$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft File: Od1jNTmfErgZIRzpGqfc9i9tgbw.mft (raw, json) Hash identifier: sAvZNRzSh8Mje2VXnhQQhMuPtoDnNVCUJqYh6nQLQ2o= Subject key identifier: 02:B9:87:D3:87:94:98:E0:A8:4E:55:FF:63:95:7E:2E:47:10:06:98 Authority key identifier: 39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC Certificate issuer: /CN=A91EBB2D/serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Certificate serial: 0393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft Manifest number: 0387 Signing time: Sat 23 Aug 2025 01:06:34 +0000 Manifest this update: Sat 23 Aug 2025 01:06:33 +0000 Manifest next update: Sat 30 Aug 2025 01:06:33 +0000 Files and hashes: 1: Od1jNTmfErgZIRzpGqfc9i9tgbw.crl (hash: wioMWg4RgZeu9KxXZcfp2jagnuLkaZEKzwG9fw2XDFI=) 2: 9233AB983ED411F0B38CCD78C4F9AE02.roa (hash: 9jPLiSrAv9CpBTipdqfUpD+haiGgsN7V6kZeTNfsQaQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:06:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 915 (0x393) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBB2D, serialNumber=39DD6335399F12B819211CE91AA7DCF62F6D81BC Validity Not Before: Aug 23 01:06:33 2025 GMT Not After : Aug 30 01:06:33 2025 GMT Subject: CN=68a91419-b9e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:bd:51:04:77:31:c5:f8:13:52:a3:7c:34:d8: 7b:0e:43:f0:49:e4:50:4c:4a:9e:02:43:60:6d:b5: 78:3b:e7:ff:2f:32:d6:59:22:2e:40:a6:4b:9f:71: 2c:ec:e3:9f:59:32:59:97:29:49:16:b6:4b:63:99: 55:68:1b:7f:2d:be:41:d9:46:9c:7a:95:ce:c1:38: d4:2a:33:d1:54:e9:7e:5b:50:78:9c:a4:1e:af:a7: cf:bf:68:27:23:25:99:4c:80:73:1d:51:97:2f:27: dc:ff:f2:23:d1:fe:ba:74:f5:08:13:1f:5a:9e:0c: 9b:3a:f9:4d:cf:43:6c:ba:93:a4:46:80:c8:90:3e: 6b:32:13:fe:7e:c3:98:f9:ab:a3:21:11:4c:82:eb: 76:16:54:e1:12:73:64:99:5b:2c:10:4d:7d:1f:d7: ff:51:fa:48:31:de:6c:54:0c:dd:48:11:93:9d:84: 6d:cb:83:8b:7e:bb:fd:12:9f:c0:53:2a:88:37:0d: 31:72:5c:33:d1:01:61:1e:ff:45:57:d1:fc:91:6f: f8:e3:5d:47:7b:6f:7f:85:5f:30:6b:3d:88:2d:51: c3:4c:c4:36:f4:59:f6:2f:f5:24:4f:04:55:54:5c: 9c:b9:02:17:5f:c4:c4:77:a9:f7:3b:6a:b2:74:d5: ef:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:B9:87:D3:87:94:98:E0:A8:4E:55:FF:63:95:7E:2E:47:10:06:98 X509v3 Authority Key Identifier: keyid:39:DD:63:35:39:9F:12:B8:19:21:1C:E9:1A:A7:DC:F6:2F:6D:81:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Od1jNTmfErgZIRzpGqfc9i9tgbw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBB2D/965BD57EB89511EC8242D27EC4F9AE02/Od1jNTmfErgZIRzpGqfc9i9tgbw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:1a:84:57:9c:0f:bb:6b:0c:68:71:92:fc:09:60:a4:fb:47: 