$ rpki-client -vvf rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft File: 1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft (raw, json) Hash identifier: ZnHvG7AVTzakhSOXk/ka1dnxudhG0/TtrPNer7O+ItY= Subject key identifier: CB:93:95:E8:CC:0B:3C:9A:22:47:EA:D2:7A:F3:AF:55:8A:5D:89:74 Authority key identifier: D4:39:EE:D6:0D:31:97:09:87:24:74:B9:07:06:63:04:73:B6:DE:5E Certificate issuer: /CN=A911A70E/serialNumber=D439EED60D319709872474B90706630473B6DE5E Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Dnu1g0xlwmHJHS5BwZjBHO23l4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft Manifest number: 01DA Signing time: Mon 21 Jul 2025 02:55:07 +0000 Manifest this update: Mon 21 Jul 2025 02:55:07 +0000 Manifest next update: Mon 28 Jul 2025 02:55:07 +0000 Files and hashes: 1: 1Dnu1g0xlwmHJHS5BwZjBHO23l4.crl (hash: ny/hNnzhYdSZSqI5CoTpoXdSNosePRuomY3Nr8lYCHg=) 2: 5169DA6EA05D11ED9406DE26C4F9AE02.roa (hash: ubMDKoV/0Mf8cskkFN+EzNxMhabm1KL1nBOoaD8bcg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.crl rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Dnu1g0xlwmHJHS5BwZjBHO23l4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:55:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A70E, serialNumber=D439EED60D319709872474B90706630473B6DE5E Validity Not Before: Jul 21 02:55:07 2025 GMT Not After : Jul 28 02:55:07 2025 GMT Subject: CN=687dac0b-9fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e6:63:63:2d:ed:47:12:5c:da:91:d2:18:d5: 6f:6a:90:01:df:d6:af:8e:21:71:b9:cd:92:97:6a: bf:78:21:d2:0c:8a:eb:33:66:32:da:b2:74:5a:b8: 10:57:26:41:6c:8d:52:4e:1d:e6:7a:74:91:5b:3b: a6:61:da:a8:ac:55:bc:a9:0c:17:75:59:4d:e7:6c: 83:a9:17:db:e0:f0:ec:5e:fe:d6:08:98:f8:14:6b: 40:a2:ef:63:ca:b7:54:e7:45:72:1c:fa:c5:38:b2: 0f:3d:e5:f4:aa:e4:5f:a8:1a:c8:f5:43:b2:6b:31: 26:0b:05:f7:96:98:20:b4:f3:11:38:5f:3f:af:d8: e2:dc:86:b0:7b:6b:ad:8f:43:8b:a0:b3:86:25:e8: ac:7c:a4:52:e1:9c:96:2e:3e:63:61:c4:10:36:ae: 10:d4:ed:3d:ae:a4:6a:e4:81:2a:57:df:2b:5d:1c: 3a:14:e8:b5:af:de:f2:7f:01:1b:98:04:c3:36:8b: aa:54:77:91:71:63:16:1e:41:65:b5:c2:9c:63:84: b0:86:87:e7:e7:18:6b:63:ba:5c:53:fd:81:0b:1c: 47:d9:0a:04:ca:0a:f0:cf:b1:70:e3:a2:b2:02:77: 81:c2:95:df:57:c3:4e:36:b4:1b:f5:84:15:da:b7: 01:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:93:95:E8:CC:0B:3C:9A:22:47:EA:D2:7A:F3:AF:55:8A:5D:89:74 X509v3 Authority Key Identifier: