$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft File: tBFqjm2pkf3PcWJue-oR_2nLqEY.mft (raw, json) Hash identifier: GlbDBI12s6ABHl0PSCxPWa3BUCg1k61JJ0MY8WGgYEY= Subject key identifier: F1:7C:9A:12:EE:48:BD:FD:24:D4:84:19:95:BC:DC:36:BC:FB:10:92 Authority key identifier: B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 Certificate issuer: /CN=A91A4402/serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Certificate serial: 0C1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft Manifest number: 0BAE Signing time: Sat 19 Jul 2025 14:29:46 +0000 Manifest this update: Sat 19 Jul 2025 14:29:45 +0000 Manifest next update: Sat 26 Jul 2025 14:29:45 +0000 Files and hashes: 1: tBFqjm2pkf3PcWJue-oR_2nLqEY.crl (hash: 2Tm/JsFEkkVHAayPkF07NMzuSSLOZuKymqxnK8RDW3M=) 2: 61852A6058DF11F08A960A36C4F9AE02.roa (hash: z4mT9ptfzN3NWSk4a4ZYYhpO5X+rRKpUK8G1tEpGlKs=) 3: 234D0D6C500611F08771CE55C4F9AE02.roa (hash: tT6wpY26Z4BuIfJge3UrKFFEij5wdhpGksDHGEKyueE=) 4: 6CAE0142092E11F094B4703FC4F9AE02.roa (hash: U0UOsn2/X5DeOGEGCah3NBej8ExoikxrU8EoBu6Tnyg=) 5: 6279877C58DF11F08A960A36C4F9AE02.roa (hash: pY25qyZGK2wky0uuCy25EnRsi8wVW6eIswyb4KXJkt4=) 6: B43088B457F311F099129754C4F9AE02.roa (hash: neooxR8eYiH5c48fCKHo/Zt+4JOQJJQFlv5sgInMvhM=) 7: AEEADAC8608911F09ACC0566C4F9AE02.roa (hash: tEr4g5R12h+ldhJP/gdNS212uGl50Z7Cv3zyiy2+0GA=) 8: 0E43AECA3B5D11F0A26BC064C4F9AE02.roa (hash: BrjvMyWC8TkTRAeP4NtQF4Bi61DyGO1lu+HWAzFzf2Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 14:29:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4402, serialNumber=B4116A8E6DA991FDCF71626E7BEA11FF69CBA846 Validity Not Before: Jul 19 14:29:45 2025 GMT Not After : Jul 26 14:29:45 2025 GMT Subject: CN=687babda-e2d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ad:ac:81:71:87:fc:b9:a9:e0:bd:7c:a5:65: 98:94:59:fc:9c:56:cf:de:b0:2a:a7:30:bd:3f:bf: 06:84:59:64:29:e2:80:f2:c2:85:1b:9d:bb:18:27: 30:1b:cc:36:3e:0c:23:23:26:79:c6:06:49:7f:da: 15:c8:90:1b:3a:eb:fd:10:84:f0:56:b5:bc:6b:b0: f5:5f:ed:70:79:d5:57:1a:ec:00:e7:57:52:d3:86: 31:ff:f3:9f:7f:c0:17:24:c3:5d:ab:33:14:1b:c5: 6c:1c:c1:c7:b2:e0:53:15:c9:09:1e:08:8d:a7:e2: 4c:94:28:cd:8b:26:47:15:73:9a:7c:e7:a4:0f:f6: d7:62:ee:d4:01:1b:98:75:65:f0:f8:a2:0e:de:90: 6e:09:4e:00:7d:26:0d:08:7d:9f:c1:7d:f7:45:5b: 64:e2:6d:68:27:5a:27:a1:40:80:18:0f:42:f0:90: 92:37:13:11:12:dc:8a:36:68:1b:2a:15:b9:f4:d8: b4:97:19:3c:97:5b:8b:42:2b:53:b8:59:9b:79:ef: f6:30:f1:fa:47:c6:ad:85:6d:e9:8f:41:16:4d:f4: 37:7f:dd:09:5a:65:b6:90:c2:e4:b5:57:35:89:3c: 5d:fe:9f:d2:3d:a7:ed:54:58:59:f7:d7:a8:ff:55: 3c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7C:9A:12:EE:48:BD:FD:24:D4:84:19:95:BC:DC:36:BC:FB:10:92 X509v3 Authority Key Identifier: