$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft File: V02z1iXehCAuOsnBw9Wwd01reOM.mft (raw, json) Hash identifier: ddCGe00YfzCkaNpJatubQxXE/xnN1XV0SL2RlmO/7EA= Subject key identifier: 37:BC:AC:BA:45:BF:FC:F6:1B:81:28:0A:2C:66:17:A2:F5:34:BA:17 Authority key identifier: 57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 Certificate issuer: /CN=A91E33AA/serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Certificate serial: 0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft Manifest number: 09 Signing time: Sat 19 Jul 2025 08:24:54 +0000 Manifest this update: Sat 19 Jul 2025 08:24:53 +0000 Manifest next update: Sat 26 Jul 2025 08:24:53 +0000 Files and hashes: 1: V02z1iXehCAuOsnBw9Wwd01reOM.crl (hash: Zv3c1Mkgnt/XIEl6F0ld3fJiPjOhQyOoqYTHPLQbUgI=) 2: 900FB71E596711F093280246C4F9AE02.roa (hash: tpoAf7rWotW8KjjlHeClNMLXYiXyuuy+xdTcFAlJiIw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:24:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33AA, serialNumber=574DB3D625DE84202E3AC9C1C3D5B0774D6B78E3 Validity Not Before: Jul 19 08:24:53 2025 GMT Not After : Jul 26 08:24:53 2025 GMT Subject: CN=687b5655-714f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:95:4c:0d:bc:3f:a9:0c:20:49:64:d8:1d:00: 7f:b2:73:4e:bb:29:59:ac:3e:a0:2b:f1:39:7e:f8: ef:b6:e1:6f:49:a5:5f:07:cd:b8:7d:cc:f6:e1:55: a1:87:b2:df:92:5c:b0:41:87:df:5c:b4:49:83:fb: da:4d:aa:ec:9a:1e:6e:67:fa:86:1e:85:8a:0e:b9: b1:e1:2b:1d:d5:75:fa:f5:d9:04:b0:9c:f0:eb:f9: 11:6d:d5:45:1e:3f:1b:87:31:b9:79:5c:2a:70:3e: 26:27:8d:4d:41:1b:a4:0a:fa:6c:8e:c6:d7:63:85: 29:61:4b:da:55:1f:9c:de:1f:ba:b7:26:84:8b:d6: 75:fd:ed:4f:81:7f:3f:f5:2b:d5:b5:60:89:51:17: 26:2b:f2:ae:ee:58:41:ee:30:ee:29:7c:09:5a:b6: 5c:41:49:21:fb:63:e4:a9:7c:74:37:22:49:a9:18: fd:83:d8:02:71:c1:5f:81:cd:a8:76:41:7e:e5:92: 93:76:95:53:d3:e0:b3:ad:d9:e7:1a:00:9e:1c:84: 4c:8c:ac:ba:24:ed:1a:8c:93:5a:86:10:08:b3:49: b1:ed:42:0e:66:97:c1:2f:34:b3:bf:7e:93:a2:39: 54:ae:cb:24:78:80:5e:b1:c4:12:15:48:1f:dc:a7: 03:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:BC:AC:BA:45:BF:FC:F6:1B:81:28:0A:2C:66:17:A2:F5:34:BA:17 X509v3 Authority Key Identifier: keyid:57:4D:B3:D6:25:DE:84:20:2E:3A:C9:C1:C3:D5:B0:77:4D:6B:78:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V02z1iXehCAuOsnBw9Wwd01reOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33AA/49A1A878596711F08C40792CC4F9AE02/V02z1iXehCAuOsnBw9Wwd01reOM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:14:ac:82:b8:f0:6f:44:f1:84:a6:6a:e9:3f:51:de:08:52: