$ rpki-client -vvf rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft File: P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft (raw, json) Hash identifier: VxoFydlJAqzM4nOnMRa4uzS+ekgxMgEsxu4Dh/39hos= Subject key identifier: E8:47:E0:3E:A0:37:BB:AD:92:EA:3D:38:18:86:CA:4B:8C:8B:D5:26 Authority key identifier: 3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A Certificate issuer: /CN=A91C37DD/serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Certificate serial: 0107 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft Manifest number: FF Signing time: Sat 23 Aug 2025 05:23:05 +0000 Manifest this update: Sat 23 Aug 2025 05:23:04 +0000 Manifest next update: Sat 30 Aug 2025 05:23:04 +0000 Files and hashes: 1: P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl (hash: q/kI/Yc3O2afKynC45EYEa+EKaKZ+rhsR63Si/oLJDE=) 2: 8670D60E096611EF99F30750C4F9AE02.roa (hash: sT0cMmz3LwTY9msFrBTT0GIkbrL7Fs7LTvjg3aLQ9/g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 263 (0x107) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C37DD, serialNumber=3FE3AE355A9277B91D73E2AC52F5387F095F189A Validity Not Before: Aug 23 05:23:04 2025 GMT Not After : Aug 30 05:23:04 2025 GMT Subject: CN=68a95039-3a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cb:c4:05:85:fc:93:be:5d:57:11:a6:e4:c4: 54:79:98:04:d1:e7:1e:79:43:8f:6f:e2:cc:3c:ad: 3b:40:92:55:43:84:84:c1:2f:ef:2d:14:0b:4e:e1: df:8e:af:3c:2b:ce:5c:5a:fb:a0:5e:d1:c2:eb:2f: 0a:c5:68:1b:b0:c8:13:7a:c4:af:41:30:d4:03:fd: 4d:51:39:cd:1e:22:df:37:8a:43:c3:5c:9b:c7:ef: 7a:0d:68:58:a2:95:a0:75:87:43:e5:7e:71:0e:a9: b3:7c:4a:ad:f9:7b:58:d6:66:2c:9e:4e:d8:23:f0: 61:33:c5:ab:9f:09:4c:f3:a9:3e:92:ad:ab:0d:3c: 2e:63:3a:44:71:9d:f4:47:b7:5a:9f:2b:49:28:de: 8d:43:84:41:2e:b0:89:2f:4f:64:11:2f:07:97:9e: d3:fe:9b:35:40:ed:c7:61:59:cd:88:ad:37:1d:25: 40:0d:ba:90:fa:93:64:71:e1:49:a0:df:77:0b:c3: 51:a5:4f:4c:16:43:b6:0e:1d:d9:db:2f:a9:0f:17: 92:c6:9e:b7:44:bb:4c:10:ac:15:bc:5d:03:b9:43: bf:cf:5b:b3:87:35:cf:0a:9b:b5:f7:44:1a:d1:84: 33:66:5f:c3:33:74:26:ac:a2:60:b3:22:5d:24:76: 5b:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:47:E0:3E:A0:37:BB:AD:92:EA:3D:38:18:86:CA:4B:8C:8B:D5:26 X509v3 Authority Key Identifier: keyid:3F:E3:AE:35:5A:92:77:B9:1D:73:E2:AC:52:F5:38:7F:09:5F:18:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P-OuNVqSd7kdc-KsUvU4fwlfGJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C37DD/24855D80096511EFA4BCE87AC4F9AE02/P-OuNVqSd7kdc-KsUvU4fwlfGJo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:34:fc:40:d5:dc:ac:4a:79:64:83:21:5c:94:1d:10:ed:fa: 