$ rpki-client -vvf rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft File: AEu7wBxXH6cPIOpEBQBX2dyeutI.mft (raw, json) Hash identifier: IXNV6p9y3JHMpU3Yrm3XOqegVow3+0/l+YWqcpgavc8= Subject key identifier: 04:A0:D4:54:62:13:A0:53:59:50:25:98:C6:FC:16:94:40:44:DD:8C Authority key identifier: 00:4B:BB:C0:1C:57:1F:A7:0F:20:EA:44:05:00:57:D9:DC:9E:BA:D2 Certificate issuer: /CN=A91326B3/serialNumber=004BBBC01C571FA70F20EA44050057D9DC9EBAD2 Certificate serial: 0116 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft Manifest number: 0114 Signing time: Tue 09 Sep 2025 04:58:05 +0000 Manifest this update: Tue 09 Sep 2025 04:58:05 +0000 Manifest next update: Tue 16 Sep 2025 04:58:05 +0000 Files and hashes: 1: AEu7wBxXH6cPIOpEBQBX2dyeutI.crl (hash: DUJ6Z6VhEKxTOlKiuo0EdLJDKhOcXNjTpOzccM2iVO0=) 2: C4BA1CE6E69211EE99E71B6AC4F9AE02.roa (hash: y3j/TCNZc4+9GUOHxfPGcXJYdNwoHrgSAKMjnwhnAHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.crl rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:58:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 278 (0x116) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91326B3, serialNumber=004BBBC01C571FA70F20EA44050057D9DC9EBAD2 Validity Not Before: Sep 9 04:58:05 2025 GMT Not After : Sep 16 04:58:05 2025 GMT Subject: CN=68bfb3dd-0a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5a:59:37:a5:b8:9c:53:f1:2a:08:73:ad:11: 54:91:9b:88:9c:0f:c6:dd:f8:c9:cf:13:68:c9:6f: c2:cd:2f:d3:da:d9:6b:ac:7b:9c:59:dd:7f:45:92: d9:b3:c4:88:01:e3:45:99:2e:b8:d0:3a:52:a4:f8: f7:8a:ad:0b:8b:5f:f3:b9:a1:f9:6a:06:dc:24:a2: f1:87:5d:b1:e5:d5:8e:60:35:54:2a:26:87:60:73: e0:ac:cc:67:3c:f1:d0:5d:18:46:14:ad:c2:1b:1d: 29:2d:29:d4:1e:ac:5b:a5:78:f0:77:6a:fb:0e:67: 09:2a:a2:4a:16:3a:c9:0c:72:2b:2a:8a:e6:4c:83: ae:00:6c:a7:9b:b9:3a:19:48:bc:ce:2d:b1:b9:ca: 24:93:b9:88:b5:b1:97:f3:88:d6:14:00:f1:fb:bb: 43:50:a8:b8:31:b3:d4:0b:ac:e5:56:25:09:01:b4: fd:a5:54:05:ca:e5:be:b1:0e:24:c3:5a:58:a1:f7: 69:c6:e9:e8:c6:56:71:cc:2a:0b:b4:ca:f9:42:c2: fe:51:1e:92:ea:28:72:0d:00:4c:d7:d0:cf:57:56: 70:c1:a2:d2:61:b0:5e:31:eb:13:63:18:b7:ed:00: c9:e4:e2:93:8a:9a:cc:22:f3:0b:f1:24:45:36:e0: 6e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A0:D4:54:62:13:A0:53:59:50:25:98:C6:FC:16:94:40:44:DD:8C X509v3 Authority Key Identifier: keyid:00:4B:BB:C0:1C:57:1F:A7:0F:20:EA:44:05:00:57:D9:DC:9E:BA:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AEu7wBxXH6cPIOpEBQBX2dyeutI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91326B3/CE9F16FEE69111EEBF058932C4F9AE02/AEu7wBxXH6cPIOpEBQBX2dyeutI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:8c:46:50:cc:6a:af:e3:f6:9e:2b:01:95:95:ef:cb:40:ef: