$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft File: AShwXWnFHg4rB4rtuZiR5_GbTR8.mft (raw, json) Hash identifier: OAsN+i6KSw4blOH/uU1dFP6sjTxn4j9fJjOjLe+UJiw= Subject key identifier: E4:5C:51:C2:60:8F:09:DC:C0:5A:00:FE:FB:42:B3:46:F6:D1:6F:A7 Authority key identifier: 01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F Certificate issuer: /CN=A91C0C0B/serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Certificate serial: 0BB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft Manifest number: 0BA8 Signing time: Sun 24 Aug 2025 18:57:42 +0000 Manifest this update: Sun 24 Aug 2025 18:57:42 +0000 Manifest next update: Sun 31 Aug 2025 18:57:42 +0000 Files and hashes: 1: AShwXWnFHg4rB4rtuZiR5_GbTR8.crl (hash: x4/vVe+tQnJURs2ZKBQTLB3R3ZxVZ4PjAvc/TJfJxeY=) 2: E85B23282DF211EAA63F5D60C4F9AE02.roa (hash: mo/NLmT3qTw906fWZIYD+HCMnaLWUZhtdPeHn3oqJ6A=) 3: 71E30CDCC4ED11EAA1C5766AC4F9AE02.roa (hash: vucacXYSTLw3pjicQM0MXD2U1//BsbEO3gpX4wVcXB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2998 (0xbb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C0B, serialNumber=0128705D69C51E0E2B078AEDB99891E7F19B4D1F Validity Not Before: Aug 24 18:57:42 2025 GMT Not After : Aug 31 18:57:42 2025 GMT Subject: CN=68ab60a6-454d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8b:d4:dd:1b:81:09:f3:a8:e2:5b:a3:28:32: 20:46:dd:61:19:cb:bf:04:fa:f1:13:5e:41:95:6a: f4:d7:ec:c5:b4:cf:ab:6a:a3:21:16:3b:ba:b8:cb: fd:de:19:d6:bb:86:b0:24:51:f3:9d:9f:18:3d:3a: 68:ee:67:b6:a6:d9:1d:e3:29:ef:8d:19:77:37:ef: 83:95:b2:59:20:73:71:96:a1:f2:c9:6c:18:b9:f4: c0:6a:26:85:ac:19:6f:65:4f:73:a8:97:6d:29:a1: 63:11:9c:54:58:a9:e7:32:ed:e1:a1:da:71:74:47: 9b:ed:a5:0d:30:c9:e4:40:2d:8f:3a:fa:24:55:b3: 2d:5c:fc:b6:d4:85:ff:30:01:9f:b8:e6:7d:e3:b9: 17:06:76:3a:00:1a:44:eb:5b:f4:a2:22:6c:73:88: 29:54:b2:cb:28:6f:96:bc:f2:5d:de:29:7c:f9:2d: be:ac:32:9f:5f:08:17:bf:66:09:63:46:e2:34:72: ea:e3:f0:cf:32:2e:d3:e3:52:c0:54:61:66:ff:70: 8d:b3:f6:18:f6:93:43:cb:13:b0:af:ec:23:55:ae: b7:09:dc:49:ed:7a:25:e7:b2:44:3a:87:09:f1:42: fa:3b:2e:51:84:47:89:be:6d:b5:5b:22:14:83:bf: ae:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5C:51:C2:60:8F:09:DC:C0:5A:00:FE:FB:42:B3:46:F6:D1:6F:A7 X509v3 Authority Key Identifier: keyid:01:28:70:5D:69:C5:1E:0E:2B:07:8A:ED:B9:98:91:E7:F1:9B:4D:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AShwXWnFHg4rB4rtuZiR5_GbTR8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C0B/4459448C2C6A11EA9CECBF4AC4F9AE02/AShwXWnFHg4rB4rtuZiR5_GbTR8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a6:1e:b9:70:cd:05:40:07:2f:d8:87:fc:3b:37:87:84:e6: 