$ rpki-client -vvf rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft File: DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft (raw, json) Hash identifier: uM4zCKgzBJjamandNprccnQNgsg1538qrbbWO4tseOU= Subject key identifier: 11:B5:2E:C5:12:19:3A:B6:47:11:C3:A4:65:D5:32:F4:5B:E9:70:8B Authority key identifier: 0C:85:59:D2:33:DB:FB:AF:BD:10:32:22:99:85:DF:3D:F9:13:48:FC Certificate issuer: /CN=A9147BCF/serialNumber=0C8559D233DBFBAFBD1032229985DF3DF91348FC Certificate serial: 51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft Manifest number: 50 Signing time: Sat 19 Jul 2025 07:31:27 +0000 Manifest this update: Sat 19 Jul 2025 07:31:27 +0000 Manifest next update: Sat 26 Jul 2025 07:31:27 +0000 Files and hashes: 1: DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl (hash: /lkfrx36Ezp4f9nfdyrjefJyS1qtQhWwcojDRRuuH9w=) 2: A7B64E90EA7311EF83DF9312C4F9AE02.roa (hash: x02iW5sBV6XQ3si6w5qxABkxIfONNKf7NHA5P8huw4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:31:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147BCF, serialNumber=0C8559D233DBFBAFBD1032229985DF3DF91348FC Validity Not Before: Jul 19 07:31:27 2025 GMT Not After : Jul 26 07:31:27 2025 GMT Subject: CN=687b49cf-fe76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b4:5e:57:bc:b8:c2:38:4c:00:0b:ff:4f:b8: a1:4b:d2:f0:92:21:0d:7e:ad:08:16:ea:f3:56:b7: 00:e5:f8:1a:10:c2:f5:cf:39:cf:11:b8:79:80:59: 59:5c:66:fe:30:b9:e3:f0:7b:32:6f:92:d4:e3:de: ee:15:a9:55:69:27:9a:af:10:50:dc:d9:43:fc:83: 46:69:21:7f:55:50:22:be:74:d0:68:1b:eb:02:d9: eb:3b:98:3d:e9:8b:84:34:04:54:1d:8a:86:a2:91: 07:76:c4:dd:36:58:68:af:53:44:e8:f8:14:3b:db: 32:cf:a6:52:32:a8:a8:26:15:21:b9:f5:9c:ea:5e: 33:09:d6:e6:81:36:7d:5a:7a:f3:2c:ab:17:dc:28: 4b:ea:69:82:eb:72:d5:1a:84:75:92:a3:d9:62:bb: dd:11:51:e2:e4:a5:dc:d5:5a:ce:46:cc:56:cb:af: 2a:97:d1:27:7c:31:09:6b:4b:ef:29:b0:a2:13:c0: ce:c0:15:43:35:6c:f6:a7:cf:28:47:91:38:e4:29: 68:53:6c:fa:39:26:e9:58:0d:2a:40:ad:da:7d:a3: 5a:4b:43:85:b1:63:5c:57:42:f6:45:d3:2a:18:aa: 29:0d:95:5c:d8:3d:f3:21:8b:e8:5c:9d:28:dc:e3: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:B5:2E:C5:12:19:3A:B6:47:11:C3:A4:65:D5:32:F4:5B:E9:70:8B X509v3 Authority Key Identifier: keyid:0C:85:59:D2:33:DB:FB:AF:BD:10:32:22:99:85:DF:3D:F9:13:48:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DIVZ0jPb-6-9EDIimYXfPfkTSPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147BCF/5E78B614EA7311EFAC8BC911C4F9AE02/DIVZ0jPb-6-9EDIimYXfPfkTSPw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:da:ec:77:cb:4b:59:19:b9:c8:a9:db:bb:9f:0c:18:85:2e: