$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: Wwhy8QUpcrna7XMwEGPoUhlLXKBToV6HYIE7kZL6VcA= Subject key identifier: B4:82:2C:70:DE:B9:98:78:0D:6C:D2:81:97:82:F6:18:C8:F6:89:0D Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 78 Signing time: Sat 19 Jul 2025 07:02:20 +0000 Manifest this update: Sat 19 Jul 2025 07:02:19 +0000 Manifest next update: Sat 26 Jul 2025 07:02:19 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: HIsBQZ/TuWhvLboeFo48sGXfcS4jhJ7li1ZmjPedYJY=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:02:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Jul 19 07:02:19 2025 GMT Not After : Jul 26 07:02:19 2025 GMT Subject: CN=687b42fc-9eb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:89:9a:2c:cf:dd:c6:00:76:6a:0e:84:16:b4: 32:8b:f8:ea:c9:d9:c6:3c:98:60:85:56:7e:49:b1: d9:ed:78:74:7a:1a:55:9f:d6:4a:b8:bf:04:25:3a: b6:ec:71:88:74:54:e3:6e:5e:94:08:41:8a:ae:33: cf:4c:4e:11:3e:3f:1b:bb:47:fe:3e:38:0e:d6:f7: 0a:6f:5b:1e:3e:6f:c2:5a:9f:b0:3b:a2:77:cc:29: 22:dd:c0:20:0a:e1:e2:90:51:31:af:c2:70:23:81: 61:73:45:40:e8:8d:a1:2a:f1:4b:69:ad:32:d5:84: ce:c1:ad:1d:c9:6d:40:cc:1c:19:ab:17:b2:38:25: 91:ba:e6:88:ef:b0:22:a0:9b:f9:eb:c2:94:39:b1: 25:5f:7b:c4:48:5a:6f:a4:f1:c4:cc:27:8f:91:54: 4d:d1:83:17:20:42:af:a1:9a:88:d2:c6:2a:9d:42: 73:59:79:a4:e6:e3:3b:db:bd:de:b4:21:21:74:cd: 69:86:5c:a8:11:85:99:fb:be:30:df:7c:19:c1:3d: a1:84:14:33:76:9d:66:39:5d:72:c4:10:12:64:ff: 66:dd:1a:9d:32:fd:92:74:0d:b9:61:cb:9e:9e:25: bc:55:2a:7a:d6:f1:4c:2b:af:b7:5c:7e:dc:56:5b: e2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:82:2C:70:DE:B9:98:78:0D:6C:D2:81:97:82:F6:18:C8:F6:89:0D X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:59:ee:56:9f:d3:15:b8:af:25:62:04:56:41:76:3f:e6:51: 8f:84:70:df:07:4b:85:1e:ba:23:e1:15:6a:be:f0:5e:a7:8e: a0:a2:4e:82:d7:97:08:6b:32:8d:13:ee:6b:7c:17:74:2b:88: 73:5d:5f:c4:fd:76:af:15:94:16:37:d6:a0:13:98:85:8f:12: 9b:de:d5:97:38:4d:0d:d1:38:2d:bf:ae:d9:26:b4:10:4a:03: 4d:88:f5:9d:ca:3f:31:cf:42:aa:7c:66:1e:1e:b5:54:2c:52: aa:88:e4:68:8f:0b:9a:2f:07:b0:7c:55:f8:8b:08:08:48:9d: 0d:84:e5:25:2d:d8:e9:94:72:1c:45:f1:bf:a4:5e:b1:ab:6a: 62:4b:75:09:c7:59:64:fa:65:c4:2d:83:48:c6:f8:62:83:b7: 61:8b:ef:c9:30:71:6a:41:23:42:99:af:ca:42:11:ec:6e:74: c3:85:e6:b1:bc:ea:72:b9:d3:75:4f:b1:3b:f9:a8:c4:6a:88: cd:cf:50:c7:d8:99:06:c8:ed:aa:eb:32:eb:d5:f3:91:68:0b: b5:0d:dd:88:ac:11:70:f4:ca:03:be:28:75:11:75:7a:43:d1: 13:a8:57:62:b2:7b:e2:58:b6:1d:e6:db:e0:31:ab:92:1f:e3: 47:51:44:41 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTBCNDExMC8GA1UEBRMoMEZENDQzNzUyMURCNUMwQkM5OUU0NUI1OTc1NEZGN0I2 NzFGODZGMzAeFw0yNTA3MTkwNzAyMTlaFw0yNTA3MjYwNzAyMTlaMBgxFjAUBgNV BAMTDTY4N2I0MmZjLTllYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/iZosz93GAHZqDoQWtDKL+OrJ2cY8mGCFVn5JsdnteHR6GlWf1kq4vwQlOrbs cYh0VONuXpQIQYquM89MThE+Pxu7R/4+OA7W9wpvWx4+b8Jan7A7onfMKSLdwCAK 4eKQUTGvwnAjgWFzRUDojaEq8UtprTLVhM7BrR3JbUDMHBmrF7I4JZG65ojvsCKg m/nrwpQ5sSVfe8RIWm+k8cTMJ4+RVE3RgxcgQq+hmojSxiqdQnNZeaTm4zvbvd60 ISF0zWmGXKgRhZn7vjDffBnBPaGEFDN2nWY5XXLEEBJk/2bdGp0y/ZJ0Dblhy56e JbxVKnrW8Uwrr7dcftxWW+KpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUtIIscN65 mHgNbNKBl4L2GMj2iQ0wHwYDVR0jBBgwFoAUD9RDdSHbXAvJnkW1l1T/e2cfhvMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFMEI0L0U5NjQ4OUFFQUYz ODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRDlSRGRTSGJYQXZKbmtXMWwxVF9lMmNmaHZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF MEI0L0U5NjQ4OUFFQUYzODExRUZBMjBERDAxM0M0RjlBRTAyL0Q5UkRkU0hiWEF2 Sm5rVzFsMVRfZTJjZmh2TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGVZ7laf0xW4ryViBFZBdj/mUY+EcN8HS4UeuiPhFWq+8F6njqCiToLX lwhrMo0T7mt8F3QriHNdX8T9dq8VlBY31qATmIWPEpve1Zc4TQ3ROC2/rtkmtBBK A02I9Z3KPzHPQqp8Zh4etVQsUqqI5GiPC5ovB7B8VfiLCAhInQ2E5SUt2OmUchxF 8b+kXrGramJLdQnHWWT6ZcQtg0jG+GKDt2GL78kwcWpBI0KZr8pCEexudMOF5rG8 6nK503VPsTv5qMRqiM3PUMfYmQbI7arrMuvV85FoC7UN3YisEXD0ygO+KHURdXpD 0ROoV2Kye+JYth3m2+Axq5If40dRREE= -----END CERTIFICATE-----Generated at Mon Jul 21 00:32:05 2025 by rpki-client