$ rpki-client -vvf rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft File: diAma5iRohjA5fLvKI94LVcX8rw.mft (raw, json) Hash identifier: fNNya6PSQZ59jqQLpjZ5b2ZYa2QDmJOoWpyavnWm+xA= Subject key identifier: EA:49:44:97:34:9F:E3:1A:A3:C2:50:66:DA:11:A3:30:40:6D:B5:C7 Authority key identifier: 76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC Certificate issuer: /CN=A911E660/serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft Manifest number: 73 Signing time: Mon 25 Aug 2025 07:22:31 +0000 Manifest this update: Mon 25 Aug 2025 07:22:30 +0000 Manifest next update: Mon 01 Sep 2025 07:22:30 +0000 Files and hashes: 1: diAma5iRohjA5fLvKI94LVcX8rw.crl (hash: A1C6uEGWSXVOGXyd/qy0TidXrc2K6glBOHZphzR5zQU=) 2: 4ECE44B0D24311EF919B6D12C4F9AE02.roa (hash: HTX8AzlBVBkYFaGVRN5GWHgC9HxdFLqil4uBj/GLN6g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 07:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E660, serialNumber=7620266B9891A218C0E5F2EF288F782D5717F2BC Validity Not Before: Aug 25 07:22:30 2025 GMT Not After : Sep 1 07:22:30 2025 GMT Subject: CN=68ac0f36-e7ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c6:9e:ee:33:d4:63:81:61:28:0e:57:4a:f8: 32:f5:12:a7:d2:02:33:32:c0:99:3c:b8:57:39:69: 6e:28:39:cf:9f:dd:e6:27:e2:c3:a4:3b:95:05:32: 44:6c:38:f0:a6:98:2c:18:2c:d2:da:d3:e7:98:b4: e5:81:43:7c:55:20:78:d5:75:73:b8:fd:2c:b9:a9: ea:bd:20:68:2d:b9:d8:24:0e:df:26:31:05:ec:a1: 73:99:10:b7:de:46:28:67:58:c1:6d:bd:f7:e8:bf: b9:d1:03:88:d2:5e:f1:f1:ab:02:0e:77:4a:ca:01: c6:c0:2d:d9:e7:2a:ca:89:36:eb:e5:0c:ea:fb:22: 47:70:d7:9f:51:d3:e4:20:81:eb:24:ee:a1:cd:bb: 9f:c7:13:12:84:76:a1:5d:c6:8c:de:da:d7:c3:d7: 43:32:d2:21:e3:61:d9:35:3a:f8:04:2a:ec:69:a8: 1d:7c:c9:58:f9:c4:a2:c1:3d:5b:f3:5c:a9:d1:81: 25:86:84:49:20:f5:50:a7:8c:bf:3a:75:eb:6f:bf: 7a:4e:0a:af:2e:3b:d6:ea:c6:0b:9a:dd:72:ba:30: e2:d7:d0:df:52:1d:42:fe:bc:93:76:eb:c3:b1:a4: 1f:ee:91:9f:93:cf:cc:e4:9e:21:3c:8f:b9:2f:86: 62:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:49:44:97:34:9F:E3:1A:A3:C2:50:66:DA:11:A3:30:40:6D:B5:C7 X509v3 Authority Key Identifier: keyid:76:20:26:6B:98:91:A2:18:C0:E5:F2:EF:28:8F:78:2D:57:17:F2:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/diAma5iRohjA5fLvKI94LVcX8rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E660/F98711DAD24211EF88C5BC11C4F9AE02/diAma5iRohjA5fLvKI94LVcX8rw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:e9:f5:14:79:92:f6:c8:ac:d8:cf:fb:84:24:00:e2:76:74: 