keyid:D4:39:EE:D6:0D:31:97:09:87:24:74:B9:07:06:63:04:73:B6:DE:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Dnu1g0xlwmHJHS5BwZjBHO23l4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A70E/00083FAC9D5711ED9F989530C4F9AE02/1Dnu1g0xlwmHJHS5BwZjBHO23l4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:14:65:5d:c1:d6:95:35:b6:8b:90:8d:ae:40:b9:11:bb:c1: 73:7d:c1:97:ae:b2:3b:ee:5b:ce:0a:02:51:66:08:4a:04:65: 23:bf:54:2b:73:98:2d:cb:b7:e6:b3:19:af:0c:1b:4f:e5:b0: 5d:6c:48:d4:1a:53:0c:64:be:74:41:29:a0:30:d9:63:b3:cb: 1f:0d:df:23:31:ba:6c:76:e2:c0:ce:f6:99:5a:31:2a:d0:bf: df:ca:ad:79:1a:eb:ec:55:ec:ad:30:bd:d7:25:33:1e:66:d7: 31:b0:52:c4:05:81:63:4c:36:a0:d3:f5:21:26:4e:9c:af:2f: a7:95:dc:73:6a:ed:e6:a6:7c:3c:31:d1:c8:84:10:6e:bc:83: 82:5c:a1:d2:fd:f7:8b:9b:ba:12:a2:7f:b1:37:24:ef:2b:6c: 7a:6c:1e:95:de:90:67:86:a0:29:e4:a4:7a:18:0e:3f:78:24: 29:4e:1b:a2:d2:a3:a0:7f:81:3c:dc:85:ae:9f:8d:7e:c6:f2: c9:5d:d9:8c:7a:7c:b5:e2:60:00:f8:8e:81:17:de:0b:73:f8: ef:0d:e0:45:d6:e0:ba:86:18:09:26:d3:a0:78:2f:10:9f:df: fd:f6:a5:c1:c7:67:4b:2e:bb:fc:6e:fa:5b:5a:07:28:09:1f: 59:0a:0f:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUE3MEUxMTAvBgNVBAUTKEQ0MzlFRUQ2MEQzMTk3MDk4NzI0NzRCOTA3MDY2MzA0 NzNCNkRFNUUwHhcNMjUwNzIxMDI1NTA3WhcNMjUwNzI4MDI1NTA3WjAYMRYwFAYD VQQDEw02ODdkYWMwYi05ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+ZjYy3tRxJc2pHSGNVvapAB39avjiFxuc2Sl2q/eCHSDIrrM2Yy2rJ0WrgQ VyZBbI1STh3menSRWzumYdqorFW8qQwXdVlN52yDqRfb4PDsXv7WCJj4FGtAou9j yrdU50VyHPrFOLIPPeX0quRfqBrI9UOyazEmCwX3lpggtPMROF8/r9ji3Iawe2ut j0OLoLOGJeisfKRS4ZyWLj5jYcQQNq4Q1O09rqRq5IEqV98rXRw6FOi1r97yfwEb mATDNouqVHeRcWMWHkFltcKcY4Swhofn5xhrY7pcU/2BCxxH2QoEygrwz7Fw46Ky AneBwpXfV8NONrQb9YQV2rcBMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMuTlejM CzyaIkfq0nrzr1WKXYl0MB8GA1UdIwQYMBaAFNQ57tYNMZcJhyR0uQcGYwRztt5e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTcwRS8wMDA4M0ZBQzlE NTcxMUVEOUY5ODk1MzBDNEY5QUUwMi8xRG51MWcweGx3bUhKSFM1QndaakJITzIz bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFEbnUxZzB4bHdtSEpIUzVCd1pqQkhPMjNsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTcwRS8wMDA4M0ZBQzlENTcxMUVEOUY5ODk1MzBDNEY5QUUwMi8xRG51MWcweGx3 bUhKSFM1QndaakJITzIzbDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnFGVdwdaVNbaLkI2uQLkRu8FzfcGXrrI77lvOCgJRZghKBGUjv1Qr c5gty7fmsxmvDBtP5bBdbEjUGlMMZL50QSmgMNljs8sfDd8jMbpsduLAzvaZWjEq 0L/fyq15GuvsVeytML3XJTMeZtcxsFLEBYFjTDag0/UhJk6cry+nldxzau3mpnw8 MdHIhBBuvIOCXKHS/feLm7oSon+xNyTvK2x6bB6V3pBnhqAp5KR6GA4/eCQpThui 0qOgf4E83IWun41+xvLJXdmMeny14mAA+I6BF94Lc/jvDeBF1uC6hhgJJtOgeC8Q n9/99qXBx2dLLrv8bvpbWgcoCR9ZCg+C -----END CERTIFICATE-----Generated at Mon Jul 21 05:45:20 2025 by rpki-client