$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft File: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft (raw, json) Hash identifier: lO2yOf8y86G5zkx4qcSqOUxJ9rT5xb4K/qzHPpF9PXw= Subject key identifier: 8D:23:80:97:19:B7:AF:11:F0:A3:4E:DC:9C:6F:47:B2:0A:B2:4B:D9 Authority key identifier: DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 Certificate issuer: /CN=A91CD00C/serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Certificate serial: 0369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft Manifest number: 0363 Signing time: Tue 09 Sep 2025 01:01:16 +0000 Manifest this update: Tue 09 Sep 2025 01:01:15 +0000 Manifest next update: Tue 16 Sep 2025 01:01:15 +0000 Files and hashes: 1: 2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl (hash: SJT+SzRKVI8dcLrpypQRmboG/MFSPIVi12XzqswYwa0=) 2: 46654408C6CB11ECB185E43EC4F9AE02.roa (hash: YDV59vkDGMUjv69JwCXS0TevAXxNgXIE57WFOFZhJBo=) 3: 15D68F5ED55011EFA0564D54C4F9AE02.roa (hash: bm0eX3arzl/Vd2cVSRTEVj0uPXCCRL3I0GcsJSw9xWg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:01:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 873 (0x369) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD00C, serialNumber=DB2CCCA83D853288C500CDFC3AE1E2FEA049F514 Validity Not Before: Sep 9 01:01:15 2025 GMT Not After : Sep 16 01:01:15 2025 GMT Subject: CN=68bf7c5c-3db8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c2:7a:a3:00:13:13:1c:93:55:27:72:1d:ae: e8:8e:f4:ce:2e:bd:55:e2:16:d6:df:3f:11:d3:38: 6d:2f:c4:13:ce:eb:23:b5:f5:51:63:c9:99:1a:09: b0:a7:77:9f:d4:83:55:62:56:3b:70:b7:5f:94:f0: 43:82:7d:88:67:25:49:4e:b8:81:c7:f2:24:9a:78: 32:33:54:ab:f2:65:9c:36:6b:f9:4b:f2:e9:3c:3c: b4:2f:20:5e:73:b2:b4:22:3c:8f:3c:a8:b3:19:9a: 2c:f4:02:20:23:42:1b:51:7f:e5:5f:4e:50:6a:8a: a6:41:e4:35:35:d1:1e:eb:8a:c8:2a:94:16:e4:58: 20:ce:74:15:b3:cf:80:28:e8:4c:65:c4:d9:3f:76: 31:5d:7a:8c:b0:1e:ab:f4:cd:99:8f:49:1a:09:e3: f3:1a:63:d7:93:4d:df:7b:6a:71:dc:35:60:05:65: d5:03:59:d0:b2:0a:92:6b:b9:bf:eb:51:7d:0a:7f: c0:49:f4:9b:d5:b4:62:ab:10:f6:05:d6:74:23:ba: 94:9d:e3:6b:90:45:3a:2b:86:47:66:17:b4:18:eb: 0f:b1:a0:37:22:3f:67:a3:2d:70:9d:a3:66:13:89: 05:72:97:33:40:e6:35:88:f5:94:b3:de:7a:c6:07: 3b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:23:80:97:19:B7:AF:11:F0:A3:4E:DC:9C:6F:47:B2:0A:B2:4B:D9 X509v3 Authority Key Identifier: