$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft File: -mfVMKhwCqjrfU9svpZHvlN_X84.mft (raw, json) Hash identifier: mNSzK9suTxJZaD8ovmNIcdZgL4ayvLXc2ORVLsA+2qE= Subject key identifier: 46:03:A3:C3:FB:70:40:DC:DA:45:F9:0A:41:C1:70:DE:E9:3E:0B:D6 Authority key identifier: FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE Certificate issuer: /CN=A91CD056/serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Certificate serial: 0353 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft Manifest number: 034F Signing time: Sat 23 Aug 2025 01:15:08 +0000 Manifest this update: Sat 23 Aug 2025 01:15:07 +0000 Manifest next update: Sat 30 Aug 2025 01:15:07 +0000 Files and hashes: 1: -mfVMKhwCqjrfU9svpZHvlN_X84.crl (hash: ql5Iy9gVo/Uh15dLo+rn+YD8DdEGerUHHI+nntpo9ok=) 2: 3E62F2ECC9EA11ECB6295B34C4F9AE02.roa (hash: mfXzwKGY7gUqiLkJW1SqazxLmJ2CAU7Yff9kCtQmKuM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 851 (0x353) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD056, serialNumber=FA67D530A8700AA8EB7D4F6CBE9647BE537F5FCE Validity Not Before: Aug 23 01:15:07 2025 GMT Not After : Aug 30 01:15:07 2025 GMT Subject: CN=68a9161b-c8ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:35:ed:62:61:57:84:61:3e:bc:af:13:02:d8: cc:a5:b4:de:03:84:ce:e2:a3:3d:17:fb:bf:74:83: a7:a4:b8:bd:f4:42:e0:ee:f0:23:da:ae:6f:f0:a7: 95:5d:91:5d:1e:4d:f2:9e:71:56:aa:d0:3f:63:3c: 99:c4:dc:0d:5d:97:17:e4:55:0a:a5:00:b8:f3:6d: fd:f0:5a:50:5d:8b:d6:fd:f8:62:47:be:56:25:2f: 85:b6:c6:d5:d8:31:d4:2c:dc:b2:4a:df:e9:06:3b: ba:a0:96:6d:d7:27:ab:06:63:2f:9e:14:d1:d2:06: d6:8b:1d:74:fd:da:fb:13:75:7a:1c:6a:ad:7c:8c: 47:89:df:33:d1:07:7a:ba:52:5c:d4:c1:06:eb:ae: 78:db:37:68:38:41:87:b8:5b:53:fc:12:61:ff:b1: 36:fb:5b:63:ab:7e:fb:5e:85:03:f5:75:b0:db:36: 8f:67:52:2b:a9:53:ee:d0:f4:4f:9d:99:a5:6a:92: b9:56:cc:c9:b9:d0:6c:dd:b6:64:a6:1a:c9:81:bd: 2a:25:83:0c:8c:ac:5b:dc:b7:c9:8d:2d:1d:0f:6b: 8e:4f:2f:60:62:85:1c:a7:70:c3:95:62:b5:9a:26: 20:9e:87:56:b1:92:ba:de:34:cd:fa:33:fe:22:af: e6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:03:A3:C3:FB:70:40:DC:DA:45:F9:0A:41:C1:70:DE:E9:3E:0B:D6 X509v3 Authority Key Identifier: keyid:FA:67:D5:30:A8:70:0A:A8:EB:7D:4F:6C:BE:96:47:BE:53:7F:5F:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-mfVMKhwCqjrfU9svpZHvlN_X84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD056/D70264AAC9E611ECAC228D30C4F9AE02/-mfVMKhwCqjrfU9svpZHvlN_X84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:14:2d:c4:be:fc:8f:0c:d5:c8:a2:1d:c4:49:7e:5a:cd:39: