$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: HaA25WoyDR+yuktK9mclls/5ZKxLWHCQf2hW6gFPG0k= Subject key identifier: 7B:B1:08:CE:A4:4A:B8:71:EA:79:35:35:AD:2D:05:87:CD:DC:B2:2C Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 2F Signing time: Sat 19 Jul 2025 07:58:44 +0000 Manifest this update: Sat 19 Jul 2025 07:58:44 +0000 Manifest next update: Sat 26 Jul 2025 07:58:44 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: R10i3E+UIJ/hnkTI8+zRmnrp0wm3TdoFZU/SekYoMN0=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 0td0rYY1sI6ZCcrPq8Ekycn5CSJTuG2FeaNe5fiVsgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:58:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Jul 19 07:58:44 2025 GMT Not After : Jul 26 07:58:44 2025 GMT Subject: CN=687b5034-a903 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e2:51:67:0f:0a:5e:c3:3e:bb:74:8e:69:67: f2:40:83:03:03:78:b7:15:c5:c8:46:b7:11:d5:f2: 72:24:8a:6b:6b:07:b0:54:ac:5e:9c:2c:06:16:af: 54:3b:dd:19:30:0d:0e:86:36:09:97:80:a7:25:53: a1:12:34:4c:03:5c:3a:92:49:3b:78:64:79:34:7b: 3d:9d:5d:8d:2c:6c:a9:5a:0b:cb:dd:c8:90:38:ae: 37:d9:1b:f0:78:cb:fd:94:f8:70:8a:5a:fe:9f:4e: 8f:c4:d3:c7:0c:dc:47:a3:88:3f:c4:00:47:38:c2: 13:38:f7:5f:c4:5f:02:de:2b:c9:cc:ae:6c:05:c7: 1f:29:d4:36:4c:4e:7b:00:e3:26:05:a3:8b:17:41: cd:09:3f:6d:e1:26:81:2d:e7:f7:d6:93:5a:66:ef: 6a:eb:98:f3:3a:28:c4:e7:37:4b:a4:06:3d:cd:cc: ac:99:ef:bc:ad:12:7b:9c:a7:88:f9:87:9f:2c:a8: fc:6f:b6:ba:1c:26:2c:eb:0c:36:d0:35:26:e9:03: d2:5c:46:4c:fc:00:84:19:84:f4:3d:cc:ce:94:e6: 48:59:e6:b5:96:d0:0a:df:69:77:f6:18:ff:40:65: 8e:fb:b6:cb:d3:3c:33:ef:12:63:42:4d:4b:93:23: 5c:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:B1:08:CE:A4:4A:B8:71:EA:79:35:35:AD:2D:05:87:CD:DC:B2:2C X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:75:bc:b1:e6:6b:15:6f:d9:29:b5:c7:67:5f:8a:b8:30:63: d0:50:85:60:75:d3:bd:d8:0d:13:4a:4f:df:2d:46:a3:fa:a9: c5:5a:1a:bd:b2:ac:54:fb:05:53:4e:3b:6b:0b:eb:68:bc:ea: b2:74:fa:8a:64:b6:76:59:8c:3b:93:10:f3:3c:94:1e:12:17: a0:cb:41:a8:8a:cb:3a:e5:9e:c4:6c:d0:50:a8:0b:71:99:f9: 0f:3f:76:0d:4a:6b:03:16:aa:31:7d:32:c4:3f:6a:c6:bb:c0: c7:33:87:a3:ae:89:4b:2d:64:4f:e5:b9:ec:de:1e:75:65:3a: bb:27:d3:de:bb:1b:23:8d:4e:7f:0a:ef:1c:88:3f:68:18:aa: 5f:c2:b6:8d:a0:30:5b:eb:f9:be:1f:d2:f9:dd:77:92:2f:b1: d2:1b:af:b1:94:03:0c:f1:70:b7:84:62:19:ce:71:d3:d8:51: 3b:42:e3:9e:96:4b:97:f9:2b:56:6f:9e:fc:59:b1:b5:07:d9: ab:47:fd:34:46:84:c0:88:6a:ac:6b:70:b6:18:7f:57:01:5e: 73:7b:21:3f:8c:6d:02:a1:ce:13:6b:c4:e9:7b:d0:c0:08:10: c9:09:23:9d:48:47:7b:0e:58:43:97:f5:77:06:f2:2c:ab:a8: 2f:21:0f:d2 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA3MTkwNzU4NDRaFw0yNTA3MjYwNzU4NDRaMBgxFjAUBgNV BAMTDTY4N2I1MDM0LWE5MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf4lFnDwpewz67dI5pZ/JAgwMDeLcVxchGtxHV8nIkimtrB7BUrF6cLAYWr1Q7 3RkwDQ6GNgmXgKclU6ESNEwDXDqSSTt4ZHk0ez2dXY0sbKlaC8vdyJA4rjfZG/B4 y/2U+HCKWv6fTo/E08cM3EejiD/EAEc4whM491/EXwLeK8nMrmwFxx8p1DZMTnsA 4yYFo4sXQc0JP23hJoEt5/fWk1pm72rrmPM6KMTnN0ukBj3NzKyZ77ytEnucp4j5 h58sqPxvtrocJizrDDbQNSbpA9JcRkz8AIQZhPQ9zM6U5khZ5rWW0ArfaXf2GP9A ZY77tsvTPDPvEmNCTUuTI1yzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUe7EIzqRK uHHqeTU1rS0Fh83csiwwHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACp1vLHmaxVv2Sm1x2dfirgwY9BQhWB1073YDRNKT98tRqP6qcVaGr2y rFT7BVNOO2sL62i86rJ0+opktnZZjDuTEPM8lB4SF6DLQaiKyzrlnsRs0FCoC3GZ +Q8/dg1KawMWqjF9MsQ/asa7wMczh6OuiUstZE/luezeHnVlOrsn0967GyONTn8K 7xyIP2gYql/Cto2gMFvr+b4f0vndd5IvsdIbr7GUAwzxcLeEYhnOcdPYUTtC456W S5f5K1ZvnvxZsbUH2atH/TRGhMCIaqxrcLYYf1cBXnN7IT+MbQKhzhNrxOl70MAI EMkJI51IR3sOWEOX9XcG8iyrqC8hD9I= -----END CERTIFICATE-----Generated at Sun Jul 20 07:34:13 2025 by rpki-client