07:a8:4c:8e:62:2b:bc:57:d3:35:43:4a:5e:0a:d8:aa:18:ab: 72:7f:01:04:b0:c0:6b:8b:35:43:2d:5b:04:5c:72:6a:5a:2b: e0:4f:df:e3:b2:db:96:11:89:5d:08:ad:d1:df:d6:24:8f:fb: 0e:83:39:bd:bb:57:38:93:6d:10:3d:d0:41:ca:b3:da:b0:cd: 94:65:fc:d0:b9:8c:87:1e:e4:a6:92:a8:bd:ed:09:67:45:9b: 05:52:7e:55:95:ad:26:f8:75:73:ff:bc:88:8b:20:f7:6f:9c: bb:cd:c8:f9:63:d4:76:76:b0:90:52:f8:b9:6f:24:e9:7c:65: ff:cf:7e:1b:cc:32:c7:f4:93:ab:ab:a4:04:f3:41:fb:d0:a0: 61:2e:68:82:1c:5c:45:81:7d:80:85:50:87:08:55:6a:e0:06: eb:59:7c:ed:24:17:5c:ff:66:3d:d0:25:d1:a4:24:03:e3:04: 61:c0:eb:04:f8:5f:d7:da:bc:1f:83:65:b1:ff:fe:67:11:d9: 39:0e:81:cc:fa:2a:72:cc:41:51:30:b3:0d:da:2d:86:5b:2d: 5d:fa:16:c9:98:70:68:cd:2b:be:7f:05:2c:8f:53:6b:9b:ec: e8:f7:95:08 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTY2MDExMC8GA1UEBRMoNzYyMDI2NkI5ODkxQTIxOEMwRTVGMkVGMjg4Rjc4MkQ1 NzE3RjJCQzAeFw0yNTA4MjUwNzIyMzBaFw0yNTA5MDEwNzIyMzBaMBgxFjAUBgNV BAMTDTY4YWMwZjM2LWU3ZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcxp7uM9RjgWEoDldK+DL1EqfSAjMywJk8uFc5aW4oOc+f3eYn4sOkO5UFMkRs OPCmmCwYLNLa0+eYtOWBQ3xVIHjVdXO4/Sy5qeq9IGgtudgkDt8mMQXsoXOZELfe RihnWMFtvffov7nRA4jSXvHxqwIOd0rKAcbALdnnKsqJNuvlDOr7Ikdw159R0+Qg gesk7qHNu5/HExKEdqFdxoze2tfD10My0iHjYdk1OvgEKuxpqB18yVj5xKLBPVvz XKnRgSWGhEkg9VCnjL86detvv3pOCq8uO9bqxgua3XK6MOLX0N9SHUL+vJN268Ox pB/ukZ+Tz8zkniE8j7kvhmIfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU6klElzSf 4xqjwlBm2hGjMEBttccwHwYDVR0jBBgwFoAUdiAma5iRohjA5fLvKI94LVcX8rww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNjYwL0Y5ODcxMURBRDI0 MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hqQTVmTHZLSTk0TFZjWDhy dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZGlBbWE1aVJvaGpBNWZMdktJOTRMVmNYOHJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFF NjYwL0Y5ODcxMURBRDI0MjExRUY4OEM1QkMxMUM0RjlBRTAyL2RpQW1hNWlSb2hq QTVmTHZLSTk0TFZjWDhydy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFrp9RR5kvbIrNjP+4QkAOJ2dAeoTI5iK7xX0zVDSl4K2KoYq3J/AQSw wGuLNUMtWwRccmpaK+BP3+Oy25YRiV0IrdHf1iSP+w6DOb27VziTbRA90EHKs9qw zZRl/NC5jIce5KaSqL3tCWdFmwVSflWVrSb4dXP/vIiLIPdvnLvNyPlj1HZ2sJBS +LlvJOl8Zf/PfhvMMsf0k6urpATzQfvQoGEuaIIcXEWBfYCFUIcIVWrgButZfO0k F1z/Zj3QJdGkJAPjBGHA6wT4X9favB+DZbH//mcR2TkOgcz6KnLMQVEwsw3aLYZb LV36FsmYcGjNK75/BSyPU2ub7Oj3lQg= -----END CERTIFICATE-----Generated at Mon Aug 25 23:35:47 2025 by rpki-client