$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft File: dBZmaL52tzdXYxblXZ5kOeZxz0c.mft (raw, json) Hash identifier: Yq0gxOGjfyLJ3wjYrBGZBSfCaeweDCaWAIjhE2gBYUo= Subject key identifier: 71:E3:C6:92:53:7C:A0:1C:02:86:25:63:B8:26:24:EB:1F:13:85:11 Authority key identifier: 74:16:66:68:BE:76:B7:37:57:63:16:E5:5D:9E:64:39:E6:71:CF:47 Certificate issuer: /CN=A91CD281/serialNumber=74166668BE76B737576316E55D9E6439E671CF47 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft Manifest number: 4E Signing time: Mon 21 Jul 2025 07:30:31 +0000 Manifest this update: Mon 21 Jul 2025 07:30:31 +0000 Manifest next update: Mon 28 Jul 2025 07:30:31 +0000 Files and hashes: 1: dBZmaL52tzdXYxblXZ5kOeZxz0c.crl (hash: MbArGHjZAZkoGpmUJKEUdUe94aMvZpg1FpiuvC86XF4=) 2: 7CC6D634F27311EF9AAECC3CC4F9AE02.roa (hash: H0Gt6hkw2JpHPGPBgwlKru1+nCswYpwJdtuwdjPnKvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.crl rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD281, serialNumber=74166668BE76B737576316E55D9E6439E671CF47 Validity Not Before: Jul 21 07:30:31 2025 GMT Not After : Jul 28 07:30:31 2025 GMT Subject: CN=687dec97-9a26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6d:37:cd:2e:ed:4a:57:02:cc:fe:07:6d:88: 93:fb:d8:fe:f7:f5:48:52:88:f8:ce:4f:d6:f3:55: ae:2f:00:8f:54:ea:29:d8:0e:82:10:b9:7a:78:fa: 24:59:9e:a8:0a:eb:50:90:9b:85:32:a5:83:db:dc: 0b:27:69:5e:2e:1c:46:ed:8b:42:84:e3:b8:9f:c9: 14:6e:7f:a3:30:cb:0d:23:a9:5a:39:17:52:37:62: 19:67:64:89:20:5d:db:f4:3a:d1:64:c8:4c:d6:e0: d0:c2:89:38:5c:08:08:8e:ee:3c:78:7c:f0:69:e1: 84:fc:43:60:d7:0d:7c:00:c4:c2:e6:3f:58:ba:a6: e2:c9:c9:d7:5d:40:68:00:ea:1e:4b:5f:3f:65:c9: b8:61:3b:df:3d:e8:93:c7:22:e0:d6:bc:00:43:a8: c4:4a:3d:2b:c9:0d:11:be:48:0f:7c:9e:07:58:28: e7:1b:fc:b9:12:c6:1b:ce:50:15:d7:3e:0f:a6:d3: 02:9b:01:9e:0d:f0:8c:b9:ac:c1:13:fd:06:73:76: 2a:54:a8:39:79:39:b5:aa:b1:79:e4:3d:9c:65:11: 19:8f:7e:57:bc:e9:d1:66:45:d6:5c:82:6c:34:e9: 84:f6:92:85:a6:cb:d2:26:91:f8:90:2f:28:ce:6f: 14:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E3:C6:92:53:7C:A0:1C:02:86:25:63:B8:26:24:EB:1F:13:85:11 X509v3 Authority Key Identifier: keyid:74:16:66:68:BE:76:B7:37:57:63:16:E5:5D:9E:64:39:E6:71:CF:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dBZmaL52tzdXYxblXZ5kOeZxz0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD281/FB4216E8F27011EF9BF8B535C4F9AE02/dBZmaL52tzdXYxblXZ5kOeZxz0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e5:a1:b9:2d:71:f2:31:62:95:24:1a:dc:87:b9:9d:53:08: 