$ rpki-client -vvf rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft File: 0NDWzWh3DDh4O764QbES0FYBdKI.mft (raw, json) Hash identifier: P+oG1QFdxCdBM9LLZZGVwSGCBkXEXsyWjL0ipNmqptk= Subject key identifier: 62:3F:13:B4:D7:A0:4D:11:76:BE:95:73:0F:20:1F:AB:79:41:AD:C8 Authority key identifier: D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 Certificate issuer: /CN=A91998BE/serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Certificate serial: 08BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft Manifest number: 088A Signing time: Sat 06 Sep 2025 20:52:00 +0000 Manifest this update: Sat 06 Sep 2025 20:51:59 +0000 Manifest next update: Sat 13 Sep 2025 20:51:59 +0000 Files and hashes: 1: 0NDWzWh3DDh4O764QbES0FYBdKI.crl (hash: zBVD5nGgzXHTT9KUdhLAsTTMCt7yjd8hIICk3Mb+g+0=) 2: 577FD5BE067C11ED882FC127C4F9AE02.roa (hash: FZgwTWzQksQtmk/Nfe/JqxwRHSDF1+BlazvC8MqkPtA=) 3: 4EF79184489411ED86987260C4F9AE02.roa (hash: a8Efs0GAW5Tg39h9an5o87GfSDA70jqZExOy2QFYQOc=) 4: 12FD08CAC88411ECAAB5BD09C4F9AE02.roa (hash: Rk9fezvR7MLf0U22xpSZ4jUyV+Jwv2bIeNDcvnRfGXA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 20:51:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91998BE, serialNumber=D0D0D6CD68770C38783BBEB841B112D0560174A2 Validity Not Before: Sep 6 20:51:59 2025 GMT Not After : Sep 13 20:51:59 2025 GMT Subject: CN=68bc9ef0-3d3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c3:bc:6b:ce:03:7c:8d:e6:0b:85:86:39:d7: f7:98:50:3a:ed:b5:0c:c1:89:43:fd:76:28:73:50: d9:85:6e:7b:be:0a:df:05:36:57:df:81:ca:55:b2: 45:dc:ae:86:4c:8f:f3:1d:e4:0c:3f:6e:ca:a5:1a: 30:40:31:73:ff:91:9f:e2:62:08:c1:ab:69:d7:9f: b9:c6:88:b5:a6:89:e4:40:35:cc:6d:3f:70:92:72: e0:46:23:49:9c:a6:c1:60:d5:74:6f:2b:4d:43:0c: 59:d2:c8:8d:99:0c:ce:de:75:d0:07:73:60:56:fc: d5:42:a2:2b:3f:5b:e7:9f:fe:ac:0c:b9:0c:46:87: 03:10:b9:38:35:a8:b7:d0:ff:2c:4c:a6:13:c8:2f: b0:01:e5:59:64:b8:fd:60:8f:0f:fe:9f:89:ce:3e: 9a:dd:9c:f8:dc:0a:44:1c:bb:a7:af:a7:4a:c4:e2: 2a:66:b0:5f:85:1a:b8:d4:82:fa:34:e5:dc:0b:2d: 70:0a:86:e5:3d:4e:18:5b:5d:94:96:2f:51:32:7b: 9f:41:8d:74:79:d4:db:18:62:a6:29:dc:6a:1e:df: 4a:2a:7a:d6:77:a1:14:57:d3:eb:f3:ce:a2:37:3e: 13:16:3c:3d:b4:54:8e:b6:6b:ae:9c:cc:46:9a:21: b2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:3F:13:B4:D7:A0:4D:11:76:BE:95:73:0F:20:1F:AB:79:41:AD:C8 X509v3 Authority Key Identifier: