$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: 8VmbRr2rp8ZPzpM3gjPGYJwlbU2A/B38wUV7VcpmBsM= Subject key identifier: E5:A9:71:3F:F7:DA:4C:93:8D:1A:9B:02:41:01:DB:51:99:23:BF:FE Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 07B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 07B1 Signing time: Wed 02 Jul 2025 21:29:08 +0000 Manifest this update: Wed 02 Jul 2025 21:29:07 +0000 Manifest next update: Wed 09 Jul 2025 21:29:07 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: NLH0LUPvFb4F4P7Ks77WbVSUe9wAw6tts9Y/t3m0R9E=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: 0iyvzLFIUAJQiOyEvH+MRt0xVeTfFziku8Yy3Ho4c+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1974 (0x7b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1, serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: Jul 2 21:29:07 2025 GMT Not After : Jul 9 21:29:07 2025 GMT Subject: CN=6865a4a4-c145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c7:61:09:6f:64:c9:46:5e:64:a9:a3:40:64: 04:dc:29:79:34:1c:59:f3:b0:52:2f:bd:55:0e:b1: 42:59:a1:80:54:47:be:d8:0c:5f:f7:5a:ff:e0:c1: bc:84:0f:7d:d4:e8:ef:f8:a8:96:c3:ee:31:f8:b4: 83:1d:2e:31:6f:24:55:59:1d:69:3f:0d:23:4c:bf: 81:ed:ee:77:7f:0f:0d:63:c3:40:22:f7:72:a6:37: e6:82:dd:c6:55:d4:51:aa:c3:6a:b0:57:69:71:3f: 91:62:92:a4:52:6c:ca:ac:8f:04:a1:1b:b6:6e:ec: 38:40:3c:ad:1e:88:55:ef:73:35:ef:33:73:4f:14: 0f:4b:fd:12:14:c4:b7:ac:d8:34:87:91:3e:ba:92: 1a:3d:f6:4e:b4:f9:80:0a:3a:13:12:32:f3:d9:44: 97:3c:96:ab:f0:31:62:cc:63:89:cc:cb:d3:3b:40: fb:98:de:02:f4:e0:a8:20:fc:fa:48:9b:b8:93:96: 0d:0b:16:40:16:b4:40:41:73:4e:0e:96:b1:04:92: 10:7a:6e:94:4f:9c:72:12:4d:72:d8:47:a6:d9:a9: ac:79:ae:9e:40:87:e7:78:69:45:f0:ca:e2:67:33: 2c:15:17:9d:45:2a:63:5a:5a:98:a5:7d:3a:ca:ba: dc:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A9:71:3F:F7:DA:4C:93:8D:1A:9B:02:41:01:DB:51:99:23:BF:FE X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:c1:dc:fc:f0:45:13:6a:a8:d1:1d:1a:d0:cd:bd:66:b7:d6: 56:ee:98:dd:35:67:3a:e6:4b:e8:4b:4c:42:94:9c:5a:57:46: 56:e2:0a:85:77:44:3c:95:cc:f1:74:1b:0c:34:79:f1:53:f3: db:34:5f:3e:23:bc:a4:dd:76:cc:0c:c1:0d:ba:3e:64:b0:87: a5:4b:76:75:2e:d5:ea:59:66:f5:fb:a5:03:88:1f:96:c9:d7: ea:6d:3b:cd:2b:48:81:b8:75:dd:50:f1:a5:5a:43:05:4d:81: bf:b9:37:59:d5:c4:ad:55:87:c4:ad:3e:3e:fa:ad:7f:65:45: 8a:a3:a0:14:93:56:89:da:c8:44:a8:6e:f2:ce:a0:4e:28:c3: 70:72:dc:aa:d9:9c:3c:16:d5:ac:cc:8a:4c:a3:e1:82:12:8a: 80:1f:cb:c2:d7:78:53:2d:33:a3:15:6a:69:14:ff:9c:a7:81: 90:e4:31:de:73:bc:ec:8a:3b:47:9c:17:a1:ae:df:bb:bb:a4: da:8e:06:34:16:d4:2c:ee:84:72:71:1a:ee:30:63:51:f2:cf: 3a:c4:1a:44:66:70:7d:6c:22:26:89:2d:d4:c1:85:b7:f2:cb: f3:08:ef:1a:af:16:fa:6c:a4:38:3d:20:92:04:b5:86:c4:61: 49:77:5a:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjUwNzAyMjEyOTA3WhcNMjUwNzA5MjEyOTA3WjAYMRYwFAYD VQQDEw02ODY1YTRhNC1jMTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsdhCW9kyUZeZKmjQGQE3Cl5NBxZ87BSL71VDrFCWaGAVEe+2Axf91r/4MG8 hA991Ojv+KiWw+4x+LSDHS4xbyRVWR1pPw0jTL+B7e53fw8NY8NAIvdypjfmgt3G VdRRqsNqsFdpcT+RYpKkUmzKrI8EoRu2buw4QDytHohV73M17zNzTxQPS/0SFMS3 rNg0h5E+upIaPfZOtPmACjoTEjLz2USXPJar8DFizGOJzMvTO0D7mN4C9OCoIPz6 SJu4k5YNCxZAFrRAQXNODpaxBJIQem6UT5xyEk1y2Eem2amsea6eQIfneGlF8Mri ZzMsFRedRSpjWlqYpX06yrrc2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOWpcT/3 2kyTjRqbAkEB21GZI7/+MB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxwdz88EUTaqjRHRrQzb1mt9ZW7pjdNWc65kvoS0xClJxaV0ZW4gqF d0Q8lczxdBsMNHnxU/PbNF8+I7yk3XbMDMENuj5ksIelS3Z1LtXqWWb1+6UDiB+W ydfqbTvNK0iBuHXdUPGlWkMFTYG/uTdZ1cStVYfErT4++q1/ZUWKo6AUk1aJ2shE qG7yzqBOKMNwctyq2Zw8FtWszIpMo+GCEoqAH8vC13hTLTOjFWppFP+cp4GQ5DHe c7zsijtHnBehrt+7u6TajgY0FtQs7oRycRruMGNR8s86xBpEZnB9bCImiS3UwYW3 8svzCO8arxb6bKQ4PSCSBLWGxGFJd1pF -----END CERTIFICATE-----Generated at Thu Jul 3 00:28:20 2025 by rpki-client