$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: +6et+KbbURsey1w3G9gCT77bqLi1iLX8brCqctJfIMI= Subject key identifier: 9F:39:B7:FA:6B:1C:99:46:EA:3C:93:A5:A2:D3:7C:6E:E4:15:C8:42 Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 24 Signing time: Tue 01 Jul 2025 08:36:03 +0000 Manifest this update: Tue 01 Jul 2025 08:36:02 +0000 Manifest next update: Tue 08 Jul 2025 08:36:02 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: HmdSXQ7+Rw49iaICQfXOlJNKGiNXpqjKxi8rBeNgmQ4=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 1rT5RRmmBu2dtW7r80awQ5qBk4VrGxHD3sFnkgNZ9lQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:36:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Jul 1 08:36:02 2025 GMT Not After : Jul 8 08:36:02 2025 GMT Subject: CN=68639df2-a091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:35:bc:32:57:e4:d0:60:3a:af:0a:7f:7e:49: 67:c7:56:11:b2:c4:91:58:50:98:f5:f7:17:37:03: 41:55:f7:e1:a7:51:7b:86:9f:48:48:f3:e2:03:24: 9d:fa:b6:9b:eb:9d:f7:ea:6b:bc:da:47:49:29:e6: 50:c9:95:5e:59:56:b2:85:bd:b8:c1:c4:76:1e:91: 20:8c:79:85:6b:2c:77:7d:f7:03:de:5c:3d:9d:cd: 69:a1:cf:3f:e9:5d:78:ed:d5:55:6d:9a:5f:d6:b9: d7:d4:b7:ab:4c:1f:60:32:12:96:3f:bc:57:08:77: 46:fd:58:e7:ba:d0:db:80:f1:ae:55:8a:dd:0f:ee: 0f:c7:2c:81:18:27:5b:ff:ac:27:3e:26:5b:2f:bd: 19:f1:22:70:5b:0f:83:1d:6d:20:d3:8d:da:3f:d3: fc:c9:9b:c9:74:ba:ea:ad:43:b4:80:42:31:16:c0: 42:48:15:da:fa:66:7d:c3:20:43:5f:0c:5e:fc:d9: c5:95:5a:fc:89:79:ad:34:f1:48:1a:ce:a4:d3:77: 06:41:a5:22:ac:e0:45:82:08:ef:4f:5e:3d:01:7f: 71:53:be:45:a2:02:1b:2c:ef:ba:9b:e4:d9:1c:1b: b2:98:09:16:d9:ce:eb:11:95:c7:39:c9:a4:7a:98: b6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:39:B7:FA:6B:1C:99:46:EA:3C:93:A5:A2:D3:7C:6E:E4:15:C8:42 X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:35:15:59:98:ce:84:ab:41:da:b1:77:86:ad:e9:a8:dc:04: 71:ec:46:24:26:e5:d3:ee:e9:fa:fe:b6:ec:56:7b:21:7a:c0: 0c:22:e8:91:f6:09:02:cf:6e:57:b9:f1:db:8a:c0:66:e6:fb: 64:e1:4c:e3:4b:7c:37:30:6e:d0:9a:10:a5:fb:3e:55:aa:cb: 3d:c6:e2:5a:32:01:13:79:d2:cb:76:2d:16:3e:6a:f9:7c:e8: 13:9e:dc:23:d9:8f:17:94:1d:e7:6a:45:90:8b:12:62:b8:1c: 87:0c:48:74:44:79:d6:7d:7f:03:a6:0d:45:9d:2e:09:e7:8e: 46:b9:d1:d9:c0:e0:66:1b:9b:71:63:4b:88:07:b2:3e:c3:6e: 07:00:8d:d6:e0:e7:dc:33:34:00:95:18:a9:f4:b1:b2:7f:d8: c7:28:a6:6c:9d:36:f7:61:fa:a2:e4:f9:66:cc:1d:17:5a:ed: d6:d9:24:36:d5:1e:de:44:c4:51:86:81:71:63:6b:c9:73:e5: 3e:c7:7c:27:f1:fd:76:56:b6:7e:16:99:fa:70:0c:8e:c9:99: 3a:46:20:84:a7:9d:78:44:d7:af:10:1f:35:db:75:b6:ca:b1: fd:a4:94:bd:ca:63:cb:f2:f7:c9:04:23:d1:b3:7a:b4:a5:e0: e7:d7:0c:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA3MDEwODM2MDJaFw0yNTA3MDgwODM2MDJaMBgxFjAUBgNV BAMTDTY4NjM5ZGYyLWEwOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD9NbwyV+TQYDqvCn9+SWfHVhGyxJFYUJj19xc3A0FV9+GnUXuGn0hI8+IDJJ36 tpvrnffqa7zaR0kp5lDJlV5ZVrKFvbjBxHYekSCMeYVrLHd99wPeXD2dzWmhzz/p XXjt1VVtml/WudfUt6tMH2AyEpY/vFcId0b9WOe60NuA8a5Vit0P7g/HLIEYJ1v/ rCc+JlsvvRnxInBbD4MdbSDTjdo/0/zJm8l0uuqtQ7SAQjEWwEJIFdr6Zn3DIENf DF782cWVWvyJea008UgazqTTdwZBpSKs4EWCCO9PXj0Bf3FTvkWiAhss77qb5Nkc G7KYCRbZzusRlcc5yaR6mLZZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnzm3+msc mUbqPJOlotN8buQVyEIwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJA1FVmYzoSrQdqxd4at6ajcBHHsRiQm5dPu6fr+tuxWeyF6wAwi6JH2 CQLPble58duKwGbm+2ThTONLfDcwbtCaEKX7PlWqyz3G4loyARN50st2LRY+avl8 6BOe3CPZjxeUHedqRZCLEmK4HIcMSHREedZ9fwOmDUWdLgnnjka50dnA4GYbm3Fj S4gHsj7DbgcAjdbg59wzNACVGKn0sbJ/2McopmydNvdh+qLk+WbMHRda7dbZJDbV Ht5ExFGGgXFja8lz5T7HfCfx/XZWtn4WmfpwDI7JmTpGIISnnXhE168QHzXbdbbK sf2klL3KY8vy98kEI9GzerSl4OfXDIc= -----END CERTIFICATE-----Generated at Wed Jul 2 15:52:46 2025 by rpki-client