$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: UVyN8PsDL3Yei/dmKIY7rqhZpe3mlCj0ieNyGfK1qKo= Subject key identifier: CB:C7:BD:09:E6:7D:69:FA:52:A7:ED:52:76:61:39:E1:D6:BC:D0:65 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0668 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 065B Signing time: Fri 18 Jul 2025 19:50:20 +0000 Manifest this update: Fri 18 Jul 2025 19:50:19 +0000 Manifest next update: Fri 25 Jul 2025 19:50:19 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: gCNoPd5rg/j3KKFhikHsGyn19XtllFLDDF5MYD8sbWQ=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: c7+1xl97Qj2WBa7uEaRi3C9ZQy4QYdknXZBQu0sbmag=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: nh7VvVbwlcEI7LPWlEzxHGSM7ZH4CPOm9G5I1MGrFHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Jul 18 19:50:19 2025 GMT Not After : Jul 25 19:50:19 2025 GMT Subject: CN=687aa57b-1e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8b:25:87:27:ac:15:98:4a:52:84:92:f9:b5: f2:76:ec:c1:e0:2c:85:0a:f2:87:9f:53:a0:dc:88: c6:c7:80:69:ab:70:46:12:be:2d:b6:58:fd:40:07: cd:e8:59:58:68:6b:bb:56:28:0b:b2:97:3d:90:dd: c6:45:94:ec:4a:18:77:09:55:73:a8:5e:e5:c4:a0: 4d:5e:0e:54:53:7a:7f:a3:cc:3f:ac:a0:d3:d8:d0: fa:6f:13:76:7c:fc:b2:b7:1f:7d:d8:27:51:87:02: 2b:cd:e9:4f:80:d6:e3:8a:a6:1b:4b:92:d4:27:da: f7:4e:37:19:8a:72:02:f3:43:41:05:6b:82:cb:a1: d5:01:98:88:49:58:bf:78:04:2b:51:07:c4:c2:31: 39:ae:a5:80:35:87:8f:52:81:53:af:3d:70:31:2a: 86:cb:9c:68:b2:d5:4f:62:7b:41:30:18:51:3a:91: ce:67:8a:06:3f:a9:c1:41:2d:38:b8:2b:e9:f7:cd: 8f:09:be:11:6e:cb:28:bc:51:bb:70:8d:a2:91:17: 40:c2:93:d0:41:56:1a:e5:28:da:ad:54:fa:b2:56: a8:d6:ab:14:48:18:44:7c:74:54:7e:be:e9:54:d3: 49:27:bf:af:41:a2:21:af:5c:a8:74:e9:bd:73:9a: a3:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:C7:BD:09:E6:7D:69:FA:52:A7:ED:52:76:61:39:E1:D6:BC:D0:65 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:02:46:b3:d6:e1:48:7a:3c:5d:a5:c1:ad:18:1e:bf:df:4f: 83:b8:e7:74:0a:a8:39:d5:12:bb:a6:ff:59:d7:6c:2d:41:e0: 44:41:bb:55:e8:fb:b4:bf:56:f4:9a:81:5c:e2:df:e6:06:a3: 7d:9a:1e:64:60:d4:71:be:92:de:ec:6d:8a:22:5e:32:2a:68: 2c:32:f3:8d:da:78:7b:47:5e:44:dd:9e:06:ff:c8:78:b5:5a: 15:54:d7:07:5a:40:88:fd:52:99:07:cd:bb:d8:6b:ed:a3:46: 1d:57:1b:35:09:d9:9c:ce:18:55:c4:49:d4:fe:99:ea:b3:e7: 54:a0:32:9d:76:d4:29:d3:3b:9b:59:5d:82:6e:1d:b4:92:ee: f4:b3:e1:5e:b2:bb:36:6f:f4:6f:1b:a4:d8:7c:b7:1e:d0:a1: 1f:8a:81:ed:c4:b8:19:f3:6e:c1:a4:e6:ec:32:73:04:42:33: b6:44:7e:3b:d6:23:87:7b:df:60:44:9d:e8:47:eb:d6:2d:ae: 48:16:4c:fe:40:f3:1a:0c:e6:3c:87:b2:9e:3d:12:06:75:20: c9:3e:57:0f:20:4e:f9:91:66:8d:5d:16:8d:9f:78:55:a3:bc: cd:7f:f3:12:ea:19:83:f9:90:3f:d5:4b:48:88:8b:99:25:1e: 89:99:c2:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUwNzE4MTk1MDE5WhcNMjUwNzI1MTk1MDE5WjAYMRYwFAYD VQQDEw02ODdhYTU3Yi0xZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4slhyesFZhKUoSS+bXyduzB4CyFCvKHn1Og3IjGx4Bpq3BGEr4ttlj9QAfN 6FlYaGu7VigLspc9kN3GRZTsShh3CVVzqF7lxKBNXg5UU3p/o8w/rKDT2ND6bxN2 fPyytx992CdRhwIrzelPgNbjiqYbS5LUJ9r3TjcZinIC80NBBWuCy6HVAZiISVi/ eAQrUQfEwjE5rqWANYePUoFTrz1wMSqGy5xostVPYntBMBhROpHOZ4oGP6nBQS04 uCvp982PCb4RbssovFG7cI2ikRdAwpPQQVYa5SjarVT6slao1qsUSBhEfHRUfr7p VNNJJ7+vQaIhr1yodOm9c5qj5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMvHvQnm fWn6UqftUnZhOeHWvNBlMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjAkaz1uFIejxdpcGtGB6/30+DuOd0Cqg51RK7pv9Z12wtQeBEQbtV 6Pu0v1b0moFc4t/mBqN9mh5kYNRxvpLe7G2KIl4yKmgsMvON2nh7R15E3Z4G/8h4 tVoVVNcHWkCI/VKZB8272Gvto0YdVxs1CdmczhhVxEnU/pnqs+dUoDKddtQp0zub WV2Cbh20ku70s+Fesrs2b/RvG6TYfLce0KEfioHtxLgZ827BpObsMnMEQjO2RH47 1iOHe99gRJ3oR+vWLa5IFkz+QPMaDOY8h7KePRIGdSDJPlcPIE75kWaNXRaNn3hV o7zNf/MS6hmD+ZA/1UtIiIuZJR6JmcLQ -----END CERTIFICATE-----Generated at Sun Jul 20 18:59:55 2025 by rpki-client