$ rpki-client -vvf rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft File: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft (raw, json) Hash identifier: 1JdQQzD1x31rWBvw3VtsvZlNAC1UImmp031B0cZy39U= Subject key identifier: CC:00:1C:BE:D1:F3:BA:84:66:10:A4:FE:97:66:AE:26:FC:11:19:FD Authority key identifier: 49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 Certificate issuer: /CN=A916156D/serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Certificate serial: 28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft Manifest number: 25 Signing time: Sat 23 Aug 2025 08:04:15 +0000 Manifest this update: Sat 23 Aug 2025 08:04:15 +0000 Manifest next update: Sat 30 Aug 2025 08:04:15 +0000 Files and hashes: 1: Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl (hash: xrzg2x8CiITCBPe0KuqB8d7lGg+OLwYbgTxjINZ5hmQ=) 2: 850105504F3D11F0A0960F7CC4F9AE02.roa (hash: ycoxpKT+DpgcLoAUSWd+EWSk4JnPGKou98k0R1luHMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:04:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916156D, serialNumber=49DDD1E4C5A9FC766626D2FA3B6637DA80EA2FD2 Validity Not Before: Aug 23 08:04:15 2025 GMT Not After : Aug 30 08:04:15 2025 GMT Subject: CN=68a975ff-e795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:81:f8:15:12:7f:39:a1:19:c7:ba:0e:c2:4e: 25:39:69:d9:51:d5:87:f5:d1:19:f7:78:83:73:68: 91:32:a7:83:0b:03:13:24:7e:69:37:b0:af:78:44: 3f:fa:f1:fd:e6:10:25:35:9f:d7:74:a1:bf:88:8c: 2c:f4:92:0f:db:4e:04:91:f0:ef:83:c7:57:05:68: a5:13:07:cd:5b:93:2e:49:66:b2:77:f3:05:ef:d3: d4:1b:1c:74:05:8d:d6:92:3b:87:bd:a1:c7:c1:04: b9:0c:93:b1:f9:16:9a:87:9c:7c:5f:02:b6:a2:98: 97:1e:97:09:99:27:41:78:5b:c4:27:e4:8d:b2:3a: 71:23:0c:a0:00:b7:b0:fe:82:9b:32:53:10:1a:1c: ec:d4:70:ca:63:05:59:69:ee:9f:d3:ff:b8:13:a4: fb:15:fc:6c:6b:71:62:1c:2d:73:f8:fd:b7:f1:d6: 5f:e8:a9:83:d0:dd:45:8e:f1:b0:73:5f:b4:d8:56: 2b:b9:62:a5:a8:3e:95:f5:f8:c9:fb:36:f9:5a:14: ce:95:e8:45:5e:61:3f:06:ae:c4:21:9f:5e:b4:ca: a9:ce:a8:85:b1:b9:57:a0:bd:1d:75:83:8e:0e:4b: 65:d9:19:1d:11:71:77:d0:a5:7a:46:4e:98:93:55: 5d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:00:1C:BE:D1:F3:BA:84:66:10:A4:FE:97:66:AE:26:FC:11:19:FD X509v3 Authority Key Identifier: keyid:49:DD:D1:E4:C5:A9:FC:76:66:26:D2:FA:3B:66:37:DA:80:EA:2F:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916156D/7CD3DEAC4E8911F0A81C6716C4F9AE02/Sd3R5MWp_HZmJtL6O2Y32oDqL9I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:ed:d3:df:25:1f:70:3f:c1:b1:ef:f2:bd:1c:9b:b5:f3:0c: 25:79:17:93:63:9a:f9:7a:e6:76:59:3c:19:53:6e:3a:fe:1e: cb:80:0b:70:c8:4d:df:5c:89:60:5b:51:7b:6b:93:8d:ed:bd: da:e6:2a:64:75:b0:2d:47:24:2e:d4:b8:0b:ce:e3:bf:11:8a: e0:15:9e:4f:32:0e:16:53:6e:ae:c0:37:02:74:5a:2e:cf:be: a9:9e:76:5b:bc:51:5a:28:77:81:2c:75:9f:fe:41:17:5c:b0: d4:f7:db:b5:65:42:e6:0a:22:44:2d:ba:98:74:06:7e:cb:00: 43:54:0a:fb:99:28:12:40:88:ab:0a:5d:02:f6:49:2b:57:05: 40:fe:64:34:64:93:c2:1f:52:4a:88:f9:2a:64:78:d0:82:84: 56:95:49:ee:7c:ee:e8:c7:25:7f:76:a5:4b:a4:6d:2f:d5:a1: 04:91:20:e9:82:2b:2c:7b:53:9e:0d:bd:1f:e6:77:42:07:45: 71:85:70:9d:f1:93:13:01:99:c3:12:c3:df:38:77:91:ad:a0: 45:43:45:e4:a8:99:ff:2b:b7:64:f6:9e:46:5d:94:c5:e1:f8: b9:0f:f1:31:cb:d1:c0:ea:4d:bf:bd:49:7a:6c:70:dc:db:c2: ac:2b:66:b7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTU2RDExMC8GA1UEBRMoNDlEREQxRTRDNUE5RkM3NjY2MjZEMkZBM0I2NjM3REE4 MEVBMkZEMjAeFw0yNTA4MjMwODA0MTVaFw0yNTA4MzAwODA0MTVaMBgxFjAUBgNV BAMTDTY4YTk3NWZmLWU3OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfgfgVEn85oRnHug7CTiU5adlR1Yf10Rn3eINzaJEyp4MLAxMkfmk3sK94RD/6 8f3mECU1n9d0ob+IjCz0kg/bTgSR8O+Dx1cFaKUTB81bky5JZrJ38wXv09QbHHQF jdaSO4e9ocfBBLkMk7H5FpqHnHxfAraimJcelwmZJ0F4W8Qn5I2yOnEjDKAAt7D+ gpsyUxAaHOzUcMpjBVlp7p/T/7gTpPsV/GxrcWIcLXP4/bfx1l/oqYPQ3UWO8bBz X7TYViu5YqWoPpX1+Mn7NvlaFM6V6EVeYT8GrsQhn160yqnOqIWxuVegvR11g44O S2XZGR0RcXfQpXpGTpiTVV09AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzAAcvtHz uoRmEKT+l2auJvwRGf0wHwYDVR0jBBgwFoAUSd3R5MWp/HZmJtL6O2Y32oDqL9Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNTZELzdDRDNERUFDNEU4 OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0habUp0TDZPMlkzMm9EcUw5 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2QzUjVNV3BfSFptSnRMNk8yWTMyb0RxTDlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NTZELzdDRDNERUFDNEU4OTExRjBBODFDNjcxNkM0RjlBRTAyL1NkM1I1TVdwX0ha bUp0TDZPMlkzMm9EcUw5SS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJDt098lH3A/wbHv8r0cm7XzDCV5F5Njmvl65nZZPBlTbjr+HsuAC3DI Td9ciWBbUXtrk43tvdrmKmR1sC1HJC7UuAvO478RiuAVnk8yDhZTbq7ANwJ0Wi7P vqmedlu8UVood4EsdZ/+QRdcsNT327VlQuYKIkQtuph0Bn7LAENUCvuZKBJAiKsK XQL2SStXBUD+ZDRkk8IfUkqI+SpkeNCChFaVSe587ujHJX92pUukbS/VoQSRIOmC Kyx7U54NvR/md0IHRXGFcJ3xkxMBmcMSw984d5GtoEVDReSomf8rt2T2nkZdlMXh +LkP8THL0cDqTb+9SXpscNzbwqwrZrc= -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:08 2025 by rpki-client