$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft File: bX2AV2xLO-av9DH40yM49x_fAd0.mft (raw, json) Hash identifier: 6qsrwcJQ4HEOPjESDOFYWK59osKu6Pogbl4QngjDjGI= Subject key identifier: 5D:E7:87:59:BD:48:5A:08:38:44:81:FE:E6:B7:42:19:CC:1A:69:3F Authority key identifier: 6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD Certificate issuer: /CN=A91FC1B8/serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Certificate serial: 0EC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft Manifest number: 0EBA Signing time: Fri 22 Aug 2025 17:46:43 +0000 Manifest this update: Fri 22 Aug 2025 17:46:42 +0000 Manifest next update: Fri 29 Aug 2025 17:46:42 +0000 Files and hashes: 1: bX2AV2xLO-av9DH40yM49x_fAd0.crl (hash: uneKEHr4s+NZinzTz6Y5Epx/i6E9HfOM54XAsXL+g7s=) 2: 4E150C0890FD11E98DB54881C4F9AE02.roa (hash: dB+hpclNcZTfVrplk+B2uDeZoqPu8XwgAkOEwxQUS0E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3778 (0xec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC1B8, serialNumber=6D7D80576C4B3BE6AFF431F8D32338F71FDF01DD Validity Not Before: Aug 22 17:46:42 2025 GMT Not After : Aug 29 17:46:42 2025 GMT Subject: CN=68a8ad02-be9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a2:c9:88:a6:dc:c3:d4:75:eb:b5:96:c9:c8: cb:13:ad:00:ca:5a:b9:9b:f0:57:1e:11:c1:c9:2d: e6:e1:52:c0:74:63:65:b1:46:3a:e0:b6:e0:78:7b: 48:41:eb:86:c6:0c:2a:c5:af:65:e9:30:fa:d2:0f: e3:c4:84:2a:61:42:3c:0f:39:27:a5:61:26:85:d3: d5:03:7c:4f:dd:fc:7d:db:e2:40:e9:1c:80:a9:f1: 94:4b:23:f5:b3:54:7a:13:f6:6b:72:b2:58:97:da: c3:97:9f:82:85:50:19:a1:83:6e:3f:cd:f0:a1:d8: 0b:4e:54:d7:61:22:fe:24:87:84:92:74:2d:1e:72: 48:45:41:b3:2d:02:f0:8c:70:b1:aa:81:32:ea:25: a7:df:61:28:06:2a:74:19:d6:ec:d4:18:83:f5:8f: de:99:98:07:7e:4d:62:c9:8c:d3:42:dd:b7:3f:f5: 62:61:5a:e0:90:1e:6f:a9:4d:f2:34:08:a2:7c:c9: 07:48:ce:72:49:0d:06:30:ef:e4:2e:61:86:80:eb: 25:5e:57:52:fe:d1:de:a6:59:11:f4:83:b9:2e:c1: 3c:59:29:4b:b6:5f:37:93:d9:8f:d5:bb:80:d4:70: 2f:c1:26:6f:b2:cb:44:51:74:27:7e:5e:22:ca:2f: 5c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E7:87:59:BD:48:5A:08:38:44:81:FE:E6:B7:42:19:CC:1A:69:3F X509v3 Authority Key Identifier: keyid:6D:7D:80:57:6C:4B:3B:E6:AF:F4:31:F8:D3:23:38:F7:1F:DF:01:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bX2AV2xLO-av9DH40yM49x_fAd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC1B8/FBDE99FA90FB11E992D5987FC4F9AE02/bX2AV2xLO-av9DH40yM49x_fAd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:d8:1e:32:22:a6:22:c2:e4:32:b8:d4:4c:a8:44:6a:50:73: 