$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft File: s0it0HgdstIdxNM510-HoDk4ycc.mft (raw, json) Hash identifier: vacyJYtalTb8fEQG0zVZX8wHMh3Q286dYCmDToAWKoA= Subject key identifier: D5:44:50:5C:41:8C:AA:B4:EC:82:AC:BB:7F:3B:5A:11:FC:45:77:AA Authority key identifier: B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 Certificate issuer: /CN=A91C7C44/serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft Manifest number: 020D Signing time: Sat 23 Aug 2025 02:21:59 +0000 Manifest this update: Sat 23 Aug 2025 02:21:59 +0000 Manifest next update: Sat 30 Aug 2025 02:21:59 +0000 Files and hashes: 1: s0it0HgdstIdxNM510-HoDk4ycc.crl (hash: bGxMHMvmp/DrA6anahmKOhIp0jaN2wV2LPa2cY4uB5I=) 2: 945D844463E311EDAD1B0B3FC4F9AE02.roa (hash: N+dN6EXW9kLpuaXIDcRP+SypH2TkoWeKEFt5XA9cnJo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7C44, serialNumber=B348ADD0781DB2D21DC4D339D74F87A03938C9C7 Validity Not Before: Aug 23 02:21:59 2025 GMT Not After : Aug 30 02:21:59 2025 GMT Subject: CN=68a925c7-b59b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:54:a8:7d:4a:64:1e:b5:25:5e:ff:8b:9e:0c: 9b:dd:46:11:74:4f:04:58:ac:59:1e:8f:57:d4:42: 69:fc:e1:ea:33:b7:3e:3e:72:a1:e7:37:6f:8f:39: e2:1f:50:bd:17:93:c9:ad:18:5c:11:3d:c0:9c:ed: 84:ff:f0:2a:00:5a:e4:40:ce:37:53:c1:76:a8:d3: 25:83:c1:cc:88:93:39:92:df:b2:94:51:49:9e:9e: da:f2:bc:e2:5b:29:c4:b8:d3:7f:3e:29:bd:c4:22: f9:05:ef:99:87:67:ce:4a:54:eb:3b:f1:35:3e:47: cd:9c:76:ac:43:4f:57:46:e7:f0:8b:eb:e7:0b:93: 36:d8:ee:64:3f:12:f9:80:96:60:da:1d:23:37:cd: e6:d5:c3:e7:97:76:23:37:40:91:ee:6d:63:dc:25: 70:0f:cb:e5:b1:bc:c4:d3:4b:23:fc:60:e5:c7:2f: 26:5e:29:6d:31:5c:da:df:3d:db:d3:66:2c:82:8f: 0b:2a:ea:d8:e1:24:c3:07:83:3a:e3:8a:71:06:67: 59:f8:fc:51:ea:bc:e5:ff:b5:96:0c:54:1a:a7:dc: 12:5b:a1:29:4d:47:e2:2d:f6:30:7d:07:19:1e:60: 16:e7:70:01:80:d6:b3:fe:23:32:cf:1f:2d:3c:a7: 48:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:44:50:5C:41:8C:AA:B4:EC:82:AC:BB:7F:3B:5A:11:FC:45:77:AA X509v3 Authority Key Identifier: keyid:B3:48:AD:D0:78:1D:B2:D2:1D:C4:D3:39:D7:4F:87:A0:39:38:C9:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s0it0HgdstIdxNM510-HoDk4ycc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7C44/D533A7B463DE11ED80BCD337C4F9AE02/s0it0HgdstIdxNM510-HoDk4ycc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:67:12:87:59:92:f7:5d:b5:d2:f4:37:2a:6a:ab:69:b9:d2: 