$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft File: o5jf1NOXXquW_TgDOWgkbkdeKLM.mft (raw, json) Hash identifier: TK/Xc2efCFWGXscp8Qf6xX1aRD3F4qK7Ig0LjUKKXVY= Subject key identifier: 93:92:C1:05:B8:21:CB:6F:4A:FC:72:24:62:3B:7F:EE:BA:1F:A6:1D Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft Manifest number: 0412 Signing time: Thu 21 Aug 2025 00:31:30 +0000 Manifest this update: Thu 21 Aug 2025 00:31:30 +0000 Manifest next update: Thu 28 Aug 2025 00:31:30 +0000 Files and hashes: 1: o5jf1NOXXquW_TgDOWgkbkdeKLM.crl (hash: bdTERT6ZEcAGZ99/7lnzAa8Hm+W0LSMItcJKEkP0BBc=) 2: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (hash: 7VcZosPp1uH1LHkRjpyCPhzaiPyFOlncH9YUjxzCpg4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:31:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D, serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: Aug 21 00:31:30 2025 GMT Not After : Aug 28 00:31:30 2025 GMT Subject: CN=68a668e2-5904 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1d:2d:e3:a1:ca:a4:d1:ac:60:03:8e:c4:e7: e6:c3:88:a2:ab:50:fb:61:ac:39:85:ff:4f:e2:26: 0d:68:7a:6e:f0:79:b8:46:09:1b:37:30:c1:13:61: c0:e4:37:a9:42:fc:dc:c9:63:49:ad:7d:64:34:ec: b0:33:66:fd:7f:8c:0b:a3:ae:f5:ff:a8:b6:c3:7a: 23:cc:51:36:63:7a:e6:4c:d0:e3:b8:90:73:ee:36: 7c:04:58:34:7b:0e:fc:f5:5e:8a:fe:cf:b8:86:a0: ca:96:36:29:11:99:31:97:99:af:ea:fc:9e:5a:fc: 3d:e4:25:a1:56:da:15:34:96:49:dd:dd:ef:a4:f8: c0:b3:e8:f0:fa:a9:43:ad:bc:6c:af:6b:a4:49:5d: 4b:9b:4c:3f:1e:52:32:08:0a:6f:f8:29:28:cd:a5: 99:67:0f:4d:7a:9f:48:ac:7c:00:63:f2:ae:07:8a: 4e:9d:53:86:f0:a6:e8:59:60:b7:60:0b:84:5d:f6: f9:68:bd:a3:7d:5c:d6:e8:18:4a:9c:0a:20:66:e5: 49:3a:30:54:f4:fd:2e:cc:62:cf:71:b8:c3:c8:41: 78:24:a7:54:ee:ec:e9:3e:b4:a2:0b:35:9b:08:66: e3:65:75:80:97:35:c8:be:c1:71:e5:52:ca:2f:10: ad:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:92:C1:05:B8:21:CB:6F:4A:FC:72:24:62:3B:7F:EE:BA:1F:A6:1D X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:83:a1:40:4d:b8:69:2d:12:55:4b:aa:f9:20:8e:f6:c7:0d: 60:35:4c:68:4e:22:83:58:cb:7c:55:33:5d:db:28:f0:5c:a4: 18:e1:d6:9a:4d:7d:37:d0:0d:c1:4b:31:30:29:93:dd:05:24: 79:bf:48:eb:5e:83:90:3f:6e:e7:99:67:aa:b8:b6:12:77:ce: 33:50:69:ee:12:a5:57:72:46:67:5b:33:d6:c7:40:ff:20:4d: e9:24:69:3e:9a:fb:9a:59:d9:d5:44:96:c0:ab:11:56:b6:c2: ec:af:f4:50:c4:23:fd:7b:51:b1:ad:01:51:60:67:a8:67:9c: 97:a2:8d:ad:4b:5d:1c:56:7f:81:45:3b:6e:5c:95:16:f3:94: 7a:2d:5e:c9:20:85:69:97:6e:d6:52:b0:75:e8:b2:d3:b8:d1: 90:de:7d:5b:0d:7d:bb:85:c5:09:7e:e0:3d:17:f1:91:1c:54: 70:f6:55:6c:ad:e9:2e:34:78:3d:ab:74:1f:e7:ea:1e:18:8a: 7b:64:d8:f7:42:59:a8:00:e0:2c:62:7b:d6:1f:a5:d5:b4:49: 5b:c9:c6:2d:9f:f9:3d:80:6d:a4:db:9e:08:f6:e3:3d:ab:4b: c5:38:95:ab:ca:00:79:bc:f6:94:1e:33:60:99:e1:68:b6:77: 5c:ea:96:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjUwODIxMDAzMTMwWhcNMjUwODI4MDAzMTMwWjAYMRYwFAYD VQQDEw02OGE2NjhlMi01OTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArx0t46HKpNGsYAOOxOfmw4iiq1D7Yaw5hf9P4iYNaHpu8Hm4RgkbNzDBE2HA 5DepQvzcyWNJrX1kNOywM2b9f4wLo671/6i2w3ojzFE2Y3rmTNDjuJBz7jZ8BFg0 ew789V6K/s+4hqDKljYpEZkxl5mv6vyeWvw95CWhVtoVNJZJ3d3vpPjAs+jw+qlD rbxsr2ukSV1Lm0w/HlIyCApv+CkozaWZZw9Nep9IrHwAY/KuB4pOnVOG8KboWWC3 YAuEXfb5aL2jfVzW6BhKnAogZuVJOjBU9P0uzGLPcbjDyEF4JKdU7uzpPrSiCzWb CGbjZXWAlzXIvsFx5VLKLxCt/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJOSwQW4 IctvSvxyJGI7f+66H6YdMB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTE1RC83MTA5RUZDNDdEQzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhx dVdfVGdET1dna2JrZGVLTE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyg6FATbhpLRJVS6r5II72xw1gNUxoTiKDWMt8VTNd2yjwXKQY4daa TX030A3BSzEwKZPdBSR5v0jrXoOQP27nmWequLYSd84zUGnuEqVXckZnWzPWx0D/ IE3pJGk+mvuaWdnVRJbAqxFWtsLsr/RQxCP9e1GxrQFRYGeoZ5yXoo2tS10cVn+B RTtuXJUW85R6LV7JIIVpl27WUrB16LLTuNGQ3n1bDX27hcUJfuA9F/GRHFRw9lVs rekuNHg9q3Qf5+oeGIp7ZNj3QlmoAOAsYnvWH6XVtElbycYtn/k9gG2k254I9uM9 q0vFOJWrygB5vPaUHjNgmeFotndc6pZS -----END CERTIFICATE-----Generated at Fri Aug 22 16:34:00 2025 by rpki-client