$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft File: tii4qSXEXjrDpxvkEUZimYv0s-A.mft (raw, json) Hash identifier: N89RwIqmzqo/ImXSHL3bW9dTxAA0ybZb0QdgVMXbTZ4= Subject key identifier: AE:FE:00:D5:8B:62:89:5F:9D:CB:3C:3C:34:80:7A:CB:38:FD:60:5B Authority key identifier: B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 Certificate issuer: /CN=A91CA8EA/serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft Manifest number: 04BF Signing time: Sun 07 Sep 2025 00:14:32 +0000 Manifest this update: Sun 07 Sep 2025 00:14:31 +0000 Manifest next update: Sun 14 Sep 2025 00:14:31 +0000 Files and hashes: 1: tii4qSXEXjrDpxvkEUZimYv0s-A.crl (hash: hx5Vgv5y9vK20M2hDL1Y5SugaLnILS9DSoO7fttk3y0=) 2: 14A07422D45E11EEB37CB639C4F9AE02.roa (hash: jYyif5XzvidlG1gkLHEZCka6sLKHMVLL3uaZPQUQSWU=) 3: 207388F2D45E11EE8D29793EC4F9AE02.roa (hash: aIqnIQInPJrCMj5K0+1zGOgCOM0xLmrh4KbjkSzgqVY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:14:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA8EA, serialNumber=B628B8A925C45E3AC3A71BE4114662998BF4B3E0 Validity Not Before: Sep 7 00:14:31 2025 GMT Not After : Sep 14 00:14:31 2025 GMT Subject: CN=68bcce67-3c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e2:dd:20:c7:24:43:e3:9a:f6:78:b9:fb:0b: 6d:53:af:d8:d8:4f:78:3b:93:5d:75:25:b0:30:93: 44:9a:70:df:71:bf:e7:a4:59:14:40:d3:7b:b4:7c: cf:58:ef:f4:00:68:a6:43:a6:f9:cd:1a:62:a2:3e: 87:86:00:f5:71:13:2b:32:1a:a7:55:36:a7:63:a4: c8:fc:e6:75:60:ce:14:f3:d0:dc:95:4e:65:33:04: c5:f5:25:09:db:bc:d5:99:5f:f5:17:47:27:cb:04: a6:16:e8:1c:d0:b8:c7:16:e5:e4:f3:f8:1f:51:bc: d3:be:7e:5e:d0:3f:df:28:2a:97:a0:19:9d:be:3b: ae:fd:fd:33:83:f1:73:43:d8:80:67:05:70:87:0a: 02:2d:a0:34:60:fc:7b:77:4d:9a:4a:f1:eb:40:51: 90:ee:77:07:d9:91:6f:3e:42:4c:a2:a2:1f:bc:ba: f9:a9:f7:13:c6:00:51:60:cf:f2:59:a0:5d:6e:a2: d5:c9:e1:0f:e1:88:cb:78:f9:df:e9:68:03:71:5d: 97:dd:bd:49:7e:58:54:d4:bd:c8:61:23:87:44:28: 4c:32:a9:98:c1:dc:b3:d3:d7:1d:c2:a1:20:92:f8: 14:59:1c:21:95:2e:3f:27:a8:21:2c:fa:56:e5:aa: eb:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:FE:00:D5:8B:62:89:5F:9D:CB:3C:3C:34:80:7A:CB:38:FD:60:5B X509v3 Authority Key Identifier: keyid:B6:28:B8:A9:25:C4:5E:3A:C3:A7:1B:E4:11:46:62:99:8B:F4:B3:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tii4qSXEXjrDpxvkEUZimYv0s-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA8EA/D8CA13C2404911EC9B6EFE7BC4F9AE02/tii4qSXEXjrDpxvkEUZimYv0s-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:43:48:e8:81:37:13:1e:6d:ab:18:db:58:51:1f:06:20:ad: