$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft File: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft (raw, json) Hash identifier: hyJMCeC53Qb/t+XBV3OtBS6J8f6U6v0kvPFnRIt6+Io= Subject key identifier: 60:76:61:79:7B:02:4D:12:6C:D6:5D:69:C4:42:C4:45:13:3F:BA:C7 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 0465 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft Manifest number: 043D Signing time: Sat 19 Jul 2025 00:45:09 +0000 Manifest this update: Sat 19 Jul 2025 00:45:08 +0000 Manifest next update: Sat 26 Jul 2025 00:45:08 +0000 Files and hashes: 1: d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl (hash: dk6QZD038Ro/QnVL5Lq7Vm8d/VmsOXymShsD9/0UXJI=) 2: EEECC55A8C3611EFA07E612DC4F9AE02.roa (hash: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo=) 3: 216DB034DE9711EC9289256FC4F9AE02.roa (hash: +Y2vKS8CZ7xVCXV7DmrOc6o0OVVkIHves16LK2wsX2I=) 4: 204E25DADE9711EC9289256FC4F9AE02.roa (hash: Nm0NB5K/NvPqifGuFp/i7DvZfN/unt+xIyxa1mf1Ru8=) 5: E184C6F48F2C11EEA361B22FC4F9AE02.roa (hash: m7hFb23btwRa7iUoc5sSfQwuK6EzzQbsJrT19RdsUzA=) 6: 1FBEA1EEDE9711EC9289256FC4F9AE02.roa (hash: wFyDTsNGRzgAv8mhqHHalbGpjw+H79Gqqrm8IklHVfE=) 7: E0C5B7148F2C11EEA361B22FC4F9AE02.roa (hash: Aqyl2hhEx5BpBctkE5rWM8Kv0ZDOqQAIfUrt5yWaYks=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:45:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81, serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Validity Not Before: Jul 19 00:45:08 2025 GMT Not After : Jul 26 00:45:08 2025 GMT Subject: CN=687aea95-d4b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d0:f0:81:2b:93:13:c5:09:99:7e:9a:0d:a3: e6:e9:1c:1a:4a:92:e8:56:74:b0:df:fa:7c:57:92: 42:f6:9c:04:42:58:ba:64:ba:cb:b0:8f:7e:4b:6d: f2:4e:ab:7e:08:b1:50:29:c6:14:55:41:c4:6c:ff: 8c:a2:cf:31:29:3c:e1:0d:63:09:d3:cc:a8:7e:07: 83:95:02:29:66:7c:1f:69:3b:9c:42:69:88:e7:9d: 29:67:a9:c7:34:f4:f6:aa:a8:6e:75:70:5e:98:fe: 44:40:8c:69:80:d7:38:43:4e:54:25:14:87:5e:0c: bc:d7:97:7f:40:de:ea:9a:af:3a:92:c2:61:2a:b4: 1d:2c:7a:3c:a5:d8:f0:4e:86:1f:d1:60:13:55:96: 98:34:4b:54:31:85:7d:82:49:16:82:09:32:97:56: eb:29:09:f5:03:48:ec:2b:62:70:df:5f:22:6f:c1: d0:a0:e5:fa:b9:5c:33:19:8f:57:aa:c4:3b:72:84: 52:e5:f5:f4:4b:52:7c:f3:97:5c:09:5d:3d:13:fa: dd:98:88:69:81:36:89:46:20:99:19:93:66:37:d0: d9:e8:ff:f5:04:a7:c8:66:33:b3:7e:77:cc:f5:f8: 51:03:84:7a:0e:c0:d8:5b:5b:d4:79:8a:36:79:35: 0b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:76:61:79:7B:02:4D:12:6C:D6:5D:69:C4:42:C4:45:13:3F:BA:C7 X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:2d:a2:61:b9:95:48:08:6d:39:d0:33:5c:c7:2a:7c:97:3d: 52:0c:2d:28:a2:31:0a:20:f8:5e:df:fd:20:9c:70:a4:72:89: ef:8e:82:aa:e2:8e:07:09:d5:d2:4d:39:44:73:00:03:91:61: 05:3c:3c:fd:f8:c8:b1:2b:78:9e:b1:e2:c5:7a:31:76:17:05: d7:84:c9:b1:6b:c0:0a:3e:82:05:ca:27:91:9f:00:74:09:20: bc:d8:33:22:15:f5:d1:b3:52:28:80:4f:17:f6:7e:15:ed:76: f0:f7:30:4b:df:82:39:cd:1a:fc:7c:11:39:ae:0d:34:ac:57: 77:82:b2:f4:ca:88:4e:e4:cb:55:2e:60:1c:20:4d:e4:f2:60: 18:7a:7e:10:cb:29:37:8d:ef:57:01:47:84:9c:c0:4e:d3:c2: 11:f8:42:a0:0b:90:04:d6:03:2c:93:14:35:ac:6b:35:35:9f: b7:84:46:71:a6:b8:75:e0:e1:08:74:4b:36:b3:25:2c:9d:8b: 2f:0d:36:4d:16:69:d9:da:a7:7a:58:bb:a0:32:8d:94:d5:29: 98:c6:5d:fb:86:e5:4f:52:47:f5:75:1d:9a:e7:16:62:b4:e2: b0:26:6d:07:cb:5e:23:d9:9b:1b:ea:33:77:fc:11:f9:e6:68: 0a:92:63:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjUwNzE5MDA0NTA4WhcNMjUwNzI2MDA0NTA4WjAYMRYwFAYD VQQDEw02ODdhZWE5NS1kNGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy9DwgSuTE8UJmX6aDaPm6RwaSpLoVnSw3/p8V5JC9pwEQli6ZLrLsI9+S23y Tqt+CLFQKcYUVUHEbP+Mos8xKTzhDWMJ08yofgeDlQIpZnwfaTucQmmI550pZ6nH NPT2qqhudXBemP5EQIxpgNc4Q05UJRSHXgy815d/QN7qmq86ksJhKrQdLHo8pdjw ToYf0WATVZaYNEtUMYV9gkkWggkyl1brKQn1A0jsK2Jw318ib8HQoOX6uVwzGY9X qsQ7coRS5fX0S1J885dcCV09E/rdmIhpgTaJRiCZGZNmN9DZ6P/1BKfIZjOzfnfM 9fhRA4R6DsDYW1vUeYo2eTULBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGB2YXl7 Ak0SbNZdacRCxEUTP7rHMB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RUI4MS9DRjk2NjNDNjcwRjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xR cG11UEUyZ0xNRmktMWRtSkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1LaJhuZVICG050DNcxyp8lz1SDC0oojEKIPhe3/0gnHCkconvjoKq 4o4HCdXSTTlEcwADkWEFPDz9+MixK3ieseLFejF2FwXXhMmxa8AKPoIFyieRnwB0 CSC82DMiFfXRs1IogE8X9n4V7Xbw9zBL34I5zRr8fBE5rg00rFd3grL0yohO5MtV LmAcIE3k8mAYen4Qyyk3je9XAUeEnMBO08IR+EKgC5AE1gMskxQ1rGs1NZ+3hEZx prh14OEIdEs2syUsnYsvDTZNFmnZ2qd6WLugMo2U1SmYxl37huVPUkf1dR2a5xZi tOKwJm0Hy14j2Zsb6jN3/BH55mgKkmPc -----END CERTIFICATE-----Generated at Sun Jul 20 06:33:52 2025 by rpki-client