$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft File: 8eArOUb---b0ZPQ0jvIVX2HQehs.mft (raw, json) Hash identifier: iNBkUcbz5kqL5Lmsoccikh2pGjBRu3i16oVx7YcAaAM= Subject key identifier: 4B:29:79:23:A4:D1:7B:DD:C9:10:B4:40:CA:C8:7B:5A:D5:C0:AF:40 Authority key identifier: F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B Certificate issuer: /CN=A91FF4FC/serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Certificate serial: 0E0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft Manifest number: 0E06 Signing time: Fri 22 Aug 2025 17:57:41 +0000 Manifest this update: Fri 22 Aug 2025 17:57:40 +0000 Manifest next update: Fri 29 Aug 2025 17:57:40 +0000 Files and hashes: 1: 8eArOUb---b0ZPQ0jvIVX2HQehs.crl (hash: 3RIlU2O2+DSeOt5FJhgCOwg3l90ULAghr2c4j5EFH0s=) 2: A280C1FCA06D11EB92FB3739C4F9AE02.roa (hash: 0IBVwDZ7i+J4nVvUTeF7Wzqm6YjeaulpyuMa4quZjWo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3596 (0xe0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF4FC, serialNumber=F1E02B3946FEFBE6F464F4348EF2155F61D07A1B Validity Not Before: Aug 22 17:57:40 2025 GMT Not After : Aug 29 17:57:40 2025 GMT Subject: CN=68a8af95-71c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:19:8c:31:65:4c:f0:69:40:1d:16:97:11:62: 6d:8c:e2:44:61:88:23:fe:e2:9d:94:4d:e3:a8:fe: 6a:5f:ec:37:10:09:01:75:1b:98:da:73:ef:e2:d7: e5:21:03:ea:bc:58:90:81:b6:58:41:75:7a:fc:80: 63:90:69:41:a3:32:d2:75:1d:1f:48:e2:06:3d:39: 03:7f:9b:70:8a:1b:a1:31:00:92:38:ba:26:06:4f: 6d:b0:ab:bb:b3:f1:18:c0:cb:8d:65:df:c5:4a:72: 5e:c3:6f:44:18:8d:46:15:b0:9a:5a:4d:8a:c3:22: 6b:a3:26:9a:38:de:b7:31:97:61:e7:31:8b:c8:fc: 6c:89:6f:dc:0e:68:4b:ff:74:59:13:7a:95:64:9f: 7f:9c:20:9d:42:1c:fa:96:f5:24:fc:ad:95:f5:07: d6:86:7f:b1:12:ca:8c:8e:7e:df:a7:e0:c4:a9:95: 01:24:24:c3:14:4d:d7:7e:70:7b:21:d8:d0:9d:a1: 34:8c:55:31:ad:eb:23:98:39:9e:59:a2:73:f0:59: b0:ed:e9:32:31:c7:d2:5b:44:80:03:57:27:b3:1b: 1b:d3:36:0a:91:f1:e9:72:d4:66:27:56:41:4f:1d: c5:00:b8:f2:08:e8:31:06:91:2c:41:f7:80:4a:81: c9:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:29:79:23:A4:D1:7B:DD:C9:10:B4:40:CA:C8:7B:5A:D5:C0:AF:40 X509v3 Authority Key Identifier: keyid:F1:E0:2B:39:46:FE:FB:E6:F4:64:F4:34:8E:F2:15:5F:61:D0:7A:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8eArOUb---b0ZPQ0jvIVX2HQehs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF4FC/3B634BBEB44411E986713D1DC4F9AE02/8eArOUb---b0ZPQ0jvIVX2HQehs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:e6:5f:33:82:5e:60:2c:b1:55:f2:b7:02:bb:5e:7e:2c:3f: 