$ rpki-client -vvf rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft File: DihwYx-g7-rpRTHbDiYEXKO8gZs.mft (raw, json) Hash identifier: oMcJQxfo8tbuTAYbYZFEE4sCD56kCoMGFdp2SXyin0A= Subject key identifier: 34:1C:1E:6C:6D:5E:AA:AC:30:21:C9:FD:C7:E0:4A:A3:84:54:02:2E Authority key identifier: 0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B Certificate issuer: /CN=A9162DD6/serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Certificate serial: 1062 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft Manifest number: 104D Signing time: Fri 18 Jul 2025 17:34:32 +0000 Manifest this update: Fri 18 Jul 2025 17:34:31 +0000 Manifest next update: Fri 25 Jul 2025 17:34:31 +0000 Files and hashes: 1: DihwYx-g7-rpRTHbDiYEXKO8gZs.crl (hash: uMRHx/lWpqEhIZ5StYrvKijRoGlTmuX9EUJBHHog1ps=) 2: D97D5F6A3FEB11E9882E830FC4F9AE02.roa (hash: RQ9qhLaDGLXZG82auuWSpjUE055Bze4DBt1aGvXRSH4=) 3: DA3261943FEB11E9882E830FC4F9AE02.roa (hash: n6tSSqkwRgmQdmtW0qPK7myv2yYZQso++P1D8QIVPvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:34:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4194 (0x1062) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162DD6, serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Validity Not Before: Jul 18 17:34:31 2025 GMT Not After : Jul 25 17:34:31 2025 GMT Subject: CN=687a85a8-c6f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:9b:f5:8e:5d:ce:e5:5b:ee:04:ed:86:3d:a4: 74:5b:1f:6a:d5:3e:b4:07:10:8f:02:17:60:06:c6: d4:3a:08:06:60:3c:21:23:09:13:91:98:5d:ef:71: 67:9f:ca:7e:31:d2:44:5f:7b:66:cc:d2:98:a4:13: e3:f5:e2:d0:6e:4e:12:04:1e:4f:f1:71:44:67:75: fb:22:78:e4:64:8e:b2:e8:45:a0:51:cb:05:32:7b: 7b:2a:07:cb:f0:28:b7:0c:ab:99:d8:32:34:4d:18: d0:ba:32:1c:05:c1:da:b3:1a:2d:28:36:19:d2:89: b6:f6:97:7f:3f:9b:2e:b1:72:af:ae:8a:c3:b3:f0: 3f:4d:74:fc:de:ab:8c:aa:77:97:ae:b1:b0:6d:da: 4f:eb:ce:69:0f:eb:14:0d:98:4e:f4:ad:f9:89:dc: e1:8c:52:fe:61:6c:f6:e2:9a:69:98:68:18:97:d6: b7:a8:cc:65:02:47:3c:86:01:67:d3:cd:55:15:7c: 28:d7:f0:44:20:3c:ad:fe:a0:0c:d2:73:cc:d7:15: f4:2a:fc:77:d7:ca:c0:ef:2c:8f:bb:5c:97:cf:0f: 50:4a:bf:55:ee:b4:c3:0f:ed:bc:ee:82:91:a1:15: d4:fb:64:44:3d:33:2c:05:ff:87:cf:18:90:a0:79: b5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:1C:1E:6C:6D:5E:AA:AC:30:21:C9:FD:C7:E0:4A:A3:84:54:02:2E X509v3 Authority Key Identifier: