$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft File: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft (raw, json) Hash identifier: y4xCRHyCTKietrjdX4jy0ZIdd3XM5Z6cvtqyKQw+OVw= Subject key identifier: B3:BA:6B:D6:87:DE:46:A1:18:28:2E:49:58:A2:4F:FD:14:F6:02:32 Authority key identifier: 47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A Certificate issuer: /CN=A91CB8BA/serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Certificate serial: 08F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft Manifest number: 08E8 Signing time: Thu 04 Sep 2025 20:39:43 +0000 Manifest this update: Thu 04 Sep 2025 20:39:43 +0000 Manifest next update: Thu 11 Sep 2025 20:39:43 +0000 Files and hashes: 1: RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl (hash: i/OjXCYCMn0WmhAMtWpqR7O9QtgFr5XQgJCQXz1VgEI=) 2: 465DBB30BA8811EAAF996D39C4F9AE02.roa (hash: 23ndFVCcLg+/bCNKhL706A7YBuPjvG2i31lg9YjdTYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:39:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB8BA, serialNumber=470A93449E611FA9AD05A289D6188220B5FCFC3A Validity Not Before: Sep 4 20:39:43 2025 GMT Not After : Sep 11 20:39:43 2025 GMT Subject: CN=68b9f90f-0e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3f:34:13:fc:c7:89:d0:54:83:34:21:0a:48: 71:a7:cb:f0:24:51:ce:47:fe:00:19:39:cf:89:38: 83:72:8a:99:cf:35:e5:d8:c8:fd:84:23:51:3d:1a: 56:f3:43:63:99:2c:a8:41:ae:f6:18:08:0c:21:79: 22:ea:c9:e0:70:24:70:25:db:3e:1b:a1:6e:49:76: b8:a0:50:e5:10:c7:30:04:9f:52:b6:5b:77:13:9b: b3:56:7b:dc:6d:1f:9d:23:aa:c1:7c:a6:ab:51:99: 07:be:14:42:ea:af:fd:ea:e4:d7:ba:38:2e:fd:e9: 71:46:01:24:ab:a7:5b:14:2e:e8:bb:0c:ff:e9:5a: ae:df:51:72:17:cb:ae:bb:9f:03:c8:83:98:ed:4c: f8:ad:42:31:a5:74:90:e2:e4:0c:5f:a7:2c:06:14: 06:d7:24:e5:fc:a9:44:ff:c0:d5:c3:2c:2d:a6:14: 52:92:3b:10:5d:1f:c0:65:1d:ef:c6:1a:e5:8e:28: 9f:b8:aa:8f:47:45:97:62:68:79:08:b3:76:54:ad: 0f:97:84:19:f9:8d:c6:05:a2:3b:fd:08:f9:5d:8e: 6f:64:82:78:49:d4:41:cd:48:9c:de:ec:52:1c:fe: d7:e7:f1:70:b0:e4:33:94:6c:ab:48:14:77:2f:db: b1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:BA:6B:D6:87:DE:46:A1:18:28:2E:49:58:A2:4F:FD:14:F6:02:32 X509v3 Authority Key Identifier: keyid:47:0A:93:44:9E:61:1F:A9:AD:05:A2:89:D6:18:82:20:B5:FC:FC:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB8BA/2B732E70BA8511EABA838E30C4F9AE02/RwqTRJ5hH6mtBaKJ1hiCILX8_Do.