$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: ginjYPrno3JjGxIBHdCHPZjRWjdwgBteCPdBugC6+CU= Subject key identifier: FB:5F:10:D7:9B:9B:0B:96:1F:FA:51:98:DE:6D:02:F5:0F:E4:0D:97 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0FA7 Signing time: Sun 20 Jul 2025 17:33:23 +0000 Manifest this update: Sun 20 Jul 2025 17:33:22 +0000 Manifest next update: Sun 27 Jul 2025 17:33:22 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: 1GphoQwF5gFnTwzHm4EtWoafsNIH/bjynAhYtXpnKps=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: Yxnc0WF7y7yG/Ke04997WUeH+aSKIu6WY3AiaujI7mg=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: fuYiIxAwDhO4bPXLu2NpIMN0ReUFHJNWZB+675RLxUg=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4041 (0xfc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Jul 20 17:33:22 2025 GMT Not After : Jul 27 17:33:22 2025 GMT Subject: CN=687d2863-43f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:89:84:46:f5:d5:03:dd:c6:88:6f:12:9c:e4: 0a:64:6e:29:8f:20:56:d2:41:c4:73:60:8e:bb:e1: 12:35:ff:f1:34:11:15:41:6b:82:c3:a4:7d:1a:51: ee:37:e8:15:cd:58:f5:c3:85:4c:2f:7a:6c:16:27: b1:9b:57:71:17:98:6b:31:93:24:f1:04:92:a4:51: 69:7f:28:79:b1:f4:2e:70:d1:04:1d:08:f2:64:5c: a3:17:99:67:69:d0:0e:7a:e4:64:07:da:4d:a3:e5: e2:e9:cd:b7:09:41:c1:9a:01:4f:27:6f:1c:34:83: 84:37:83:d1:55:96:82:ea:97:d6:6e:d5:cd:5c:6b: 46:3d:15:31:66:cd:39:36:3d:12:39:94:43:2d:d6: 61:1f:06:b9:1c:99:e6:b9:c4:57:a3:b3:9f:04:ce: 5b:c8:a6:f1:94:67:60:60:f3:c5:c2:44:27:54:5e: 3e:6c:e6:c7:46:6f:8b:bc:88:d8:ee:05:7a:74:a9: 95:98:b3:09:3d:6a:3f:98:0c:27:23:6a:05:f5:05: 20:32:14:ed:27:de:ab:2c:bb:36:ef:3a:ef:8f:82: b3:aa:9e:c1:d3:21:e5:ee:33:94:ea:d7:f8:94:49: 96:40:92:56:2c:4a:50:6d:7a:2d:30:d3:62:23:25: 89:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:5F:10:D7:9B:9B:0B:96:1F:FA:51:98:DE:6D:02:F5:0F:E4:0D:97 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:a7:2b:a0:e0:ba:eb:1a:68:d9:c9:f4:7d:52:39:0c:9b:76: bd:e6:33:37:dc:87:d1:c8:82:d1:0d:1f:e2:2c:0a:ef:62:5f: 91:f0:16:cd:34:36:4e:71:24:43:1c:d3:9f:b9:24:a0:80:6a: b9:40:24:06:91:00:a1:1a:90:5f:01:c7:10:71:dd:3b:de:48: 93:69:3b:4d:24:45:18:c0:df:02:60:e0:83:85:9c:0a:6f:ba: 15:08:ba:cf:0a:03:98:3f:cb:b2:92:84:8b:0c:4e:38:23:65: 98:b3:e4:33:7f:ca:c9:97:b4:c4:56:a8:c6:d2:57:ca:06:cc: 87:dd:bd:73:71:85:ec:a2:5c:48:18:68:45:fe:6a:c9:dc:c7: 38:15:7b:49:bd:c6:21:cd:7b:c1:05:77:e1:ba:03:e5:34:89: 17:2f:ac:8a:f3:5e:39:5c:0f:51:11:4b:bb:15:a0:7c:36:9d: 48:ab:46:8d:cd:32:65:00:31:ec:f8:88:bc:0d:02:a0:94:90: 2c:69:0a:23:1c:aa:80:cf:c0:25:05:9d:15:17:f4:79:78:a2: 08:3f:b8:41:0f:62:2f:61:1a:dc:fa:95:88:1a:5c:35:20:2b: 87:1a:6c:8d:57:8c:be:42:30:e7:5a:30:bf:39:bb:59:5b:6e: 53:ee:36:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwNzIwMTczMzIyWhcNMjUwNzI3MTczMzIyWjAYMRYwFAYD VQQDEw02ODdkMjg2My00M2Y3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ImERvXVA93GiG8SnOQKZG4pjyBW0kHEc2COu+ESNf/xNBEVQWuCw6R9GlHu N+gVzVj1w4VML3psFiexm1dxF5hrMZMk8QSSpFFpfyh5sfQucNEEHQjyZFyjF5ln adAOeuRkB9pNo+Xi6c23CUHBmgFPJ28cNIOEN4PRVZaC6pfWbtXNXGtGPRUxZs05 Nj0SOZRDLdZhHwa5HJnmucRXo7OfBM5byKbxlGdgYPPFwkQnVF4+bObHRm+LvIjY 7gV6dKmVmLMJPWo/mAwnI2oF9QUgMhTtJ96rLLs27zrvj4Kzqp7B0yHl7jOU6tf4 lEmWQJJWLEpQbXotMNNiIyWJ8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtfENeb mwuWH/pRmN5tAvUP5A2XMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUpyug4LrrGmjZyfR9UjkMm3a95jM33IfRyILRDR/iLArvYl+R8BbN NDZOcSRDHNOfuSSggGq5QCQGkQChGpBfAccQcd073kiTaTtNJEUYwN8CYOCDhZwK b7oVCLrPCgOYP8uykoSLDE44I2WYs+Qzf8rJl7TEVqjG0lfKBsyH3b1zcYXsolxI GGhF/mrJ3Mc4FXtJvcYhzXvBBXfhugPlNIkXL6yK8145XA9REUu7FaB8Np1Iq0aN zTJlADHs+Ii8DQKglJAsaQojHKqAz8AlBZ0VF/R5eKIIP7hBD2IvYRrc+pWIGlw1 ICuHGmyNV4y+QjDnWjC/ObtZW25T7jau -----END CERTIFICATE-----Generated at Mon Jul 21 07:02:22 2025 by rpki-client