3:3c:2f:73:3c:c1:9c:ce:1a:1f:3d: c1:5c:16:fa:3d:70:63:95:e9:66:c8:d7:aa:d6:ea: 1c:d8:0b:41:86:40:e1:70:35:03:df:ca:80:a2:cb: 86:46:84:38:72:13:a2:cb:b4:b6:0e:6b:e2:a0:71: 42:04:89:16:6a:56:b4:7a:6c:1b:f4:76:24:0a:72: 9d:1b:56:0b:c4:32:c5:4b:47:3a:b9:f5:3b:c0:0f: 24:80:d1:17:8f:8e:f9:7a:82:4e:6f:1c:44:13:3f: 24:8a:04:48:a9:ca:9a:97:97:07:7a:73:f3:ad:f0: 31:7a:db:a0:8d:1f:dd:d7:be:67:b2:b1:31:d1:9b: 8a:59:86:fd:30:31:78:a0:66:15:e1:3d:87:3a:2f: 2b:50:6d:2f:6a:f1:ab:43:66:2f:db:4a:f4:b9:23: 3a:ca:d5:2d:10:89:87:be:39:f0:c7:67:a7:af:c8: 99:5a:df:1b:7f:cd:e3:88:5c:cf:ee:db:8d:28:97: b0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F0:FE:48:02:C0:8F:86:B4:9A:73:9A:75:DF:30:E6:40:A3:09:53 X509v3 Authority Key Identifier: keyid:D1:2F:F5:BD:E5:D4:D2:EA:71:88:CB:00:2C:7F:F0:16:DC:99:4D:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0S_1veXU0upxiMsALH_wFtyZTXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA623/D3167F0A060C11ECAF675043C4F9AE02/0S_1veXU0upxiMsALH_wFtyZTXI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:73:b7:a8:82:d4:fa:fe:a3:25:15:10:11:0f:ad:05:75:94: 33:16:78:ff:d4:eb:74:f0:ea:4d:fe:fe:e5:7f:63:52:b3:b5: a3:9c:34:01:e9:3d:44:79:17:ea:d8:98:28:c7:5b:f6:b6:84: 31:f4:e9:af:28:12:c4:38:9b:64:41:71:63:10:62:dd:9c:86: 1c:3c:2b:4c:0b:b2:ea:85:44:7d:d9:78:df:15:7a:0f:5e:06: 99:b2:7f:d8:59:77:10:7c:d3:db:12:b9:e9:fc:a8:bc:eb:44: 22:63:32:68:3d:75:1b:c8:ae:ad:78:e8:0b:f0:ca:32:2c:b4: e9:46:aa:20:24:a6:9a:ec:66:86:37:77:ff:55:01:a4:d5:ae: 4d:29:83:43:c4:df:f7:04:24:5a:ab:e2:83:c7:51:a6:db:1a: 7d:f2:f4:72:ac:c5:8f:d0:da:35:64:27:fb:8a:7d:fc:52:e6: 68:7f:2f:99:30:14:44:57:c1:3f:4e:3c:ab:7a:82:b8:f1:28: 16:b3:e7:fa:20:b7:d7:fd:f9:8c:5c:ab:6c:fd:a9:66:bd:67: d7:d3:f8:dd:e0:6a:0e:5c:f3:8d:23:7d:23:a6:58:51:88:5e: a2:b0:a8:6e:6a:e6:86:cb:76:0b:41:fa:72:81:4c:e6:a9:33: 64:4b:3d:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE2MjMxMTAvBgNVBAUTKEQxMkZGNUJERTVENEQyRUE3MTg4Q0IwMDJDN0ZGMDE2 REM5OTRENzIwHhcNMjUwODIyMjM0MDUzWhcNMjUwODI5MjM0MDUzWjAYMRYwFAYD VQQDEw02OGE5MDAwNS04ODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3JnB7CVRzjJkUVO0a516Yy0apXjIOHTPWasuzZFKjBmawDF2CGImU0X7rUDa LOjlAb1P/iF373cxiHki9F3gszwvczzBnM4aHz3BXBb6PXBjlelmyNeq1uoc2AtB hkDhcDUD38qAosuGRoQ4chOiy7S2DmvioHFCBIkWala0emwb9HYkCnKdG1YLxDLF S0c6ufU7wA8kgNEXj475eoJObxxEEz8kigRIqcqal5cHenPzrfAxetugjR/d175n srEx0ZuKWYb9MDF4oGYV4T2HOi8rUG0vavGrQ2Yv20r0uSM6ytUtEImHvjnwx2en r8iZWt8bf83jiFzP7tuNKJewiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMnw/kgC wI+GtJpzmnXfMOZAowlTMB8GA1UdIwQYMBaAFNEv9b3l1NLqcYjLACx/8BbcmU1y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTYyMy9EMzE2N0YwQTA2 MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1cHhpTXNBTEhfd0Z0eVpU WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBTXzF2ZVhVMHVweGlNc0FMSF93RnR5WlRYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTYyMy9EMzE2N0YwQTA2MEMxMUVDQUY2NzUwNDNDNEY5QUUwMi8wU18xdmVYVTB1 cHhpTXNBTEhfd0Z0eVpUWEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBec7eogtT6/qMlFRARD60FdZQzFnj/1Ot08OpN/v7lf2NSs7WjnDQB 6T1EeRfq2Jgox1v2toQx9OmvKBLEOJtkQXFjEGLdnIYcPCtMC7LqhUR92XjfFXoP XgaZsn/YWXcQfNPbErnp/Ki860QiYzJoPXUbyK6teOgL8MoyLLTpRqogJKaa7GaG N3f/VQGk1a5NKYNDxN/3BCRaq+KDx1Gm2xp98vRyrMWP0No1ZCf7in38UuZofy+Z MBREV8E/TjyreoK48SgWs+f6ILfX/fmMXKts/almvWfX0/jd4GoOXPONI30jplhR iF6isKhuauaGy3YLQfpygUzmqTNkSz0M -----END CERTIFICATE-----Generated at Sat Aug 23 10:39:57 2025 by rpki-client