26:af:3d:5f:f3:2a:a8:79:cd:e0:1f:e0:11:c4:de:ae:6d:4d: 57:99:6e:e0:24:dd:50:7e:d0:88:00:75:41:e3:57:35:7d:b1: bd:6e:3a:b5:9e:8e:d6:6e:52:71:f2:99:fc:12:42:b7:24:fb: f8:c3:cf:0c:fc:d0:a8:70:a1:c3:9e:1e:0c:b1:60:8b:43:86: 02:07:ed:3b:bf:4a:fd:4b:24:03:b8:f5:22:e4:82:b6:d5:40: 25:2c:f9:bc:49:99:33:da:0b:9d:1a:cc:d0:a6:6f:f4:21:6e: 9c:67:b0:51:e3:66:a1:15:09:16:6c:7f:95:7c:6d:56:d6:21: 15:e8:01:35:34:4a:da:f0:86:ae:29:51:17:64:c7:ef:94:18: f3:da:b4:8b:62:27:f0:b3:07:7e:76:b9:10:ce:ea:7f:60:6e: 85:27:c6:0d:24:16:96:11:75:fb:dd:63:96:e7:ba:17:18:75: f8:2f:1d:b6:19:44:3f:44:3e:1d:88:21:37:1a:f3:43:a8:76: bf:99:0d:4a:91:10:7d:2e:d5:24:94:13:7b:3e:12:1c:44:05: 08:4d:34:eb:4b:67:a8:f1:87:5d:76:14:9d:a1:14:c1:0c:76: 79:f3:99:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJCMkQxMTAvBgNVBAUTKDM5REQ2MzM1Mzk5RjEyQjgxOTIxMUNFOTFBQTdEQ0Y2 MkY2RDgxQkMwHhcNMjUwODIzMDEwNjMzWhcNMjUwODMwMDEwNjMzWjAYMRYwFAYD VQQDEw02OGE5MTQxOS1iOWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArL1RBHcxxfgTUqN8NNh7DkPwSeRQTEqeAkNgbbV4O+f/LzLWWSIuQKZLn3Es 7OOfWTJZlylJFrZLY5lVaBt/Lb5B2UacepXOwTjUKjPRVOl+W1B4nKQer6fPv2gn IyWZTIBzHVGXLyfc//Ij0f66dPUIEx9angybOvlNz0NsupOkRoDIkD5rMhP+fsOY +aujIRFMgut2FlThEnNkmVssEE19H9f/UfpIMd5sVAzdSBGTnYRty4OLfrv9Ep/A UyqINw0xclwz0QFhHv9FV9H8kW/4411He29/hV8waz2ILVHDTMQ29Fn2L/UkTwRV VFycuQIXX8TEd6n3O2qydNXvYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAK5h9OH lJjgqE5V/2OVfi5HEAaYMB8GA1UdIwQYMBaAFDndYzU5nxK4GSEc6Rqn3PYvbYG8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkIyRC85NjVCRDU3RUI4 OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVyZ1pJUnpwR3FmYzlpOXRn YncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kMWpOVG1mRXJnWklSenBHcWZjOWk5dGdidy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkIyRC85NjVCRDU3RUI4OTUxMUVDODI0MkQyN0VDNEY5QUUwMi9PZDFqTlRtZkVy Z1pJUnpwR3FmYzlpOXRnYncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZGoRXnA+7awxocZL8CWCk+0cmrz1f8yqoec3gH+ARxN6ubU1XmW7g JN1QftCIAHVB41c1fbG9bjq1no7WblJx8pn8EkK3JPv4w88M/NCocKHDnh4MsWCL Q4YCB+07v0r9SyQDuPUi5IK21UAlLPm8SZkz2gudGszQpm/0IW6cZ7BR42ahFQkW bH+VfG1W1iEV6AE1NEra8IauKVEXZMfvlBjz2rSLYifwswd+drkQzup/YG6FJ8YN JBaWEXX73WOW57oXGHX4Lx22GUQ/RD4diCE3GvNDqHa/mQ1KkRB9LtUklBN7PhIc RAUITTTrS2eo8YdddhSdoRTBDHZ585kK -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:55 2025 by rpki-client