$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft File: CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json) Hash identifier: sf5zFom7NyJ3LAe3WCD7t2QSwnH1LmsltHBZqcQ4OiM= Subject key identifier: 7D:6B:32:00:9D:9C:1A:B2:ED:F9:76:18:C7:30:65:4F:EE:0A:FA:31 Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B Certificate issuer: /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft Manifest number: 5D Signing time: Fri 18 Jul 2025 23:40:01 +0000 Manifest this update: Fri 18 Jul 2025 23:40:00 +0000 Manifest next update: Fri 25 Jul 2025 23:40:00 +0000 Files and hashes: 1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: fJ6mFxK4rhjNXoBbA1I2Nw90wvvxh8owx82+6cv5apE=) 2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: MAjR+6vV6kQAbBvReYR67qji2ZeC3+thGK+jJVjSbNk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:40:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Validity Not Before: Jul 18 23:40:00 2025 GMT Not After : Jul 25 23:40:00 2025 GMT Subject: CN=687adb51-432e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7a:7d:e9:5a:cf:94:4f:f4:47:3d:6b:c0:fc: 94:9c:a2:3e:47:ab:85:e6:b8:f3:88:89:5c:72:d0: bc:fc:6f:a7:37:22:e0:63:50:b5:58:58:ec:09:b4: 6b:0d:f4:8d:9d:07:98:30:11:3c:2a:13:6a:81:09: 87:34:28:f9:2a:71:53:c6:a8:2e:bc:e2:83:4f:15: 93:34:35:85:ae:e3:94:8e:ed:df:d4:4a:c0:cb:ac: 4a:82:aa:86:fa:8d:9e:6a:d4:78:eb:60:53:59:61: 69:7a:93:ee:7e:57:6d:46:13:cb:b5:2a:32:7d:39: 7b:b3:e4:fa:77:e4:9d:f7:49:7f:f3:44:c7:39:f9: a6:3b:31:8f:d4:70:de:aa:d6:8b:e7:5f:a6:86:57: 82:c2:17:ac:f2:48:11:73:c2:5b:66:ec:6d:ab:81: 47:3f:07:25:c4:c8:68:ba:5e:81:d7:ce:48:b2:93: 25:e1:ca:8b:f7:81:ea:fd:b8:b3:06:23:07:ea:7e: f4:25:2a:f6:59:0c:37:72:ba:c7:3e:af:49:d8:8d: dc:85:0a:51:26:f7:3a:f5:83:b9:ef:85:b7:b9:62: 70:e5:14:f2:d2:32:4e:95:08:32:ba:ed:06:15:dc: 9b:ee:a0:fd:24:7c:ee:50:8a:28:9f:b4:bf:ca:eb: 94:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:6B:32:00:9D:9C:1A:B2:ED:F9:76:18:C7:30:65:4F:EE:0A:FA:31 X509v3 Authority Key Identifier: keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:94:1e:90:4e:5a:0c:82:fa:13:83:03:0c:c6:c2:d5:2f:c6: c7:7d:2c:8b:bb:be:c6:77:55:bc:6e:a5:2d:85:64:11:3f:64: 15:30:47:2d:7e:cf:9b:a1:1c:ee:7b:df:b5:a2:0e:30:9d:9c: 82:82:bc:88:dc:15:4c:80:b0:a2:ce:b5:67:4b:12:bd:28:82: b5:47:74:39:05:be:bf:89:9b:2d:e5:0f:5e:9a:ab:1b:50:33: c1:fd:09:67:c1:a9:ce:94:12:10:5c:bb:46:2e:42:a5:d8:14: a8:c3:07:ce:6f:d5:2a:af:df:d6:61:1f:19:e4:0f:42:ad:b7: 79:d0:5c:49:78:30:4c:41:4b:45:a0:8f:79:9b:d4:64:c6:89: a6:3d:f4:ed:cc:fb:c5:52:4f:29:ba:e6:63:62:dd:3e:7d:90: f6:94:64:a4:77:2c:b8:5a:57:38:30:d8:8d:3d:53:8d:c8:01: 64:8e:5d:c6:2c:8f:31:06:30:d1:e9:ee:1a:29:a1:22:04:3a: 9f:91:b7:cb:b4:05:ba:eb:1f:94:a9:0c:4b:6c:4f:e5:b8:66: 4f:eb:0c:b1:c9:59:99:e3:e0:a6:6b:f1:7f:6e:46:6b:6a:19: af:00:7b:82:55:eb:27:ef:60:a8:60:5d:ff:9a:ed:19:b6:ed: 5b:ff:65:c0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTAwRjExMC8GA1UEBRMoMDgzNTg3NDk3OEJBMzA5RUQ3REE0NjczRTc3MzlEOTMy MkYyNjI5QjAeFw0yNTA3MTgyMzQwMDBaFw0yNTA3MjUyMzQwMDBaMBgxFjAUBgNV BAMTDTY4N2FkYjUxLTQzMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0en3pWs+UT/RHPWvA/JScoj5Hq4XmuPOIiVxy0Lz8b6c3IuBjULVYWOwJtGsN 9I2dB5gwETwqE2qBCYc0KPkqcVPGqC684oNPFZM0NYWu45SO7d/USsDLrEqCqob6 jZ5q1HjrYFNZYWl6k+5+V21GE8u1KjJ9OXuz5Pp35J33SX/zRMc5+aY7MY/UcN6q 1ovnX6aGV4LCF6zySBFzwltm7G2rgUc/ByXEyGi6XoHXzkiykyXhyov3ger9uLMG IwfqfvQlKvZZDDdyusc+r0nYjdyFClEm9zr1g7nvhbe5YnDlFPLSMk6VCDK67QYV 3JvuoP0kfO5QiiiftL/K65R1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUfWsyAJ2c GrLt+XYYxzBlT+4K+jEwHwYDVR0jBBgwFoAUCDWHSXi6MJ7X2kZz53OdkyLyYpsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMDBGLzdEMkIxREYwRDdE MDExRUY5RUZDOTEwREM0RjlBRTAyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0RXSFNYaTZNSjdYMmtaejUzT2RreUx5WXBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MDBGLzdEMkIxREYwRDdEMDExRUY5RUZDOTEwREM0RjlBRTAyL0NEV0hTWGk2TUo3 WDJrWno1M09ka3lMeVlwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACyUHpBOWgyC+hODAwzGwtUvxsd9LIu7vsZ3VbxupS2FZBE/ZBUwRy1+ z5uhHO5737WiDjCdnIKCvIjcFUyAsKLOtWdLEr0ogrVHdDkFvr+Jmy3lD16aqxtQ M8H9CWfBqc6UEhBcu0YuQqXYFKjDB85v1Sqv39ZhHxnkD0Ktt3nQXEl4MExBS0Wg j3mb1GTGiaY99O3M+8VSTym65mNi3T59kPaUZKR3LLhaVzgw2I09U43IAWSOXcYs jzEGMNHp7hopoSIEOp+Rt8u0BbrrH5SpDEtsT+W4Zk/rDLHJWZnj4KZr8X9uRmtq Ga8Ae4JV6yfvYKhgXf+a7Rm27Vv/ZcA= -----END CERTIFICATE-----Generated at Sun Jul 20 18:39:14 2025 by rpki-client