$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft File: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft (raw, json) Hash identifier: BxKBjluPusHJRKDmhpiu4C5+QwGuI919giuU4p9nLUE= Subject key identifier: 97:6C:A1:D5:02:47:B2:33:62:69:52:6E:0D:F6:A9:A0:B0:7A:5D:83 Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft Manifest number: D6 Signing time: Mon 21 Jul 2025 05:50:27 +0000 Manifest this update: Mon 21 Jul 2025 05:50:27 +0000 Manifest next update: Mon 28 Jul 2025 05:50:27 +0000 Files and hashes: 1: PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl (hash: mKivm2hmQLuNTQbZ0ia+GdHhwsDFtyNBsN5pNDVRUoA=) 2: A63B6120238711F08D2B4460C4F9AE02.roa (hash: OMBfI+nHRaL8yyAWZKMqye5oo33aQnkkup2yUiK7Glg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B4A, serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Validity Not Before: Jul 21 05:50:27 2025 GMT Not After : Jul 28 05:50:27 2025 GMT Subject: CN=687dd523-d921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ed:8c:73:d5:b4:39:53:96:23:15:59:9e:c2: 2a:46:7c:c6:22:01:98:89:10:4a:21:8c:9b:04:c9: 4d:4f:9c:9d:10:4c:5b:9b:e7:f7:2f:7e:d7:92:cd: 16:5c:2d:a0:3a:4b:40:33:e2:69:ea:02:d1:a5:41: 93:a0:4b:ee:0d:f9:19:84:34:26:f4:c5:26:fc:a3: 84:ea:54:e6:72:cf:79:2e:25:4b:80:7a:7c:7f:c1: a5:31:f7:4a:5a:00:9c:5a:b0:2f:4c:36:33:3e:cd: 7f:89:71:fd:fc:f1:1d:36:57:89:46:43:56:b9:c4: b4:9e:3f:f5:c3:55:b9:10:34:6c:93:e5:17:d8:a9: da:05:3f:7a:b7:72:aa:6e:85:83:91:43:d8:73:7b: 02:19:5e:d7:05:55:11:98:65:e1:c6:93:77:76:83: 3e:1e:4b:74:0d:ff:6c:f3:ac:85:76:2c:72:ba:25: 91:3d:5a:fb:dd:46:5e:7e:de:fb:81:31:8a:f2:db: 52:d6:a3:2f:f7:6e:e6:08:03:df:87:e8:5f:f5:81: f1:fb:6d:4e:a3:28:c8:0b:01:b3:0f:a3:84:b3:7d: f3:69:69:29:31:5b:0e:1a:1a:eb:f4:b1:07:3a:f6: c9:e0:af:19:00:35:8c:35:ac:d3:81:6f:e1:dc:5d: d1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6C:A1:D5:02:47:B2:33:62:69:52:6E:0D:F6:A9:A0:B0:7A:5D:83 X509v3 Authority Key Identifier: keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:89:68:92:65:d8:95:bc:58:cf:58:63:f9:95:63:d3:cf:42: dd:de:f0:4a:01:f6:62:ed:26:07:78:53:47:07:95:59:19:7b: a6:94:cb:29:51:30:d3:63:aa:58:30:3f:90:16:71:2a:13:0a: f9:3e:81:e9:29:57:63:7e:e7:2d:56:02:2c:07:7e:28:cb:df: 93:c9:70:d5:95:cb:e3:39:06:2a:eb:2f:ad:f5:76:74:87:84: e0:7f:45:74:37:7f:75:ce:b1:27:5a:31:fa:2e:8e:16:48:6a: b9:01:25:e8:42:f1:aa:77:92:5d:eb:17:be:79:83:5b:1a:1c: 9d:a2:d8:c6:9a:b8:49:25:9b:a5:bb:60:b0:e1:ba:3d:fc:7f: b8:34:e1:d9:22:a5:f2:9e:c4:61:0d:b8:b2:b5:a8:ea:44:55: 2a:c0:7b:7c:ea:2e:82:f6:e8:56:29:8f:f4:98:a4:1b:ae:19: 42:0d:22:81:09:1a:41:7d:4a:a8:f4:77:9f:e7:4c:67:49:f1: 91:2e:4e:f1:d7:e9:d6:23:8c:12:a3:04:9d:48:9b:7f:cd:99: 91:85:75:5f:b5:25:0a:23:85:dc:3f:c3:2b:86:7d:3f:34:0b: c6:8d:e6:15:f7:9b:f2:a5:2e:dc:c9:ca:4a:c6:4b:82:cd:d2: 6c:8f:68:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCNEExMTAvBgNVBAUTKDNDMzU4N0RDM0FGMkU5MzdFQ0RCNjVBODM4OTI3NTlB NDFDODg1MEIwHhcNMjUwNzIxMDU1MDI3WhcNMjUwNzI4MDU1MDI3WjAYMRYwFAYD VQQDEw02ODdkZDUyMy1kOTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwe2Mc9W0OVOWIxVZnsIqRnzGIgGYiRBKIYybBMlNT5ydEExbm+f3L37Xks0W XC2gOktAM+Jp6gLRpUGToEvuDfkZhDQm9MUm/KOE6lTmcs95LiVLgHp8f8GlMfdK WgCcWrAvTDYzPs1/iXH9/PEdNleJRkNWucS0nj/1w1W5EDRsk+UX2KnaBT96t3Kq boWDkUPYc3sCGV7XBVURmGXhxpN3doM+Hkt0Df9s86yFdixyuiWRPVr73UZeft77 gTGK8ttS1qMv927mCAPfh+hf9YHx+21OoyjICwGzD6OEs33zaWkpMVsOGhrr9LEH OvbJ4K8ZADWMNazTgW/h3F3RnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdsodUC R7IzYmlSbg32qaCwel2DMB8GA1UdIwQYMBaAFDw1h9w68uk37NtlqDiSdZpByIUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEI0QS9FMjY0OTlBMjJG ODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZUZnMyMldvT0pKMW1rSElo UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BEV0gzRHJ5NlRmczIyV29PSkoxbWtISWhRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEI0QS9FMjY0OTlBMjJGODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZU ZnMyMldvT0pKMW1rSEloUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9iWiSZdiVvFjPWGP5lWPTz0Ld3vBKAfZi7SYHeFNHB5VZGXumlMsp UTDTY6pYMD+QFnEqEwr5PoHpKVdjfuctVgIsB34oy9+TyXDVlcvjOQYq6y+t9XZ0 h4Tgf0V0N391zrEnWjH6Lo4WSGq5ASXoQvGqd5Jd6xe+eYNbGhydotjGmrhJJZul u2Cw4bo9/H+4NOHZIqXynsRhDbiytajqRFUqwHt86i6C9uhWKY/0mKQbrhlCDSKB CRpBfUqo9Hef50xnSfGRLk7x1+nWI4wSowSdSJt/zZmRhXVftSUKI4XcP8Mrhn0/ NAvGjeYV95vypS7cycpKxkuCzdJsj2hc -----END CERTIFICATE-----Generated at Mon Jul 21 12:46:16 2025 by rpki-client