$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: oxKXy51EVvi/A7pyrPE8nr3v85xHbMj5haeqQwYSef8= Subject key identifier: CC:D1:FC:4F:FC:67:EA:B2:EB:06:9A:A6:7D:36:13:C3:BE:E9:7F:E8 Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 72 Signing time: Sat 23 Aug 2025 07:06:04 +0000 Manifest this update: Sat 23 Aug 2025 07:06:04 +0000 Manifest next update: Sat 30 Aug 2025 07:06:03 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: wseOhtJFyiFW6s5xA80ndwHqTq2rUcCo7A9OxPWXQbg=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:06:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Aug 23 07:06:04 2025 GMT Not After : Aug 30 07:06:03 2025 GMT Subject: CN=68a9685c-3787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:62:da:59:08:b1:50:a9:9c:c1:48:fd:17:8c: 63:f0:de:74:d7:ff:59:5a:17:21:9f:fd:0c:e1:af: b5:72:02:b4:a6:33:df:d3:78:79:00:2c:2d:09:65: 9e:4c:f5:3a:c0:5b:71:22:03:ea:ac:6b:56:79:bf: 3d:e2:be:4d:54:49:1f:ab:09:55:71:03:c5:51:4e: a5:e6:3c:08:fd:dc:5a:ab:cc:98:f1:5b:f1:1d:35: 2d:b9:d9:97:ca:c7:8d:2d:a2:7b:5a:9c:a8:c5:b6: ac:09:9b:93:db:ef:3b:34:10:0c:22:a7:95:76:d9: e2:2c:3e:e9:45:40:45:63:41:f0:ee:70:43:c8:c0: 2c:79:f9:c2:3c:75:9d:20:8e:46:c9:b0:03:35:fd: 55:ae:07:59:5c:71:a6:5f:3b:9f:28:10:f9:45:bd: 7d:dd:43:1b:61:8e:f0:79:4c:c0:8f:75:e4:f6:b8: a8:52:27:e1:94:28:14:89:5a:df:ab:eb:4e:0a:fa: 8c:95:06:32:1e:34:f9:20:8d:0a:6d:b2:6b:21:cd: 61:d7:12:83:0b:e8:91:51:b9:90:fc:b3:52:d2:5a: d4:c2:b6:e4:6e:21:d8:ee:58:9b:bd:13:f5:c7:18: b3:90:72:4c:4d:7e:c4:15:85:46:6a:6e:3f:77:d5: 1c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:D1:FC:4F:FC:67:EA:B2:EB:06:9A:A6:7D:36:13:C3:BE:E9:7F:E8 X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:2c:4e:45:d6:f3:43:5a:95:3f:53:5d:88:ee:14:07:5a:fb: aa:b2:7c:65:ff:53:48:b9:dc:fb:92:07:c9:9b:4f:ff:ea:67: 88:1a:53:e7:48:73:11:a7:7f:c0:94:da:93:6b:19:bd:d9:70: d3:af:2d:e3:74:00:7a:ee:05:46:ee:76:34:68:46:06:92:8c: 82:58:f1:03:d4:24:bb:02:85:df:e1:00:09:1f:db:34:0a:97: 15:6b:02:14:2f:80:0e:c0:f2:70:a3:68:e9:f6:ab:20:e9:2a: c8:84:2f:d3:27:b9:3c:87:82:e8:6e:38:87:c9:07:07:e5:99: 45:db:74:fb:64:51:14:d4:1d:0f:8a:56:26:85:91:be:14:0c: 21:78:b4:04:8a:24:57:eb:3c:bb:3b:a5:c3:ff:3a:94:0d:c2: 4a:64:70:65:10:54:be:60:c8:0a:d0:55:a3:3c:db:22:c4:55: 0b:3e:42:78:29:87:1b:89:86:7f:c7:3a:35:da:50:60:dc:bb: 12:93:d1:7b:8b:2e:34:a4:28:a6:8c:a3:5b:29:2b:24:2b:49: 6e:b9:57:62:c3:65:c2:69:61:0b:7f:ec:e0:2e:a0:e2:2b:d7: c8:e1:64:10:f7:e5:2f:09:e9:58:6c:01:08:6a:e4:8e:11:27: 27:1d:ba:ad -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA4MjMwNzA2MDRaFw0yNTA4MzAwNzA2MDNaMBgxFjAUBgNV BAMTDTY4YTk2ODVjLTM3ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzYtpZCLFQqZzBSP0XjGPw3nTX/1laFyGf/Qzhr7VyArSmM9/TeHkALC0JZZ5M 9TrAW3EiA+qsa1Z5vz3ivk1USR+rCVVxA8VRTqXmPAj93FqrzJjxW/EdNS252ZfK x40tontanKjFtqwJm5Pb7zs0EAwip5V22eIsPulFQEVjQfDucEPIwCx5+cI8dZ0g jkbJsAM1/VWuB1lccaZfO58oEPlFvX3dQxthjvB5TMCPdeT2uKhSJ+GUKBSJWt+r 604K+oyVBjIeNPkgjQptsmshzWHXEoML6JFRuZD8s1LSWtTCtuRuIdjuWJu9E/XH GLOQckxNfsQVhUZqbj931RxlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzNH8T/xn 6rLrBpqmfTYTw77pf+gwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKssTkXW80NalT9TXYjuFAda+6qyfGX/U0i53PuSB8mbT//qZ4gaU+dI cxGnf8CU2pNrGb3ZcNOvLeN0AHruBUbudjRoRgaSjIJY8QPUJLsChd/hAAkf2zQK lxVrAhQvgA7A8nCjaOn2qyDpKsiEL9MnuTyHguhuOIfJBwflmUXbdPtkURTUHQ+K ViaFkb4UDCF4tASKJFfrPLs7pcP/OpQNwkpkcGUQVL5gyArQVaM82yLEVQs+Qngp hxuJhn/HOjXaUGDcuxKT0XuLLjSkKKaMo1spKyQrSW65V2LDZcJpYQt/7OAuoOIr 18jhZBD35S8J6VhsAQhq5I4RJycduq0= -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:02 2025 by rpki-client