$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft File: awKSxgJwici6idjGWhozDUiLCiw.mft (raw, json) Hash identifier: DrWBlSffe1+Uh5xf1YpXTcSMbSd3VmzAgTenwjIS3e0= Subject key identifier: 2D:67:6C:AC:1A:F2:05:23:30:42:0D:8B:6F:51:DC:49:11:A0:D9:14 Authority key identifier: 6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C Certificate issuer: /CN=A91D0B0E/serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft Manifest number: B4 Signing time: Fri 05 Sep 2025 06:30:22 +0000 Manifest this update: Fri 05 Sep 2025 06:30:22 +0000 Manifest next update: Fri 12 Sep 2025 06:30:22 +0000 Files and hashes: 1: awKSxgJwici6idjGWhozDUiLCiw.crl (hash: Q0wCJpK2HmKkPbAte9llNhAIV5Yy8KuxtS9elXiNr3U=) 2: 17782970808311EFBB9C2A46C4F9AE02.roa (hash: p+Li5x5IRkEHLsrKLMYZtCUY4xOsEsGyH8peATkiJDE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:30:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B0E, serialNumber=6B0292C6027089C8BA89D8C65A1A330D488B0A2C Validity Not Before: Sep 5 06:30:22 2025 GMT Not After : Sep 12 06:30:22 2025 GMT Subject: CN=68ba837e-c1c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1f:ae:17:92:75:35:63:90:73:55:41:06:8f: 1a:91:91:63:f2:97:10:f2:85:d8:16:23:c3:66:31: 7b:6e:68:5d:5d:16:e9:c1:7d:e6:a1:dd:8c:95:60: a0:6e:ef:ea:42:4f:99:5c:44:67:b0:a6:c3:f5:74: 98:41:cc:ee:49:fc:f1:95:64:07:6d:24:97:63:e1: f1:44:9b:54:db:63:19:27:71:5c:b9:44:68:5d:3a: 78:96:75:e2:bc:08:85:71:38:fe:28:c4:83:6b:71: 95:20:12:9a:c4:3a:98:3a:78:b0:e4:45:b3:9b:8e: 8a:fc:8e:a2:10:51:a0:78:ec:de:bf:01:71:27:37: 06:ec:cb:2b:68:c5:2e:5a:20:3d:62:42:9c:53:90: af:47:68:72:8e:ac:5e:7b:31:c7:69:10:ef:36:5f: aa:54:ca:a2:15:87:3c:ad:0c:0b:b5:cc:e9:89:af: bb:e4:74:f9:9c:4b:e2:39:3e:05:a2:8c:d7:2e:08: ac:03:30:97:19:4a:05:97:0d:d3:de:b8:6c:16:9d: 6e:e5:5e:89:ce:f0:09:3b:a5:b5:bf:c0:41:1a:f5: e2:4c:99:40:01:29:02:e6:02:55:83:dc:fb:ed:51: d8:20:d2:9d:e0:18:27:20:8c:ad:03:7b:5e:17:92: c6:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:67:6C:AC:1A:F2:05:23:30:42:0D:8B:6F:51:DC:49:11:A0:D9:14 X509v3 Authority Key Identifier: keyid:6B:02:92:C6:02:70:89:C8:BA:89:D8:C6:5A:1A:33:0D:48:8B:0A:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/awKSxgJwici6idjGWhozDUiLCiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B0E/44BCA632806911EF887B703CC4F9AE02/awKSxgJwici6idjGWhozDUiLCiw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:56:cd:0d:92:30:e2:6e:a4:ec:dd:d7:c1:81:8f:82:2b:5e: 