$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: btk0oxaqvjiHwd3TPygrVelG1hXsPhr0n+a27Eqy1QI= Subject key identifier: 8F:47:1C:BC:68:5B:83:8D:8D:23:BD:8E:E9:FE:CC:64:35:7B:FA:0E Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 70 Signing time: Thu 03 Jul 2025 07:08:01 +0000 Manifest this update: Thu 03 Jul 2025 07:08:00 +0000 Manifest next update: Thu 10 Jul 2025 07:08:00 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: WwM1Xau5U68RyDUW3XwrTiNjvA+PGJzCJmBl8F6jeSk=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Jul 3 07:08:00 2025 GMT Not After : Jul 10 07:08:00 2025 GMT Subject: CN=68662c51-785c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4d:64:ef:17:ca:7c:cb:c2:8b:9a:48:4e:6b: 6b:4b:71:aa:01:d7:d6:8c:d6:7f:4e:2c:87:fb:dd: 65:b9:40:20:08:28:df:38:07:a4:d0:f7:05:6c:1b: f0:c5:89:5c:66:86:7b:be:77:12:5c:19:85:d6:57: 4b:f5:16:ce:50:6a:c7:11:0a:5f:00:a4:1e:71:04: 94:92:85:9b:df:df:d8:39:3c:ab:04:76:fb:a6:10: 33:ff:5d:f5:e3:ab:72:53:80:49:24:3a:56:8e:f0: 00:a9:36:62:26:8b:8f:d1:cf:20:2c:64:e0:1f:a8: 38:4e:8d:b8:5e:46:bc:ba:f5:de:90:72:29:76:19: 2c:ad:c8:60:58:40:5c:84:9a:ca:fe:aa:54:7a:f9: 7d:a5:dc:1e:9a:88:2f:c4:a4:7d:64:72:b8:98:6f: 43:b4:d9:9b:19:60:4e:0c:bc:53:b7:07:e4:ee:4a: 2b:98:de:38:fe:b3:b4:a5:10:e0:8a:81:5c:17:20: c3:1a:c5:e0:7b:31:f3:68:7a:47:78:64:5f:a0:43: 8d:13:c0:62:a4:f9:95:22:08:53:6b:63:87:c0:5d: 3d:3d:d4:7e:31:d0:03:b2:76:d5:d3:58:dc:dc:bd: 1b:17:93:ac:84:2c:17:b7:5a:bf:5e:27:06:2d:0d: 3d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:47:1C:BC:68:5B:83:8D:8D:23:BD:8E:E9:FE:CC:64:35:7B:FA:0E X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:32:20:18:73:88:51:b9:f4:d6:c4:98:c4:96:87:95:09:d1: da:89:e9:e0:72:20:f9:22:0c:c3:95:92:f3:94:ec:81:75:b5: cf:ef:61:59:16:13:31:13:0b:43:b6:92:b5:20:d2:c4:63:db: 8d:13:d6:76:65:68:98:9e:fa:b6:eb:5e:a1:f4:d0:b4:f3:17: 06:26:b5:e6:71:dc:7e:3d:ce:95:d4:b7:3e:23:9f:73:f1:8b: d3:c5:1a:8e:c6:2a:98:f9:9c:d4:1e:43:48:67:e1:f1:86:e7: e8:12:69:9b:68:b5:99:5c:83:5f:a5:de:0d:78:e8:0a:6d:7a: 27:ce:0f:07:da:be:08:63:69:38:5f:ed:36:fc:9c:4c:15:59: c0:a9:dd:fe:e3:a7:1a:44:33:1f:ed:34:f2:6f:8c:1e:a8:50: 62:a3:f9:25:c8:90:87:1d:06:b3:77:80:a0:9f:06:5f:45:79: 6f:9d:8b:e8:cb:e0:be:4f:75:03:59:9b:f3:5e:08:15:32:0b: 2a:af:ac:7d:7d:fc:43:be:ce:41:61:1b:68:18:56:25:06:74: b5:5e:f2:88:9f:dd:12:ac:04:3c:81:0a:a3:41:45:fc:77:98: 10:2a:ee:83:dd:0c:92:2e:0a:84:14:9d:e1:36:df:88:c1:1e: d4:cc:5a:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMEZENDQzNzUyMURCNUMwQkM5OUU0NUI1OTc1NEZGN0I2 NzFGODZGMzAeFw0yNTA3MDMwNzA4MDBaFw0yNTA3MTAwNzA4MDBaMBgxFjAUBgNV BAMTDTY4NjYyYzUxLTc4NWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpTWTvF8p8y8KLmkhOa2tLcaoB19aM1n9OLIf73WW5QCAIKN84B6TQ9wVsG/DF iVxmhnu+dxJcGYXWV0v1Fs5QascRCl8ApB5xBJSShZvf39g5PKsEdvumEDP/XfXj q3JTgEkkOlaO8ACpNmImi4/RzyAsZOAfqDhOjbheRry69d6Qcil2GSytyGBYQFyE msr+qlR6+X2l3B6aiC/EpH1kcriYb0O02ZsZYE4MvFO3B+TuSiuY3jj+s7SlEOCK gVwXIMMaxeB7MfNoekd4ZF+gQ40TwGKk+ZUiCFNrY4fAXT091H4x0AOydtXTWNzc vRsXk6yELBe3Wr9eJwYtDT3RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUj0ccvGhb g42NI72O6f7MZDV7+g4wHwYDVR0jBBgwFoAUD9RDdSHbXAvJnkW1l1T/e2cfhvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0U5NjQ4OUFFQUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDlSRGRTSGJYQXZKbmtXMWwxVF9lMmNmaHZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0U5NjQ4OUFFQUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2 Sm5rVzFsMVRfZTJjZmh2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAkyIBhziFG59NbEmMSWh5UJ0dqJ6eByIPkiDMOVkvOU7IF1tc/vYVkW EzETC0O2krUg0sRj240T1nZlaJie+rbrXqH00LTzFwYmteZx3H49zpXUtz4jn3Px i9PFGo7GKpj5nNQeQ0hn4fGG5+gSaZtotZlcg1+l3g146ApteifODwfavghjaThf 7Tb8nEwVWcCp3f7jpxpEMx/tNPJvjB6oUGKj+SXIkIcdBrN3gKCfBl9FeW+di+jL 4L5PdQNZm/NeCBUyCyqvrH19/EO+zkFhG2gYViUGdLVe8oif3RKsBDyBCqNBRfx3 mBAq7oPdDJIuCoQUneE234jBHtTMWgw= -----END CERTIFICATE-----Generated at Thu Jul 3 21:46:18 2025 by rpki-client