$ rpki-client -vvf rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft File: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft (raw, json) Hash identifier: hiXgJn6RWnEiLrCS3mdWn+/g+/tYsuyI5y21t3eSoEQ= Subject key identifier: 69:0C:70:E8:A2:A9:6D:68:7B:27:C9:3A:A2:51:40:60:30:0E:AE:BF Authority key identifier: 0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 Certificate issuer: /CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Certificate serial: 024A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft Manifest number: 0247 Signing time: Tue 29 Jul 2025 02:29:23 +0000 Manifest this update: Tue 29 Jul 2025 02:29:22 +0000 Manifest next update: Tue 05 Aug 2025 02:29:22 +0000 Files and hashes: 1: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl (hash: dLBuQHUV+ESh1frmdfdEZ5tiF3yJFTj+ZFUwMoJB8oM=) 2: 88FCD2C62DBA11ED94AFED62C4F9AE02.roa (hash: XW5eQLHT9pjam4DydX+MPOf7MxBb8MiFoha5U/4pDCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 Aug 2025 02:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157ADC, serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Validity Not Before: Jul 29 02:29:22 2025 GMT Not After : Aug 5 02:29:22 2025 GMT Subject: CN=68883202-a499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:52:13:0c:12:37:8e:47:cf:68:ad:35:95:29: 3a:13:4e:4f:5f:e1:59:40:5b:e1:d3:a0:6b:38:6e: 32:cd:8f:b2:f6:19:31:02:b7:18:47:d3:bf:0d:00: 01:0e:9e:16:98:62:e9:f9:94:00:56:c3:32:1a:c5: e6:27:5c:05:f1:4e:a3:d7:cc:7a:0a:e7:81:c0:14: a9:83:ce:4d:15:2f:fa:fd:34:61:0e:35:8b:85:61: 42:ef:49:d4:7a:60:d9:84:11:4c:bc:9c:61:dc:bc: e5:bc:24:74:f3:f8:58:25:fc:25:c2:f6:ea:bf:a4: 8f:86:50:da:62:a1:67:11:17:b8:2a:89:f4:ed:dd: db:be:88:15:01:d9:d6:61:95:ca:58:bd:e0:f5:cd: 3e:9b:32:e2:23:23:ed:f4:58:81:59:0e:5b:7e:5c: 56:84:55:ac:58:23:8b:b5:f2:22:5b:aa:e4:e9:56: e5:b4:23:5a:96:e3:c8:4c:df:80:15:35:20:fd:5a: 27:a8:c0:88:6f:0a:71:52:96:58:dd:0f:aa:ad:59: 2f:d1:18:f8:e2:4d:9b:cd:18:1b:4a:15:78:7c:38: ec:b3:27:41:f8:f8:1a:89:7c:1a:62:af:72:91:e1: 17:fe:53:38:85:bf:53:ca:96:fd:dc:07:b6:9c:fb: ca:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:0C:70:E8:A2:A9:6D:68:7B:27:C9:3A:A2:51:40:60:30:0E:AE:BF X509v3 Authority Key Identifier: keyid:0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ba:d4:39:61:bd:24:80:4b:85:1c:a1:a4:b3:8c:12:ce:ea: d2:79:5a:74:56:15:14:51:cc:f2:a1:21:39:9a:7c:56:5c:68: 67:5c:2e:40:d8:9e:93:28:10:92:05:00:6d:c6:f8:88:84:54: f7:45:ae:ed:dc:98:6c:43:85:07:c1:86:e4:af:3a:7c:65:dd: 5b:18:a1:2e:fb:a3:71:e5:49:a8:1f:b2:dc:a1:a0:e1:61:ca: a7:3e:14:6c:8b:16:02:bb:d4:90:0c:77:bf:25:19:46:e2:3a: 51:41:da:de:49:8f:62:ad:29:ac:8d:dc:3d:df:e2:e9:23:a7: ff:16:ea:3b:b6:44:bc:92:87:7a:7d:34:57:eb:b6:44:c7:7e: d2:9a:b6:a7:43:fa:bf:f4:ac:f9:7c:bf:48:46:bd:e4:c1:48: 64:1d:e0:98:d5:1c:1a:18:5e:68:cc:3f:9b:2d:bf:18:7e:74: 87:bf:03:bd:0c:90:8a:e6:9f:7d:2a:a4:8e:42:8a:1c:a9:72: 8e:b7:0b:71:0b:cc:24:32:40:a5:7e:a5:d1:64:aa:2f:7c:f3: e5:6b:57:00:a2:c7:b0:9d:61:1e:93:a3:0d:d8:0c:3e:17:ae: fe:26:dc:7a:be:99:a5:a6:49:a2:61:93:aa:21:bb:19:10:a5: c3:35:21:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBREMxMTAvBgNVBAUTKDBDNEMxNzIyOUM2QUI2N0Y1NDNGRUM5QzREMDNFNUZF RTRFRDJGRjYwHhcNMjUwNzI5MDIyOTIyWhcNMjUwODA1MDIyOTIyWjAYMRYwFAYD VQQDEw02ODg4MzIwMi1hNDk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVITDBI3jkfPaK01lSk6E05PX+FZQFvh06BrOG4yzY+y9hkxArcYR9O/DQAB Dp4WmGLp+ZQAVsMyGsXmJ1wF8U6j18x6CueBwBSpg85NFS/6/TRhDjWLhWFC70nU emDZhBFMvJxh3LzlvCR08/hYJfwlwvbqv6SPhlDaYqFnERe4Kon07d3bvogVAdnW YZXKWL3g9c0+mzLiIyPt9FiBWQ5bflxWhFWsWCOLtfIiW6rk6VbltCNaluPITN+A FTUg/VonqMCIbwpxUpZY3Q+qrVkv0Rj44k2bzRgbShV4fDjssydB+PgaiXwaYq9y keEX/lM4hb9Typb93Ae2nPvK/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGkMcOii qW1oeyfJOqJRQGAwDq6/MB8GA1UdIwQYMBaAFAxMFyKcarZ/VD/snE0D5f7k7S/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0FEQy9GNTc1ODlFMjJE QjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRuOVVQLXljVFFQbF91VHRM X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFd1hJcHhxdG45VVAteWNUUVBsX3VUdExfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0FEQy9GNTc1ODlFMjJEQjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRu OVVQLXljVFFQbF91VHRMX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9utQ5Yb0kgEuFHKGks4wSzurSeVp0VhUUUczyoSE5mnxWXGhnXC5A 2J6TKBCSBQBtxviIhFT3Ra7t3JhsQ4UHwYbkrzp8Zd1bGKEu+6Nx5UmoH7LcoaDh YcqnPhRsixYCu9SQDHe/JRlG4jpRQdreSY9irSmsjdw93+LpI6f/Fuo7tkS8kod6 fTRX67ZEx37SmranQ/q/9Kz5fL9IRr3kwUhkHeCY1RwaGF5ozD+bLb8YfnSHvwO9 DJCK5p99KqSOQoocqXKOtwtxC8wkMkClfqXRZKovfPPla1cAosewnWEek6MN2Aw+ F67+Jtx6vpmlpkmiYZOqIbsZEKXDNSFc -----END CERTIFICATE-----Generated at Tue Jul 29 05:34:15 2025 by rpki-client