$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft File: dEWTNjfMowmkwWGr_t-HecsqsT8.mft (raw, json) Hash identifier: HFNV1F53NJHu9MHr4OoYZOFIofkcXX+IR/zSL1/oguM= Subject key identifier: 40:B4:34:7F:6A:8D:2E:5D:C9:44:F5:47:2A:C7:76:3F:C5:BB:BD:9E Authority key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F Certificate issuer: /CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Certificate serial: 8E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft Manifest number: 8D Signing time: Sat 19 Jul 2025 05:16:41 +0000 Manifest this update: Sat 19 Jul 2025 05:16:41 +0000 Manifest next update: Sat 26 Jul 2025 05:16:41 +0000 Files and hashes: 1: dEWTNjfMowmkwWGr_t-HecsqsT8.crl (hash: n8DZpoLirwvIwGOpWmp2oDZBxrqu4P0bg07pUh+Ijy8=) 2: 9E3D544AFFFD11EF8D8A924EC4F9AE02.roa (hash: kvDpEJ4vNqB5v/40TPE8rSrj+LHjgO0UCi0Xf8q1/Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:16:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E53C, serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Validity Not Before: Jul 19 05:16:41 2025 GMT Not After : Jul 26 05:16:41 2025 GMT Subject: CN=687b2a39-ee23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:dd:44:f3:b5:88:65:91:11:f3:86:f4:aa: fa:85:e0:4d:ce:a4:79:77:f8:90:8a:b4:92:ac:ca: a3:58:26:7a:f8:4a:73:c1:e6:22:25:e7:ad:ed:3c: fe:27:5b:87:e2:2f:13:50:7b:65:2d:3f:a5:18:ff: e0:e3:71:7e:c0:d5:d5:c8:db:f5:ee:f3:a1:8a:27: f6:60:1b:8e:44:a1:36:ec:70:a8:9f:ba:48:6f:c7: 74:a2:05:a5:b9:5d:05:90:d7:71:e2:7b:dd:90:a6: 52:e7:c3:77:cc:59:d6:eb:30:88:e6:3b:b6:ad:04: d6:5a:8b:41:82:15:c3:fd:7d:13:d4:30:ce:71:3f: 84:8f:6e:a1:03:35:d9:d0:c2:f8:ac:31:f4:86:f3: e9:35:25:b1:3a:cb:8a:f4:ec:67:7b:4d:07:a2:9e: a7:72:b1:93:00:23:b6:fd:7f:bc:3b:ba:0e:2f:be: 6d:d5:21:fa:8d:21:a7:03:a6:3b:43:52:44:5c:f7: 58:d0:b0:f7:a4:b4:52:cf:73:f1:da:c8:fd:6d:d9: fc:9c:ea:1f:6e:39:11:b4:d7:e2:e9:3c:e0:e1:20: d8:6a:58:c6:4a:75:7b:c9:b9:a0:97:ce:4c:7b:c4: 3f:d4:48:8f:39:05:9e:af:ca:b2:5f:25:7c:92:9b: ff:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B4:34:7F:6A:8D:2E:5D:C9:44:F5:47:2A:C7:76:3F:C5:BB:BD:9E X509v3 Authority Key Identifier: keyid:74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:98:40:ab:11:83:87:a5:8f:9d:00:a0:72:5a:15:62:50:8e: 6b:84:79:18:72:c5:5a:30:60:a4:17:66:0c:a1:33:8c:a0:52: 0e:4a:92:ef:35:b5:14:e0:3e:b4:ad:84:af:38:99:fc:24:eb: 8d:bc:4b:d1:32:f6:7c:7e:37:7b:26:37:f1:00:41:26:64:c1: d5:74:76:4f:01:c0:d1:61:f2:a6:33:db:58:57:34:48:12:c5: 71:61:ba:4a:3a:15:3c:a4:c6:90:32:d3:e4:a2:ec:60:98:5f: ab:fe:b5:69:b2:1f:2b:78:15:da:0e:40:58:43:99:d0:a0:ae: f8:97:19:b5:5c:7b:bb:77:3a:f7:38:33:24:41:5c:17:16:df: c6:38:5a:ed:a1:a8:bf:da:cf:66:c8:79:5b:06:49:79:26:6c: 04:9c:46:48:9d:d0:cf:b9:8f:c8:df:c1:3d:76:3b:22:17:ab: 53:d2:85:25:cf:5e:93:87:a0:45:89:8f:33:9b:ef:87:dd:c0: f3:fd:60:52:8d:87:31:64:4d:36:24:53:97:96:1a:8e:56:02: fa:84:84:1b:99:19:13:1d:74:9f:7c:79:d9:e6:4d:2f:51:38: 2c:57:12:00:ef:47:47:2b:a0:1a:51:4e:a9:b3:c5:3b:c3:ec: af:b8:46:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1M0MxMTAvBgNVBAUTKDc0NDU5MzM2MzdDQ0EzMDlBNEMxNjFBQkZFREY4Nzc5 Q0IyQUIxM0YwHhcNMjUwNzE5MDUxNjQxWhcNMjUwNzI2MDUxNjQxWjAYMRYwFAYD VQQDEw02ODdiMmEzOS1lZTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz3dRPO1iGWREfOG9Kr6heBNzqR5d/iQirSSrMqjWCZ6+EpzweYiJeet7Tz+ J1uH4i8TUHtlLT+lGP/g43F+wNXVyNv17vOhiif2YBuORKE27HCon7pIb8d0ogWl uV0FkNdx4nvdkKZS58N3zFnW6zCI5ju2rQTWWotBghXD/X0T1DDOcT+Ej26hAzXZ 0ML4rDH0hvPpNSWxOsuK9Oxne00Hop6ncrGTACO2/X+8O7oOL75t1SH6jSGnA6Y7 Q1JEXPdY0LD3pLRSz3Px2sj9bdn8nOofbjkRtNfi6Tzg4SDYaljGSnV7ybmgl85M e8Q/1EiPOQWer8qyXyV8kpv/nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEC0NH9q jS5dyUT1RyrHdj/Fu72eMB8GA1UdIwQYMBaAFHRFkzY3zKMJpMFhq/7fh3nLKrE/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTUzQy8yOUI4Njk5NDkw M0ExMUVGQkYxNTZEODFDNEY5QUUwMi9kRVdUTmpmTW93bWt3V0dyX3QtSGVjc3Fz VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RFV1ROamZNb3dta3dXR3JfdC1IZWNzcXNUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTUzQy8yOUI4Njk5NDkwM0ExMUVGQkYxNTZEODFDNEY5QUUwMi9kRVdUTmpmTW93 bWt3V0dyX3QtSGVjc3FzVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgmECrEYOHpY+dAKByWhViUI5rhHkYcsVaMGCkF2YMoTOMoFIOSpLv NbUU4D60rYSvOJn8JOuNvEvRMvZ8fjd7JjfxAEEmZMHVdHZPAcDRYfKmM9tYVzRI EsVxYbpKOhU8pMaQMtPkouxgmF+r/rVpsh8reBXaDkBYQ5nQoK74lxm1XHu7dzr3 ODMkQVwXFt/GOFrtoai/2s9myHlbBkl5JmwEnEZIndDPuY/I38E9djsiF6tT0oUl z16Th6BFiY8zm++H3cDz/WBSjYcxZE02JFOXlhqOVgL6hIQbmRkTHXSffHnZ5k0v UTgsVxIA70dHK6AaUU6ps8U7w+yvuEa8 -----END CERTIFICATE-----Generated at Sun Jul 20 19:20:39 2025 by rpki-client