$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft File: AXCw4NBuMUc8rBZOSwttIb300jc.mft (raw, json) Hash identifier: XreXAwiIEioGI2lkJPgyBbOdWLghkJcO8ZdYS+wOhj0= Subject key identifier: 13:A3:4E:76:AF:9D:94:10:C3:27:5F:7B:BF:2E:25:0F:C1:AE:D1:7E Authority key identifier: 01:70:B0:E0:D0:6E:31:47:3C:AC:16:4E:4B:0B:6D:21:BD:F4:D2:37 Certificate issuer: /CN=A91AE9F7/serialNumber=0170B0E0D06E31473CAC164E4B0B6D21BDF4D237 Certificate serial: 0FF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft Manifest number: 0FE9 Signing time: Fri 18 Jul 2025 17:38:28 +0000 Manifest this update: Fri 18 Jul 2025 17:38:27 +0000 Manifest next update: Fri 25 Jul 2025 17:38:27 +0000 Files and hashes: 1: AXCw4NBuMUc8rBZOSwttIb300jc.crl (hash: j/YgwhDFSwaWEJe8iQjcxmZrYcTo1v/Q2L6Z8ZANUWk=) 2: 1585570A544C11E9BDFF2B2DC4F9AE02.roa (hash: jZa47LQUiVvIxoLDSyE/2t1CJaYFtRO42+/jeT3MONo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.crl rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4085 (0xff5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE9F7, serialNumber=0170B0E0D06E31473CAC164E4B0B6D21BDF4D237 Validity Not Before: Jul 18 17:38:27 2025 GMT Not After : Jul 25 17:38:27 2025 GMT Subject: CN=687a8693-91e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0d:3a:c6:d6:97:b1:e0:24:0b:89:97:6f:8f: af:04:c9:54:98:92:21:fb:78:88:fa:49:66:df:49: e4:35:81:50:81:77:8f:b4:a9:3e:5f:12:47:58:20: be:5f:ec:27:51:36:b9:a9:75:52:8a:94:81:18:9b: 29:49:a8:39:df:74:27:12:0c:08:dc:d4:88:d7:d1: 41:8d:65:5c:12:a9:03:57:ed:4b:f0:7d:13:6a:d6: 92:da:ad:83:4f:f1:14:ab:bd:c6:a2:93:dc:aa:3f: bc:fd:da:51:be:d3:a1:b1:6c:f8:99:15:2b:06:e5: 54:9c:17:4b:2c:8d:dc:e1:ae:f7:62:dd:4b:53:af: 74:ca:79:8a:65:dc:14:e6:ac:f8:a9:a0:e5:23:fd: a7:a6:05:bb:eb:1a:bf:d6:34:94:d2:cf:7d:1a:5e: 2c:33:35:23:24:05:6e:8e:f7:4b:f8:db:f4:25:20: 00:e4:cb:cd:eb:61:5f:c3:41:cb:43:f7:43:50:8c: 00:1b:fe:a3:a8:21:8a:65:b6:5c:8e:e9:65:97:94: 01:b8:2c:de:34:df:6c:0e:d3:13:48:71:a7:77:14: 6c:e7:fd:72:d2:5a:8d:d0:66:f0:a4:80:be:61:71: f9:41:80:f5:cc:23:3c:a5:46:8e:3c:22:e6:cf:aa: 52:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A3:4E:76:AF:9D:94:10:C3:27:5F:7B:BF:2E:25:0F:C1:AE:D1:7E X509v3 Authority Key Identifier: keyid:01:70:B0:E0:D0:6E:31:47:3C:AC:16:4E:4B:0B:6D:21:BD:F4:D2:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXCw4NBuMUc8rBZOSwttIb300jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE9F7/379EC742544A11E9A350C127C4F9AE02/AXCw4NBuMUc8rBZOSwttIb300jc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:8c:c7:8f:f9:0f:4a:c9:ef:b0:3e:ec:95:f8:12:93:48:93: 