$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft File: SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft (raw, json) Hash identifier: O2maBXTrJQh4tsMFJK/YL8Kx2Bgdt5Dsu6FI5J2Wkfc= Subject key identifier: 28:CF:19:60:92:4F:B1:CB:91:D9:36:4F:1E:5C:03:77:75:05:77:38 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0850 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft Manifest number: 081F Signing time: Sat 06 Sep 2025 21:08:21 +0000 Manifest this update: Sat 06 Sep 2025 21:08:21 +0000 Manifest next update: Sat 13 Sep 2025 21:08:21 +0000 Files and hashes: 1: SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl (hash: DwpEgCOuqIGlUzSqU7pBlKxO2nJAjdOzPSF4Z68+1zo=) 2: DDBCA666F18911EAA922EB1FC4F9AE02.roa (hash: wAmduclXNrZKRu8/pqGkayPdmVyxI/8+xrVLzFoQnO8=) 3: 2F220BBA95AA11ED84962E13C4F9AE02.roa (hash: tNP9+2nzm8wftPIS9csYEXaUq+mqRmQ5CYwfV6WquDE=) 4: 13279E2C124011ED9E430A4CC4F9AE02.roa (hash: 6ixsZ+U2NSefvVb36mPlfQcQ8GQSyjxzHzBxsc46ols=) 5: 67FF0960076911EF8569F157C4F9AE02.roa (hash: QiY4AYjpAOfJUKdo2bWSjao/45XX+9doU5egkrwqJ78=) 6: 68C5CFBE076911EF8569F157C4F9AE02.roa (hash: StO4PQ6ffihfvooMv19fGDjAg2vQbPTwXqeeTRzTihQ=) 7: 42CC52ECC68111EFAE49FF5FC4F9AE02.roa (hash: jw0xm0XxEdyeTKSbIjmLJq8kg/lPA+5yh93w4gEj5Qo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:08:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2128 (0x850) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A, serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: Sep 6 21:08:21 2025 GMT Not After : Sep 13 21:08:21 2025 GMT Subject: CN=68bca2c5-6259 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:28:e9:a8:15:68:24:a4:41:57:6f:15:fc:58: 81:20:e0:96:8b:31:24:d4:67:f1:d6:76:ef:4a:52: 94:79:f2:4e:77:e2:3f:f5:73:b4:12:ac:56:2a:1d: a8:2e:16:23:86:9a:9c:c0:1d:7a:42:1d:87:80:b0: f4:01:41:a3:fb:5b:30:7c:cb:05:52:09:93:75:da: ad:b6:66:85:13:9f:aa:5e:d4:bc:fb:83:83:ee:ee: b1:85:f4:db:aa:61:ad:f5:55:2c:d8:a5:da:14:0d: d1:e0:47:74:56:f1:5d:d3:32:27:a5:5e:d3:5c:b0: e9:52:8a:18:13:14:34:56:c5:57:0b:d4:6c:f1:28: c1:b8:6c:de:87:0c:a7:b7:44:19:26:2e:55:58:07: ea:df:44:c3:33:72:cc:bd:ee:54:1d:07:20:aa:27: d3:bc:b8:55:a9:66:97:ac:89:3d:88:f3:a1:f6:b4: eb:ae:e0:77:9f:f9:32:c1:95:d6:98:23:e9:17:7d: 7a:fd:7e:b2:4b:57:5a:96:6a:ed:1a:53:28:80:9f: a4:b8:d6:fd:cd:19:0e:03:6a:04:3c:d3:a9:c9:8f: 7f:89:64:53:81:9b:a3:1d:a8:b1:c1:dc:43:41:46: c4:05:c4:a1:9e:a6:fc:8b:a1:09:e8:7e:99:d9:0b: 92:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:CF:19:60:92:4F:B1:CB:91:D9:36:4F:1E:5C:03:77:75:05:77:38 X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:6e:c6:33:0c:a4:e4:e8:07:0a:15:5e:54:0d:b0:6d:2f:29: 20:af:9b:39:7c:02:5b:b3:a4:2d:b9:33:65:ad:9b:c5:2a:32: 70:f8:b1:bd:69:23:1e:0e:ef:50:a3:2b:8a:6a:01:3b:d3:ae: d0:d1:1c:9a:e7:fd:df:98:a9:02:ca:e2:1f:ff:d7:a6:2f:50: 8f:e9:be:64:30:ce:23:78:1b:7e:06:40:5c:c0:00:1f:5b:0f: 2c:91:e4:32:67:59:ba:aa:34:e8:7f:51:52:6c:34:98:3c:b1: a2:f5:0c:ee:50:24:a6:95:0e:13:bc:f1:ae:76:40:a3:1e:c1: 4e:b4:f0:02:1e:c6:15:05:14:40:b6:51:c1:26:05:90:b3:4b: c0:19:08:f2:61:e9:18:86:a0:67:48:6e:a8:81:e6:38:16:77: bd:74:cf:77:82:27:8a:22:c4:a8:9f:d5:f1:6c:85:35:85:3e: 4c:e1:6d:25:f3:0f:5a:6c:db:cf:64:c9:b5:ca:80:12:2d:5d: ff:e0:26:67:b5:66:17:d6:7d:fa:c0:32:b9:56:ba:4e:49:5e: bc:ee:ca:2a:2d:1d:16:34:fb:6b:ad:7b:77:2b:0d:c7:13:36: 4f:28:52:c0:e2:7f:34:2a:66:22:1f:5b:8c:f2:08:f5:ab:56: b1:ab:24:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjUwOTA2MjEwODIxWhcNMjUwOTEzMjEwODIxWjAYMRYwFAYD VQQDEw02OGJjYTJjNS02MjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqijpqBVoJKRBV28V/FiBIOCWizEk1Gfx1nbvSlKUefJOd+I/9XO0EqxWKh2o LhYjhpqcwB16Qh2HgLD0AUGj+1swfMsFUgmTddqttmaFE5+qXtS8+4OD7u6xhfTb qmGt9VUs2KXaFA3R4Ed0VvFd0zInpV7TXLDpUooYExQ0VsVXC9Rs8SjBuGzehwyn t0QZJi5VWAfq30TDM3LMve5UHQcgqifTvLhVqWaXrIk9iPOh9rTrruB3n/kywZXW mCPpF316/X6yS1dalmrtGlMogJ+kuNb9zRkOA2oEPNOpyY9/iWRTgZujHaixwdxD QUbEBcShnqb8i6EJ6H6Z2QuSJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCjPGWCS T7HLkdk2Tx5cA3d1BXc4MB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTEwQS9FMzQwMjA0Q0YxODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9y Y0tNMFJnRk92MERseWVfblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlbsYzDKTk6AcKFV5UDbBtLykgr5s5fAJbs6QtuTNlrZvFKjJw+LG9 aSMeDu9QoyuKagE7067Q0Rya5/3fmKkCyuIf/9emL1CP6b5kMM4jeBt+BkBcwAAf Ww8skeQyZ1m6qjTof1FSbDSYPLGi9QzuUCSmlQ4TvPGudkCjHsFOtPACHsYVBRRA tlHBJgWQs0vAGQjyYekYhqBnSG6ogeY4Fne9dM93gieKIsSon9XxbIU1hT5M4W0l 8w9abNvPZMm1yoASLV3/4CZntWYX1n36wDK5VrpOSV687soqLR0WNPtrrXt3Kw3H EzZPKFLA4n80KmYiH1uM8gj1q1axqyT4 -----END CERTIFICATE-----Generated at Sun Sep 7 14:22:23 2025 by rpki-client