$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft File: mFjOS0vHLnbmaMR9RImMCQiWq-s.mft (raw, json) Hash identifier: Ln6U+odrg6u/2cPKjNzW7ROPxgEyw4qWzgBf1F2i3vc= Subject key identifier: F7:2A:37:B9:C5:39:BE:33:20:F7:6C:54:16:47:62:84:41:52:13:64 Authority key identifier: 98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB Certificate issuer: /CN=A91A4B1A/serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Certificate serial: 0210 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft Manifest number: 020A Signing time: Sat 06 Sep 2025 16:07:52 +0000 Manifest this update: Sat 06 Sep 2025 16:07:52 +0000 Manifest next update: Sat 13 Sep 2025 16:07:52 +0000 Files and hashes: 1: mFjOS0vHLnbmaMR9RImMCQiWq-s.crl (hash: +MU0zu6w5iSe7YgBPJ30ZDVgpu307LpbOcMGK13Y26A=) 2: 4C3A869614DF11EEAB46A86DC4F9AE02.roa (hash: lu38CDRBmX2eL86FuDGblRO37V7hVT/nMCfbmUIJkQk=) 3: 4BC4F6A614DF11EEAB46A86DC4F9AE02.roa (hash: UFLmIYqMMQZsSlXO+J3Nx0+Pb9WqTG32RlxuAiHOUdE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 528 (0x210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B1A, serialNumber=9858CE4B4BC72E76E668C47D44898C090896ABEB Validity Not Before: Sep 6 16:07:52 2025 GMT Not After : Sep 13 16:07:52 2025 GMT Subject: CN=68bc5c58-82aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cb:82:44:09:9e:6e:a9:ec:e2:d0:76:e3:3a: 4c:b2:fa:24:c8:2d:0f:66:47:02:df:19:56:a9:ff: 10:f0:ad:77:70:cc:aa:3b:5b:43:d6:7b:bc:14:45: ed:01:7a:2f:c2:07:38:c1:4a:b2:72:b1:d3:d8:57: ab:a3:fa:3c:78:4b:5a:cf:90:91:8a:d8:3e:99:c7: e0:b6:60:6f:a6:65:20:28:5a:a3:10:f9:1e:d2:dc: dd:59:52:47:4f:f6:41:c1:59:41:9b:69:c9:bf:3e: 2f:fc:d7:5c:b1:82:c8:0b:2a:3a:59:29:5b:8a:15: 1e:c9:d1:a6:25:2a:6f:b3:ff:ba:68:45:bd:19:83: eb:7c:56:f6:e9:b5:53:10:71:d1:5e:c8:63:ee:c9: 98:36:59:a8:ba:39:86:fc:0f:e0:99:36:cb:62:c1: fa:ec:bc:5b:c2:c1:6e:e7:4e:1b:4d:3f:bb:28:30: 4a:e7:17:09:fd:82:9d:2e:fe:27:ef:13:3f:29:1a: 17:76:ca:57:26:68:75:d3:53:c9:6e:69:3f:80:ce: 19:12:50:6f:52:18:04:3b:ef:44:7a:e3:ec:14:17: 68:17:34:35:56:6e:56:77:4a:6a:cf:24:bf:94:56: 87:d2:a3:bc:14:b2:97:2e:6e:d2:6f:d4:9c:1f:ea: 14:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:2A:37:B9:C5:39:BE:33:20:F7:6C:54:16:47:62:84:41:52:13:64 X509v3 Authority Key Identifier: keyid:98:58:CE:4B:4B:C7:2E:76:E6:68:C4:7D:44:89:8C:09:08:96:AB:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mFjOS0vHLnbmaMR9RImMCQiWq-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B1A/B45F3FC4819A11ED8D61BA2BC4F9AE02/mFjOS0vHLnbmaMR9RImMCQiWq-s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:19:f6:a5:f6:46:61:bb:35:bc:08:9a:de:23:27:26:ef:b5: 