keyid:B4:11:6A:8E:6D:A9:91:FD:CF:71:62:6E:7B:EA:11:FF:69:CB:A8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tBFqjm2pkf3PcWJue-oR_2nLqEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4402/FDBFD0203D9611EA8EA0702FC4F9AE02/tBFqjm2pkf3PcWJue-oR_2nLqEY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:b7:45:29:c7:eb:51:d8:b1:7b:0f:2a:27:7a:d7:8a:4d:5e: 11:be:66:04:4c:19:6a:e4:05:69:68:0d:82:52:19:c2:51:06: b3:a4:c7:34:c6:fb:17:e4:39:23:aa:ef:41:0c:2d:ff:51:72: a0:ff:dd:84:bc:9c:d6:ec:db:a3:85:ed:cc:e2:dd:9a:29:56: 0f:4c:c5:9e:3f:ac:b9:6e:d5:41:4b:0b:76:1f:9b:56:c5:75: 03:88:82:ad:51:67:6f:b8:7c:ac:3c:3b:67:c2:5c:dc:cb:a2: 86:2d:71:a0:1c:e6:80:4f:20:4e:78:e1:e4:cb:3e:a4:8f:64: cb:99:67:0b:24:94:c3:aa:1f:cd:e5:b7:da:53:83:bb:ed:b7: ae:d3:97:58:97:ee:f2:83:cd:a7:53:c9:10:53:8d:7d:3d:46: 04:1c:4e:c8:a2:e9:a5:9f:84:1b:f2:dc:29:22:0a:ad:4c:76: 8d:f4:e8:59:38:04:07:72:e0:19:bb:30:ff:47:c8:7f:2c:f7: 70:54:eb:56:a9:27:73:68:22:98:4c:3d:8f:f0:c7:b2:a7:89: d7:9e:be:f1:6a:d6:9f:43:00:53:d4:eb:96:5f:d3:6d:7d:be: d1:f2:03:e0:4d:13:02:d3:64:64:9b:28:7b:c7:68:32:6e:7e: f3:4c:f7:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ0MDIxMTAvBgNVBAUTKEI0MTE2QThFNkRBOTkxRkRDRjcxNjI2RTdCRUExMUZG NjlDQkE4NDYwHhcNMjUwNzE5MTQyOTQ1WhcNMjUwNzI2MTQyOTQ1WjAYMRYwFAYD VQQDEw02ODdiYWJkYS1lMmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtK2sgXGH/Lmp4L18pWWYlFn8nFbP3rAqpzC9P78GhFlkKeKA8sKFG527GCcw G8w2PgwjIyZ5xgZJf9oVyJAbOuv9EITwVrW8a7D1X+1wedVXGuwA51dS04Yx//Of f8AXJMNdqzMUG8VsHMHHsuBTFckJHgiNp+JMlCjNiyZHFXOafOekD/bXYu7UARuY dWXw+KIO3pBuCU4AfSYNCH2fwX33RVtk4m1oJ1onoUCAGA9C8JCSNxMREtyKNmgb KhW59Ni0lxk8l1uLQitTuFmbee/2MPH6R8athW3pj0EWTfQ3f90JWmW2kMLktVc1 iTxd/p/SPaftVFhZ99eo/1U8fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPF8mhLu SL39JNSEGZW83Da8+xCSMB8GA1UdIwQYMBaAFLQRao5tqZH9z3FibnvqEf9py6hG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDQwMi9GREJGRDAyMDNE OTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtmM1BjV0p1ZS1vUl8ybkxx RVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RCRnFqbTJwa2YzUGNXSnVlLW9SXzJuTHFFWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDQwMi9GREJGRDAyMDNEOTYxMUVBOEVBMDcwMkZDNEY5QUUwMi90QkZxam0ycGtm M1BjV0p1ZS1vUl8ybkxxRVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJt0Upx+tR2LF7DyoneteKTV4RvmYETBlq5AVpaA2CUhnCUQazpMc0 xvsX5Dkjqu9BDC3/UXKg/92EvJzW7Nujhe3M4t2aKVYPTMWeP6y5btVBSwt2H5tW xXUDiIKtUWdvuHysPDtnwlzcy6KGLXGgHOaATyBOeOHkyz6kj2TLmWcLJJTDqh/N 5bfaU4O77beu05dYl+7yg82nU8kQU419PUYEHE7Ioumln4Qb8twpIgqtTHaN9OhZ OAQHcuAZuzD/R8h/LPdwVOtWqSdzaCKYTD2P8Meyp4nXnr7xatafQwBT1OuWX9Nt fb7R8gPgTRMC02Rkmyh7x2gybn7zTPfd -----END CERTIFICATE-----Generated at Sun Jul 20 06:43:25 2025 by rpki-client