$ rpki-client -vvf rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft File: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft (raw, json) Hash identifier: 9mm53BrhYGqufKheodmZnK/ZHDXgJ5dOh8TtCn1JgAI= Subject key identifier: 2F:D2:A4:9B:85:9A:61:ED:8E:D9:3C:46:78:62:D7:73:33:AF:91:A2 Authority key identifier: 76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 Certificate issuer: /CN=A917ADD1/serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Certificate serial: 0181 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft Manifest number: 017E Signing time: Sat 23 Aug 2025 03:47:58 +0000 Manifest this update: Sat 23 Aug 2025 03:47:58 +0000 Manifest next update: Sat 30 Aug 2025 03:47:58 +0000 Files and hashes: 1: dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl (hash: 24Q/Ds0LaHkWjtbD+3HKlvkxNeOLfBS/WJ9dtAhcCKA=) 2: 8D0C1E0E37EF11EE82AF270BC4F9AE02.roa (hash: GFGPvdmy2vrmiAyM3NUeTKYyq91wUi+ACbGsbCoh47g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:47:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ADD1, serialNumber=7652A22FC250FAAAE3AB2C0C2AFDD04E3047E507 Validity Not Before: Aug 23 03:47:58 2025 GMT Not After : Aug 30 03:47:58 2025 GMT Subject: CN=68a939ee-2311 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9d:68:f9:f0:98:23:b5:d2:45:29:5d:10:b2: 7e:40:99:93:8e:3b:16:79:fe:92:93:0a:61:4a:07: 36:23:14:f8:78:de:ca:41:89:02:d7:fe:50:0b:bb: c6:96:64:c9:c4:15:dd:9d:09:c1:f1:bb:a1:49:17: 05:d2:5c:0e:b9:3a:db:7b:52:57:c3:fc:70:38:ee: 56:11:18:06:9f:51:a9:54:c0:17:60:73:01:d9:28: 03:be:3d:ea:87:39:e3:e5:0e:d7:cd:f5:84:03:0c: d2:14:7a:09:d2:c5:5c:94:be:85:a0:5d:06:ab:e0: 2a:fe:69:c4:63:c2:aa:6f:7b:94:9e:5c:0c:33:7e: 94:d0:6c:8c:a7:0b:7f:36:bd:e2:b7:8a:ed:da:d7: 13:07:c7:e6:1e:0e:f8:58:85:c0:a0:6f:39:4e:e2: 7f:44:ca:ec:b5:19:0a:8e:30:cb:f4:35:c4:2f:bb: ee:5d:ff:f9:73:a2:1f:60:5a:d6:c0:1d:a8:2b:db: ea:69:f7:2d:d3:e2:4b:0c:a8:c3:08:82:54:43:55: cd:3d:24:70:dd:b3:1b:2a:27:89:73:c1:fc:32:96: 30:0e:a4:dd:75:d3:f1:e9:86:fc:56:6b:07:aa:85: 52:5e:e6:04:08:4a:14:49:b3:a8:3e:30:52:3c:24: 82:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D2:A4:9B:85:9A:61:ED:8E:D9:3C:46:78:62:D7:73:33:AF:91:A2 X509v3 Authority Key Identifier: keyid:76:52:A2:2F:C2:50:FA:AA:E3:AB:2C:0C:2A:FD:D0:4E:30:47:E5:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ADD1/D006C0DE37EE11EE98DF3666C4F9AE02/dlKiL8JQ-qrjqywMKv3QTjBH5Qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:cf:e4:7b:08:ce:d1:93:b8:e5:42:17:b4:2d:63:a8:ba:c2: