$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: 35t/BuyYSEx3CAUPYJt4KyXSVPhcbEplIjbZ6v9LgEQ= Subject key identifier: 4B:74:84:18:6F:04:44:FD:F0:43:EF:66:EB:DB:91:F5:31:0D:16:31 Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: B0 Signing time: Sat 19 Jul 2025 06:13:30 +0000 Manifest this update: Sat 19 Jul 2025 06:13:29 +0000 Manifest next update: Sat 26 Jul 2025 06:13:29 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: 13nQDzoiym8ZbBmaMy8ukg4wa5FknidaBuf/Dd5k54k=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:13:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Jul 19 06:13:29 2025 GMT Not After : Jul 26 06:13:29 2025 GMT Subject: CN=687b378a-55e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ac:d9:46:1e:92:85:b6:93:2c:34:f9:16:3f: 15:ae:fe:69:c1:da:8c:06:5a:1f:c1:bb:7b:89:ab: f3:42:b9:ea:54:a6:57:0e:06:00:a2:f0:73:f4:d0: 51:c6:1c:50:5a:60:42:33:b2:97:87:65:ad:02:6d: c2:60:71:fa:30:dd:6e:7c:43:19:79:08:1a:c0:46: b4:f9:f7:81:19:ce:b7:c3:ff:b2:4a:ae:42:bc:a9: 2f:64:d9:23:3a:8e:76:47:63:ed:82:17:34:bf:24: a9:38:b1:04:d2:0a:8f:5b:55:ae:f3:ad:65:99:fc: 37:3c:58:85:29:61:c0:29:53:a1:b8:f7:61:a9:a9: 4d:96:fc:27:49:f5:79:24:7e:59:fc:c1:64:d8:51: 7a:a5:a2:30:32:ee:45:54:3a:b9:25:d1:d0:43:2b: 9a:87:88:7f:c2:09:96:5c:75:c2:ed:23:8c:53:1a: fb:f9:ff:a6:7c:d5:52:16:40:9e:8b:cb:c7:98:5b: 15:fb:2b:28:5e:2d:6e:a6:af:0c:93:9b:ce:cb:13: 1b:68:c4:dc:e6:95:b3:51:71:fc:6e:95:6d:cb:43: c9:3c:78:0c:36:fd:c1:32:26:86:63:61:e6:8b:21: 0a:5f:e7:fc:87:7d:a0:3d:4d:db:52:1e:45:c9:7b: 65:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:74:84:18:6F:04:44:FD:F0:43:EF:66:EB:DB:91:F5:31:0D:16:31 X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:22:f3:ed:dc:65:fa:91:a2:52:df:0c:c4:1b:08:fe:96:81: 47:dd:48:f7:11:39:ce:0e:1b:32:3b:20:43:3e:6e:69:10:ad: 45:40:a0:98:91:4a:11:c2:86:39:9b:f8:89:a7:d7:05:85:f0: 93:13:2f:ef:61:34:ef:d7:f6:3b:3e:3e:a5:32:2b:f5:0c:98: 46:f6:c7:fe:fe:a1:59:77:a2:4a:cb:20:05:80:66:da:58:ca: a3:43:50:d1:d7:3e:cb:30:60:53:f9:c1:b3:61:8b:14:30:80: 84:c5:20:38:0a:e9:c9:8e:b1:eb:c2:4c:41:04:8d:2d:f6:86: 7b:89:3b:3e:49:95:1d:00:70:83:f1:1e:7f:3f:2a:0b:70:1f: 3a:48:93:de:f4:28:ef:48:e2:80:a2:da:41:3a:4e:70:05:e7: a6:8e:42:b8:b3:79:1b:b3:e9:85:0e:fa:a8:e4:5c:5d:c3:c2: 38:27:6b:2d:1f:86:f8:9f:23:c2:14:5b:7e:dc:9a:ab:70:43: 10:ca:34:4b:c3:6c:2c:cc:54:3f:a9:32:45:55:95:f8:f0:4c: 9d:ef:e0:f9:13:e4:49:59:4b:36:86:3c:5c:5e:7d:da:7a:51: a9:83:a4:16:c2:9a:f1:e6:2e:06:d8:41:12:a1:dc:8d:5b:5d: bc:15:99:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUwNzE5MDYxMzI5WhcNMjUwNzI2MDYxMzI5WjAYMRYwFAYD VQQDEw02ODdiMzc4YS01NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5KzZRh6ShbaTLDT5Fj8Vrv5pwdqMBlofwbt7iavzQrnqVKZXDgYAovBz9NBR xhxQWmBCM7KXh2WtAm3CYHH6MN1ufEMZeQgawEa0+feBGc63w/+ySq5CvKkvZNkj Oo52R2Ptghc0vySpOLEE0gqPW1Wu861lmfw3PFiFKWHAKVOhuPdhqalNlvwnSfV5 JH5Z/MFk2FF6paIwMu5FVDq5JdHQQyuah4h/wgmWXHXC7SOMUxr7+f+mfNVSFkCe i8vHmFsV+ysoXi1upq8Mk5vOyxMbaMTc5pWzUXH8bpVty0PJPHgMNv3BMiaGY2Hm iyEKX+f8h32gPU3bUh5FyXtlNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEt0hBhv BET98EPvZuvbkfUxDRYxMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXIvPt3GX6kaJS3wzEGwj+loFH3Uj3ETnODhsyOyBDPm5pEK1FQKCY kUoRwoY5m/iJp9cFhfCTEy/vYTTv1/Y7Pj6lMiv1DJhG9sf+/qFZd6JKyyAFgGba WMqjQ1DR1z7LMGBT+cGzYYsUMICExSA4CunJjrHrwkxBBI0t9oZ7iTs+SZUdAHCD 8R5/PyoLcB86SJPe9CjvSOKAotpBOk5wBeemjkK4s3kbs+mFDvqo5Fxdw8I4J2st H4b4nyPCFFt+3JqrcEMQyjRLw2wszFQ/qTJFVZX48Eyd7+D5E+RJWUs2hjxcXn3a elGpg6QWwprx5i4G2EESodyNW128FZlD -----END CERTIFICATE-----Generated at Sun Jul 20 14:25:47 2025 by rpki-client