$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft File: dQWoa19PqlBUPSSMbwhUxQWu3A8.mft (raw, json) Hash identifier: 5q90pnJAZl/X7Li4Wbfax+LBiNWx6oQBP+iOwHlsuGY= Subject key identifier: 5A:BA:C7:25:51:D2:27:D2:F7:51:E7:44:66:95:D3:2A:F3:E1:34:D0 Authority key identifier: 75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F Certificate issuer: /CN=A918D0E6/serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Certificate serial: 0B50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft Manifest number: 0B41 Signing time: Sun 20 Jul 2025 19:17:00 +0000 Manifest this update: Sun 20 Jul 2025 19:16:59 +0000 Manifest next update: Sun 27 Jul 2025 19:16:59 +0000 Files and hashes: 1: dQWoa19PqlBUPSSMbwhUxQWu3A8.crl (hash: +8fUe9+73cDivSTDoxSQr9LnYkRNjAyZQUHDw7he8gg=) 2: 4B1D295E9EA211EB901A9532C4F9AE02.roa (hash: 6+05b8G0TEW8X4nNCgb84dRnZnbGJzRjWgQsJpxv0jY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 19:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2896 (0xb50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0E6, serialNumber=7505A86B5F4FAA50543D248C6F0854C505AEDC0F Validity Not Before: Jul 20 19:16:59 2025 GMT Not After : Jul 27 19:16:59 2025 GMT Subject: CN=687d40ab-5f6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:db:f4:af:f7:bb:a1:3c:de:ef:33:ec:53:82: 44:52:4d:37:16:9b:06:af:c4:f3:1a:c4:2c:67:0b: 0a:cf:66:a9:08:96:cb:07:b9:76:ed:0b:e1:79:b8: 1f:f1:11:8c:db:be:9d:84:2f:e5:0c:69:01:79:10: ed:fe:6a:1c:4c:ca:0c:62:96:e2:a3:b7:56:b2:4a: fd:74:63:67:b1:f0:f1:07:88:72:fb:ed:99:a5:aa: c5:ad:98:5b:59:5d:b5:70:cd:3f:64:27:e0:e1:22: c1:fc:4a:52:62:a5:03:d9:bf:ff:2b:1e:59:4e:ab: 87:2b:db:8b:37:f6:97:35:eb:71:01:77:78:86:44: a9:40:45:bb:ed:96:2c:92:15:43:73:2c:fc:3f:c0: 47:d3:73:ee:1c:e6:f8:f3:66:db:64:8b:3f:1d:51: f5:29:ac:f2:19:9f:06:ea:15:85:19:f5:2d:6b:28: 5b:08:32:77:40:de:5b:ab:c4:53:59:35:6b:b5:0d: cd:42:72:73:9f:64:bb:a9:e7:a7:c8:b7:49:26:b9: 42:d7:f7:bd:1f:38:0e:67:ab:46:81:11:7a:0e:42: 0b:6a:d6:ea:0b:dd:de:ff:e0:55:26:f3:8c:56:de: 86:04:86:e4:2d:3f:ef:d6:be:fc:bf:69:d1:82:f9: 8c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:BA:C7:25:51:D2:27:D2:F7:51:E7:44:66:95:D3:2A:F3:E1:34:D0 X509v3 Authority Key Identifier: keyid:75:05:A8:6B:5F:4F:AA:50:54:3D:24:8C:6F:08:54:C5:05:AE:DC:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQWoa19PqlBUPSSMbwhUxQWu3A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0E6/D8ADD9423F3711EAA786434BC4F9AE02/dQWoa19PqlBUPSSMbwhUxQWu3A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:65:4f:bf:42:aa:35:ed:d0:4a:27:85:11:6d:73:f7:0b:8a: