$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft File: w-IA1ABdmiPkv66uDtty6kPx0JY.mft (raw, json) Hash identifier: UeD8XKQlmPYMYfkLCNwFJqk8w4NUXkeLiG8RnrYDQGg= Subject key identifier: E7:DF:B8:3B:01:AE:10:8A:C2:79:A6:28:F6:4C:9F:1D:28:DD:A5:C3 Authority key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 Certificate issuer: /CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Certificate serial: 0110 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft Manifest number: 010E Signing time: Sat 19 Jul 2025 04:50:59 +0000 Manifest this update: Sat 19 Jul 2025 04:50:59 +0000 Manifest next update: Sat 26 Jul 2025 04:50:59 +0000 Files and hashes: 1: w-IA1ABdmiPkv66uDtty6kPx0JY.crl (hash: CNtx6jgra0r9sydUz8Z7/b2eYM/3MRj3O5HKgCcEBqQ=) 2: C19C2720CA2711EE82C12B0CC4F9AE02.roa (hash: VHJTWsm4wzJziIer/htU6hv3gqL/KMd1K2nOD3+RJsA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:50:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD1A2, serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Validity Not Before: Jul 19 04:50:59 2025 GMT Not After : Jul 26 04:50:59 2025 GMT Subject: CN=687b2433-f2a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:62:26:30:28:47:b1:b9:48:8e:97:3a:55:9c: 58:0b:64:c6:e2:a5:35:c8:b1:c0:76:08:cf:d3:56: 1c:09:b5:5d:d7:e9:c8:17:ae:93:7a:61:f5:04:fa: 24:0a:c7:cf:22:fd:20:ab:ee:d9:14:42:5f:37:d1: 4f:60:c3:37:6f:05:42:e6:a1:bd:d4:e0:e1:bc:50: ea:98:b3:3f:cd:03:80:78:34:3b:4d:8a:8d:82:92: 91:76:9c:97:03:56:45:96:80:3a:ce:78:fc:ad:9d: 1f:3c:5c:ec:6e:06:85:2d:6a:d6:b0:fa:a5:7b:57: 2f:a6:1b:20:12:8f:74:55:c6:fe:c1:b0:ff:a5:b2: 53:d3:8c:1e:57:e7:fa:18:a4:af:1f:12:82:f4:3a: bb:85:f6:08:83:8a:e0:ff:2e:82:a2:e1:c1:dd:5d: ed:bf:79:97:38:b4:9a:9a:4a:b0:89:93:63:13:dc: 1f:2b:6b:87:38:0a:33:a5:ea:9b:95:0f:af:51:2c: 5d:62:6b:70:7e:07:19:03:60:92:cb:55:78:04:a4: 97:49:1a:33:3a:b5:b4:ac:9a:86:6b:fd:24:4d:d1: e8:96:b8:ca:06:da:b9:8d:ae:15:d7:9f:14:41:72: 06:a2:3f:9b:de:16:8f:3c:56:df:f0:73:1f:aa:11: 4c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:DF:B8:3B:01:AE:10:8A:C2:79:A6:28:F6:4C:9F:1D:28:DD:A5:C3 X509v3 Authority Key Identifier: keyid:C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:6d:f2:23:fe:2b:68:b0:f2:87:2e:34:3d:69:c9:e4:32:2e: 19:03:b2:82:38:d8:b2:05:c0:e4:b5:b9:61:86:fd:19:3c:ab: cc:c4:47:c6:92:a1:a6:bf:02:f6:3f:0c:38:7b:3e:c4:fb:a2: 0d:e0:9b:fb:32:67:b7:64:b3:61:98:0a:e2:02:f2:3a:0f:12: 03:d9:6d:cd:5d:57:05:4f:d0:3d:43:fa:26:ed:a5:38:1d:24: 7f:09:42:25:1f:17:3d:cc:20:b6:35:04:49:13:bb:69:bb:6f: 67:2c:01:6b:6a:38:8a:5e:eb:83:6c:e3:b3:e4:8e:63:ff:da: 2a:66:0f:cf:69:87:dc:7e:2d:50:ab:12:dc:73:f6:30:8c:4e: 55:73:5f:d8:96:40:62:66:ac:30:d7:42:27:22:43:e7:9a:38: a3:d7:d8:79:37:49:7c:cb:e4:91:5a:44:7e:02:58:d5:37:6b: 4d:ac:5f:75:c9:b4:06:86:6d:a8:16:bc:32:bd:8b:22:fb:d2: 07:02:54:42:f5:9e:e8:9f:e5:68:c3:f9:da:3d:f6:20:d8:60: 66:e1:29:90:7d:5e:e5:de:c1:40:19:7d:d5:c8:d7:e8:f6:5f: 31:9c:04:31:b4:5c:3c:f9:3d:de:dc:00:de:a0:9c:d4:36:7e: 30:78:ee:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxQTIxMTAvBgNVBAUTKEMzRTIwMEQ0MDA1RDlBMjNFNEJGQUVBRTBFREI3MkVB NDNGMUQwOTYwHhcNMjUwNzE5MDQ1MDU5WhcNMjUwNzI2MDQ1MDU5WjAYMRYwFAYD VQQDEw02ODdiMjQzMy1mMmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2ImMChHsblIjpc6VZxYC2TG4qU1yLHAdgjP01YcCbVd1+nIF66TemH1BPok CsfPIv0gq+7ZFEJfN9FPYMM3bwVC5qG91ODhvFDqmLM/zQOAeDQ7TYqNgpKRdpyX A1ZFloA6znj8rZ0fPFzsbgaFLWrWsPqle1cvphsgEo90Vcb+wbD/pbJT04weV+f6 GKSvHxKC9Dq7hfYIg4rg/y6CouHB3V3tv3mXOLSamkqwiZNjE9wfK2uHOAozpeqb lQ+vUSxdYmtwfgcZA2CSy1V4BKSXSRozOrW0rJqGa/0kTdHolrjKBtq5ja4V158U QXIGoj+b3haPPFbf8HMfqhFMIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOffuDsB rhCKwnmmKPZMnx0o3aXDMB8GA1UdIwQYMBaAFMPiANQAXZoj5L+urg7bcupD8dCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDFBMi8xQTFFM0RFNEM5 RkExMUVFODNGNUIwMjlDNEY5QUUwMi93LUlBMUFCZG1pUGt2NjZ1RHR0eTZrUHgw SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ctSUExQUJkbWlQa3Y2NnVEdHR5NmtQeDBKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDFBMi8xQTFFM0RFNEM5RkExMUVFODNGNUIwMjlDNEY5QUUwMi93LUlBMUFCZG1p UGt2NjZ1RHR0eTZrUHgwSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXbfIj/itosPKHLjQ9acnkMi4ZA7KCONiyBcDktblhhv0ZPKvMxEfG kqGmvwL2Pww4ez7E+6IN4Jv7Mme3ZLNhmAriAvI6DxID2W3NXVcFT9A9Q/om7aU4 HSR/CUIlHxc9zCC2NQRJE7tpu29nLAFrajiKXuuDbOOz5I5j/9oqZg/PaYfcfi1Q qxLcc/YwjE5Vc1/YlkBiZqww10InIkPnmjij19h5N0l8y+SRWkR+AljVN2tNrF91 ybQGhm2oFrwyvYsi+9IHAlRC9Z7on+Vow/naPfYg2GBm4SmQfV7l3sFAGX3VyNfo 9l8xnAQxtFw8+T3e3ADeoJzUNn4weO43 -----END CERTIFICATE-----Generated at Sun Jul 20 02:55:55 2025 by rpki-client