$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft File: PusZaI0z1iGZTls9nkbsqqUJ9CM.mft (raw, json) Hash identifier: D2zTL3avAw0vxikjel+hM9CkM25+jTvqvTCDAg3NotU= Subject key identifier: B0:15:B7:86:24:8D:F5:B8:D7:50:DA:94:14:C5:7B:1E:68:F9:94:0F Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 0447 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft Manifest number: 0441 Signing time: Thu 21 Aug 2025 00:25:22 +0000 Manifest this update: Thu 21 Aug 2025 00:25:22 +0000 Manifest next update: Thu 28 Aug 2025 00:25:22 +0000 Files and hashes: 1: PusZaI0z1iGZTls9nkbsqqUJ9CM.crl (hash: kXTiCgX52v7+x5caivLGuOVM19RXVfzTB1B8MAjiLXc=) 2: 0716B2646C7111EC8C5E6967C4F9AE02.roa (hash: FC5KH7zmbNiXwzzDmtV6gG59796J2EuM05tZKkGKGqk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1095 (0x447) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC, serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: Aug 21 00:25:22 2025 GMT Not After : Aug 28 00:25:22 2025 GMT Subject: CN=68a66772-8def Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f4:04:8a:fd:df:a5:c2:5b:dc:d9:34:e9:c9: 98:22:f3:48:5a:61:3b:88:94:8f:c5:1f:15:bd:01: 19:87:63:15:7e:7b:ab:6a:6b:c0:88:a9:88:c6:73: 00:0c:8a:b6:0a:37:30:01:d0:e4:04:1e:d3:e6:d1: ae:8b:d4:1e:db:94:20:a6:a8:5d:e3:9f:1f:6f:13: 45:4b:e9:b2:e7:14:57:ce:c4:30:df:4c:c4:81:76: e2:1b:8e:ac:20:9e:5a:27:f9:56:62:3c:40:43:27: 9b:9b:a7:8d:96:cd:8f:20:c5:40:86:0a:3c:1d:47: 3b:41:a3:9e:24:cb:45:24:8e:e4:c5:0c:db:50:1a: 37:9c:15:dd:79:35:ab:d8:e1:c4:12:1f:85:95:ac: f9:94:2e:3f:e8:96:8f:dc:01:01:b0:30:20:a7:47: 4d:81:fe:9f:b6:da:e1:ef:63:ba:9b:ac:bd:7d:2a: 07:59:da:c9:20:08:44:5b:af:5f:7a:6d:97:32:27: f6:8c:cf:38:36:08:04:52:19:6b:4a:3f:0c:97:5a: f2:5d:33:74:fb:63:77:a4:a9:db:23:da:f9:ae:f4: c1:13:eb:19:30:02:78:be:f5:a3:b1:2c:26:5f:a2: 3c:72:66:e3:c2:17:bc:96:d6:39:eb:8b:ea:0a:71: 1f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:15:B7:86:24:8D:F5:B8:D7:50:DA:94:14:C5:7B:1E:68:F9:94:0F X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:f6:08:2d:c6:7d:03:c0:05:e9:af:f2:53:60:bc:e7:0c:16: 46:a4:3c:c1:1b:4c:d2:fd:4a:c5:c1:25:c8:21:1d:e9:fa:0f: 8e:6f:fa:f9:98:41:19:ef:a8:4a:e5:b6:1f:b7:45:dc:e5:78: 18:34:53:87:cc:56:eb:41:57:4c:29:7d:29:f5:9d:5e:13:66: 69:a5:96:c0:f1:1f:a6:c3:11:fc:b5:23:04:c0:94:a2:a0:a7: 1d:f8:3c:10:a3:5e:d8:59:56:99:1b:26:cf:d2:0d:96:d1:c8: 36:22:e1:db:d8:cd:94:f8:59:5a:02:ca:6a:0f:69:f0:8d:c5: e5:7e:39:e9:9a:a4:e4:b3:15:eb:bb:b4:cf:be:25:22:2f:93: 6f:e8:0e:09:e6:30:ce:30:05:31:c5:bf:e7:a6:ea:11:2e:2c: e1:30:cf:3f:52:a7:9e:6b:b7:68:3c:4a:67:9c:91:13:fd:f5: 5c:20:c4:67:51:71:a3:97:85:3a:a8:49:11:84:f9:24:95:60: b5:a3:b0:e3:1e:8a:9e:e4:9c:d4:5f:cb:fa:2b:39:57:e4:85: 68:19:10:e6:3a:87:d8:1c:0d:bc:85:cf:4b:e1:e0:b0:16:0d: 4c:3b:45:fa:f6:d3:b8:05:15:f8:79:c0:78:de:07:21:6b:6c: 45:00:29:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjUwODIxMDAyNTIyWhcNMjUwODI4MDAyNTIyWjAYMRYwFAYD VQQDEw02OGE2Njc3Mi04ZGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPQEiv3fpcJb3Nk06cmYIvNIWmE7iJSPxR8VvQEZh2MVfnuramvAiKmIxnMA DIq2CjcwAdDkBB7T5tGui9Qe25Qgpqhd458fbxNFS+my5xRXzsQw30zEgXbiG46s IJ5aJ/lWYjxAQyebm6eNls2PIMVAhgo8HUc7QaOeJMtFJI7kxQzbUBo3nBXdeTWr 2OHEEh+Flaz5lC4/6JaP3AEBsDAgp0dNgf6fttrh72O6m6y9fSoHWdrJIAhEW69f em2XMif2jM84NggEUhlrSj8Ml1ryXTN0+2N3pKnbI9r5rvTBE+sZMAJ4vvWjsSwm X6I8cmbjwhe8ltY564vqCnEf5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLAVt4Yk jfW411DalBTFex5o+ZQPMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTRBQy8zNDQxRDJEMDZDNkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFp R1pUbHM5bmtic3FxVUo5Q00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM9ggtxn0DwAXpr/JTYLznDBZGpDzBG0zS/UrFwSXIIR3p+g+Ob/r5 mEEZ76hK5bYft0Xc5XgYNFOHzFbrQVdMKX0p9Z1eE2ZppZbA8R+mwxH8tSMEwJSi oKcd+DwQo17YWVaZGybP0g2W0cg2IuHb2M2U+FlaAspqD2nwjcXlfjnpmqTksxXr u7TPviUiL5Nv6A4J5jDOMAUxxb/npuoRLizhMM8/Uqeea7doPEpnnJET/fVcIMRn UXGjl4U6qEkRhPkklWC1o7DjHoqe5JzUX8v6KzlX5IVoGRDmOofYHA28hc9L4eCw Fg1MO0X69tO4BRX4ecB43gcha2xFACku -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:59 2025 by rpki-client