f3:92:51:f3:42:ea:5c:fa:7b:05:02:ab:f2:b8:dc:c8:e6:bf: 94:eb:cf:17:66:69:97:e2:7e:07:64:cb:c0:73:32:39:d4:fe: 8a:d7:86:70:e9:2d:4b:13:89:6b:10:14:c6:01:1b:65:53:0b: 7b:b4:89:e5:c2:48:a8:f6:2e:f6:a7:07:95:eb:e0:33:4a:62: 24:ae:d8:1c:ae:a5:eb:77:0a:b0:9f:7a:e0:75:83:db:43:17: d6:f6:00:cb:35:81:86:53:0e:49:65:fc:75:06:f6:5a:14:61: ec:4c:bc:de:aa:51:3d:a7:82:37:68:18:c9:4f:3a:15:18:d3: d3:a8:01:27:62:b9:2a:ac:6c:cf:35:1d:12:96:52:fa:0d:cd: 44:b7:33:81:a9:44:dd:f8:5a:ec:80:d2:7d:7c:87:dd:a5:f7: 38:7b:b7:22:6a:6e:cd:67:c6:2f:44:1f:68:46:1d:ef:7c:5e: 41:da:d0:12:59:f9:02:65:94:51:c8:2e:99:86:63:24:36:f7: e1:d4:15:2a:22:93:3d:15:ca:b3:3e:d3:75:98:5a:e6:db:b2: c6:e7:19:0c:a4:fd:cd:04:f5:bd:03:8e:62:41:24:68:e5:e4: 42:26:05:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E4RUExMTAvBgNVBAUTKEI2MjhCOEE5MjVDNDVFM0FDM0E3MUJFNDExNDY2Mjk5 OEJGNEIzRTAwHhcNMjUwOTA3MDAxNDMxWhcNMjUwOTE0MDAxNDMxWjAYMRYwFAYD VQQDEw02OGJjY2U2Ny0zYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1uLdIMckQ+Oa9ni5+wttU6/Y2E94O5NddSWwMJNEmnDfcb/npFkUQNN7tHzP WO/0AGimQ6b5zRpioj6HhgD1cRMrMhqnVTanY6TI/OZ1YM4U89DclU5lMwTF9SUJ 27zVmV/1F0cnywSmFugc0LjHFuXk8/gfUbzTvn5e0D/fKCqXoBmdvjuu/f0zg/Fz Q9iAZwVwhwoCLaA0YPx7d02aSvHrQFGQ7ncH2ZFvPkJMoqIfvLr5qfcTxgBRYM/y WaBdbqLVyeEP4YjLePnf6WgDcV2X3b1JflhU1L3IYSOHRChMMqmYwdyz09cdwqEg kvgUWRwhlS4/J6ghLPpW5arrvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK7+ANWL Yolfncs8PDSAess4/WBbMB8GA1UdIwQYMBaAFLYouKklxF46w6cb5BFGYpmL9LPg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQThFQS9EOENBMTNDMjQw NDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhqckRweHZrRVVaaW1ZdjBz LUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RpaTRxU1hFWGpyRHB4dmtFVVppbVl2MHMtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QThFQS9EOENBMTNDMjQwNDkxMUVDOUI2RUZFN0JDNEY5QUUwMi90aWk0cVNYRVhq ckRweHZrRVVaaW1ZdjBzLUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByQ0jogTcTHm2rGNtYUR8GIK3zklHzQupc+nsFAqvyuNzI5r+U688X ZmmX4n4HZMvAczI51P6K14Zw6S1LE4lrEBTGARtlUwt7tInlwkio9i72pweV6+Az SmIkrtgcrqXrdwqwn3rgdYPbQxfW9gDLNYGGUw5JZfx1BvZaFGHsTLzeqlE9p4I3 aBjJTzoVGNPTqAEnYrkqrGzPNR0SllL6Dc1EtzOBqUTd+FrsgNJ9fIfdpfc4e7ci am7NZ8YvRB9oRh3vfF5B2tASWfkCZZRRyC6ZhmMkNvfh1BUqIpM9FcqzPtN1mFrm 27LG5xkMpP3NBPW9A45iQSRo5eRCJgW1 -----END CERTIFICATE-----Generated at Mon Sep 8 00:41:07 2025 by rpki-client