$ rpki-client -vvf rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft File: PurfFFrim0gkCj-6OvvZSajxU10.mft (raw, json) Hash identifier: ANa8oVenNzViJzXOS6E8PlSZCD3Mwj7agE1Cfa2t5mc= Subject key identifier: A1:49:66:03:12:2F:3C:A9:D7:D8:B5:18:29:93:C4:97:32:EA:20:D8 Authority key identifier: 3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D Certificate issuer: /CN=A91F823E/serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft Manifest number: 0337 Signing time: Fri 05 Sep 2025 01:24:53 +0000 Manifest this update: Fri 05 Sep 2025 01:24:53 +0000 Manifest next update: Fri 12 Sep 2025 01:24:53 +0000 Files and hashes: 1: PurfFFrim0gkCj-6OvvZSajxU10.crl (hash: k36i+k0+awVqE8IU0LPeAmaDuBLAWe+hKiw9ZVUPJ/0=) 2: B3481ED4D5B611ECA61EEC28C4F9AE02.roa (hash: 7bYPkVMZrrnunuEV97KsBcLOn5jOLNiIR6VQXBJQwkA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 01:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F823E, serialNumber=3EEADF145AE29B48240A3FBA3AFBD949A8F1535D Validity Not Before: Sep 5 01:24:53 2025 GMT Not After : Sep 12 01:24:53 2025 GMT Subject: CN=68ba3be5-e1e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:17:3e:b1:02:cc:50:ca:47:0b:5a:09:99:99: 64:4b:b1:25:62:41:8b:98:77:25:78:4f:ff:85:c1: 30:7d:69:69:38:aa:4c:3e:45:00:05:21:9d:f1:97: 5a:95:fd:b1:9c:a3:e4:f8:6a:53:70:01:5c:9c:bf: 97:de:e5:8f:21:72:5c:bf:25:2c:81:1d:c0:a5:45: 1e:e5:b0:b1:4b:48:d1:ef:03:18:dc:0c:4e:a0:e2: 9b:c3:f3:a0:ed:66:d7:0f:bf:ac:7f:63:b1:b2:8b: 6a:5b:21:9f:91:f2:e9:55:c6:d1:7a:b8:19:3d:64: bc:b7:39:ca:67:f8:23:b6:aa:74:94:b5:fc:ed:e5: 69:31:a3:80:68:c1:30:5b:78:81:d9:4d:79:f1:a7: 95:af:92:33:c8:8f:e3:93:c7:15:ca:fa:3d:d5:21: a8:fa:ec:40:ab:5d:bf:d8:3c:68:f0:9d:08:c0:de: 36:ea:08:4e:1c:6b:c5:9d:4b:33:03:c1:29:ff:29: 36:15:22:7f:09:0c:7a:6c:44:fa:ef:65:34:f1:78: cd:8b:4e:b6:c8:68:6c:0b:f3:19:bf:8d:c9:2e:d3: 7c:64:50:e5:be:90:b8:7d:db:fb:eb:0f:09:d5:8c: 6e:43:01:8e:69:63:ce:eb:ef:a1:ff:31:3a:aa:d4: 5e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:49:66:03:12:2F:3C:A9:D7:D8:B5:18:29:93:C4:97:32:EA:20:D8 X509v3 Authority Key Identifier: keyid:3E:EA:DF:14:5A:E2:9B:48:24:0A:3F:BA:3A:FB:D9:49:A8:F1:53:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PurfFFrim0gkCj-6OvvZSajxU10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F823E/7D69A83CD5B111EC9351E620C4F9AE02/PurfFFrim0gkCj-6OvvZSajxU10.