8e:73:11:36:1f:74:92:bd:5e:8f:bd:f2:70:06:ca:71:a7:67: d3:32:42:0d:ff:f3:1a:7c:12:90:5b:d1:0b:4f:e1:ad:1c:ed: c5:3f:90:7e:4c:17:25:44:88:e7:fd:33:30:92:2b:cd:c6:08: d5:ba:05:99:d2:c2:54:03:11:0e:d0:9d:f2:e4:3d:4c:b8:fc: 02:d6:a1:ac:fa:6d:0a:fd:ed:31:fd:4a:47:18:98:6f:81:19: c9:a5:12:7c:b5:05:61:04:97:3d:12:f0:68:ae:ac:57:51:70: 34:95:fd:b4:5f:16:90:ab:c4:fe:13:44:c8:96:5a:01:01:5f: 9e:7e:2c:20:d7:82:47:70:6e:50:67:85:80:30:63:a2:ee:5e: 9c:c2:e0:3e:d8:1b:fa:79:5a:5b:ac:3d:dc:11:63:b2:a4:b3: fe:b5:49:3a:32:8b:79:ee:9a:f0:c0:5b:83:b3:14:18:6b:22: 15:e9:7d:ba:6e:ea:b7:e9:bd:30:2d:1d:57:99:3d:0c:e3:e8: 53:ca:ee:52:92:74:78:8a:b1:ab:6d:56:19:4c:2b:03:a2:be: 4b:49:ed:4e:ac:54:e3:96:12:8a:c9:38:d5:d8:1b:39:b6:31: 26:fa:77:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDI4MTExMC8GA1UEBRMoNzQxNjY2NjhCRTc2QjczNzU3NjMxNkU1NUQ5RTY0MzlF NjcxQ0Y0NzAeFw0yNTA3MjEwNzMwMzFaFw0yNTA3MjgwNzMwMzFaMBgxFjAUBgNV BAMTDTY4N2RlYzk3LTlhMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCbTfNLu1KVwLM/gdtiJP72P739UhSiPjOT9bzVa4vAI9U6inYDoIQuXp4+iRZ nqgK61CQm4UypYPb3AsnaV4uHEbti0KE47ifyRRuf6Mwyw0jqVo5F1I3YhlnZIkg Xdv0OtFkyEzW4NDCiThcCAiO7jx4fPBp4YT8Q2DXDXwAxMLmP1i6puLJydddQGgA 6h5LXz9lybhhO9896JPHIuDWvABDqMRKPSvJDRG+SA98ngdYKOcb/LkSxhvOUBXX Pg+m0wKbAZ4N8Iy5rMET/QZzdipUqDl5ObWqsXnkPZxlERmPfle86dFmRdZcgmw0 6YT2koWmy9ImkfiQLyjObxQbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcePGklN8 oBwChiVjuCYk6x8ThREwHwYDVR0jBBgwFoAUdBZmaL52tzdXYxblXZ5kOeZxz0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMjgxL0ZCNDIxNkU4RjI3 MDExRUY5QkY4QjUzNUM0RjlBRTAyL2RCWm1hTDUydHpkWFl4YmxYWjVrT2VaeHow Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZEJabWFMNTJ0emRYWXhibFhaNWtPZVp4ejBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNE MjgxL0ZCNDIxNkU4RjI3MDExRUY5QkY4QjUzNUM0RjlBRTAyL2RCWm1hTDUydHpk WFl4YmxYWjVrT2VaeHowYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA3lobktcfIxYpUkGtyHuZ1TCI5zETYfdJK9Xo+98nAGynGnZ9MyQg3/ 8xp8EpBb0QtP4a0c7cU/kH5MFyVEiOf9MzCSK83GCNW6BZnSwlQDEQ7QnfLkPUy4 /ALWoaz6bQr97TH9SkcYmG+BGcmlEny1BWEElz0S8GiurFdRcDSV/bRfFpCrxP4T RMiWWgEBX55+LCDXgkdwblBnhYAwY6LuXpzC4D7YG/p5WlusPdwRY7Kks/61SToy i3numvDAW4OzFBhrIhXpfbpu6rfpvTAtHVeZPQzj6FPK7lKSdHiKsattVhlMKwOi vktJ7U6sVOOWEorJONXYGzm2MSb6d5s= -----END CERTIFICATE-----Generated at Mon Jul 21 23:54:48 2025 by rpki-client