1b:85:ef:95:a8:3d:77:52:0d:b0:9f:2c:37:d3:14:56:79:ec: fc:24:74:60:17:2f:6a:f7:cb:de:ca:23:6b:d3:f9:17:01:76: 14:21:49:ce:41:5d:75:f9:d6:91:a9:f1:dc:e7:92:cf:6f:40: cd:c5:8e:48:37:b3:95:12:94:f1:3d:97:52:50:3f:44:bc:8e: 01:1f:7f:5c:36:91:6d:e4:f1:56:4d:c1:bb:1a:83:29:b9:ab: 76:6d:41:f2:b7:20:c2:84:22:d5:c8:e8:dd:35:04:13:f2:06: dc:ff:2a:fd:71:8d:13:f6:16:93:03:89:19:c0:d3:25:76:69: 01:60:5f:05:fb:92:c1:0c:c6:1a:b4:c1:8d:cd:c5:25:e4:6c: ea:40:ff:6e:08:f3:4d:5d:b3:7e:8a:6d:a9:5b:9d:86:52:7f: 49:15:67:2d:97:ff:e1:6b:f6:3f:bb:53:dd:b2:a7:ab:ab:0d: 4e:7c:3d:db:04:93:de:6b:1f:c0:b2:d8:43:c8:9e:9c:b0:dd: 41:bb:39:76:48:15:56:43:0c:ed:df:85:88:00:4b:92:d4:c4: dd:d1:0f:32:a6:cc:83:84:a2:e6:09:5e:40:ef:f2:ca:25:82: 7b:2a:a5:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU5RjcxMTAvBgNVBAUTKDAxNzBCMEUwRDA2RTMxNDczQ0FDMTY0RTRCMEI2RDIx QkRGNEQyMzcwHhcNMjUwNzE4MTczODI3WhcNMjUwNzI1MTczODI3WjAYMRYwFAYD VQQDEw02ODdhODY5My05MWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxg06xtaXseAkC4mXb4+vBMlUmJIh+3iI+klm30nkNYFQgXePtKk+XxJHWCC+ X+wnUTa5qXVSipSBGJspSag533QnEgwI3NSI19FBjWVcEqkDV+1L8H0TataS2q2D T/EUq73GopPcqj+8/dpRvtOhsWz4mRUrBuVUnBdLLI3c4a73Yt1LU690ynmKZdwU 5qz4qaDlI/2npgW76xq/1jSU0s99Gl4sMzUjJAVujvdL+Nv0JSAA5MvN62Ffw0HL Q/dDUIwAG/6jqCGKZbZcjulll5QBuCzeNN9sDtMTSHGndxRs5/1y0lqN0GbwpIC+ YXH5QYD1zCM8pUaOPCLmz6pS4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOjTnav nZQQwydfe78uJQ/BrtF+MB8GA1UdIwQYMBaAFAFwsODQbjFHPKwWTksLbSG99NI3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTlGNy8zNzlFQzc0MjU0 NEExMUU5QTM1MEMxMjdDNEY5QUUwMi9BWEN3NE5CdU1VYzhyQlpPU3d0dEliMzAw amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYQ3c0TkJ1TVVjOHJCWk9Td3R0SWIzMDBqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTlGNy8zNzlFQzc0MjU0NEExMUU5QTM1MEMxMjdDNEY5QUUwMi9BWEN3NE5CdU1V YzhyQlpPU3d0dEliMzAwamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9jMeP+Q9Kye+wPuyV+BKTSJMbhe+VqD13Ug2wnyw30xRWeez8JHRg Fy9q98veyiNr0/kXAXYUIUnOQV11+daRqfHc55LPb0DNxY5IN7OVEpTxPZdSUD9E vI4BH39cNpFt5PFWTcG7GoMpuat2bUHytyDChCLVyOjdNQQT8gbc/yr9cY0T9haT A4kZwNMldmkBYF8F+5LBDMYatMGNzcUl5GzqQP9uCPNNXbN+im2pW52GUn9JFWct l//ha/Y/u1Pdsqerqw1OfD3bBJPeax/AsthDyJ6csN1Buzl2SBVWQwzt34WIAEuS 1MTd0Q8ypsyDhKLmCV5A7/LKJYJ7KqUa -----END CERTIFICATE-----Generated at Sun Jul 20 02:38:23 2025 by rpki-client