$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: zt0yrebC/nC3R/sgo9prjEdzX1SYw6zYvStn48vDc7I= Subject key identifier: 40:7D:F1:2F:88:85:F1:11:D6:FF:65:8E:B3:CE:81:7B:AF:F0:A7:2C Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 58 Signing time: Thu 03 Jul 2025 07:25:03 +0000 Manifest this update: Thu 03 Jul 2025 07:25:02 +0000 Manifest next update: Thu 10 Jul 2025 07:25:02 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: iHoO0aScSXS8mNmKaY81AZSLnEJ23AJsil5coURG5fQ=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Jul 3 07:25:02 2025 GMT Not After : Jul 10 07:25:02 2025 GMT Subject: CN=6866304f-9824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:09:1e:1c:a7:9e:9e:8c:33:61:05:02:1b:5d: 88:7c:8d:db:d8:99:06:dd:ec:54:f4:69:d0:de:7e: 12:5e:d7:1d:ca:ec:94:ed:6c:84:ec:7d:21:f2:30: c7:58:32:8a:00:f2:f7:7e:f3:62:4a:f6:50:95:98: 1f:df:07:09:11:01:43:5b:97:c7:3f:f7:22:75:89: 0f:14:96:b4:80:ab:ed:b9:87:12:61:39:47:2c:70: 3c:2a:57:1b:df:5c:48:3e:7b:ee:55:43:59:a7:6f: 44:f5:39:c8:09:4c:cf:ad:60:f1:66:04:c6:81:7c: 98:90:c0:62:17:ca:75:2f:31:0f:07:2c:fd:cf:cd: 3a:96:3c:99:f5:05:cc:71:e1:09:2b:bd:bb:d6:4d: 25:6d:8d:ef:7b:c0:4a:66:aa:93:5d:d4:0c:69:e8: 8f:42:47:94:db:4c:32:e3:53:5a:dc:4b:5a:b7:90: 69:2e:ee:b0:17:9d:84:09:58:a8:58:21:31:44:50: 16:52:9b:e9:39:e0:15:ac:c4:58:b7:35:93:a6:bd: 91:3a:74:a3:8b:dd:bb:81:f7:43:3c:87:58:b0:34: 7a:ee:86:18:51:08:7b:82:0c:7f:17:6e:1b:4d:a1: 11:f0:57:d9:6b:59:af:4d:c6:ba:4c:1a:72:65:91: 06:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:7D:F1:2F:88:85:F1:11:D6:FF:65:8E:B3:CE:81:7B:AF:F0:A7:2C X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:22:42:d8:9d:76:65:03:21:35:0f:ca:78:4a:c2:dc:4f:c3: 65:5f:79:61:33:10:58:a9:4b:e7:54:54:8d:60:78:52:2c:ee: 70:06:54:56:10:f6:a6:6c:10:40:7a:b4:73:ab:6e:6e:dc:89: e6:ae:78:ed:c9:b8:cf:ff:ee:5d:91:e8:d2:8c:38:dd:b9:0e: f5:20:13:ad:ca:06:1e:9e:a8:b6:3c:44:58:3f:7f:c6:d5:b6: a0:40:17:21:d4:d1:b9:f7:2a:7e:a9:f6:ca:c7:0b:e9:c0:84: 4c:d7:bc:7c:6d:ea:5b:65:b4:b7:59:d2:a7:80:3e:48:d6:ee: fb:e9:91:6d:73:94:bd:37:eb:5f:a1:0c:3c:f8:55:30:f5:d3: ab:26:85:6a:96:2a:c2:71:78:9f:7e:a6:ac:3a:20:f9:b7:a2: 77:bb:67:ad:d6:c1:a4:83:22:49:19:9d:72:43:ab:35:d4:6b: ae:38:29:ee:11:75:63:dd:0b:eb:69:dc:83:7a:64:aa:85:63: e7:53:75:ce:5f:1b:10:80:3d:d4:89:81:e7:44:0f:3d:fa:61: 09:e8:67:41:f7:9b:f2:09:3e:b1:d4:f0:6f:ab:3a:98:6f:8e: 48:99:09:97:88:27:c6:fa:d8:4d:7a:47:5e:84:6e:f8:b7:7d: a1:60:d8:94 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA3MDMwNzI1MDJaFw0yNTA3MTAwNzI1MDJaMBgxFjAUBgNV BAMTDTY4NjYzMDRmLTk4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwCR4cp56ejDNhBQIbXYh8jdvYmQbd7FT0adDefhJe1x3K7JTtbITsfSHyMMdY MooA8vd+82JK9lCVmB/fBwkRAUNbl8c/9yJ1iQ8UlrSAq+25hxJhOUcscDwqVxvf XEg+e+5VQ1mnb0T1OcgJTM+tYPFmBMaBfJiQwGIXynUvMQ8HLP3PzTqWPJn1Bcxx 4QkrvbvWTSVtje97wEpmqpNd1Axp6I9CR5TbTDLjU1rcS1q3kGku7rAXnYQJWKhY ITFEUBZSm+k54BWsxFi3NZOmvZE6dKOL3buB90M8h1iwNHruhhhRCHuCDH8XbhtN oRHwV9lrWa9NxrpMGnJlkQZBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQH3xL4iF 8RHW/2WOs86Be6/wpywwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUiQtiddmUDITUPynhKwtxPw2VfeWEzEFipS+dUVI1geFIs7nAGVFYQ 9qZsEEB6tHOrbm7cieaueO3JuM//7l2R6NKMON25DvUgE63KBh6eqLY8RFg/f8bV tqBAFyHU0bn3Kn6p9srHC+nAhEzXvHxt6ltltLdZ0qeAPkjW7vvpkW1zlL0361+h DDz4VTD106smhWqWKsJxeJ9+pqw6IPm3one7Z63WwaSDIkkZnXJDqzXUa644Ke4R dWPdC+tp3IN6ZKqFY+dTdc5fGxCAPdSJgedEDz36YQnoZ0H3m/IJPrHU8G+rOphv jkiZCZeIJ8b62E16R16Ebvi3faFg2JQ= -----END CERTIFICATE-----Generated at Fri Jul 4 00:48:45 2025 by rpki-client