keyid:D0:D0:D6:CD:68:77:0C:38:78:3B:BE:B8:41:B1:12:D0:56:01:74:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NDWzWh3DDh4O764QbES0FYBdKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91998BE/150E57C6CF4911EA9CC9353EC4F9AE02/0NDWzWh3DDh4O764QbES0FYBdKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:57:a3:98:d1:9e:9f:c5:bc:67:9e:f7:bb:55:fe:af:84:79: bb:43:47:9f:32:f8:1f:2a:c3:a8:0e:18:fc:9d:18:45:34:48: a9:2c:98:a3:6e:7d:31:23:0a:e0:d8:15:4f:ec:6b:43:f4:7d: c0:92:ad:5e:ba:87:44:2d:a6:6d:a5:f0:c0:f4:0d:54:4e:d3: 2d:6a:47:07:ed:b1:09:82:f5:a4:d2:5a:a9:2f:6e:1e:6c:24: 42:44:c2:25:73:b1:73:5f:55:01:8c:08:0c:8c:59:9f:f4:a9: 83:de:6f:3a:10:9a:98:3e:5d:98:d2:8f:a1:3c:bd:34:e8:fc: 41:46:a2:d2:44:8e:b7:bc:93:88:1d:60:3a:fe:7b:cf:5d:30: be:45:fd:0f:bc:6d:ac:3c:e6:82:f5:18:e7:24:bf:92:4d:e0: 72:fd:5c:d2:3b:37:ca:75:c2:89:f6:72:2e:e0:ed:b0:32:f5: 13:98:9a:aa:69:b1:0b:e3:7d:bc:76:8e:fd:df:23:9f:45:1f: e1:e1:63:9e:a9:d4:cb:6e:3f:04:6c:94:46:05:6d:c4:d7:ad: 95:46:ca:d5:e0:dd:57:ed:74:1b:fb:18:c9:6e:94:ff:af:0a: 59:8c:77:49:c8:57:6a:f7:e8:e4:8b:4e:e2:60:35:9e:e8:b8: ee:78:a0:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk4QkUxMTAvBgNVBAUTKEQwRDBENkNENjg3NzBDMzg3ODNCQkVCODQxQjExMkQw NTYwMTc0QTIwHhcNMjUwOTA2MjA1MTU5WhcNMjUwOTEzMjA1MTU5WjAYMRYwFAYD VQQDEw02OGJjOWVmMC0zZDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwcO8a84DfI3mC4WGOdf3mFA67bUMwYlD/XYoc1DZhW57vgrfBTZX34HKVbJF 3K6GTI/zHeQMP27KpRowQDFz/5Gf4mIIwatp15+5xoi1ponkQDXMbT9wknLgRiNJ nKbBYNV0bytNQwxZ0siNmQzO3nXQB3NgVvzVQqIrP1vnn/6sDLkMRocDELk4Nai3 0P8sTKYTyC+wAeVZZLj9YI8P/p+Jzj6a3Zz43ApEHLunr6dKxOIqZrBfhRq41IL6 NOXcCy1wCoblPU4YW12Uli9RMnufQY10edTbGGKmKdxqHt9KKnrWd6EUV9Pr886i Nz4TFjw9tFSOtmuunMxGmiGyjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGI/E7TX oE0Rdr6Vcw8gH6t5Qa3IMB8GA1UdIwQYMBaAFNDQ1s1odww4eDu+uEGxEtBWAXSi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OThCRS8xNTBFNTdDNkNG NDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0REaDRPNzY0UWJFUzBGWUJk S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBORFd6V2gzRERoNE83NjRRYkVTMEZZQmRLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OThCRS8xNTBFNTdDNkNGNDkxMUVBOUNDOTM1M0VDNEY5QUUwMi8wTkRXeldoM0RE aDRPNzY0UWJFUzBGWUJkS0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAV6OY0Z6fxbxnnve7Vf6vhHm7Q0efMvgfKsOoDhj8nRhFNEipLJij bn0xIwrg2BVP7GtD9H3Akq1euodELaZtpfDA9A1UTtMtakcH7bEJgvWk0lqpL24e bCRCRMIlc7FzX1UBjAgMjFmf9KmD3m86EJqYPl2Y0o+hPL006PxBRqLSRI63vJOI HWA6/nvPXTC+Rf0PvG2sPOaC9RjnJL+STeBy/VzSOzfKdcKJ9nIu4O2wMvUTmJqq abEL4328do793yOfRR/h4WOeqdTLbj8EbJRGBW3E162VRsrV4N1X7XQb+xjJbpT/ rwpZjHdJyFdq9+jki07iYDWe6LjueKDJ -----END CERTIFICATE-----Generated at Mon Sep 8 16:24:04 2025 by rpki-client