$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: R7xregDP6axchKV0hkoXiItzdMLilBfslqBX1wfl8/Y= Subject key identifier: 54:C6:AA:F6:A2:AA:F2:0F:54:63:59:D5:58:CA:86:AC:38:03:BA:D1 Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 45 Signing time: Sat 19 Jul 2025 07:40:13 +0000 Manifest this update: Sat 19 Jul 2025 07:40:13 +0000 Manifest next update: Sat 26 Jul 2025 07:40:13 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: JtYcqnA/qsKWTJaut0T5auiWu7+D9Y5ts2DlLdocP/w=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:40:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF, serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Validity Not Before: Jul 19 07:40:13 2025 GMT Not After : Jul 26 07:40:13 2025 GMT Subject: CN=687b4bdd-01c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3f:30:b1:9a:dc:1a:55:b7:43:8b:b2:f7:ee: 3c:8a:e3:f2:80:31:e7:4b:d2:9c:29:2c:10:66:89: 8e:a8:34:7f:c8:d1:63:fb:af:f0:b8:27:63:18:da: 9b:06:8a:62:e1:68:fd:1e:e9:b3:01:06:c4:83:73: 2b:7b:b2:d5:04:54:cd:38:80:78:58:a4:a6:aa:6e: 75:9f:65:3e:e9:25:b2:bc:95:a2:89:c4:1f:c3:87: a5:97:73:3c:54:1e:51:12:ae:78:23:48:29:7b:83: 33:95:67:67:07:b2:cb:76:b9:80:0e:91:f8:2f:2a: ab:f2:b9:6e:65:8e:99:c4:01:3f:2e:3d:42:08:6e: 02:44:c0:f7:98:67:01:90:6d:81:91:ed:68:a8:5b: ef:af:82:c8:f6:2b:19:f8:7b:81:ac:2e:ae:3d:3c: ed:0a:9d:f2:e9:f7:36:90:9a:4c:28:ca:1f:48:64: f7:c8:b8:ca:86:b5:6a:f7:9f:cb:31:91:dd:1b:ee: 2f:95:97:6e:69:e5:93:ed:ba:ad:5e:87:a5:a6:d5: c4:4c:86:2a:10:8a:bc:31:11:bb:6f:88:70:6d:d6: 0f:37:21:70:59:b8:12:0c:0c:e4:57:c3:aa:0c:12: 5a:29:25:60:e3:e1:96:d0:1a:02:d2:9b:3b:26:6d: fc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C6:AA:F6:A2:AA:F2:0F:54:63:59:D5:58:CA:86:AC:38:03:BA:D1 X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e5:b0:9f:cb:24:af:ab:10:7d:b2:f1:8d:88:5e:59:87:c0: b3:63:dc:0f:a4:17:63:18:8b:bd:a3:98:08:f6:ee:74:42:7e: c2:ef:32:43:1c:1c:f6:20:82:fa:47:2c:64:63:19:66:a5:9e: 77:4b:fa:f2:d3:b6:c9:0b:4a:3e:81:24:5a:8b:05:c7:cf:62: b2:31:4e:50:e7:28:15:6c:07:49:2d:fe:c9:2a:54:ef:c6:a3: ec:c9:ca:cc:df:87:ed:c4:21:b7:54:85:5f:3d:91:5f:0c:05: ea:54:c7:49:71:67:e8:f0:2f:30:f3:6b:ff:0b:2c:ab:bd:77: 21:1c:3c:d7:12:5a:26:9b:bc:1c:06:72:59:31:ce:5b:fc:16: b6:b7:13:16:bc:d5:13:d4:9e:bf:a0:10:a8:1f:14:8b:71:24: 75:6c:b3:66:01:9b:54:22:85:74:d7:57:fb:86:17:06:f6:28: 06:0e:d6:31:1f:77:4a:ee:88:fa:10:00:40:53:e6:7b:db:59: 6c:51:54:42:29:31:e1:8e:40:c0:cb:34:b3:79:70:c2:67:94: b6:9f:74:32:4f:5b:56:f1:43:bf:1f:5a:18:21:77:0d:e7:d0: 34:5c:ac:10:5b:85:9a:34:90:62:e2:05:76:d5:76:1f:13:b2: e8:12:29:62 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzlDRjExMC8GA1UEBRMoMEU2QzRBQjY3N0JERTFBRDQ0NjAzRkQ3MzdEQTI1QzA2 MDFDNDU5QzAeFw0yNTA3MTkwNzQwMTNaFw0yNTA3MjYwNzQwMTNaMBgxFjAUBgNV BAMTDTY4N2I0YmRkLTAxYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCqPzCxmtwaVbdDi7L37jyK4/KAMedL0pwpLBBmiY6oNH/I0WP7r/C4J2MY2psG imLhaP0e6bMBBsSDcyt7stUEVM04gHhYpKaqbnWfZT7pJbK8laKJxB/Dh6WXczxU HlESrngjSCl7gzOVZ2cHsst2uYAOkfgvKqvyuW5ljpnEAT8uPUIIbgJEwPeYZwGQ bYGR7WioW++vgsj2Kxn4e4GsLq49PO0KnfLp9zaQmkwoyh9IZPfIuMqGtWr3n8sx kd0b7i+Vl25p5ZPtuq1eh6Wm1cRMhioQirwxEbtviHBt1g83IXBZuBIMDORXw6oM ElopJWDj4ZbQGgLSmzsmbfzBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVMaq9qKq 8g9UY1nVWMqGrDgDutEwHwYDVR0jBBgwFoAUDmxKtne94a1EYD/XN9olwGAcRZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzOUNGLzU2RjMxRkI0RkI1 OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Ja dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG14S3RuZTk0YTFFWURfWE45b2x3R0FjUlp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz OUNGLzU2RjMxRkI0RkI1OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGEx RVlEX1hOOW9sd0dBY1Jady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAArlsJ/LJK+rEH2y8Y2IXlmHwLNj3A+kF2MYi72jmAj27nRCfsLvMkMc HPYggvpHLGRjGWalnndL+vLTtskLSj6BJFqLBcfPYrIxTlDnKBVsB0kt/skqVO/G o+zJyszfh+3EIbdUhV89kV8MBepUx0lxZ+jwLzDza/8LLKu9dyEcPNcSWiabvBwG clkxzlv8Fra3Exa81RPUnr+gEKgfFItxJHVss2YBm1QihXTXV/uGFwb2KAYO1jEf d0ruiPoQAEBT5nvbWWxRVEIpMeGOQMDLNLN5cMJnlLafdDJPW1bxQ78fWhghdw3n 0DRcrBBbhZo0kGLiBXbVdh8TsugSKWI= -----END CERTIFICATE-----Generated at Sun Jul 20 15:14:08 2025 by rpki-client