0e:93:9c:35:cc:d4:e0:d8:c0:ef:74:aa:86:a3:09:07:4b:59: 76:d2:94:5c:9b:4d:66:53:9f:1e:ba:01:6e:c3:de:db:4f:a4: e1:1c:1d:89:e6:bf:3b:63:e9:bb:c9:f0:aa:8e:e5:a5:0a:b8: 38:2c:c9:06:fd:f9:c0:03:0c:13:45:ed:1d:88:fc:a3:67:9d: 2e:bd:35:f8:e6:f4:8b:49:28:84:6e:2a:c3:a3:73:0b:74:dd: 0b:ba:a5:40:96:b1:b9:b5:4f:52:f3:7f:92:87:76:8e:e5:54: e1:6b:73:b1:0a:e5:f5:e3:7c:60:cd:f7:05:51:2d:de:58:8f: 42:29:ac:e9:15:b2:dd:bf:66:db:db:9e:90:30:98:7b:57:f8: 0c:99:67:9e:b7:61:97:34:44:6e:90:41:a9:71:08:0b:49:24: 1e:f5:1d:07:78:3c:76:7b:7a:2f:28:11:7a:48:bf:b1:9b:1d: b2:ce:cb:e3:f9:f3:6e:2f:f6:26:e3:2f:4d:d4:6b:cd:70:c9: 91:12:85:65:9f:9c:82:b4:fc:bb:38:14:69:0d:91:5c:c5:64: f0:ad:13:99:9d:a2:15:f5:a2:73:1f:a1:d9:38:34:cb:51:e3: b6:b0:f5:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY0RkMxMTAvBgNVBAUTKEYxRTAyQjM5NDZGRUZCRTZGNDY0RjQzNDhFRjIxNTVG NjFEMDdBMUIwHhcNMjUwODIyMTc1NzQwWhcNMjUwODI5MTc1NzQwWjAYMRYwFAYD VQQDEw02OGE4YWY5NS03MWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAthmMMWVM8GlAHRaXEWJtjOJEYYgj/uKdlE3jqP5qX+w3EAkBdRuY2nPv4tfl IQPqvFiQgbZYQXV6/IBjkGlBozLSdR0fSOIGPTkDf5twihuhMQCSOLomBk9tsKu7 s/EYwMuNZd/FSnJew29EGI1GFbCaWk2KwyJroyaaON63MZdh5zGLyPxsiW/cDmhL /3RZE3qVZJ9/nCCdQhz6lvUk/K2V9QfWhn+xEsqMjn7fp+DEqZUBJCTDFE3XfnB7 IdjQnaE0jFUxresjmDmeWaJz8Fmw7ekyMcfSW0SAA1cnsxsb0zYKkfHpctRmJ1ZB Tx3FALjyCOgxBpEsQfeASoHJiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEspeSOk 0XvdyRC0QMrIe1rVwK9AMB8GA1UdIwQYMBaAFPHgKzlG/vvm9GT0NI7yFV9h0Hob MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjRGQy8zQjYzNEJCRUI0 NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0tYjBaUFEwanZJVlgySFFl aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhlQXJPVWItLS1iMFpQUTBqdklWWDJIUWVocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjRGQy8zQjYzNEJCRUI0NDQxMUU5ODY3MTNEMURDNEY5QUUwMi84ZUFyT1ViLS0t YjBaUFEwanZJVlgySFFlaHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN5l8zgl5gLLFV8rcCu15+LD8Ok5w1zNTg2MDvdKqGowkHS1l20pRc m01mU58eugFuw97bT6ThHB2J5r87Y+m7yfCqjuWlCrg4LMkG/fnAAwwTRe0diPyj Z50uvTX45vSLSSiEbirDo3MLdN0LuqVAlrG5tU9S83+Sh3aO5VTha3OxCuX143xg zfcFUS3eWI9CKazpFbLdv2bb256QMJh7V/gMmWeet2GXNERukEGpcQgLSSQe9R0H eDx2e3ovKBF6SL+xmx2yzsvj+fNuL/Ym4y9N1GvNcMmREoVln5yCtPy7OBRpDZFc xWTwrROZnaIV9aJzH6HZODTLUeO2sPXI -----END CERTIFICATE-----Generated at Sat Aug 23 21:01:05 2025 by rpki-client