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:73:9e:f9:bd:a0:cb:7b:94:32:a0:06:c4:cc:60:91:0b:66: 7d:4e:05:43:0d:48:5f:ec:28:f3:38:23:0c:3c:ea:ec:d4:7e: e2:9c:e7:d0:a3:54:15:e3:53:38:be:8f:96:17:f4:e7:d5:5c: 20:46:35:34:89:38:ef:e9:2c:0f:4d:68:9e:8b:07:69:ec:88: 0c:d6:c3:d3:08:3c:e4:74:4e:1a:9b:3c:80:56:00:fa:c8:71: 94:d4:f3:81:a6:cd:f5:8f:5d:6a:92:43:d0:ea:d8:db:24:2c: 23:63:e5:d5:a0:1b:ca:1b:91:e5:6f:e6:53:86:3b:05:23:52: 6a:96:6f:ab:94:8e:ea:5c:87:15:e7:be:45:f3:63:40:07:d4: 37:42:9f:af:da:74:9d:46:8b:04:d2:7b:f1:dc:10:19:6f:87: cd:5b:28:1e:a1:0f:d8:8c:32:ac:27:1f:ff:04:ad:80:33:37: 77:e9:36:6f:40:81:ee:9f:9e:17:f4:2d:ac:0e:89:d7:90:b5: 4c:83:99:58:40:fc:2d:a5:7f:42:73:4a:77:70:75:28:18:dc: 15:18:a3:c2:f0:3f:18:d5:26:ac:43:5a:1a:b6:5e:58:ad:4c: 5f:3e:62:3b:4e:9d:4b:a0:5b:81:59:41:07:48:8d:28:b6:3b: b1:08:2e:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0I4QkExMTAvBgNVBAUTKDQ3MEE5MzQ0OUU2MTFGQTlBRDA1QTI4OUQ2MTg4MjIw QjVGQ0ZDM0EwHhcNMjUwOTA0MjAzOTQzWhcNMjUwOTExMjAzOTQzWjAYMRYwFAYD VQQDEw02OGI5ZjkwZi0wZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz80E/zHidBUgzQhCkhxp8vwJFHOR/4AGTnPiTiDcoqZzzXl2Mj9hCNRPRpW 80NjmSyoQa72GAgMIXki6sngcCRwJds+G6FuSXa4oFDlEMcwBJ9Stlt3E5uzVnvc bR+dI6rBfKarUZkHvhRC6q/96uTXujgu/elxRgEkq6dbFC7ouwz/6Vqu31FyF8uu u58DyIOY7Uz4rUIxpXSQ4uQMX6csBhQG1yTl/KlE/8DVwywtphRSkjsQXR/AZR3v xhrljiifuKqPR0WXYmh5CLN2VK0Pl4QZ+Y3GBaI7/Qj5XY5vZIJ4SdRBzUic3uxS HP7X5/FwsOQzlGyrSBR3L9uxlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLO6a9aH 3kahGCguSViiT/0U9gIyMB8GA1UdIwQYMBaAFEcKk0SeYR+prQWiidYYgiC1/Pw6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQjhCQS8yQjczMkU3MEJB ODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2bXRCYUtKMWhpQ0lMWDhf RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1J3cVRSSjVoSDZtdEJhS0oxaGlDSUxYOF9Eby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjhCQS8yQjczMkU3MEJBODUxMUVBQkE4MzhFMzBDNEY5QUUwMi9Sd3FUUko1aEg2 bXRCYUtKMWhpQ0lMWDhfRG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZc575vaDLe5QyoAbEzGCRC2Z9TgVDDUhf7CjzOCMMPOrs1H7inOfQ o1QV41M4vo+WF/Tn1VwgRjU0iTjv6SwPTWieiwdp7IgM1sPTCDzkdE4amzyAVgD6 yHGU1POBps31j11qkkPQ6tjbJCwjY+XVoBvKG5Hlb+ZThjsFI1Jqlm+rlI7qXIcV 575F82NAB9Q3Qp+v2nSdRosE0nvx3BAZb4fNWygeoQ/YjDKsJx//BK2AMzd36TZv QIHun54X9C2sDonXkLVMg5lYQPwtpX9Cc0p3cHUoGNwVGKPC8D8Y1SasQ1oatl5Y rUxfPmI7Tp1LoFuBWUEHSI0otjuxCC71 -----END CERTIFICATE-----Generated at Sat Sep 6 07:09:23 2025 by rpki-client