a2:65:49:7d:88:5f:ec:5a:40:2c:50:df:9e:60:46:c7:1c:a1: f0:30:12:92:bf:dd:d0:db:5c:ec:e6:21:76:71:0c:e7:6a:c5: ac:ae:b8:bc:7a:24:fa:32:8b:2d:39:8e:52:31:5b:c1:08:95: 94:b6:66:1b:63:c6:a0:3c:a1:25:54:a8:76:89:0c:32:93:2f: 40:f9:55:b9:24:14:d1:fc:b1:30:e1:70:2d:ae:45:05:ff:86: 05:4c:7a:c9:e6:de:06:f7:9c:94:ae:3e:94:dd:10:e4:3a:4b: 6c:f5:d7:47:cc:4f:8d:dc:3f:68:ca:1f:16:ce:87:a5:ea:55: 15:22:10:e8:b0:1e:90:ef:38:9e:d5:c4:74:f1:5d:45:1e:2f: ff:58:01:f6:7e:33:71:ec:20:28:cd:2b:0b:e6:8e:a1:ab:c7: 72:4b:47:9b:c4:ed:b5:fe:0e:cb:51:ff:4c:3d:f2:03:65:ec: 6b:98:83:b0:e6:6c:1a:5f:b1:c6:d5:04:b4:9a:67:75:71:ff: 92:55:89:aa:9d:50:a4:d4:d2:cd:3e:0b:f1:f1:86:ef:b7:16: 50:a9:25:4f:0d:e9:fc:1c:39:68:8b:2b:02:d4:49:c0:22:f9: e7:74:21:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QwNTYxMTAvBgNVBAUTKEZBNjdENTMwQTg3MDBBQThFQjdENEY2Q0JFOTY0N0JF NTM3RjVGQ0UwHhcNMjUwODIzMDExNTA3WhcNMjUwODMwMDExNTA3WjAYMRYwFAYD VQQDEw02OGE5MTYxYi1jOGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzXtYmFXhGE+vK8TAtjMpbTeA4TO4qM9F/u/dIOnpLi99ELg7vAj2q5v8KeV XZFdHk3ynnFWqtA/YzyZxNwNXZcX5FUKpQC482398FpQXYvW/fhiR75WJS+FtsbV 2DHULNyySt/pBju6oJZt1yerBmMvnhTR0gbWix10/dr7E3V6HGqtfIxHid8z0Qd6 ulJc1MEG66542zdoOEGHuFtT/BJh/7E2+1tjq377XoUD9XWw2zaPZ1IrqVPu0PRP nZmlapK5VszJudBs3bZkphrJgb0qJYMMjKxb3LfJjS0dD2uOTy9gYoUcp3DDlWK1 miYgnodWsZK63jTN+jP+Iq/m6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYDo8P7 cEDc2kX5CkHBcN7pPgvWMB8GA1UdIwQYMBaAFPpn1TCocAqo631PbL6WR75Tf1/O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDA1Ni9ENzAyNjRBQUM5 RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0NxanJmVTlzdnBaSHZsTl9Y ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1tZlZNS2h3Q3FqcmZVOXN2cFpIdmxOX1g4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDA1Ni9ENzAyNjRBQUM5RTYxMUVDQUMyMjhEMzBDNEY5QUUwMi8tbWZWTUtod0Nx anJmVTlzdnBaSHZsTl9YODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzFC3EvvyPDNXIoh3ESX5azTmiZUl9iF/sWkAsUN+eYEbHHKHwMBKS v93Q21zs5iF2cQznasWsrri8eiT6MostOY5SMVvBCJWUtmYbY8agPKElVKh2iQwy ky9A+VW5JBTR/LEw4XAtrkUF/4YFTHrJ5t4G95yUrj6U3RDkOkts9ddHzE+N3D9o yh8Wzoel6lUVIhDosB6Q7zie1cR08V1FHi//WAH2fjNx7CAozSsL5o6hq8dyS0eb xO21/g7LUf9MPfIDZexrmIOw5mwaX7HG1QS0mmd1cf+SVYmqnVCk1NLNPgvx8Ybv txZQqSVPDen8HDloiysC1EnAIvnndCFy -----END CERTIFICATE-----Generated at Sun Aug 24 22:04:56 2025 by rpki-client