$ rpki-client -vvf rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft File: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft (raw, json) Hash identifier: /ESthf++T+w83h/UchMYEWbJfIX8DDePREW4Pvl2lMs= Subject key identifier: CC:C8:98:99:BA:02:EB:AD:78:28:BF:B0:3F:A7:E0:88:05:34:38:59 Authority key identifier: 74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B Certificate issuer: /CN=A918CE56/serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Certificate serial: 0234 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft Manifest number: 0231 Signing time: Sat 23 Aug 2025 02:07:34 +0000 Manifest this update: Sat 23 Aug 2025 02:07:34 +0000 Manifest next update: Sat 30 Aug 2025 02:07:34 +0000 Files and hashes: 1: dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl (hash: ExJMbBwycy6B07/L/1s5G4F6FCjFewEJvAKZNcUT7Mo=) 2: BEB5E328397011EDA97F630EC4F9AE02.roa (hash: 7kPM/sKB4i8QHNZmGczzwn2v095e3qO6G9fcsHz4xRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 564 (0x234) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CE56, serialNumber=7466073C8D20FF5B0CA88E4A3A3FC81D3C9F679B Validity Not Before: Aug 23 02:07:34 2025 GMT Not After : Aug 30 02:07:34 2025 GMT Subject: CN=68a92266-cd96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:48:fb:3c:55:30:4d:91:84:6c:4a:b9:17: e9:d0:34:81:b3:fb:cb:cf:61:fa:9a:15:5d:6b:dd: fc:d3:f8:c6:e0:4c:72:dd:50:74:5a:61:31:18:58: 4c:2d:43:70:98:eb:6b:3d:10:29:80:13:c5:30:03: 7a:89:1f:9e:5f:ea:c4:bd:10:e6:78:52:66:7f:4c: 44:36:c0:22:30:1c:54:f1:e7:74:be:8f:91:87:23: 6c:bc:b8:c6:56:a2:ac:15:26:67:58:dc:da:5e:72: 22:37:94:d4:d1:7f:53:74:01:e6:c0:10:f5:d1:b5: 27:3e:4e:05:3a:dc:29:54:94:ba:36:19:7f:3c:77: 0a:73:63:13:0b:ca:72:a9:23:2b:5e:89:8c:90:ad: 94:7c:80:66:cf:3d:93:9b:77:cb:7d:05:a9:ce:6e: 37:38:5b:3a:79:b4:1c:74:fe:da:ca:42:d7:94:e9: 31:6e:6c:38:6d:0f:9e:47:ec:88:c4:5a:b1:42:b4: 94:8a:50:c2:6a:fc:69:93:ff:2a:87:20:ba:ee:ea: 5a:44:f2:16:63:55:3f:d4:c6:c8:4c:75:84:cb:f3: f5:23:98:ae:d4:77:f7:31:39:b5:11:f0:cd:b8:2a: dd:d5:3d:64:1d:22:ca:83:6a:50:92:f3:a3:9a:63: 76:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C8:98:99:BA:02:EB:AD:78:28:BF:B0:3F:A7:E0:88:05:34:38:59 X509v3 Authority Key Identifier: keyid:74:66:07:3C:8D:20:FF:5B:0C:A8:8E:4A:3A:3F:C8:1D:3C:9F:67:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CE56/26264AF0396E11EDBFC3120DC4F9AE02/dGYHPI0g_1sMqI5KOj_IHTyfZ5s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:7d:03:0e:49:c0:c3:1d:4d:71:fc:7c:ee:40:13:bc:e5:a4: 