$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft File: DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft (raw, json) Hash identifier: BCJG9I2PAu10TBHsftnm/1ZedDUDn/Y0tvBy/SaT3EE= Subject key identifier: 96:92:CC:B0:B8:48:55:2C:A0:D4:CC:AF:F1:73:C6:DB:41:F3:5B:8C Authority key identifier: 0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 Certificate issuer: /CN=A91AA96A/serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Certificate serial: AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft Manifest number: A4 Signing time: Tue 01 Jul 2025 07:02:46 +0000 Manifest this update: Tue 01 Jul 2025 07:02:46 +0000 Manifest next update: Tue 08 Jul 2025 07:02:46 +0000 Files and hashes: 1: DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl (hash: vNNf+i0ci2EYrEZF+3KLJZlmzlBhcIKyJ4kAJgaFoBw=) 2: 6E7D3C16816811EF99DD7787C4F9AE02.roa (hash: GJjFHlhUrw3PK9n6h+pqP/cBSWFV8op0nahH1r+sT6k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:02:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA96A, serialNumber=0CDD505832EA8C9A4D23B10637201D79429564C0 Validity Not Before: Jul 1 07:02:46 2025 GMT Not After : Jul 8 07:02:46 2025 GMT Subject: CN=68638816-819a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:00:7a:a7:be:cf:83:f6:b3:c8:bb:a0:5f:18: ab:52:e1:37:d2:f7:de:11:94:24:f3:45:18:4e:7f: bd:ae:63:e4:a6:a1:54:d0:bc:4e:b8:42:ee:1e:c3: e2:70:c8:93:54:9c:f9:7e:f3:df:c0:e8:b0:c4:90: cf:8b:2f:a9:f4:20:28:ca:15:01:30:46:2a:e0:f2: 6e:4b:d5:22:7b:32:91:9a:27:bc:18:64:4e:91:39: 2e:29:25:4d:70:f4:6d:ec:bb:10:ff:b6:fe:36:4d: 72:93:88:18:26:3f:26:ea:c4:0f:32:8d:5d:c7:de: e8:ba:d3:ba:91:b1:e1:5c:51:1f:5a:5a:6c:18:ce: f0:07:57:b0:70:64:07:6e:d8:df:38:a0:37:88:35: 16:a6:6b:44:0d:43:f1:fa:96:db:de:7b:ec:b0:d8: 6c:9d:fd:0c:0d:92:99:e7:f9:fc:38:5c:6d:52:ad: 83:f9:0c:9d:9c:02:2b:d1:35:0f:02:32:51:d4:69: 66:07:a2:0d:0e:d1:97:d6:50:5e:82:a4:e4:89:ca: ab:88:5c:e1:07:59:96:71:7b:01:f4:66:62:f1:dc: 88:17:c5:e0:25:c4:81:83:46:fc:02:2a:da:d6:4a: 0a:c5:c3:67:73:e1:74:01:64:97:b3:27:ca:d4:72: c9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:92:CC:B0:B8:48:55:2C:A0:D4:CC:AF:F1:73:C6:DB:41:F3:5B:8C X509v3 Authority Key Identifier: keyid:0C:DD:50:58:32:EA:8C:9A:4D:23:B1:06:37:20:1D:79:42:95:64:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DN1QWDLqjJpNI7EGNyAdeUKVZMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA96A/D4C168826A6E11EF84F98E35C4F9AE02/DN1QWDLqjJpNI7EGNyAdeUKVZMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:70:13:29:e3:2c:1e:a4:ba:2b:d8:d6:4c:b8:69:78:fe:c8: 