$ rpki-client -vvf rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft File: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft (raw, json) Hash identifier: QhGx3Kj9HQu6Vv9Es53AQgmqHfQwo8gHMuHxudKWqso= Subject key identifier: E5:1C:4C:45:21:AC:19:9C:90:95:C5:5B:9A:71:22:E6:88:7E:AA:1B Authority key identifier: 70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 Certificate issuer: /CN=A91764E1/serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft Manifest number: 010D Signing time: Sat 19 Jul 2025 05:09:59 +0000 Manifest this update: Sat 19 Jul 2025 05:09:59 +0000 Manifest next update: Sat 26 Jul 2025 05:09:59 +0000 Files and hashes: 1: cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl (hash: XGTwoiGzKT2SnvC2WMcpdrb2Oq3lOqiMkezHHwTVVWo=) 2: 0C708FB4C67E11EE87B34958C4F9AE02.roa (hash: Emtdf6B32dUyriQRU+z92VLtRvSD7HNe+9gqK+EmXtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91764E1, serialNumber=70E88557B0C082C9B06ECF59B8F28A7703A63801 Validity Not Before: Jul 19 05:09:59 2025 GMT Not After : Jul 26 05:09:59 2025 GMT Subject: CN=687b28a7-ac47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:40:5f:5b:7c:56:3b:c4:42:f3:64:55:e9:c5: 59:38:3e:57:53:36:1e:4b:c9:70:12:de:38:eb:dd: 18:3e:59:41:45:6d:84:96:44:9f:db:e8:96:2d:50: 31:63:28:56:9b:35:17:fc:6d:62:b7:ed:fb:43:ea: fa:cf:11:45:8e:e4:8d:50:e6:6b:4e:80:04:46:ea: f6:a3:d2:41:ed:90:4f:6b:53:01:4d:2c:20:5b:06: 20:e8:a6:88:2f:27:82:63:c7:eb:2b:b3:7b:ba:82: 53:84:ca:dc:6d:86:4c:35:4a:a0:00:95:64:e9:a4: e5:ef:01:b4:95:3f:12:77:ec:de:5c:07:fe:31:88: c6:41:6c:c0:32:2d:91:8d:11:08:04:25:46:c6:dc: d8:ae:23:f2:9e:cc:67:48:e1:0a:05:85:88:8d:0e: 4a:10:ba:87:b9:a4:ec:b7:4d:48:d7:ac:15:4e:52: d3:49:a5:50:65:67:e7:47:12:13:af:ad:87:b6:e2: d8:20:e4:81:8f:b7:2e:30:71:27:d0:d5:fa:e3:4a: f1:0c:21:00:6b:9f:a8:8b:42:90:f6:86:a2:f3:9a: 1a:d2:2e:7d:ca:17:c3:0d:ac:47:1a:5f:26:7d:26: 40:a3:fe:4d:3f:b8:74:67:ed:53:f8:7f:4a:3d:a2: c8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1C:4C:45:21:AC:19:9C:90:95:C5:5B:9A:71:22:E6:88:7E:AA:1B X509v3 Authority Key Identifier: keyid:70:E8:85:57:B0:C0:82:C9:B0:6E:CF:59:B8:F2:8A:77:03:A6:38:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91764E1/6231A02EC67D11EE87027B3AC4F9AE02/cOiFV7DAgsmwbs9ZuPKKdwOmOAE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:d8:fd:63:6c:64:b0:c1:31:45:e8:a3:14:82:7b:60:70:15: 04:56:50:a5:00:8b:c8:4c:ac:d6:8e:41:82:1e:7d:1b:f4:6e: ae:62:5c:0f:fe:a6:d0:aa:a8:52:8f:35:27:f6:35:4c:46:b4: b8:a2:ac:b4:32:8e:58:fd:19:b5:2f:4d:9d:2b:0e:8a:44:3d: bf:83:b4:bb:15:17:2d:aa:32:cb:9b:a3:13:0d:06:4e:22:8f: 0d:cd:1a:74:0e:31:8b:53:1f:53:c9:bf:9c:21:76:8f:a4:d9: c6:e2:bb:75:62:f9:82:7e:7c:70:1d:f8:29:a2:1f:97:01:c7: b3:40:3c:c3:7f:28:0d:3b:69:10:b4:0c:88:ae:41:40:db:ef: 78:5d:06:70:86:44:92:7a:10:82:53:36:91:bc:f9:06:23:99: 32:52:1c:e7:0d:7b:e1:fb:17:2b:c2:ed:d9:7a:42:c4:f0:67: b7:20:3d:4c:99:4a:99:95:a4:79:84:ef:47:fa:9a:fe:b1:70: 0b:40:db:ac:11:92:59:26:ec:25:64:21:b4:ec:bf:be:9b:cd: 39:c0:cc:e3:2a:1b:67:69:2d:c4:fe:a6:ff:c8:d7:d6:ec:95: 2b:f3:7f:1c:e6:e1:ca:27:01:ff:ea:f0:01:db:a5:80:42:21: 64:48:17:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzY0RTExMTAvBgNVBAUTKDcwRTg4NTU3QjBDMDgyQzlCMDZFQ0Y1OUI4RjI4QTc3 MDNBNjM4MDEwHhcNMjUwNzE5MDUwOTU5WhcNMjUwNzI2MDUwOTU5WjAYMRYwFAYD VQQDEw02ODdiMjhhNy1hYzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkBfW3xWO8RC82RV6cVZOD5XUzYeS8lwEt44690YPllBRW2ElkSf2+iWLVAx YyhWmzUX/G1it+37Q+r6zxFFjuSNUOZrToAERur2o9JB7ZBPa1MBTSwgWwYg6KaI LyeCY8frK7N7uoJThMrcbYZMNUqgAJVk6aTl7wG0lT8Sd+zeXAf+MYjGQWzAMi2R jREIBCVGxtzYriPynsxnSOEKBYWIjQ5KELqHuaTst01I16wVTlLTSaVQZWfnRxIT r62HtuLYIOSBj7cuMHEn0NX640rxDCEAa5+oi0KQ9oai85oa0i59yhfDDaxHGl8m fSZAo/5NP7h0Z+1T+H9KPaLIawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUcTEUh rBmckJXFW5pxIuaIfqobMB8GA1UdIwQYMBaAFHDohVewwILJsG7PWbjyincDpjgB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjRFMS82MjMxQTAyRUM2 N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdzbXdiczladVBLS2R3T21P QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NPaUZWN0RBZ3Ntd2JzOVp1UEtLZHdPbU9BRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjRFMS82MjMxQTAyRUM2N0QxMUVFODcwMjdCM0FDNEY5QUUwMi9jT2lGVjdEQWdz bXdiczladVBLS2R3T21PQUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp2P1jbGSwwTFF6KMUgntgcBUEVlClAIvITKzWjkGCHn0b9G6uYlwP /qbQqqhSjzUn9jVMRrS4oqy0Mo5Y/Rm1L02dKw6KRD2/g7S7FRctqjLLm6MTDQZO Io8NzRp0DjGLUx9Tyb+cIXaPpNnG4rt1YvmCfnxwHfgpoh+XAcezQDzDfygNO2kQ tAyIrkFA2+94XQZwhkSSehCCUzaRvPkGI5kyUhznDXvh+xcrwu3ZekLE8Ge3ID1M mUqZlaR5hO9H+pr+sXALQNusEZJZJuwlZCG07L++m805wMzjKhtnaS3E/qb/yNfW 7JUr838c5uHKJwH/6vAB26WAQiFkSBdf -----END CERTIFICATE-----Generated at Sun Jul 20 18:59:45 2025 by rpki-client