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:62:dd:12:31:22:d3:92:6c:ab:da:30:9d:c5:56:2e:38:fc: 5d:5b:3c:7f:e4:68:3a:76:32:a3:51:3a:0f:70:48:31:d2:a1: 64:d4:95:6c:07:28:74:66:64:80:60:62:a6:fe:00:48:8c:bf: bc:4f:5e:4e:50:22:9a:90:79:ce:1b:67:42:0e:c0:11:c2:bb: d5:59:39:01:07:75:85:20:a4:ec:78:3e:01:e5:96:f4:d1:6f: 0f:b4:f4:e9:e7:ed:32:7b:f1:84:02:bd:63:9d:0e:42:77:90: 2e:7d:fe:41:82:13:61:ae:ae:07:f4:1a:ce:0f:70:68:5f:5c: 20:81:62:f3:9a:38:78:8f:f4:8e:b0:a1:2b:21:a6:60:8f:12: 87:d3:a7:0f:e1:db:86:15:5d:71:85:31:8b:55:ec:fd:72:02: c3:dc:4a:1a:50:f9:11:75:51:13:25:97:47:d5:c1:0a:67:b8: e7:8c:d1:b4:6f:74:3f:7c:ea:6c:28:10:c0:d4:be:45:7f:56: d9:06:6b:41:3d:29:7d:ce:42:f8:41:a4:90:39:19:e7:ca:ec: 6d:f7:f3:90:75:80:69:72:38:ea:3a:bc:ca:81:9e:b7:03:2d: cb:fb:c6:a8:39:eb:03:db:70:0a:fa:9f:93:ec:7b:09:26:bd: 51:6a:72:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgyM0UxMTAvBgNVBAUTKDNFRUFERjE0NUFFMjlCNDgyNDBBM0ZCQTNBRkJEOTQ5 QThGMTUzNUQwHhcNMjUwOTA1MDEyNDUzWhcNMjUwOTEyMDEyNDUzWjAYMRYwFAYD VQQDEw02OGJhM2JlNS1lMWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBc+sQLMUMpHC1oJmZlkS7ElYkGLmHcleE//hcEwfWlpOKpMPkUABSGd8Zda lf2xnKPk+GpTcAFcnL+X3uWPIXJcvyUsgR3ApUUe5bCxS0jR7wMY3AxOoOKbw/Og 7WbXD7+sf2OxsotqWyGfkfLpVcbRergZPWS8tznKZ/gjtqp0lLX87eVpMaOAaMEw W3iB2U158aeVr5IzyI/jk8cVyvo91SGo+uxAq12/2Dxo8J0IwN426ghOHGvFnUsz A8Ep/yk2FSJ/CQx6bET672U08XjNi062yGhsC/MZv43JLtN8ZFDlvpC4fdv76w8J 1YxuQwGOaWPO6++h/zE6qtRe0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKFJZgMS Lzyp19i1GCmTxJcy6iDYMB8GA1UdIwQYMBaAFD7q3xRa4ptIJAo/ujr72Umo8VNd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODIzRS83RDY5QTgzQ0Q1 QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0wZ2tDai02T3Z2WlNhanhV MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1cmZGRnJpbTBna0NqLTZPdnZaU2FqeFUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODIzRS83RDY5QTgzQ0Q1QjExMUVDOTM1MUU2MjBDNEY5QUUwMi9QdXJmRkZyaW0w Z2tDai02T3Z2WlNhanhVMTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNYt0SMSLTkmyr2jCdxVYuOPxdWzx/5Gg6djKjUToPcEgx0qFk1JVs Byh0ZmSAYGKm/gBIjL+8T15OUCKakHnOG2dCDsARwrvVWTkBB3WFIKTseD4B5Zb0 0W8PtPTp5+0ye/GEAr1jnQ5Cd5Auff5BghNhrq4H9BrOD3BoX1wggWLzmjh4j/SO sKErIaZgjxKH06cP4duGFV1xhTGLVez9cgLD3EoaUPkRdVETJZdH1cEKZ7jnjNG0 b3Q/fOpsKBDA1L5Ff1bZBmtBPSl9zkL4QaSQORnnyuxt9/OQdYBpcjjqOrzKgZ63 Ay3L+8aoOesD23AK+p+T7HsJJr1RanL1 -----END CERTIFICATE-----Generated at Sat Sep 6 13:31:01 2025 by rpki-client