62:a9:03:5f:71:f6:f1:14:0e:df:e3:2a:1e:38:d0:0b:b8:ed: 93:60:68:51:1e:a4:ad:bc:04:bc:fb:a3:8a:76:af:34:39:cb: a7:93:43:0e:73:f7:42:b8:67:9e:5e:86:2d:c2:4a:e7:74:0f: 8c:f4:cd:ec:98:4c:d3:26:ba:64:09:aa:ba:0f:2e:a2:80:ac: c3:dd:e4:3a:5d:91:99:c7:34:d0:17:4c:77:6c:75:8f:12:98: d3:e8:b0:0b:5e:4c:39:f9:7c:54:80:0f:be:50:36:a8:ce:2e: 5e:8a:40:17:9b:5b:c5:57:86:77:a5:f9:c0:28:1b:a0:cc:9a: 0e:d4:32:7b:39:0b:47:b8:32:10:6c:48:af:fa:ac:8c:59:e2: 8a:d4:b4:d1:4c:d0:62:6c:08:3f:7c:b1:63:d9:30:6f:d3:fd: bc:d4:c7:51:b4:42:a1:6c:73:cd:9a:6e:f1:25:eb:16:19:eb: 41:56:17:44:3f:11:ff:47:f5:6e:66:1a:cc:cb:64:4b:86:52: a2:89:36:a7:8a:67:1f:43:90:af:b9:e8:55:7c:93:bf:f4:60: a7:2d:75:e5:f5:14:71:6c:6a:51:01:f5:88:ec:99:34:6f:fc: db:95:42:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE5NkExMTAvBgNVBAUTKDBDREQ1MDU4MzJFQThDOUE0RDIzQjEwNjM3MjAxRDc5 NDI5NTY0QzAwHhcNMjUwNzAxMDcwMjQ2WhcNMjUwNzA4MDcwMjQ2WjAYMRYwFAYD VQQDEw02ODYzODgxNi04MTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQB6p77Pg/azyLugXxirUuE30vfeEZQk80UYTn+9rmPkpqFU0LxOuELuHsPi cMiTVJz5fvPfwOiwxJDPiy+p9CAoyhUBMEYq4PJuS9UiezKRmie8GGROkTkuKSVN cPRt7LsQ/7b+Nk1yk4gYJj8m6sQPMo1dx97outO6kbHhXFEfWlpsGM7wB1ewcGQH btjfOKA3iDUWpmtEDUPx+pbb3nvssNhsnf0MDZKZ5/n8OFxtUq2D+QydnAIr0TUP AjJR1GlmB6INDtGX1lBegqTkicqriFzhB1mWcXsB9GZi8dyIF8XgJcSBg0b8Aira 1koKxcNnc+F0AWSXsyfK1HLJQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJaSzLC4 SFUsoNTMr/FzxttB81uMMB8GA1UdIwQYMBaAFAzdUFgy6oyaTSOxBjcgHXlClWTA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTk2QS9ENEMxNjg4MjZB NkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpKcE5JN0VHTnlBZGVVS1Za TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROMVFXRExxakpwTkk3RUdOeUFkZVVLVlpNQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTk2QS9ENEMxNjg4MjZBNkUxMUVGODRGOThFMzVDNEY5QUUwMi9ETjFRV0RMcWpK cE5JN0VHTnlBZGVVS1ZaTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXcBMp4ywepLor2NZMuGl4/shiqQNfcfbxFA7f4yoeONALuO2TYGhR HqStvAS8+6OKdq80Ocunk0MOc/dCuGeeXoYtwkrndA+M9M3smEzTJrpkCaq6Dy6i gKzD3eQ6XZGZxzTQF0x3bHWPEpjT6LALXkw5+XxUgA++UDaozi5eikAXm1vFV4Z3 pfnAKBugzJoO1DJ7OQtHuDIQbEiv+qyMWeKK1LTRTNBibAg/fLFj2TBv0/281MdR tEKhbHPNmm7xJesWGetBVhdEPxH/R/VuZhrMy2RLhlKiiTanimcfQ5CvuehVfJO/ 9GCnLXXl9RRxbGpRAfWI7Jk0b/zblUJA -----END CERTIFICATE-----Generated at Wed Jul 2 06:24:37 2025 by rpki-client