$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: zA0x57sGeK6wabqS6qdcQfcH9rbCymvqHRhAoJTaiAw= Subject key identifier: 8A:D9:32:10:E6:12:2B:3B:01:90:15:29:D2:D2:F5:0E:69:97:EB:43 Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: F1 Signing time: Sat 05 Jul 2025 05:32:09 +0000 Manifest this update: Sat 05 Jul 2025 05:32:08 +0000 Manifest next update: Sat 12 Jul 2025 05:32:08 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: kavGgmQ+OOWDMdXMl+VpLB1YWitAPnU8FEJs/gSczZA=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: qmFjn7wAfMqWkF24WNm8IekVR4ecxQdIio3RLzGcoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Jul 5 05:32:08 2025 GMT Not After : Jul 12 05:32:08 2025 GMT Subject: CN=6868b8d8-162d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:9e:ee:ef:27:70:35:96:b1:74:0c:70:4a: 8e:02:29:de:e7:69:57:99:a3:1d:fb:f3:9c:61:b0: 7e:7b:bf:ac:c6:d8:60:68:a1:8e:94:32:77:9f:0e: 5f:7b:31:81:27:b2:ee:2c:4f:e5:23:7d:b6:d4:cd: 35:e9:96:c6:bd:38:45:f2:30:17:9d:90:aa:20:1e: b7:19:81:c0:db:61:96:fc:83:18:cd:84:60:93:2f: 8e:c8:8d:9b:27:ed:0b:c5:7e:e6:0b:48:55:0e:0e: 1d:4d:a7:67:66:fc:7c:ce:1a:ae:67:a2:98:84:a0: 58:63:96:2b:3c:9e:46:1d:77:13:75:38:ab:d5:37: 69:6a:a8:33:d3:fc:47:45:6e:c2:df:c4:e1:ff:a8: 82:1c:50:3b:86:79:09:04:cd:cc:90:6c:5d:04:06: 3c:0b:c4:6a:83:48:53:16:46:a5:15:82:2b:15:9d: d1:d3:59:4e:e6:da:0c:21:a1:a9:99:01:f9:7e:59: 05:63:d8:51:3d:a4:2f:bf:bb:6b:66:ce:44:3c:78: ac:36:51:4e:d2:b0:af:5b:65:48:88:b5:14:c9:8b: 48:c1:77:43:a5:0f:14:26:b0:d9:e3:ef:9f:e4:61: 6a:3f:08:8e:da:61:45:e4:9b:c7:ff:86:e2:c7:6e: 62:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D9:32:10:E6:12:2B:3B:01:90:15:29:D2:D2:F5:0E:69:97:EB:43 X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:03:65:a7:f3:c7:5a:a4:28:58:10:e0:e1:74:0e:a8:4d:ac: 93:84:29:40:66:17:0d:a1:73:a3:e6:5c:6d:9e:11:45:31:bf: 78:3f:04:2f:d1:83:c5:73:d4:e9:d0:da:50:14:68:76:9f:2d: 3c:df:ac:b3:16:5d:1b:a5:7f:34:62:e5:00:e4:63:fc:d9:63: b3:1a:e3:5c:4f:67:fc:39:ad:5c:7b:97:16:48:5e:e6:a1:c0: 28:84:81:09:32:79:3d:53:d4:df:ab:3c:d5:aa:e0:fe:f5:2c: 13:ab:82:8c:3c:16:6b:6b:42:4e:45:1c:31:34:af:84:97:1b: f2:e5:e7:7c:d1:bd:18:3d:e3:4b:79:cc:6b:5e:e7:7f:26:08: 07:49:59:6d:9b:7f:c1:a1:25:63:23:a7:59:ea:8b:cc:2e:f4: 96:4f:5d:f0:93:d4:55:eb:d3:00:86:b6:34:d2:74:a9:77:ff: b7:c4:17:b7:1a:4e:66:7c:fc:8c:d6:b7:42:7d:a3:09:ce:8a: a4:a2:f0:5e:44:e6:c4:14:03:cb:ac:53:d4:52:e3:d6:1b:65: e7:ae:26:d2:92:4d:74:30:e5:f5:17:74:4f:cd:01:17:35:5f: 30:8d:21:5d:0e:0f:41:cf:c0:7c:95:1f:5a:b7:c5:3c:ab:dd: 3d:05:34:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjUwNzA1MDUzMjA4WhcNMjUwNzEyMDUzMjA4WjAYMRYwFAYD VQQDEw02ODY4YjhkOC0xNjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1Se7u8ncDWWsXQMcEqOAine52lXmaMd+/OcYbB+e7+sxthgaKGOlDJ3nw5f ezGBJ7LuLE/lI3221M016ZbGvThF8jAXnZCqIB63GYHA22GW/IMYzYRgky+OyI2b J+0LxX7mC0hVDg4dTadnZvx8zhquZ6KYhKBYY5YrPJ5GHXcTdTir1Tdpaqgz0/xH RW7C38Th/6iCHFA7hnkJBM3MkGxdBAY8C8Rqg0hTFkalFYIrFZ3R01lO5toMIaGp mQH5flkFY9hRPaQvv7trZs5EPHisNlFO0rCvW2VIiLUUyYtIwXdDpQ8UJrDZ4++f 5GFqPwiO2mFF5JvH/4bix25iTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrZMhDm Eis7AZAVKdLS9Q5pl+tDMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5A2Wn88dapChYEODhdA6oTayThClAZhcNoXOj5lxtnhFFMb94PwQv 0YPFc9Tp0NpQFGh2ny0836yzFl0bpX80YuUA5GP82WOzGuNcT2f8Oa1ce5cWSF7m ocAohIEJMnk9U9TfqzzVquD+9SwTq4KMPBZra0JORRwxNK+Elxvy5ed80b0YPeNL ecxrXud/JggHSVltm3/BoSVjI6dZ6ovMLvSWT13wk9RV69MAhrY00nSpd/+3xBe3 Gk5mfPyM1rdCfaMJzoqkovBeRObEFAPLrFPUUuPWG2XnribSkk10MOX1F3RPzQEX NV8wjSFdDg9Bz8B8lR9at8U8q909BTQv -----END CERTIFICATE-----Generated at Sat Jul 5 08:10:04 2025 by rpki-client