e3:a5:14:34:11:0f:18:82:05:6e:2a:21:fe:04:1f:75:0b:3e: 2d:63:a3:6e:62:ed:b2:f1:73:b9:24:56:47:c7:54:77:0d:9b: 1f:94:d4:f2:70:3b:46:5e:d5:23:6f:67:04:82:fb:17:e7:00: 17:61:6a:73:5c:db:47:3c:bd:bb:36:6f:bd:e2:e5:2f:aa:ac: 38:63:33:85:26:99:b1:78:e5:62:ce:4d:2f:2c:c9:63:af:f9: a2:04:48:8d:37:a4:de:f5:2e:bf:a7:cb:8d:09:08:c4:b9:ec: 59:9a:21:31:81:19:7c:bc:03:5a:e6:7e:fc:e9:96:82:d9:60: 3b:da:c9:e4:0c:fa:e5:a0:c1:7a:8b:2e:be:25:61:b8:7f:0d: d2:c6:9d:5b:34:8d:d4:52:ef:37:6c:5a:22:28:96:63:27:e5: 4c:b2:e0:44:77:a4:a9:0a:a3:d2:94:6b:b7:4d:43:44:cb:22: c5:0f:df:79:16:6f:89:16:b9:9b:dd:34:19:a0:55:e2:0f:5e: 2d:ab:5d:06:91:a8:3f:d1:f7:c4:a2:a5:fc:a3:86:2e:a9:00: 43:86:7d:87:a5:5f:c5:03:d2:8a:40:5d:d1:dc:13:28:4b:db: b3:a6:ac:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI2QjMxMTAvBgNVBAUTKDAwNEJCQkMwMUM1NzFGQTcwRjIwRUE0NDA1MDA1N0Q5 REM5RUJBRDIwHhcNMjUwOTA5MDQ1ODA1WhcNMjUwOTE2MDQ1ODA1WjAYMRYwFAYD VQQDEw02OGJmYjNkZC0wYTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFpZN6W4nFPxKghzrRFUkZuInA/G3fjJzxNoyW/CzS/T2tlrrHucWd1/RZLZ s8SIAeNFmS640DpSpPj3iq0Li1/zuaH5agbcJKLxh12x5dWOYDVUKiaHYHPgrMxn PPHQXRhGFK3CGx0pLSnUHqxbpXjwd2r7DmcJKqJKFjrJDHIrKormTIOuAGynm7k6 GUi8zi2xucokk7mItbGX84jWFADx+7tDUKi4MbPUC6zlViUJAbT9pVQFyuW+sQ4k w1pYofdpxunoxlZxzCoLtMr5QsL+UR6S6ihyDQBM19DPV1ZwwaLSYbBeMesTYxi3 7QDJ5OKTiprMIvML8SRFNuBuZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASg1FRi E6BTWVAlmMb8FpRARN2MMB8GA1UdIwQYMBaAFABLu8AcVx+nDyDqRAUAV9ncnrrS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjZCMy9DRTlGMTZGRUU2 OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9BRXU3d0J4WEg2Y1BJT3BFQlFCWDJkeWV1 dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FFdTd3QnhYSDZjUElPcEVCUUJYMmR5ZXV0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MjZCMy9DRTlGMTZGRUU2OTExMUVFQkYwNTg5MzJDNEY5QUUwMi9BRXU3d0J4WEg2 Y1BJT3BFQlFCWDJkeWV1dEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYjEZQzGqv4/aeKwGVle/LQO/jpRQ0EQ8YggVuKiH+BB91Cz4tY6Nu Yu2y8XO5JFZHx1R3DZsflNTycDtGXtUjb2cEgvsX5wAXYWpzXNtHPL27Nm+94uUv qqw4YzOFJpmxeOVizk0vLMljr/miBEiNN6Te9S6/p8uNCQjEuexZmiExgRl8vANa 5n786ZaC2WA72snkDPrloMF6iy6+JWG4fw3Sxp1bNI3UUu83bFoiKJZjJ+VMsuBE d6SpCqPSlGu3TUNEyyLFD995Fm+JFrmb3TQZoFXiD14tq10Gkag/0ffEoqX8o4Yu qQBDhn2HpV/FA9KKQF3R3BMoS9uzpqzn -----END CERTIFICATE-----Generated at Tue Sep 9 13:32:06 2025 by rpki-client