$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: EjSqlSdcnFaMF8wb5T6zsT85mMBkuARhC0G6gx7Uaxc= Subject key identifier: 9F:D2:64:E0:54:BF:FC:53:4A:5C:BB:75:81:A0:F5:E2:04:54:03:D0 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: A9 Signing time: Sat 05 Jul 2025 06:22:59 +0000 Manifest this update: Sat 05 Jul 2025 06:22:58 +0000 Manifest next update: Sat 12 Jul 2025 06:22:58 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: O0if+2JX0j70e48AvZkjhElwNabCQJOEMhJ9rf2uXSs=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 171 (0xab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Jul 5 06:22:58 2025 GMT Not After : Jul 12 06:22:58 2025 GMT Subject: CN=6868c4c2-a94e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:a8:c2:ae:36:4b:c5:65:ae:5e:40:0f:22: 56:70:52:13:fd:1a:cd:48:46:55:76:df:db:4c:c2: 62:3c:b7:7f:84:6a:a5:50:86:1d:96:4e:26:89:66: 0c:18:16:96:4b:80:de:ef:a9:98:8c:e2:76:fc:2d: cb:a0:7e:e8:2e:7c:81:52:63:28:dc:98:1b:5f:3e: 58:57:0a:c8:f0:16:96:2f:fd:88:e9:8f:7d:6f:77: 64:00:bc:9d:7d:df:8c:3d:e1:98:e3:61:8a:5d:24: 44:c6:b0:c6:52:d3:3e:e4:ad:91:35:7e:d2:60:60: 2a:ed:cc:f3:53:bc:74:77:2a:2d:66:62:03:36:bf: 47:81:02:63:c7:1a:5c:1e:e7:fd:75:81:fc:eb:05: a3:db:ad:b3:ad:49:83:67:b2:a9:99:da:a8:1f:ff: 1e:b3:9f:b3:b6:83:40:b2:53:df:9f:d5:37:f0:0f: 42:8e:58:5f:1f:07:58:ab:34:83:6d:7e:18:2a:71: 5b:a0:a7:4d:fd:77:5a:69:32:90:e9:20:2c:fa:0a: 57:2e:9d:a1:56:59:85:18:e2:1f:cb:51:03:1f:5e: ee:0a:d6:b3:63:41:53:69:bb:40:98:c7:50:41:d5: fa:ec:ef:ee:8b:2c:35:bc:4c:98:4d:64:53:c6:15: ef:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:D2:64:E0:54:BF:FC:53:4A:5C:BB:75:81:A0:F5:E2:04:54:03:D0 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:84:2c:09:fb:05:33:0b:16:7b:12:d0:17:bd:f0:6a:93:b4: c2:ff:f0:62:5a:e3:42:d9:42:03:4b:89:17:97:38:85:dc:71: e6:75:f2:31:d2:1e:47:e7:da:dc:ab:66:28:e7:47:f5:1a:06: 96:14:b8:62:54:08:5d:13:95:88:75:94:11:48:78:b3:56:b1: 0a:2f:12:40:ed:7c:8f:aa:fd:fc:d5:a0:27:7c:d7:1f:cd:11: 9e:06:06:d2:be:7a:67:63:8d:af:68:2d:26:d1:04:a8:1b:a0: a3:10:f7:fc:f4:80:83:ed:82:95:62:43:c2:12:c9:2e:d1:aa: 07:1f:e7:9d:54:b8:e9:b2:a2:80:3d:97:21:94:cb:92:dd:8f: ab:5f:78:fe:75:34:44:5b:7b:15:dd:00:d6:8c:7c:71:6a:19: 9b:7c:07:5d:f5:83:51:23:50:18:b4:62:61:b1:f3:65:fb:2c: 84:3b:b6:9a:13:50:51:a1:a5:06:c2:10:47:8a:5d:13:9a:7d: c8:8c:c7:f5:2d:5d:d3:3f:05:e7:0b:09:c8:d9:e0:d9:5d:90: 0e:75:c1:0c:f2:be:f9:6d:81:c3:8d:bf:62:d1:40:60:cd:f0: 63:82:88:98:53:dc:13:2c:b2:56:df:d9:f0:eb:fd:70:06:71: 75:fc:0a:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUwNzA1MDYyMjU4WhcNMjUwNzEyMDYyMjU4WjAYMRYwFAYD VQQDEw02ODY4YzRjMi1hOTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2Wowq42S8Vlrl5ADyJWcFIT/RrNSEZVdt/bTMJiPLd/hGqlUIYdlk4miWYM GBaWS4De76mYjOJ2/C3LoH7oLnyBUmMo3JgbXz5YVwrI8BaWL/2I6Y99b3dkALyd fd+MPeGY42GKXSRExrDGUtM+5K2RNX7SYGAq7czzU7x0dyotZmIDNr9HgQJjxxpc Huf9dYH86wWj262zrUmDZ7KpmdqoH/8es5+ztoNAslPfn9U38A9CjlhfHwdYqzSD bX4YKnFboKdN/XdaaTKQ6SAs+gpXLp2hVlmFGOIfy1EDH17uCtazY0FTabtAmMdQ QdX67O/uiyw1vEyYTWRTxhXvGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/SZOBU v/xTSly7dYGg9eIEVAPQMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCohCwJ+wUzCxZ7EtAXvfBqk7TC//BiWuNC2UIDS4kXlziF3HHmdfIx 0h5H59rcq2Yo50f1GgaWFLhiVAhdE5WIdZQRSHizVrEKLxJA7XyPqv381aAnfNcf zRGeBgbSvnpnY42vaC0m0QSoG6CjEPf89ICD7YKVYkPCEsku0aoHH+edVLjpsqKA PZchlMuS3Y+rX3j+dTREW3sV3QDWjHxxahmbfAdd9YNRI1AYtGJhsfNl+yyEO7aa E1BRoaUGwhBHil0Tmn3IjMf1LV3TPwXnCwnI2eDZXZAOdcEM8r75bYHDjb9i0UBg zfBjgoiYU9wTLLJW39nw6/1wBnF1/ArN -----END CERTIFICATE-----Generated at Sat Jul 5 21:19:20 2025 by rpki-client