ad:a7:20:f4:0e:85:87:bc:2e:5e:61:8f:42:54:bf:f7:d7:34: c1:03:c6:88:c1:cd:9f:47:5b:8e:ef:4d:46:52:a0:2d:fd:8b: f2:af:dd:02:8f:e3:1a:b6:3d:d6:a2:25:59:78:db:23:a9:b4: eb:0b:01:af:30:3b:a7:53:db:ef:f3:ba:cd:ea:49:c2:7f:e9: 7a:f1:7a:87:93:d7:3c:f4:20:5d:eb:f8:76:18:7f:0f:60:29: 51:8a:90:c7:f2:d9:9b:44:4a:49:bd:b7:2d:44:b9:2d:2b:8b: 4c:60:af:ec:10:3a:f9:a8:c4:0f:e2:a7:6f:ac:1a:28:79:75: d4:7b:3a:9f:91:47:21:64:8d:9e:4b:8a:47:cb:3e:83:08:45: bf:01:49:0c:5e:27:0a:21:ce:ad:3c:c8:84:7a:c3:39:6e:b3: 9b:43:3d:60:7d:17:3e:ef:e9:3f:fc:e0:7f:7a:2f:39:2b:34: f1:52:3c:a8:03:2a:be:35:58:cb:f7:66:92:29:f8:78:4f:19: 5c:92:a4:78:02:00:67:8b:74:74:09:01:fb:9e:96:67:0f:6f: e7:fa:df:83:a7:dd:05:20:43:cd:1c:1b:8f:9a:d7:dd:18:48: af:3f:1e:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzNBQTExMC8GA1UEBRMoNTc0REIzRDYyNURFODQyMDJFM0FDOUMxQzNENUIwNzc0 RDZCNzhFMzAeFw0yNTA3MTkwODI0NTNaFw0yNTA3MjYwODI0NTNaMBgxFjAUBgNV BAMTDTY4N2I1NjU1LTcxNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtlUwNvD+pDCBJZNgdAH+yc067KVmsPqAr8Tl++O+24W9JpV8Hzbh9zPbhVaGH st+SXLBBh99ctEmD+9pNquyaHm5n+oYehYoOubHhKx3Vdfr12QSwnPDr+RFt1UUe PxuHMbl5XCpwPiYnjU1BG6QK+myOxtdjhSlhS9pVH5zeH7q3JoSL1nX97U+Bfz/1 K9W1YIlRFyYr8q7uWEHuMO4pfAlatlxBSSH7Y+SpfHQ3IkmpGP2D2AJxwV+Bzah2 QX7lkpN2lVPT4LOt2ecaAJ4chEyMrLok7RqMk1qGEAizSbHtQg5ml8EvNLO/fpOi OVSuyyR4gF6xxBIVSB/cpwP/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN7ysukW/ /PYbgSgKLGYXovU0uhcwHwYDVR0jBBgwFoAUV02z1iXehCAuOsnBw9Wwd01reOMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzM0FBLzQ5QTFBODc4NTk2 NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENBdU9zbkJ3OVd3ZDAxcmVP TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjAyejFpWGVoQ0F1T3NuQnc5V3dkMDFyZU9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz M0FBLzQ5QTFBODc4NTk2NzExRjA4QzQwNzkyQ0M0RjlBRTAyL1YwMnoxaVhlaENB dU9zbkJ3OVd3ZDAxcmVPTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEMUrIK48G9E8YSmauk/Ud4IUq2nIPQOhYe8Ll5hj0JUv/fXNMEDxojB zZ9HW47vTUZSoC39i/Kv3QKP4xq2PdaiJVl42yOptOsLAa8wO6dT2+/zus3qScJ/ 6XrxeoeT1zz0IF3r+HYYfw9gKVGKkMfy2ZtESkm9ty1EuS0ri0xgr+wQOvmoxA/i p2+sGih5ddR7Op+RRyFkjZ5LikfLPoMIRb8BSQxeJwohzq08yIR6wzlus5tDPWB9 Fz7v6T/84H96LzkrNPFSPKgDKr41WMv3ZpIp+HhPGVySpHgCAGeLdHQJAfuelmcP b+f634On3QUgQ80cG4+a190YSK8/Hsg= -----END CERTIFICATE-----Generated at Sun Jul 20 16:31:48 2025 by rpki-client