7b:24:37:e0:12:64:7f:52:38:c1:d9:a3:5b:67:02:70:8f:c4: ba:55:0b:4f:1c:f5:8c:e0:87:a4:7a:9e:c1:60:f2:3c:5e:8e: 8d:5d:3f:f7:fb:65:53:8f:cb:3f:06:60:4f:00:d0:e4:90:da: b5:f6:97:a0:15:1b:f8:a4:62:c9:3d:65:49:23:c4:b9:21:26: 48:c7:aa:11:d9:89:75:82:f6:c9:50:56:bd:c2:4d:0f:45:c9: fc:ab:56:13:24:f8:bc:d9:04:d3:cb:6b:05:a1:8b:d8:88:3f: ff:74:02:b9:9f:a2:a7:97:0e:87:26:64:27:ea:96:1b:35:68: 4d:81:0c:f3:db:3b:1c:9d:fe:0c:da:9c:44:00:c3:cb:8f:12: dc:f2:8a:3d:05:32:35:09:6d:bf:52:ff:d9:4b:f2:38:bc:8c: 52:00:55:45:7f:7c:8d:70:3b:91:a9:70:2f:27:74:56:fb:49: 61:db:27:47:7e:01:81:6a:fd:70:07:78:04:f7:20:41:dc:61: dd:bf:26:4a:bb:a6:f4:b0:c3:05:eb:85:9b:aa:0d:87:6e:12: df:f6:f7:f3:2a:4c:94:77:18:b2:bf:c5:2e:55:24:f2:27:cc: e5:36:56:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzM3REQxMTAvBgNVBAUTKDNGRTNBRTM1NUE5Mjc3QjkxRDczRTJBQzUyRjUzODdG MDk1RjE4OUEwHhcNMjUwODIzMDUyMzA0WhcNMjUwODMwMDUyMzA0WjAYMRYwFAYD VQQDEw02OGE5NTAzOS0zYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0svEBYX8k75dVxGm5MRUeZgE0eceeUOPb+LMPK07QJJVQ4SEwS/vLRQLTuHf jq88K85cWvugXtHC6y8KxWgbsMgTesSvQTDUA/1NUTnNHiLfN4pDw1ybx+96DWhY opWgdYdD5X5xDqmzfEqt+XtY1mYsnk7YI/BhM8WrnwlM86k+kq2rDTwuYzpEcZ30 R7danytJKN6NQ4RBLrCJL09kES8Hl57T/ps1QO3HYVnNiK03HSVADbqQ+pNkceFJ oN93C8NRpU9MFkO2Dh3Z2y+pDxeSxp63RLtMEKwVvF0DuUO/z1uzhzXPCpu190Qa 0YQzZl/DM3QmrKJgsyJdJHZbmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhH4D6g N7utkuo9OBiGykuMi9UmMB8GA1UdIwQYMBaAFD/jrjVakne5HXPirFL1OH8JXxia MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzdERC8yNDg1NUQ4MDA5 NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3a2RjLUtzVXZVNGZ3bGZH Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1AtT3VOVnFTZDdrZGMtS3NVdlU0ZndsZkdKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MzdERC8yNDg1NUQ4MDA5NjUxMUVGQTRCQ0U4N0FDNEY5QUUwMi9QLU91TlZxU2Q3 a2RjLUtzVXZVNGZ3bGZHSm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXNPxA1dysSnlkgyFclB0Q7fp7JDfgEmR/UjjB2aNbZwJwj8S6VQtP HPWM4Iekep7BYPI8Xo6NXT/3+2VTj8s/BmBPANDkkNq19pegFRv4pGLJPWVJI8S5 ISZIx6oR2Yl1gvbJUFa9wk0PRcn8q1YTJPi82QTTy2sFoYvYiD//dAK5n6Knlw6H JmQn6pYbNWhNgQzz2zscnf4M2pxEAMPLjxLc8oo9BTI1CW2/Uv/ZS/I4vIxSAFVF f3yNcDuRqXAvJ3RW+0lh2ydHfgGBav1wB3gE9yBB3GHdvyZKu6b0sMMF64Wbqg2H bhLf9vfzKkyUdxiyv8UuVSTyJ8zlNlZZ -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:31 2025 by rpki-client