$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: I3bftMfEarAre4Qw4BgNuLKcZOc9LxiymlzfAsJrknM= Subject key identifier: CC:A3:FD:E3:CD:E7:B8:6D:F2:C5:51:8A:DE:DE:07:E4:34:9C:14:07 Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 0125 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 0241 Signing time: Sat 23 Aug 2025 04:54:11 +0000 Manifest this update: Sat 23 Aug 2025 04:54:10 +0000 Manifest next update: Sat 30 Aug 2025 04:54:10 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: lmgXtaye020meYZ0fXZvUiqLiaU7sfluC30QFyeR0W8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Aug 23 04:54:10 2025 GMT Not After : Aug 30 04:54:10 2025 GMT Subject: CN=68a94973-d917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3c:88:74:a8:4c:73:fc:f6:31:17:72:5f:6e: 93:f1:f9:84:77:7b:80:41:94:06:86:49:cc:8f:b8: e4:74:26:18:5b:68:49:c0:9c:77:9d:26:5f:14:cd: f4:d0:da:98:9f:cc:5c:4b:c2:94:51:24:fe:ac:ad: 06:ff:ba:db:84:b6:3e:91:02:b8:6c:06:56:f0:00: 5a:17:a3:eb:01:70:92:c0:dc:22:cc:19:e9:48:c0: 72:a9:cb:22:42:a3:4c:cd:7f:f9:a1:a0:93:2b:f6: e8:2a:9b:9f:83:2e:9f:2d:e9:f5:f0:29:ea:19:7d: 90:e9:72:b9:5f:cb:82:bc:7b:cc:a0:01:05:8a:bd: 7a:cc:e6:79:f4:5e:a9:23:44:eb:e6:65:7e:33:c8: 31:04:1f:70:10:d4:23:ae:44:78:b7:79:28:36:0d: 0a:2a:b5:6a:dd:f5:eb:e9:86:02:0e:d4:2b:4a:b4: f2:12:e9:de:fd:36:b5:c3:42:ca:7b:e1:b1:08:90: fc:3e:12:1d:55:a2:b8:fb:e6:ba:a0:ce:4e:cd:1d: fa:93:59:ce:49:fd:d0:04:41:7e:3f:7e:60:96:d9: 3c:c1:49:c5:de:87:3d:bd:7c:ba:4c:94:ff:95:92: dc:17:31:4b:c1:ab:83:0c:dd:3c:8e:db:8d:a1:82: 34:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A3:FD:E3:CD:E7:B8:6D:F2:C5:51:8A:DE:DE:07:E4:34:9C:14:07 X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:df:47:23:e8:4a:90:01:b6:3b:13:6f:91:54:f8:9d:f5:9b: 9a:ef:3c:f6:f1:e8:56:44:c9:31:3b:bf:c9:06:74:bb:d0:a8: 86:a6:70:3d:f6:eb:86:d4:04:56:00:3e:cb:b6:82:3f:dd:3c: 8a:60:8d:65:14:e3:97:63:93:fe:99:a9:d7:49:f6:63:40:c3: 38:b8:bb:35:70:39:a4:2f:a7:eb:3d:39:6e:20:49:d2:c5:82: 44:a1:5e:b2:30:f6:61:ab:32:a1:e6:e4:af:02:d4:6c:42:c8: b5:3b:70:c7:01:a6:aa:7b:28:46:94:b9:32:ad:0a:c0:e2:90: 08:f9:ef:2c:e8:24:09:be:f9:98:e7:8d:4d:de:2b:00:2c:62: 04:8a:0c:47:cb:71:49:7c:d9:6b:71:60:cb:fb:02:1b:59:2a: 82:a1:d4:4f:1e:27:95:0a:8b:17:6e:b9:dc:c5:67:4d:44:9d: fd:59:9a:ad:e6:46:26:bd:8c:16:f0:18:db:11:ff:f8:38:5a: df:9b:67:72:4c:a5:f4:81:3c:24:74:20:4c:70:25:fc:8d:1a: c9:4b:e0:b5:08:87:87:be:78:1f:37:bf:80:8d:6f:cd:09:b9: 13:43:ef:11:1a:cc:2d:0a:69:4d:be:12:ca:a1:a8:5a:94:d2: 93:39:c4:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUwODIzMDQ1NDEwWhcNMjUwODMwMDQ1NDEwWjAYMRYwFAYD VQQDEw02OGE5NDk3My1kOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zyIdKhMc/z2MRdyX26T8fmEd3uAQZQGhknMj7jkdCYYW2hJwJx3nSZfFM30 0NqYn8xcS8KUUST+rK0G/7rbhLY+kQK4bAZW8ABaF6PrAXCSwNwizBnpSMByqcsi QqNMzX/5oaCTK/boKpufgy6fLen18CnqGX2Q6XK5X8uCvHvMoAEFir16zOZ59F6p I0Tr5mV+M8gxBB9wENQjrkR4t3koNg0KKrVq3fXr6YYCDtQrSrTyEune/Ta1w0LK e+GxCJD8PhIdVaK4++a6oM5OzR36k1nOSf3QBEF+P35gltk8wUnF3oc9vXy6TJT/ lZLcFzFLwauDDN08jtuNoYI0XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyj/ePN 57ht8sVRit7eB+Q0nBQHMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR30cj6EqQAbY7E2+RVPid9Zua7zz28ehWRMkxO7/JBnS70KiGpnA9 9uuG1ARWAD7LtoI/3TyKYI1lFOOXY5P+manXSfZjQMM4uLs1cDmkL6frPTluIEnS xYJEoV6yMPZhqzKh5uSvAtRsQsi1O3DHAaaqeyhGlLkyrQrA4pAI+e8s6CQJvvmY 541N3isALGIEigxHy3FJfNlrcWDL+wIbWSqCodRPHieVCosXbrncxWdNRJ39WZqt 5kYmvYwW8BjbEf/4OFrfm2dyTKX0gTwkdCBMcCX8jRrJS+C1CIeHvngfN7+AjW/N CbkTQ+8RGswtCmlNvhLKoahalNKTOcRV -----END CERTIFICATE-----Generated at Sat Aug 23 12:44:11 2025 by rpki-client