keyid:DB:2C:CC:A8:3D:85:32:88:C5:00:CD:FC:3A:E1:E2:FE:A0:49:F5:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2yzMqD2FMojFAM38OuHi_qBJ9RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD00C/CAA8861EC60111EC95FF1E11C4F9AE02/2yzMqD2FMojFAM38OuHi_qBJ9RQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:e6:0e:04:84:62:17:42:ca:53:f9:24:4d:47:7b:d4:bf:5d: c2:de:be:16:b1:d5:56:bb:6c:84:f4:bd:c0:e9:16:55:4c:04: 14:0b:ca:1d:00:9d:7b:71:63:08:07:ea:77:cb:14:90:48:8c: f3:1c:a9:23:5e:77:4b:51:bd:78:2d:22:6d:fd:73:c9:b2:d8: 0f:6d:40:b7:97:2c:0f:1a:a2:ac:c8:e2:ae:35:da:c3:b4:0d: b7:2c:a1:a0:d4:06:ff:be:e7:db:c1:09:97:e2:76:c8:02:23: 2b:19:da:81:c0:1e:cd:de:a9:c3:79:b8:58:e8:12:4e:ea:53: 45:2a:9a:b8:ee:94:19:2b:06:16:3c:91:47:f3:b8:58:27:6d: 27:00:72:d5:e3:f9:70:06:f1:95:40:64:10:27:03:3c:d0:4e: 78:e7:f9:26:e3:2b:d6:50:17:56:c4:6c:6b:0b:2a:62:ca:43: 48:1b:19:15:ce:b6:85:6e:ab:b7:82:64:5a:fc:42:c9:dc:1c: 9c:83:18:b9:45:3b:1a:89:14:9d:2d:3f:a3:38:8e:29:6c:ba: 2a:ce:ae:94:13:28:84:27:10:1e:6f:2c:6d:f0:4c:f3:65:4a: e9:c8:ea:9c:3a:e7:51:cf:85:c0:4e:4b:d5:69:8e:dc:4a:4f: 77:39:1f:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwMEMxMTAvBgNVBAUTKERCMkNDQ0E4M0Q4NTMyODhDNTAwQ0RGQzNBRTFFMkZF QTA0OUY1MTQwHhcNMjUwOTA5MDEwMTE1WhcNMjUwOTE2MDEwMTE1WjAYMRYwFAYD VQQDEw02OGJmN2M1Yy0zZGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAocJ6owATExyTVSdyHa7ojvTOLr1V4hbW3z8R0zhtL8QTzusjtfVRY8mZGgmw p3ef1INVYlY7cLdflPBDgn2IZyVJTriBx/IkmngyM1Sr8mWcNmv5S/LpPDy0LyBe c7K0IjyPPKizGZos9AIgI0IbUX/lX05QaoqmQeQ1NdEe64rIKpQW5FggznQVs8+A KOhMZcTZP3YxXXqMsB6r9M2Zj0kaCePzGmPXk03fe2px3DVgBWXVA1nQsgqSa7m/ 61F9Cn/ASfSb1bRiqxD2BdZ0I7qUneNrkEU6K4ZHZhe0GOsPsaA3Ij9noy1wnaNm E4kFcpczQOY1iPWUs956xgc71wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI0jgJcZ t68R8KNO3JxvR7IKskvZMB8GA1UdIwQYMBaAFNsszKg9hTKIxQDN/Drh4v6gSfUU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDAwQy9DQUE4ODYxRUM2 MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1vakZBTTM4T3VIaV9xQko5 UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ5ek1xRDJGTW9qRkFNMzhPdUhpX3FCSjlSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDAwQy9DQUE4ODYxRUM2MDExMUVDOTVGRjFFMTFDNEY5QUUwMi8yeXpNcUQyRk1v akZBTTM4T3VIaV9xQko5UlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAW5g4EhGIXQspT+SRNR3vUv13C3r4WsdVWu2yE9L3A6RZVTAQUC8od AJ17cWMIB+p3yxSQSIzzHKkjXndLUb14LSJt/XPJstgPbUC3lywPGqKsyOKuNdrD tA23LKGg1Ab/vufbwQmX4nbIAiMrGdqBwB7N3qnDebhY6BJO6lNFKpq47pQZKwYW PJFH87hYJ20nAHLV4/lwBvGVQGQQJwM80E545/km4yvWUBdWxGxrCypiykNIGxkV zraFbqu3gmRa/ELJ3Bycgxi5RTsaiRSdLT+jOI4pbLoqzq6UEyiEJxAebyxt8Ezz ZUrpyOqcOudRz4XATkvVaY7cSk93OR81 -----END CERTIFICATE-----Generated at Tue Sep 9 18:30:55 2025 by rpki-client