2b:6f:d9:f1:56:04:92:8e:00:07:87:b0:05:81:05:cb:81:e0: 54:2d:7e:04:f5:f8:40:2b:67:26:a4:07:fc:45:b7:fc:d6:c1: cd:fd:f2:86:22:ec:36:bc:0e:0f:20:8d:54:cb:df:f5:5c:34: 66:1f:f7:5d:22:29:96:f6:f8:99:23:41:69:52:1b:32:b3:8e: 72:85:db:05:e1:22:00:5d:0f:6b:e4:5c:28:f8:93:38:6b:e9: aa:b5:ea:85:fb:b8:9b:60:c0:c9:eb:b5:88:64:f1:d3:76:e7: ba:93:e3:e7:2e:1b:e8:91:83:eb:bf:aa:66:03:da:ad:5e:e2: 5b:49:5a:8d:8a:8e:21:a5:da:b9:31:a3:ed:e2:ab:e2:a0:59: b2:0c:10:07:86:90:7a:b1:5d:27:7b:06:57:1d:32:f6:eb:ea: 97:62:e5:92:93:ab:ac:89:d0:0d:96:60:7a:25:05:98:34:1b: 96:87:3d:53:c4:11:17:ad:43:1a:29:78:9c:2a:fb:7c:39:91: b5:1b:0d:0f:f7:90:df:93:36:22:96:81:10:e0:2c:1a:1b:5e: 96:5f:4a:6d:04:20:f0:54:55:92:a8:d5:cb:5e:f7:b8:b5:2d: 89:44:c2:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCMEUxMTAvBgNVBAUTKDZCMDI5MkM2MDI3MDg5QzhCQTg5RDhDNjVBMUEzMzBE NDg4QjBBMkMwHhcNMjUwOTA1MDYzMDIyWhcNMjUwOTEyMDYzMDIyWjAYMRYwFAYD VQQDEw02OGJhODM3ZS1jMWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxB+uF5J1NWOQc1VBBo8akZFj8pcQ8oXYFiPDZjF7bmhdXRbpwX3mod2MlWCg bu/qQk+ZXERnsKbD9XSYQczuSfzxlWQHbSSXY+HxRJtU22MZJ3FcuURoXTp4lnXi vAiFcTj+KMSDa3GVIBKaxDqYOniw5EWzm46K/I6iEFGgeOzevwFxJzcG7MsraMUu WiA9YkKcU5CvR2hyjqxeezHHaRDvNl+qVMqiFYc8rQwLtczpia+75HT5nEviOT4F oozXLgisAzCXGUoFlw3T3rhsFp1u5V6JzvAJO6W1v8BBGvXiTJlAASkC5gJVg9z7 7VHYINKd4BgnIIytA3teF5LG/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC1nbKwa 8gUjMEINi29R3EkRoNkUMB8GA1UdIwQYMBaAFGsCksYCcInIuonYxloaMw1Iiwos MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEIwRS80NEJDQTYzMjgw NjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2ljaTZpZGpHV2hvekRVaUxD aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2F3S1N4Z0p3aWNpNmlkakdXaG96RFVpTENpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MEIwRS80NEJDQTYzMjgwNjkxMUVGODg3QjcwM0NDNEY5QUUwMi9hd0tTeGdKd2lj aTZpZGpHV2hvekRVaUxDaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADVs0NkjDibqTs3dfBgY+CK14rb9nxVgSSjgAHh7AFgQXLgeBULX4E 9fhAK2cmpAf8Rbf81sHN/fKGIuw2vA4PII1Uy9/1XDRmH/ddIimW9viZI0FpUhsy s45yhdsF4SIAXQ9r5Fwo+JM4a+mqteqF+7ibYMDJ67WIZPHTdue6k+PnLhvokYPr v6pmA9qtXuJbSVqNio4hpdq5MaPt4qvioFmyDBAHhpB6sV0newZXHTL26+qXYuWS k6usidANlmB6JQWYNBuWhz1TxBEXrUMaKXicKvt8OZG1Gw0P95DfkzYiloEQ4Cwa G16WX0ptBCDwVFWSqNXLXve4tS2JRMLK -----END CERTIFICATE-----Generated at Sat Sep 6 15:15:12 2025 by rpki-client