50:d7:4f:3b:be:ac:8b:0a:d0:49:0d:68:9b:b2:c6:8b:b2:42: b5:80:93:a3:1d:6b:25:f5:64:e4:b6:5a:6e:b5:e4:68:68:1a: 89:7a:2f:0f:69:7e:f4:42:f6:ee:37:ad:41:35:79:ba:53:05: ad:29:30:8d:16:8d:43:ce:95:36:8e:fc:96:44:64:76:db:e3: 03:d7:42:15:a7:0a:f2:52:64:1e:c4:3c:b8:41:8a:40:b5:01: 24:5a:bf:36:a3:ed:64:61:2d:69:41:66:82:a5:d6:22:50:ce: 9c:3e:0e:06:4e:6a:1d:e9:79:22:42:9c:2b:55:5e:f9:9e:d2: d1:58:3a:e1:a6:86:c0:e5:be:d8:1c:8d:95:55:1f:d9:30:76: 8d:a8:cc:b5:b7:6e:5f:1c:5a:90:f4:25:bd:70:0f:f5:b2:18: 77:d1:4b:74:fb:11:80:07:0f:58:de:f7:20:fe:39:cf:b3:57: f4:d4:68:da:c2:2c:12:58:ca:64:2d:5b:36:1e:df:d3:41:91: ac:d7:a2:e2:b9:9d:f3:02:6f:b5:0f:b8:37:71:9d:93:a9:42: 2f:22:4a:6d:19:80:a8:35:87:17:a5:b1:a8:7b:d1:3e:e2:e2: 6b:bf:a2:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDMEIxMTAvBgNVBAUTKDAxMjg3MDVENjlDNTFFMEUyQjA3OEFFREI5OTg5MUU3 RjE5QjREMUYwHhcNMjUwODI0MTg1NzQyWhcNMjUwODMxMTg1NzQyWjAYMRYwFAYD VQQDEw02OGFiNjBhNi00NTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4vU3RuBCfOo4lujKDIgRt1hGcu/BPrxE15BlWr01+zFtM+raqMhFju6uMv9 3hnWu4awJFHznZ8YPTpo7me2ptkd4ynvjRl3N++DlbJZIHNxlqHyyWwYufTAaiaF rBlvZU9zqJdtKaFjEZxUWKnnMu3hodpxdEeb7aUNMMnkQC2POvokVbMtXPy21IX/ MAGfuOZ947kXBnY6ABpE61v0oiJsc4gpVLLLKG+WvPJd3il8+S2+rDKfXwgXv2YJ Y0biNHLq4/DPMi7T41LAVGFm/3CNs/YY9pNDyxOwr+wjVa63CdxJ7Xol57JEOocJ 8UL6Oy5RhEeJvm21WyIUg7+uMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFORcUcJg jwncwFoA/vtCs0b20W+nMB8GA1UdIwQYMBaAFAEocF1pxR4OKweK7bmYkefxm00f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEMwQi80NDU5NDQ4QzJD NkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhnNHJCNHJ0dVppUjVfR2JU UjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FTaHdYV25GSGc0ckI0cnR1WmlSNV9HYlRSOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MEMwQi80NDU5NDQ4QzJDNkExMUVBOUNFQ0JGNEFDNEY5QUUwMi9BU2h3WFduRkhn NHJCNHJ0dVppUjVfR2JUUjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBph65cM0FQAcv2If8OzeHhOZQ1087vqyLCtBJDWibssaLskK1gJOj HWsl9WTktlputeRoaBqJei8PaX70QvbuN61BNXm6UwWtKTCNFo1DzpU2jvyWRGR2 2+MD10IVpwryUmQexDy4QYpAtQEkWr82o+1kYS1pQWaCpdYiUM6cPg4GTmod6Xki QpwrVV75ntLRWDrhpobA5b7YHI2VVR/ZMHaNqMy1t25fHFqQ9CW9cA/1shh30Ut0 +xGABw9Y3vcg/jnPs1f01GjawiwSWMpkLVs2Ht/TQZGs16LiuZ3zAm+1D7g3cZ2T qUIvIkptGYCoNYcXpbGoe9E+4uJrv6JP -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:30 2025 by rpki-client