$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: ZthuT+VoStLZJsZnshb/lORuQqvy90CqKCXLy+vgf0Q= Subject key identifier: 16:D9:62:5B:DA:FD:20:60:41:8E:46:44:37:BB:61:C0:44:F0:5E:8F Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 3513 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34EC Signing time: Fri 22 Aug 2025 14:27:13 +0000 Manifest this update: Fri 22 Aug 2025 14:27:12 +0000 Manifest next update: Fri 29 Aug 2025 14:27:12 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: eX087GOmpj61vUrCVIMpXhiUoe/JpW524IWonBQMI0A=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: 6CSktOcA4MnBe9beO9qKaaWhMjSNipfCRcL+x7I1JgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13587 (0x3513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Aug 22 14:27:12 2025 GMT Not After : Aug 29 14:27:12 2025 GMT Subject: CN=68a87e40-364d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e4:d5:8b:79:a8:37:49:f5:28:bf:2a:cf:86: 7e:36:3f:64:d8:19:a3:e5:96:39:6f:f9:b3:1f:ad: 4c:32:c2:1d:27:50:dc:29:b5:8c:45:3a:ac:e3:76: 96:9c:ad:1b:6b:1e:cc:de:66:a4:89:81:4c:0f:e8: 39:4d:e4:14:5e:41:39:6c:86:50:76:c4:fb:dc:eb: cd:16:7c:a4:99:25:bf:e7:ec:84:41:e0:7f:cb:53: d0:66:9e:13:6f:83:9d:0f:e9:7d:e5:00:3e:48:08: 86:ef:89:3d:ab:de:20:14:5e:2e:98:80:0b:02:aa: 78:47:0d:f8:c1:3a:53:98:64:28:a5:cf:87:f5:71: 7d:03:cc:ee:34:54:93:29:ab:1f:89:ea:7f:c2:25: b5:f5:a9:1f:4d:d3:06:ba:5f:15:58:7a:fb:cf:18: a2:07:d0:58:59:cf:17:27:c0:9d:c8:b2:f3:08:92: a2:9a:f0:21:59:20:f9:4d:54:70:d2:7a:b3:01:90: c7:ea:72:7e:8b:c6:29:63:51:c3:14:82:a7:68:f6: 1b:14:d3:c3:69:d4:8c:c4:35:11:9b:24:b4:ce:cf: e5:ec:46:e0:b9:06:98:47:c1:e5:45:75:f9:d3:47: 26:1f:3f:9d:7b:f0:e3:e3:a4:61:19:19:8f:c5:f2: 51:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:D9:62:5B:DA:FD:20:60:41:8E:46:44:37:BB:61:C0:44:F0:5E:8F X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:67:7a:b6:8a:de:de:fb:91:41:9f:57:ff:32:75:7f:56:69: 6a:2e:46:dd:b8:4d:58:82:b1:ac:a8:d6:e0:4a:51:9f:5f:32: 18:e2:d7:d8:8b:94:82:7b:cf:ca:62:df:7b:87:19:15:bb:9f: e4:fb:0c:26:56:18:30:03:d1:69:a7:92:92:86:b0:c7:1a:40: 99:e4:a2:a7:10:32:a3:7e:f0:3c:c0:32:a8:08:0c:e3:67:72: 56:58:f6:fe:72:8f:97:2e:98:a4:f9:f1:2c:f6:04:ef:99:22: 9c:bd:7e:fa:c1:6b:8a:42:3c:0f:a2:6f:3e:d5:a9:48:59:8c: 32:c5:7b:e9:5e:9a:1f:ff:03:eb:d8:d9:e9:ae:be:6b:89:8c: 1c:87:23:66:1a:e4:77:85:f3:73:76:ce:c8:20:df:53:f1:dd: 93:cf:75:ca:dd:eb:c1:88:11:bf:73:01:d0:f3:f0:bb:01:70: 24:14:8c:ad:de:7a:06:76:33:7b:7d:63:99:e5:55:b4:cf:62: 48:92:a1:ef:5c:8c:6e:c4:5a:51:23:da:72:7b:a4:31:c1:4f: d7:14:20:87:df:a1:81:28:e2:21:b5:17:01:d9:05:6d:98:b8: 43:2a:6b:2f:b2:5f:38:1f:68:ee:8a:09:9d:7c:77:65:bf:03: 2f:8a:1e:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwODIyMTQyNzEyWhcNMjUwODI5MTQyNzEyWjAYMRYwFAYD VQQDEw02OGE4N2U0MC0zNjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouTVi3moN0n1KL8qz4Z+Nj9k2Bmj5ZY5b/mzH61MMsIdJ1DcKbWMRTqs43aW nK0bax7M3makiYFMD+g5TeQUXkE5bIZQdsT73OvNFnykmSW/5+yEQeB/y1PQZp4T b4OdD+l95QA+SAiG74k9q94gFF4umIALAqp4Rw34wTpTmGQopc+H9XF9A8zuNFST Kasfiep/wiW19akfTdMGul8VWHr7zxiiB9BYWc8XJ8CdyLLzCJKimvAhWSD5TVRw 0nqzAZDH6nJ+i8YpY1HDFIKnaPYbFNPDadSMxDURmyS0zs/l7EbguQaYR8HlRXX5 00cmHz+de/Dj46RhGRmPxfJRtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbZYlva /SBgQY5GRDe7YcBE8F6PMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxZ3q2it7e+5FBn1f/MnV/VmlqLkbduE1YgrGsqNbgSlGfXzIY4tfY i5SCe8/KYt97hxkVu5/k+wwmVhgwA9Fpp5KShrDHGkCZ5KKnEDKjfvA8wDKoCAzj Z3JWWPb+co+XLpik+fEs9gTvmSKcvX76wWuKQjwPom8+1alIWYwyxXvpXpof/wPr 2Nnprr5riYwchyNmGuR3hfNzds7IIN9T8d2Tz3XK3evBiBG/cwHQ8/C7AXAkFIyt 3noGdjN7fWOZ5VW0z2JIkqHvXIxuxFpRI9pye6QxwU/XFCCH36GBKOIhtRcB2QVt mLhDKmsvsl84H2juigmdfHdlvwMvih71 -----END CERTIFICATE-----Generated at Sat Aug 23 15:18:26 2025 by rpki-client