$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: FUt3f4o+ZrV4nVPDxw3b3MoA566bgn3pXRmJ1nhsly8= Subject key identifier: A2:7B:54:9D:55:3F:A4:BD:F4:05:DC:37:09:B3:CB:B1:59:65:54:7C Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 41 Signing time: Sat 23 Aug 2025 07:43:45 +0000 Manifest this update: Sat 23 Aug 2025 07:43:44 +0000 Manifest next update: Sat 30 Aug 2025 07:43:44 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: RhLJolfX/cCbJFTkQiBVy95c7PUSHTWwCDGgOA8zESw=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 0td0rYY1sI6ZCcrPq8Ekycn5CSJTuG2FeaNe5fiVsgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:43:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Aug 23 07:43:44 2025 GMT Not After : Aug 30 07:43:44 2025 GMT Subject: CN=68a97130-28ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:77:2b:6f:86:ba:8d:de:aa:fa:a0:eb:dc:b3: 49:45:3f:2b:9c:71:cb:37:f1:5c:1b:0a:03:3d:e6: 66:5d:59:e7:c9:76:f8:8d:8a:c6:c5:ee:81:03:b5: 80:a4:3b:e5:7a:af:0b:36:8b:41:25:f9:63:4c:26: 31:a2:57:23:6a:66:c7:97:56:6b:9f:b8:9a:d0:2b: 8d:27:f7:e4:42:5d:39:b7:87:41:10:38:40:d8:29: a9:61:d0:79:27:c6:fa:f7:2a:e7:ca:c6:27:96:50: 3c:e1:56:43:f3:df:4f:91:0e:ad:d1:57:dd:16:61: 65:4d:cd:7b:cf:d1:59:bf:52:1d:88:ce:44:bc:1c: 35:ee:e9:16:67:07:ed:da:28:ad:e3:98:76:87:b5: 32:8f:a2:29:a6:3d:d9:4c:6c:69:ac:ca:68:1a:68: 38:62:f6:51:8c:09:0b:d0:da:8f:8f:8b:13:2e:38: 1a:33:5a:51:e4:0a:9d:83:72:e5:a5:93:56:0b:91: 55:7c:8c:2c:da:fb:40:d2:87:28:c8:a8:90:df:7c: fa:7e:2e:7a:78:84:d4:58:a8:33:50:f5:84:77:6d: 2e:38:b2:ab:f9:78:ee:be:6c:86:a4:a1:75:c3:f3: 21:ad:05:63:64:4f:b1:91:49:dc:7f:70:56:1d:21: 24:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7B:54:9D:55:3F:A4:BD:F4:05:DC:37:09:B3:CB:B1:59:65:54:7C X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:8c:69:8b:66:52:8f:a9:0f:d0:ca:63:c3:2a:ab:b9:ba:58: 56:f5:7d:1b:fb:f7:b0:b0:7f:36:28:fd:76:77:43:8e:41:0a: 7c:ee:ef:d9:6c:11:1e:dc:f7:52:e7:52:6d:f1:5c:50:05:63: c0:f9:d0:b5:9d:df:0b:15:38:80:62:12:6d:1f:a0:ea:30:2f: 87:d0:48:79:5e:c6:07:24:eb:fc:98:44:ce:90:38:25:c7:88: 0b:97:10:73:15:f5:6a:9a:2f:5e:63:19:18:aa:d1:a1:e2:64: e1:72:46:a2:a6:41:87:92:f1:f3:9a:40:4b:8b:fa:9f:de:a3: 06:50:b0:1b:99:11:77:a7:74:1c:03:09:bb:37:5d:3e:fb:14: db:e6:ca:15:50:49:d7:a2:59:17:79:b5:64:ba:c6:30:0a:3d: c9:49:9b:35:25:b9:43:21:b2:c1:12:0f:33:01:3e:5f:f2:fc: 3a:18:e6:67:08:df:7c:63:78:77:3e:f0:96:67:8a:6b:53:e5: 57:b1:29:60:7f:f1:e8:60:9c:ff:c8:34:27:7d:b6:13:6a:a8: 63:92:25:4f:45:bb:32:ff:da:7a:41:85:d1:76:ab:ba:e3:c4: 43:e2:aa:ce:bd:d8:b7:43:f3:73:b8:f5:ed:9e:02:28:f3:e9: 30:fc:55:7d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA4MjMwNzQzNDRaFw0yNTA4MzAwNzQzNDRaMBgxFjAUBgNV BAMTDTY4YTk3MTMwLTI4ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfdytvhrqN3qr6oOvcs0lFPyucccs38VwbCgM95mZdWefJdviNisbF7oEDtYCk O+V6rws2i0El+WNMJjGiVyNqZseXVmufuJrQK40n9+RCXTm3h0EQOEDYKalh0Hkn xvr3KufKxieWUDzhVkPz30+RDq3RV90WYWVNzXvP0Vm/Uh2IzkS8HDXu6RZnB+3a KK3jmHaHtTKPoimmPdlMbGmsymgaaDhi9lGMCQvQ2o+PixMuOBozWlHkCp2DcuWl k1YLkVV8jCza+0DShyjIqJDffPp+Lnp4hNRYqDNQ9YR3bS44sqv5eO6+bIakoXXD 8yGtBWNkT7GRSdx/cFYdISRxAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUontUnVU/ pL30Bdw3CbPLsVllVHwwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKKMaYtmUo+pD9DKY8Mqq7m6WFb1fRv797CwfzYo/XZ3Q45BCnzu79ls ER7c91LnUm3xXFAFY8D50LWd3wsVOIBiEm0foOowL4fQSHlexgck6/yYRM6QOCXH iAuXEHMV9WqaL15jGRiq0aHiZOFyRqKmQYeS8fOaQEuL+p/eowZQsBuZEXendBwD Cbs3XT77FNvmyhVQSdeiWRd5tWS6xjAKPclJmzUluUMhssESDzMBPl/y/DoY5mcI 33xjeHc+8JZnimtT5VexKWB/8ehgnP/INCd9thNqqGOSJU9FuzL/2npBhdF2q7rj xEPiqs692LdD83O49e2eAijz6TD8VX0= -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:01 2025 by rpki-client