c7:63:bb:6e:f7:71:f2:63:27:17:f1:1f:6e:b6:a4:01:8d:28: 4b:2b:54:89:f0:50:1b:12:d1:d5:00:9e:80:20:bb:1c:41:fb: 93:ae:df:14:80:98:9f:f8:f5:20:3b:51:1d:f6:3f:26:3e:da: 19:65:ff:7b:61:d4:51:5f:b7:b5:a9:9f:49:e7:a3:da:07:cd: f5:0b:72:48:0b:ab:11:d3:66:68:65:e6:41:2e:e8:1b:89:fc: 54:9d:77:f5:ae:ca:ea:fe:8a:9c:ed:7b:cd:71:1f:f7:a2:a3: bb:79:dc:90:17:3d:39:d0:e2:b2:8d:e4:e7:91:06:6b:b4:d5: 21:86:84:be:14:3d:b8:2c:5b:1f:b3:d9:be:0d:a8:ed:ad:a2: e2:4e:2b:a7:90:a8:c7:33:91:4b:16:99:f4:c4:f9:0d:4c:02: 61:f7:86:1e:6c:41:42:86:74:17:7e:b0:5e:23:47:be:75:db: 25:49:ec:5d:f5:85:0a:28:e4:c4:19:c0:a7:b8:6f:8a:63:20: c4:26:3a:b2:20:64:76:3d:55:53:7e:ef:ad:37:03:73:02:ae: 79:5d:5b:f6:91:3e:c1:e9:2a:77:5e:f9:88:dc:52:0c:b4:6f: f0:1c:9e:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwRTYxMTAvBgNVBAUTKDc1MDVBODZCNUY0RkFBNTA1NDNEMjQ4QzZGMDg1NEM1 MDVBRURDMEYwHhcNMjUwNzIwMTkxNjU5WhcNMjUwNzI3MTkxNjU5WjAYMRYwFAYD VQQDEw02ODdkNDBhYi01ZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79v0r/e7oTze7zPsU4JEUk03FpsGr8TzGsQsZwsKz2apCJbLB7l27Qvhebgf 8RGM276dhC/lDGkBeRDt/mocTMoMYpbio7dWskr9dGNnsfDxB4hy++2ZparFrZhb WV21cM0/ZCfg4SLB/EpSYqUD2b//Kx5ZTquHK9uLN/aXNetxAXd4hkSpQEW77ZYs khVDcyz8P8BH03PuHOb482bbZIs/HVH1KazyGZ8G6hWFGfUtayhbCDJ3QN5bq8RT WTVrtQ3NQnJzn2S7qeenyLdJJrlC1/e9HzgOZ6tGgRF6DkILatbqC93e/+BVJvOM Vt6GBIbkLT/v1r78v2nRgvmMSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFq6xyVR 0ifS91HnRGaV0yrz4TTQMB8GA1UdIwQYMBaAFHUFqGtfT6pQVD0kjG8IVMUFrtwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBFNi9EOEFERDk0MjNG MzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFsQlVQU1NNYndoVXhRV3Uz QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRV29hMTlQcWxCVVBTU01id2hVeFFXdTNBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDBFNi9EOEFERDk0MjNGMzcxMUVBQTc4NjQzNEJDNEY5QUUwMi9kUVdvYTE5UHFs QlVQU1NNYndoVXhRV3UzQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQZU+/Qqo17dBKJ4URbXP3C4rHY7tu93HyYycX8R9utqQBjShLK1SJ 8FAbEtHVAJ6AILscQfuTrt8UgJif+PUgO1Ed9j8mPtoZZf97YdRRX7e1qZ9J56Pa B831C3JIC6sR02ZoZeZBLugbifxUnXf1rsrq/oqc7XvNcR/3oqO7edyQFz050OKy jeTnkQZrtNUhhoS+FD24LFsfs9m+DajtraLiTiunkKjHM5FLFpn0xPkNTAJh94Ye bEFChnQXfrBeI0e+ddslSexd9YUKKOTEGcCnuG+KYyDEJjqyIGR2PVVTfu+tNwNz Aq55XVv2kT7B6Sp3XvmI3FIMtG/wHJ55 -----END CERTIFICATE-----Generated at Mon Jul 21 07:23:40 2025 by rpki-client