0a:e9:d1:61:ac:99:e5:11:d0:a2:fc:75:5e:1d:d8:4d:61:55: c4:66:bd:fb:37:f8:39:f8:3b:c7:bf:d3:1c:aa:5d:35:ba:4f: ea:9d:f5:b6:14:73:06:7e:9b:6f:3f:5b:76:68:b8:74:a9:09: 3e:35:bf:89:36:4e:6a:80:27:b5:9c:ef:8f:76:ab:de:0c:d7: 65:f3:97:45:b0:b7:ac:74:ce:cc:8b:d3:24:20:cb:91:48:f6: e1:76:af:d5:5b:a3:c3:2e:d1:bf:b4:b5:d1:87:25:90:83:0e: 67:72:9c:5a:88:42:14:86:5c:a7:55:81:0b:66:5a:6b:c5:3b: 9a:7f:48:67:c4:a4:55:88:76:b5:a4:39:83:1c:f3:59:42:b5: 7f:32:3a:13:87:f4:80:3a:b0:27:ad:f0:88:37:9a:d9:e1:7c: 6d:a3:5d:95:07:af:ae:44:3a:62:fa:1b:ad:1f:31:4c:9a:90: ff:2b:53:3e:82:a9:c6:c1:b5:80:bb:7f:0d:b6:d7:b6:54:f2: a9:72:60:f7:ee:70:06:bc:fd:5e:df:d9:bc:06:b1:74:ae:1a: 36:5f:39:99:91:e5:4b:3c:f5:85:1c:85:27:7f:32:a9:62:b2: 54:43:dd:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMxQjgxMTAvBgNVBAUTKDZEN0Q4MDU3NkM0QjNCRTZBRkY0MzFGOEQzMjMzOEY3 MUZERjAxREQwHhcNMjUwODIyMTc0NjQyWhcNMjUwODI5MTc0NjQyWjAYMRYwFAYD VQQDEw02OGE4YWQwMi1iZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6LJiKbcw9R167WWycjLE60Aylq5m/BXHhHByS3m4VLAdGNlsUY64LbgeHtI QeuGxgwqxa9l6TD60g/jxIQqYUI8DzknpWEmhdPVA3xP3fx92+JA6RyAqfGUSyP1 s1R6E/ZrcrJYl9rDl5+ChVAZoYNuP83wodgLTlTXYSL+JIeEknQtHnJIRUGzLQLw jHCxqoEy6iWn32EoBip0Gdbs1BiD9Y/emZgHfk1iyYzTQt23P/ViYVrgkB5vqU3y NAiifMkHSM5ySQ0GMO/kLmGGgOslXldS/tHeplkR9IO5LsE8WSlLtl83k9mP1buA 1HAvwSZvsstEUXQnfl4iyi9cZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF3nh1m9 SFoIOESB/ua3QhnMGmk/MB8GA1UdIwQYMBaAFG19gFdsSzvmr/Qx+NMjOPcf3wHd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzFCOC9GQkRFOTlGQTkw RkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8tYXY5REg0MHlNNDl4X2ZB ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JYMkFWMnhMTy1hdjlESDQweU00OXhfZkFkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzFCOC9GQkRFOTlGQTkwRkIxMUU5OTJENTk4N0ZDNEY5QUUwMi9iWDJBVjJ4TE8t YXY5REg0MHlNNDl4X2ZBZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDH2B4yIqYiwuQyuNRMqERqUHMK6dFhrJnlEdCi/HVeHdhNYVXEZr37 N/g5+DvHv9Mcql01uk/qnfW2FHMGfptvP1t2aLh0qQk+Nb+JNk5qgCe1nO+Pdqve DNdl85dFsLesdM7Mi9MkIMuRSPbhdq/VW6PDLtG/tLXRhyWQgw5ncpxaiEIUhlyn VYELZlprxTuaf0hnxKRViHa1pDmDHPNZQrV/MjoTh/SAOrAnrfCIN5rZ4Xxto12V B6+uRDpi+hutHzFMmpD/K1M+gqnGwbWAu38Ntte2VPKpcmD37nAGvP1e39m8BrF0 rho2XzmZkeVLPPWFHIUnfzKpYrJUQ91T -----END CERTIFICATE-----Generated at Sat Aug 23 18:15:01 2025 by rpki-client