keyid:0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:5f:84:32:34:96:f0:cc:75:dc:a5:1f:22:f0:b8:a2:2a:41: 0f:86:91:4c:28:97:d0:ff:06:f6:2f:4e:19:bb:d9:a1:bb:cb: b5:5f:d7:05:b6:8e:a2:a6:a3:ff:06:f2:7c:bc:de:db:ed:fd: 08:c7:25:01:48:47:87:cf:ae:c1:de:9a:a2:3d:2e:b9:96:ae: a0:f9:5b:87:83:8e:71:da:dd:24:e1:44:48:8b:ec:05:80:e8: 59:c9:3e:f2:35:19:70:7b:c8:15:64:10:d3:e5:bf:f2:e6:23: 3e:fa:47:f7:35:54:ba:83:c5:db:0e:5e:c8:25:65:ca:db:a2: f6:0e:6d:75:f9:06:2d:29:60:a7:f2:8c:ab:ee:77:31:62:c8: 70:b8:d6:90:d1:92:70:89:de:d5:32:1c:4b:8d:9f:d9:62:b4: 65:2f:41:c6:ee:1f:67:c2:62:2b:86:74:d6:9e:1e:c8:89:b5: f8:04:f1:81:5e:23:bc:21:94:f0:5e:33:31:32:f5:f8:57:86: 59:28:f2:44:25:82:73:23:65:de:28:c9:5c:47:89:6c:ef:d3: b8:dd:19:1e:6f:fa:e7:37:36:80:7e:95:52:11:44:83:08:f0: e0:d2:0a:bf:a2:0b:49:55:ea:99:5e:02:81:21:a2:c9:35:1f: dd:64:d1:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJERDYxMTAvBgNVBAUTKDBFMjg3MDYzMUZBMEVGRUFFOTQ1MzFEQjBFMjYwNDVD QTNCQzgxOUIwHhcNMjUwNzE4MTczNDMxWhcNMjUwNzI1MTczNDMxWjAYMRYwFAYD VQQDEw02ODdhODVhOC1jNmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6pv1jl3O5VvuBO2GPaR0Wx9q1T60BxCPAhdgBsbUOggGYDwhIwkTkZhd73Fn n8p+MdJEX3tmzNKYpBPj9eLQbk4SBB5P8XFEZ3X7InjkZI6y6EWgUcsFMnt7KgfL 8Ci3DKuZ2DI0TRjQujIcBcHasxotKDYZ0om29pd/P5susXKvrorDs/A/TXT83quM qneXrrGwbdpP685pD+sUDZhO9K35idzhjFL+YWz24pppmGgYl9a3qMxlAkc8hgFn 081VFXwo1/BEIDyt/qAM0nPM1xX0Kvx318rA7yyPu1yXzw9QSr9V7rTDD+287oKR oRXU+2REPTMsBf+HzxiQoHm1swIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDQcHmxt XqqsMCHJ/cfgSqOEVAIuMB8GA1UdIwQYMBaAFA4ocGMfoO/q6UUx2w4mBFyjvIGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkRENi85Q0Q3Q0IwQTNG RUExMUU5OTE4MzlEMERDNEY5QUUwMi9EaWh3WXgtZzctcnBSVEhiRGlZRVhLTzhn WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpaHdZeC1nNy1ycFJUSGJEaVlFWEtPOGdacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MkRENi85Q0Q3Q0IwQTNGRUExMUU5OTE4MzlEMERDNEY5QUUwMi9EaWh3WXgtZzct cnBSVEhiRGlZRVhLTzhnWnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7X4QyNJbwzHXcpR8i8LiiKkEPhpFMKJfQ/wb2L04Zu9mhu8u1X9cF to6ipqP/BvJ8vN7b7f0IxyUBSEeHz67B3pqiPS65lq6g+VuHg45x2t0k4URIi+wF gOhZyT7yNRlwe8gVZBDT5b/y5iM++kf3NVS6g8XbDl7IJWXK26L2Dm11+QYtKWCn 8oyr7ncxYshwuNaQ0ZJwid7VMhxLjZ/ZYrRlL0HG7h9nwmIrhnTWnh7IibX4BPGB XiO8IZTwXjMxMvX4V4ZZKPJEJYJzI2XeKMlcR4ls79O43Rkeb/rnNzaAfpVSEUSD CPDg0gq/ogtJVeqZXgKBIaLJNR/dZNFz -----END CERTIFICATE-----Generated at Sun Jul 20 15:08:54 2025 by rpki-client