$ rpki-client -vvf rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft File: fDPCHh829n5MagTrI5AZrXcryyo.mft (raw, json) Hash identifier: Udrmrqb48+AnsjDHtt1QEZVO9QERFzGI6M+llfCE5ZA= Subject key identifier: 29:CE:F4:D3:2A:54:5E:AC:24:68:98:72:4C:4C:FD:BD:5F:0A:0F:D1 Authority key identifier: 7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A Certificate issuer: /CN=A91836C4/serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft Manifest number: 01D6 Signing time: Sat 19 Jul 2025 02:57:08 +0000 Manifest this update: Sat 19 Jul 2025 02:57:07 +0000 Manifest next update: Sat 26 Jul 2025 02:57:07 +0000 Files and hashes: 1: fDPCHh829n5MagTrI5AZrXcryyo.crl (hash: ApU/2k2Qb4NRX4HtA5d66/voMtwS5n8KJNk29K/NUns=) 2: 37A0ACFC8FCD11EDB4772D55C4F9AE02.roa (hash: OVe6KSw+7kYYiHPF4YI7Y6sSZ8QGj8mE1P0YOqWt/tI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:57:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91836C4, serialNumber=7C33C21E1F36F67E4C6A04EB239019AD772BCB2A Validity Not Before: Jul 19 02:57:07 2025 GMT Not After : Jul 26 02:57:07 2025 GMT Subject: CN=687b0984-58d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f5:4f:14:17:bf:1f:77:e0:0a:90:0b:db:9a: b7:bf:8f:24:71:27:ae:86:53:9e:89:e0:6c:f6:53: 85:4e:af:ea:8e:68:a4:9d:7b:dd:e3:3b:01:89:38: c3:1e:89:26:71:7a:3b:2b:cf:5f:65:e4:63:df:38: 64:3f:9d:b4:53:18:a3:36:92:84:67:12:23:d2:54: 57:a4:ac:41:d6:57:3c:02:71:63:74:b0:29:3d:36: 5d:3d:47:b8:3b:ec:72:0c:6d:b4:97:40:7f:9b:a7: 64:c3:11:24:e2:22:5f:1b:56:79:d5:cb:a9:b0:eb: a8:df:8b:b0:fa:d1:12:c0:d1:83:12:c1:50:aa:c5: 2c:aa:67:25:ba:d6:71:e9:ba:01:81:fd:84:af:1d: 27:e9:66:3e:4a:00:52:bc:7a:c6:31:37:e6:18:f0: 82:d9:e5:5d:cc:dd:78:c4:80:0e:8c:9a:84:88:69: 44:f7:a6:36:8d:09:09:73:bc:06:d8:f2:e7:45:1c: 97:e2:36:23:8b:4e:60:1a:61:a4:37:e1:76:9a:f0: 2d:d0:87:ac:92:7a:c8:9f:fb:3f:59:2d:db:3f:c0: 83:92:ce:5a:ec:d7:84:10:bf:37:c0:d1:6e:47:85: e3:9e:44:a7:84:7c:e6:60:92:18:f3:1e:8a:de:f2: 81:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:CE:F4:D3:2A:54:5E:AC:24:68:98:72:4C:4C:FD:BD:5F:0A:0F:D1 X509v3 Authority Key Identifier: keyid:7C:33:C2:1E:1F:36:F6:7E:4C:6A:04:EB:23:90:19:AD:77:2B:CB:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fDPCHh829n5MagTrI5AZrXcryyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91836C4/9D4B10688FCA11EDB7911254C4F9AE02/fDPCHh829n5MagTrI5AZrXcryyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:d2:04:1d:96:1b:9e:38:6c:31:f9:80:38:32:fc:7c:68:41: 