$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: FfG012xKu5KtAS1msuiEA5jYNELtjT+QsLW/YsAPJsw= Subject key identifier: 70:C9:99:BD:E5:20:BA:26:21:CA:61:E4:1D:91:D3:E3:49:37:2D:8E Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 34FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34D8 Signing time: Fri 18 Jul 2025 14:28:30 +0000 Manifest this update: Fri 18 Jul 2025 14:28:30 +0000 Manifest next update: Fri 25 Jul 2025 14:28:30 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: DQrQ6TsR8sizYoV4kZZq7AdmEq+aDvYC/WByH8ax6So=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: /HE0+/UKz944jtczmVdL8xtwz3w/VhqI3+iHS/siDT4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13566 (0x34fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Jul 18 14:28:30 2025 GMT Not After : Jul 25 14:28:30 2025 GMT Subject: CN=687a5a0e-6db3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5e:2d:4e:3e:b3:48:f5:cd:cc:d6:b8:9f:16: 9a:4b:23:d8:74:17:ca:ab:5a:95:42:99:ad:59:24: 5e:7a:5d:5a:94:94:2b:f8:9e:39:52:2a:4f:89:79: 6f:57:fc:12:3f:5c:47:bf:9e:db:3b:40:6d:b4:fb: 45:d3:5c:d5:28:9b:80:ba:a6:36:18:b7:af:30:93: a5:12:15:9b:77:1b:37:77:ae:42:3c:7e:b4:f6:0b: 48:b5:3b:e8:71:7b:f8:72:88:30:41:bd:83:c3:9b: e4:a8:0d:96:7b:1c:5d:d8:86:13:c6:f8:06:3a:e9: 08:92:dc:0e:c5:b8:ec:f7:d2:00:98:84:b9:fa:f2: bc:c4:87:8b:64:92:a4:68:28:6c:75:5b:9b:f9:9b: d3:7d:74:17:65:b8:0e:7b:db:84:22:e7:7e:cb:d5: 6b:0a:f4:52:cc:2b:ae:f9:f5:ee:9f:43:6d:20:ee: 7a:12:c3:b9:44:03:e4:c0:fb:4a:b9:6a:fe:3d:04: 2a:b7:54:8e:a3:0f:e9:b7:5d:18:6f:8d:51:54:3b: 81:59:6a:e9:c2:f1:84:e3:de:d8:57:5f:7b:ff:b2: f2:40:0f:82:a9:5f:ca:a7:e5:75:1a:3c:a2:f6:e0: a8:eb:7e:c7:67:a2:f3:4c:0d:94:d3:a2:09:ae:dc: 6d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:C9:99:BD:E5:20:BA:26:21:CA:61:E4:1D:91:D3:E3:49:37:2D:8E X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:45:fb:f6:4c:93:6a:05:f5:f7:66:51:6f:9a:54:97:54:ab: 93:a4:c7:72:48:26:98:11:5e:af:c9:ba:d7:c9:45:9a:1a:bc: 5d:be:a4:a9:16:ba:14:be:4e:9b:7e:81:9c:8d:f9:f1:38:4b: d4:10:34:30:a4:02:0f:d6:f0:c4:9b:15:86:76:cd:bd:7f:95: 16:9e:e6:3d:7e:b9:6e:0a:46:02:63:21:5e:32:14:51:89:b0: 09:74:d7:a9:64:e3:41:e4:c5:2d:e9:12:e2:2c:b0:41:aa:09: a0:52:b0:b0:90:a1:bb:f2:46:68:d7:87:58:d8:81:16:a6:75: bb:24:44:e0:aa:ce:79:3c:b3:2a:91:1c:e2:9c:5b:b4:27:6c: e6:05:5d:11:6c:0c:2d:6b:54:00:c3:da:7a:96:90:3c:8b:f6: 21:78:db:73:9f:d4:88:a7:c2:5a:9d:1e:a7:5f:29:e4:43:47: d5:98:fb:a5:4a:91:d4:6b:ff:ca:8b:96:03:1a:a4:47:35:8b: c9:24:5b:72:c7:88:61:38:84:42:cf:13:53:86:58:89:88:41: 02:00:6b:7a:e9:96:4d:9e:89:f9:6e:66:3b:51:05:dc:da:9c: 4f:d3:17:e4:67:c2:59:4f:f9:48:2d:7e:b7:2b:ce:e8:a2:81: f0:7f:14:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwNzE4MTQyODMwWhcNMjUwNzI1MTQyODMwWjAYMRYwFAYD VQQDEw02ODdhNWEwZS02ZGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV4tTj6zSPXNzNa4nxaaSyPYdBfKq1qVQpmtWSReel1alJQr+J45UipPiXlv V/wSP1xHv57bO0BttPtF01zVKJuAuqY2GLevMJOlEhWbdxs3d65CPH609gtItTvo cXv4cogwQb2Dw5vkqA2Wexxd2IYTxvgGOukIktwOxbjs99IAmIS5+vK8xIeLZJKk aChsdVub+ZvTfXQXZbgOe9uEIud+y9VrCvRSzCuu+fXun0NtIO56EsO5RAPkwPtK uWr+PQQqt1SOow/pt10Yb41RVDuBWWrpwvGE497YV197/7LyQA+CqV/Kp+V1Gjyi 9uCo637HZ6LzTA2U06IJrtxtcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHDJmb3l ILomIcph5B2R0+NJNy2OMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpRfv2TJNqBfX3ZlFvmlSXVKuTpMdySCaYEV6vybrXyUWaGrxdvqSp FroUvk6bfoGcjfnxOEvUEDQwpAIP1vDEmxWGds29f5UWnuY9frluCkYCYyFeMhRR ibAJdNepZONB5MUt6RLiLLBBqgmgUrCwkKG78kZo14dY2IEWpnW7JETgqs55PLMq kRzinFu0J2zmBV0RbAwta1QAw9p6lpA8i/YheNtzn9SIp8JanR6nXynkQ0fVmPul SpHUa//Ki5YDGqRHNYvJJFtyx4hhOIRCzxNThliJiEECAGt66ZZNnon5bmY7UQXc 2pxP0xfkZ8JZT/lILX63K87oooHwfxSn -----END CERTIFICATE-----Generated at Sun Jul 20 02:02:57 2025 by rpki-client