a5:d8:2a:42:5f:5b:80:31:34:9f:44:81:56:a8:b7:46:3c:b1: 7d:68:27:1e:d7:ad:fd:4f:d5:cd:c1:58:a1:21:2a:8b:a0:a9: aa:21:65:2f:31:a6:e6:69:b9:99:15:39:11:5f:6b:28:ed:25: 11:a0:1c:89:7e:e5:b6:4d:ac:42:a4:6f:43:d2:3b:1b:33:b0: d5:08:96:d7:3c:25:59:62:a1:3d:1e:e7:43:c7:df:e1:a9:22: da:f0:bd:b8:4b:8b:77:cf:e3:ac:70:29:80:37:ce:e8:a9:98: fa:21:7b:84:bd:9a:3b:cd:dc:3d:b6:98:1f:ec:37:ae:f7:45: dd:91:82:95:bb:01:ef:64:80:89:c2:bf:e6:07:a7:9a:5e:72: 77:0d:32:62:e8:dc:61:a5:5d:8a:91:0e:ad:9e:95:49:bf:a9: 67:b1:e0:63:09:96:09:78:0d:c7:2d:64:30:28:47:ff:95:e0: 73:e4:c2:f9:59:7b:d1:f8:7f:c6:1e:0e:16:f4:65:82:bb:46: 6e:76:1c:15:b2:4b:19:1f:1a:45:90:6c:aa:bc:c6:14:43:92: 82:ac:5f:94:2a:50:31:1f:2f:8a:16:ac:7e:10:bb:2f:d8:40: a4:51:c0:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FERDExMTAvBgNVBAUTKDc2NTJBMjJGQzI1MEZBQUFFM0FCMkMwQzJBRkREMDRF MzA0N0U1MDcwHhcNMjUwODIzMDM0NzU4WhcNMjUwODMwMDM0NzU4WjAYMRYwFAYD VQQDEw02OGE5MzllZS0yMzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZ1o+fCYI7XSRSldELJ+QJmTjjsWef6SkwphSgc2IxT4eN7KQYkC1/5QC7vG lmTJxBXdnQnB8buhSRcF0lwOuTrbe1JXw/xwOO5WERgGn1GpVMAXYHMB2SgDvj3q hznj5Q7XzfWEAwzSFHoJ0sVclL6FoF0Gq+Aq/mnEY8Kqb3uUnlwMM36U0GyMpwt/ Nr3it4rt2tcTB8fmHg74WIXAoG85TuJ/RMrstRkKjjDL9DXEL7vuXf/5c6IfYFrW wB2oK9vqafct0+JLDKjDCIJUQ1XNPSRw3bMbKieJc8H8MpYwDqTdddPx6Yb8VmsH qoVSXuYECEoUSbOoPjBSPCSCjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC/SpJuF mmHtjtk8Rnhi13Mzr5GiMB8GA1UdIwQYMBaAFHZSoi/CUPqq46ssDCr90E4wR+UH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUREMS9EMDA2QzBERTM3 RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1xcmpxeXdNS3YzUVRqQkg1 UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RsS2lMOEpRLXFyanF5d01LdjNRVGpCSDVRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUREMS9EMDA2QzBERTM3RUUxMUVFOThERjM2NjZDNEY5QUUwMi9kbEtpTDhKUS1x cmpxeXdNS3YzUVRqQkg1UWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWz+R7CM7Rk7jlQhe0LWOousKl2CpCX1uAMTSfRIFWqLdGPLF9aCce 1639T9XNwVihISqLoKmqIWUvMabmabmZFTkRX2so7SURoByJfuW2TaxCpG9D0jsb M7DVCJbXPCVZYqE9HudDx9/hqSLa8L24S4t3z+OscCmAN87oqZj6IXuEvZo7zdw9 tpgf7Deu90XdkYKVuwHvZICJwr/mB6eaXnJ3DTJi6NxhpV2KkQ6tnpVJv6lnseBj CZYJeA3HLWQwKEf/leBz5ML5WXvR+H/GHg4W9GWCu0ZudhwVsksZHxpFkGyqvMYU Q5KCrF+UKlAxHy+KFqx+ELsv2ECkUcDR -----END CERTIFICATE-----Generated at Sat Aug 23 18:26:38 2025 by rpki-client