4b:d4:f8:8b:7b:b2:31:e2:50:31:4b:33:04:7a:3b:c0:51:39: 92:12:98:6f:15:4d:04:97:53:c8:e2:2e:21:61:a2:42:e2:cf: a4:e5:89:4f:f9:59:36:4b:07:7a:6a:91:4a:3c:71:de:e9:e0: b6:e2:14:cd:8f:8f:be:77:37:1e:98:02:99:9c:fd:20:3d:8b: 1a:c1:9e:1b:96:b9:ac:30:94:0e:b5:ed:ba:33:f8:25:8e:21: 86:6d:ef:f7:ce:75:58:a0:0e:29:eb:a3:0e:52:a4:71:35:3d: 24:40:df:99:bc:cc:23:a7:ea:16:3f:2e:28:9b:fb:56:6f:ae: a6:ae:a1:95:b8:47:c9:45:df:24:74:14:54:35:ba:62:9e:53: 77:c8:c4:24:21:84:11:a9:47:b8:5c:4b:f8:85:ae:76:95:fc: a8:d0:cd:28:09:a6:09:05:b9:57:48:6b:9f:37:c7:8d:48:d2: 23:95:76:16:ae:35:a6:b2:21:fe:1c:1b:d5:65:00:c5:c0:37: e1:69:8b:6a:46:1f:e7:41:76:13:66:e4:0f:eb:02:cb:5c:95: 26:a1:21:6b:82:06:da:01:3b:ca:ad:2b:83:0b:cd:c5:c7:55: e9:cf:1f:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMUExMTAvBgNVBAUTKDk4NThDRTRCNEJDNzJFNzZFNjY4QzQ3RDQ0ODk4QzA5 MDg5NkFCRUIwHhcNMjUwOTA2MTYwNzUyWhcNMjUwOTEzMTYwNzUyWjAYMRYwFAYD VQQDEw02OGJjNWM1OC04MmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocuCRAmebqns4tB24zpMsvokyC0PZkcC3xlWqf8Q8K13cMyqO1tD1nu8FEXt AXovwgc4wUqycrHT2Fero/o8eEtaz5CRitg+mcfgtmBvpmUgKFqjEPke0tzdWVJH T/ZBwVlBm2nJvz4v/NdcsYLICyo6WSlbihUeydGmJSpvs/+6aEW9GYPrfFb26bVT EHHRXshj7smYNlmoujmG/A/gmTbLYsH67LxbwsFu504bTT+7KDBK5xcJ/YKdLv4n 7xM/KRoXdspXJmh101PJbmk/gM4ZElBvUhgEO+9EeuPsFBdoFzQ1Vm5Wd0pqzyS/ lFaH0qO8FLKXLm7Sb9ScH+oUfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPcqN7nF Ob4zIPdsVBZHYoRBUhNkMB8GA1UdIwQYMBaAFJhYzktLxy525mjEfUSJjAkIlqvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIxQS9CNDVGM0ZDNDgx OUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExuYm1hTVI5UkltTUNRaVdx LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21Gak9TMHZITG5ibWFNUjlSSW1NQ1FpV3Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NEIxQS9CNDVGM0ZDNDgxOUExMUVEOEQ2MUJBMkJDNEY5QUUwMi9tRmpPUzB2SExu Ym1hTVI5UkltTUNRaVdxLXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLGfal9kZhuzW8CJreIycm77VL1PiLe7Ix4lAxSzMEejvAUTmSEphv FU0El1PI4i4hYaJC4s+k5YlP+Vk2Swd6apFKPHHe6eC24hTNj4++dzcemAKZnP0g PYsawZ4blrmsMJQOte26M/gljiGGbe/3znVYoA4p66MOUqRxNT0kQN+ZvMwjp+oW Py4om/tWb66mrqGVuEfJRd8kdBRUNbpinlN3yMQkIYQRqUe4XEv4ha52lfyo0M0o CaYJBblXSGufN8eNSNIjlXYWrjWmsiH+HBvVZQDFwDfhaYtqRh/nQXYTZuQP6wLL XJUmoSFrggbaATvKrSuDC83Fx1Xpzx8m -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:55 2025 by rpki-client