af:82:c4:ce:9e:23:39:b3:47:f1:ff:98:d9:61:e8:ee:8e:35: a8:1b:73:88:29:cd:8d:45:3a:3a:c1:46:fb:d3:16:7e:b3:59: 4e:8d:36:44:a9:a6:38:8e:43:df:16:f1:fc:e4:09:fa:0d:97: 3c:2a:cd:f9:db:c7:52:d3:f5:4b:8f:4d:fd:5f:bb:f8:05:55: df:45:5b:34:02:07:87:54:ce:a5:99:fe:51:c5:8e:22:b8:38: 1c:6a:f4:a3:c3:ea:7f:cf:20:a0:98:b3:1b:50:4b:21:cd:b2: ee:8f:ab:2c:c4:0b:e2:c5:ed:ee:86:f3:02:5d:6f:3c:51:63: 44:b7:a7:4c:9f:f4:49:a3:d0:a5:53:de:75:b4:49:fe:cb:1d: 73:c8:61:45:dd:76:6e:ff:94:23:84:a5:a7:5a:f2:cc:92:f8: 4a:57:99:d3:13:cb:6e:fd:63:32:14:31:a2:f1:67:f4:45:23: b7:25:f7:ad:95:48:cf:10:ac:e8:e1:bc:2e:95:1d:e7:57:88: 1a:f7:bb:71:d6:55:72:8a:3e:ab:b3:32:75:c1:54:11:db:a7: eb:40:ca:86:d4:bc:96:ad:51:67:a5:35:4c:29:d4:59:9e:2a: e3:dc:b3:d0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0JDRjExMC8GA1UEBRMoMEM4NTU5RDIzM0RCRkJBRkJEMTAzMjIyOTk4NURGM0RG OTEzNDhGQzAeFw0yNTA3MTkwNzMxMjdaFw0yNTA3MjYwNzMxMjdaMBgxFjAUBgNV BAMTDTY4N2I0OWNmLWZlNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjtF5XvLjCOEwAC/9PuKFL0vCSIQ1+rQgW6vNWtwDl+BoQwvXPOc8RuHmAWVlc Zv4wuePwezJvktTj3u4VqVVpJ5qvEFDc2UP8g0ZpIX9VUCK+dNBoG+sC2es7mD3p i4Q0BFQdioaikQd2xN02WGivU0To+BQ72zLPplIyqKgmFSG59ZzqXjMJ1uaBNn1a evMsqxfcKEvqaYLrctUahHWSo9liu90RUeLkpdzVWs5GzFbLryqX0Sd8MQlrS+8p sKITwM7AFUM1bPanzyhHkTjkKWhTbPo5JulYDSpArdp9o1pLQ4WxY1xXQvZF0yoY qikNlVzYPfMhi+hcnSjc408RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUEbUuxRIZ OrZHEcOkZdUy9FvpcIswHwYDVR0jBBgwFoAUDIVZ0jPb+6+9EDIimYXfPfkTSPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3QkNGLzVFNzhCNjE0RUE3 MzExRUZBQzhCQzkxMUM0RjlBRTAyL0RJVlowalBiLTYtOUVESWltWVhmUGZrVFNQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRElWWjBqUGItNi05RURJaW1ZWGZQZmtUU1B3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 QkNGLzVFNzhCNjE0RUE3MzExRUZBQzhCQzkxMUM0RjlBRTAyL0RJVlowalBiLTYt OUVESWltWVhmUGZrVFNQdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL3a7HfLS1kZucip27ufDBiFLq+CxM6eIzmzR/H/mNlh6O6ONagbc4gp zY1FOjrBRvvTFn6zWU6NNkSppjiOQ98W8fzkCfoNlzwqzfnbx1LT9UuPTf1fu/gF Vd9FWzQCB4dUzqWZ/lHFjiK4OBxq9KPD6n/PIKCYsxtQSyHNsu6PqyzEC+LF7e6G 8wJdbzxRY0S3p0yf9Emj0KVT3nW0Sf7LHXPIYUXddm7/lCOEpada8syS+EpXmdMT y279YzIUMaLxZ/RFI7cl962VSM8QrOjhvC6VHedXiBr3u3HWVXKKPquzMnXBVBHb p+tAyobUvJatUWelNUwp1FmeKuPcs9A= -----END CERTIFICATE-----Generated at Sun Jul 20 06:44:28 2025 by rpki-client