65:3b:70:c9:96:11:4f:01:ba:93:3e:a0:9f:09:62:12:d0:01: f8:e0:ee:da:71:b0:8c:f6:65:71:ab:04:92:59:bb:d8:8a:70: c9:30:c9:a3:31:61:47:aa:6d:d3:0c:b9:e0:c9:d6:8c:23:5e: d9:3f:20:59:28:71:af:6e:8d:85:6b:34:59:c0:8d:d8:d9:7f: 0b:bf:ca:08:2d:50:c2:35:32:d1:af:f3:39:6a:12:c4:dc:ab: 9b:63:ee:e0:12:50:10:d4:ec:9c:ba:45:4d:bc:5a:09:64:cf: 01:03:3a:61:55:11:61:d0:85:ed:5a:04:48:5b:78:b6:44:56: ac:bc:08:31:d8:ba:a9:eb:fb:5a:b6:1a:0d:b9:4b:b8:5d:5c: b8:ff:ad:af:ad:90:72:c2:6d:95:ec:d3:83:e2:e2:22:bc:ff: 6a:f4:32:7a:a6:63:78:3e:5b:cf:57:b8:e8:67:90:7c:e4:0b: 58:5c:93:d9:e7:ff:a1:6f:53:8f:ea:05:b8:4b:bc:12:21:d5: a0:93:1a:5d:04:04:b4:b2:e5:84:c4:8e:f9:b0:eb:21:6f:18: 42:fa:6e:15:ec:f5:61:23:59:45:4f:43:82:b2:7f:15:ea:2f: 11:1c:54:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdDNDQxMTAvBgNVBAUTKEIzNDhBREQwNzgxREIyRDIxREM0RDMzOUQ3NEY4N0Ew MzkzOEM5QzcwHhcNMjUwODIzMDIyMTU5WhcNMjUwODMwMDIyMTU5WjAYMRYwFAYD VQQDEw02OGE5MjVjNy1iNTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lSofUpkHrUlXv+Lngyb3UYRdE8EWKxZHo9X1EJp/OHqM7c+PnKh5zdvjzni H1C9F5PJrRhcET3AnO2E//AqAFrkQM43U8F2qNMlg8HMiJM5kt+ylFFJnp7a8rzi WynEuNN/Pim9xCL5Be+Zh2fOSlTrO/E1PkfNnHasQ09XRufwi+vnC5M22O5kPxL5 gJZg2h0jN83m1cPnl3YjN0CR7m1j3CVwD8vlsbzE00sj/GDlxy8mXiltMVza3z3b 02Ysgo8LKurY4STDB4M644pxBmdZ+PxR6rzl/7WWDFQap9wSW6EpTUfiLfYwfQcZ HmAW53ABgNaz/iMyzx8tPKdIFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVEUFxB jKq07IKsu387WhH8RXeqMB8GA1UdIwQYMBaAFLNIrdB4HbLSHcTTOddPh6A5OMnH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0M0NC9ENTMzQTdCNDYz REUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0SWR4Tk01MTAtSG9EazR5 Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MwaXQwSGdkc3RJZHhOTTUxMC1Ib0RrNHljYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0M0NC9ENTMzQTdCNDYzREUxMUVEODBCQ0QzMzdDNEY5QUUwMi9zMGl0MEhnZHN0 SWR4Tk01MTAtSG9EazR5Y2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbZxKHWZL3XbXS9DcqaqtpudJlO3DJlhFPAbqTPqCfCWIS0AH44O7a cbCM9mVxqwSSWbvYinDJMMmjMWFHqm3TDLngydaMI17ZPyBZKHGvbo2FazRZwI3Y 2X8Lv8oILVDCNTLRr/M5ahLE3KubY+7gElAQ1OycukVNvFoJZM8BAzphVRFh0IXt WgRIW3i2RFasvAgx2Lqp6/tathoNuUu4XVy4/62vrZBywm2V7NOD4uIivP9q9DJ6 pmN4PlvPV7joZ5B85AtYXJPZ5/+hb1OP6gW4S7wSIdWgkxpdBAS0suWExI75sOsh bxhC+m4V7PVhI1lFT0OCsn8V6i8RHFTm -----END CERTIFICATE-----Generated at Sun Aug 24 22:18:27 2025 by rpki-client