$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: 1XEnsV8AFswBZ8gsRm8uXc1yw6YZpRCR7Adg0qIWIM0= Subject key identifier: FD:2F:84:E3:D4:45:F9:13:26:22:6D:43:E3:DE:BA:D8:E3:30:DE:86 Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 010A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 020B Signing time: Thu 03 Jul 2025 05:14:12 +0000 Manifest this update: Thu 03 Jul 2025 05:14:12 +0000 Manifest next update: Thu 10 Jul 2025 05:14:12 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: UA6hqYw/kF2vzimTnNv0YkcaCHmLsJJRrn3y86L2ZO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 266 (0x10a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Jul 3 05:14:12 2025 GMT Not After : Jul 10 05:14:12 2025 GMT Subject: CN=686611a4-29e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:42:e0:e7:59:6e:28:16:da:4f:b1:4d:e9:37: 27:b2:e4:6f:c8:8b:8d:50:a4:76:41:ce:88:8a:05: 7e:12:e3:91:99:81:a8:13:35:fd:7e:a5:6d:38:3d: 15:9c:15:1c:b4:4d:20:24:41:f1:6f:98:0e:c3:1e: 39:82:c7:82:20:fa:5f:d7:c3:ee:8d:a3:18:62:77: b5:a7:8a:1b:53:3e:f4:7b:9f:82:81:cb:de:15:7f: 7e:72:7d:bf:c5:fb:9a:5c:1e:60:20:5e:e6:ce:5d: d5:96:75:fe:e2:36:6b:94:29:e0:23:85:6c:2c:b7: 0a:6f:2d:1f:91:99:ba:ae:af:ca:fb:70:0d:44:86: 99:b6:90:c5:35:d8:d6:a3:45:c5:9f:7e:98:3e:e2: ca:26:9e:11:87:11:bf:97:0c:bf:d6:5d:c5:dd:93: 14:21:f9:f4:e4:5e:95:49:40:68:7e:20:cf:03:81: 49:bb:c3:fd:ae:4f:a9:37:7e:c9:0b:fb:8b:02:24: e8:33:0e:b1:ce:5a:ae:24:58:69:46:6c:f0:a8:23: 50:f6:85:0b:33:19:3e:55:4b:a0:6b:99:d0:c1:62: 48:5c:3c:00:55:c6:1d:9f:ac:4e:63:3e:d6:74:a9: 1e:48:b8:2c:ac:01:6a:53:1d:e8:ff:d4:d6:22:54: 0f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2F:84:E3:D4:45:F9:13:26:22:6D:43:E3:DE:BA:D8:E3:30:DE:86 X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:22:9e:07:25:d4:bb:8d:39:f6:f3:5d:43:2b:65:be:77:4b: 07:49:37:fd:79:b1:74:47:ab:30:0f:e2:f2:04:d3:4b:cf:32: 84:de:b3:e7:de:cb:43:56:ea:88:8d:14:df:ee:0f:92:93:29: 9f:7d:71:ee:65:64:4f:f9:8a:94:f4:48:fe:6f:cb:74:eb:e1: 53:23:cd:7f:b6:5c:93:86:18:6a:23:2d:7a:a8:13:fd:47:41: 6d:4a:5d:79:e0:f2:f5:66:64:b5:46:d3:9a:87:f5:1f:f1:0b: 67:bb:e4:0b:4b:52:64:72:48:c6:2c:7b:96:82:03:bc:90:84: 9f:b4:5a:d0:00:fd:e7:d3:fa:cd:16:57:4f:c2:8c:17:2c:7b: d2:d8:b7:08:c3:16:50:eb:80:fb:1e:7e:8d:27:26:70:13:c0: 41:48:51:3b:4f:a4:26:d8:77:1f:2a:93:62:ab:59:dc:da:ce: dc:6f:23:b3:fe:83:70:fe:74:a7:83:26:82:3c:42:a6:a8:e2: 2c:a0:16:54:03:49:c8:f3:b1:93:1f:f5:68:f3:0d:b7:ce:8e: 7a:70:76:64:4f:30:8f:d6:84:56:aa:da:f0:81:93:bd:2e:27: be:d3:53:9f:39:5b:e8:c3:e9:3c:04:7a:ad:9a:ae:d0:1f:fe: 87:43:10:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUwNzAzMDUxNDEyWhcNMjUwNzEwMDUxNDEyWjAYMRYwFAYD VQQDEw02ODY2MTFhNC0yOWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokLg51luKBbaT7FN6TcnsuRvyIuNUKR2Qc6IigV+EuORmYGoEzX9fqVtOD0V nBUctE0gJEHxb5gOwx45gseCIPpf18PujaMYYne1p4obUz70e5+CgcveFX9+cn2/ xfuaXB5gIF7mzl3VlnX+4jZrlCngI4VsLLcKby0fkZm6rq/K+3ANRIaZtpDFNdjW o0XFn36YPuLKJp4RhxG/lwy/1l3F3ZMUIfn05F6VSUBofiDPA4FJu8P9rk+pN37J C/uLAiToMw6xzlquJFhpRmzwqCNQ9oULMxk+VUuga5nQwWJIXDwAVcYdn6xOYz7W dKkeSLgsrAFqUx3o/9TWIlQP6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP0vhOPU RfkTJiJtQ+PeutjjMN6GMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArIp4HJdS7jTn2811DK2W+d0sHSTf9ebF0R6swD+LyBNNLzzKE3rPn 3stDVuqIjRTf7g+SkymffXHuZWRP+YqU9Ej+b8t06+FTI81/tlyThhhqIy16qBP9 R0FtSl154PL1ZmS1RtOah/Uf8Qtnu+QLS1JkckjGLHuWggO8kISftFrQAP3n0/rN FldPwowXLHvS2LcIwxZQ64D7Hn6NJyZwE8BBSFE7T6Qm2HcfKpNiq1nc2s7cbyOz /oNw/nSngyaCPEKmqOIsoBZUA0nI87GTH/Vo8w23zo56cHZkTzCP1oRWqtrwgZO9 Lie+01OfOVvow+k8BHqtmq7QH/6HQxAz -----END CERTIFICATE-----Generated at Thu Jul 3 20:35:21 2025 by rpki-client