27:e7:84:2c:83:09:7f:44:06:00:8f:73:f3:66:46:17:84:95: 92:a9:29:66:db:a9:41:3f:bc:7f:21:61:2e:fb:d2:5b:e1:be: bd:ec:4b:cf:0e:c4:1e:20:13:2d:ff:f9:23:30:97:bb:f9:97: 7c:85:94:40:86:f0:6c:94:5e:8c:f0:f2:2e:83:3e:5e:13:74: 64:b1:9a:f2:0f:57:59:b4:b9:fd:dd:37:04:12:4d:09:3e:a7: 00:48:2b:82:c0:9f:8e:1d:1e:ab:6f:8c:b4:0c:de:59:46:c4: 1f:77:8b:f0:7e:fb:d2:df:b5:01:8c:6f:6b:24:5c:47:f1:c4: fc:e5:5e:78:ae:70:92:1d:00:5d:9c:d2:50:36:9e:eb:83:56: fc:b9:0a:d2:ed:ec:a4:7c:7f:b9:a3:cd:fa:29:69:9a:96:ed: 89:b8:da:07:b0:0a:50:e1:ab:af:2c:53:b3:6c:ad:3b:70:99: 73:0b:81:ed:83:90:1c:64:79:0b:8e:a0:82:e2:2e:a4:ff:75: f3:bf:a3:5b:63:39:ca:83:5d:d0:94:36:20:70:4c:c5:58:17: 1a:2d:94:06:05:ae:89:28:cf:01:07:f2:5c:90:66:64:5d:81: 4d:2b:19:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM2QzQxMTAvBgNVBAUTKDdDMzNDMjFFMUYzNkY2N0U0QzZBMDRFQjIzOTAxOUFE NzcyQkNCMkEwHhcNMjUwNzE5MDI1NzA3WhcNMjUwNzI2MDI1NzA3WjAYMRYwFAYD VQQDEw02ODdiMDk4NC01OGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPVPFBe/H3fgCpAL25q3v48kcSeuhlOeieBs9lOFTq/qjmiknXvd4zsBiTjD HokmcXo7K89fZeRj3zhkP520UxijNpKEZxIj0lRXpKxB1lc8AnFjdLApPTZdPUe4 O+xyDG20l0B/m6dkwxEk4iJfG1Z51cupsOuo34uw+tESwNGDEsFQqsUsqmclutZx 6boBgf2Erx0n6WY+SgBSvHrGMTfmGPCC2eVdzN14xIAOjJqEiGlE96Y2jQkJc7wG 2PLnRRyX4jYji05gGmGkN+F2mvAt0IesknrIn/s/WS3bP8CDks5a7NeEEL83wNFu R4XjnkSnhHzmYJIY8x6K3vKBAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnO9NMq VF6sJGiYckxM/b1fCg/RMB8GA1UdIwQYMBaAFHwzwh4fNvZ+TGoE6yOQGa13K8sq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzZDNC85RDRCMTA2ODhG Q0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4MjluNU1hZ1RySTVBWnJYY3J5 eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZEUENIaDgyOW41TWFnVHJJNUFaclhjcnl5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MzZDNC85RDRCMTA2ODhGQ0ExMUVEQjc5MTEyNTRDNEY5QUUwMi9mRFBDSGg4Mjlu NU1hZ1RySTVBWnJYY3J5eW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC30gQdlhueOGwx+YA4Mvx8aEEn54Qsgwl/RAYAj3PzZkYXhJWSqSlm 26lBP7x/IWEu+9Jb4b697EvPDsQeIBMt//kjMJe7+Zd8hZRAhvBslF6M8PIugz5e E3RksZryD1dZtLn93TcEEk0JPqcASCuCwJ+OHR6rb4y0DN5ZRsQfd4vwfvvS37UB jG9rJFxH8cT85V54rnCSHQBdnNJQNp7rg1b8uQrS7eykfH+5o836KWmalu2JuNoH sApQ4auvLFOzbK07cJlzC4Htg5AcZHkLjqCC4i6k/3Xzv6NbYznKg13QlDYgcEzF WBcaLZQGBa6JKM8BB/JckGZkXYFNKxmF -----END CERTIFICATE-----Generated at Sun Jul 20 03:25:12 2025 by rpki-client