3f:d8:eb:51:91:93:52:f4:72:75:19:0e:7b:60:fe:b6:41:04: f5:82:bb:bb:27:11:3b:3d:2d:fb:d7:e0:8e:69:e8:aa:bc:66: 80:81:b3:55:4f:07:aa:13:00:aa:6b:d5:69:64:86:d7:6a:25: 91:cc:b2:95:04:2b:ee:f1:0a:75:0e:56:d1:df:c5:6b:0f:f6: c3:02:0f:03:06:15:f0:a0:0c:8d:01:8b:96:31:71:97:ef:0f: 4b:54:3c:8c:a3:0d:ba:bb:42:bd:b5:73:f1:6a:f8:a4:c4:43: 86:43:68:dd:f9:45:5e:52:ec:84:2d:6d:2a:37:5a:66:f8:e8: b5:b9:ac:c9:ab:2d:bb:db:aa:0f:7a:e0:30:ed:b2:db:05:08: 29:eb:94:1f:e2:64:23:e0:bf:68:74:e9:ab:1f:a5:0b:66:73: 89:4d:3d:73:b9:f6:8a:eb:cf:c9:b3:8b:6a:43:f2:13:8c:70: 60:07:c8:41:d6:67:1d:47:e3:1a:ef:94:e5:f5:5f:8b:2d:00: 7d:26:a2:6e:e7:db:15:e4:47:31:c9:f6:f5:be:89:5a:41:99: 1b:f6:eb:5b:f7:cf:da:ea:96:0c:05:96:0f:c2:0c:8a:35:2c: 24:01:14:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENFNTYxMTAvBgNVBAUTKDc0NjYwNzNDOEQyMEZGNUIwQ0E4OEU0QTNBM0ZDODFE M0M5RjY3OUIwHhcNMjUwODIzMDIwNzM0WhcNMjUwODMwMDIwNzM0WjAYMRYwFAYD VQQDEw02OGE5MjI2Ni1jZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKVI+zxVME2RhGxKuRfp0DSBs/vLz2H6mhVda9380/jG4Exy3VB0WmExGFhM LUNwmOtrPRApgBPFMAN6iR+eX+rEvRDmeFJmf0xENsAiMBxU8ed0vo+RhyNsvLjG VqKsFSZnWNzaXnIiN5TU0X9TdAHmwBD10bUnPk4FOtwpVJS6Nhl/PHcKc2MTC8py qSMrXomMkK2UfIBmzz2Tm3fLfQWpzm43OFs6ebQcdP7aykLXlOkxbmw4bQ+eR+yI xFqxQrSUilDCavxpk/8qhyC67upaRPIWY1U/1MbITHWEy/P1I5iu1Hf3MTm1EfDN uCrd1T1kHSLKg2pQkvOjmmN2PwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzImJm6 AuuteCi/sD+n4IgFNDhZMB8GA1UdIwQYMBaAFHRmBzyNIP9bDKiOSjo/yB08n2eb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0U1Ni8yNjI2NEFGMDM5 NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18xc01xSTVLT2pfSUhUeWZa NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHWUhQSTBnXzFzTXFJNUtPal9JSFR5Zlo1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0U1Ni8yNjI2NEFGMDM5NkUxMUVEQkZDMzEyMERDNEY5QUUwMi9kR1lIUEkwZ18x c01xSTVLT2pfSUhUeWZaNXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdfQMOScDDHU1x/HzuQBO85aQ/2OtRkZNS9HJ1GQ57YP62QQT1gru7 JxE7PS371+COaeiqvGaAgbNVTweqEwCqa9VpZIbXaiWRzLKVBCvu8Qp1DlbR38Vr D/bDAg8DBhXwoAyNAYuWMXGX7w9LVDyMow26u0K9tXPxavikxEOGQ2jd+UVeUuyE LW0qN1pm+Oi1uazJqy2726oPeuAw7bLbBQgp65Qf4mQj4L9odOmrH6ULZnOJTT1z ufaK68/Js4tqQ/ITjHBgB8hB1mcdR+Ma75Tl9V+LLQB9JqJu59sV5Ecxyfb1vola QZkb9utb98/a6pYMBZYPwgyKNSwkARQr -----END CERTIFICATE-----Generated at Sat Aug 23 18:22:34 2025 by rpki-client