$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: UcI8XddBw1iyAlxvvsUsf61rWwzO/qMZPOaSazjkEfo= Subject key identifier: 81:22:A2:10:A1:BE:F9:7F:A3:69:87:18:14:4E:D4:3A:49:17:1D:0E Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0EA8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0EA0 Signing time: Sun 24 Aug 2025 17:38:27 +0000 Manifest this update: Sun 24 Aug 2025 17:38:27 +0000 Manifest next update: Sun 31 Aug 2025 17:38:27 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: 3Rs39sITRTjCDeMlIzhLq23jwkZX4hLB1f1A1hLIRsU=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:38:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3752 (0xea8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Aug 24 17:38:27 2025 GMT Not After : Aug 31 17:38:27 2025 GMT Subject: CN=68ab4e13-96b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:06:1a:28:39:4d:a5:cf:0a:ef:54:d6:e9:d3: b7:cc:05:6d:29:5a:e3:71:a8:75:48:e4:ad:6c:99: 4a:16:fe:dd:ae:b8:5d:7a:2e:58:f8:b8:3d:6d:40: 4e:2e:f1:7d:2d:cf:49:81:b6:83:bf:a9:b9:c1:ae: 4e:2d:be:77:05:dd:6a:e7:39:45:f7:56:f4:da:6f: 1f:c8:70:86:46:6c:3b:25:fc:38:c9:cc:d1:4a:40: 0b:50:8f:fd:cd:72:e2:4d:10:ef:db:78:dd:f2:4c: 97:34:a2:e7:71:0f:bc:01:61:9b:5d:72:92:76:8b: 42:37:b8:92:be:ea:93:eb:85:25:c0:e7:d4:6f:bd: 64:0c:08:fc:70:4e:3b:a1:95:a7:5a:1b:29:e4:68: 54:ee:66:6a:e3:24:06:5e:94:24:36:03:ea:da:c6: 58:ca:d3:f2:89:8f:8a:ba:1d:d0:db:75:ab:b2:b5: e7:02:9e:a7:d8:a7:73:b0:ec:33:96:75:1f:7f:71: e0:a2:14:13:e8:d6:fb:d8:0f:96:ae:57:db:6b:5b: fb:f4:97:2d:59:a8:d5:56:f0:25:fa:80:6c:ef:69: e5:b8:bc:a9:ba:e5:bf:33:7c:4f:ac:bd:b8:a4:3c: 47:c2:7b:d3:cb:7a:ef:52:5a:d4:19:39:db:c1:7e: 66:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:22:A2:10:A1:BE:F9:7F:A3:69:87:18:14:4E:D4:3A:49:17:1D:0E X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:f6:e7:34:fb:34:e1:44:e8:11:6b:76:96:bc:ca:79:a7:71: 6a:00:9c:92:f2:16:27:85:99:c1:86:6d:a1:db:85:b9:98:b7: f6:9e:97:ac:2f:43:29:ba:7d:82:55:a7:51:50:2f:fb:a6:7f: aa:ad:a6:16:86:b0:1e:f7:28:cc:12:c5:4f:5d:7b:b4:f6:a2: c9:3e:b0:24:9c:64:54:15:98:a8:4b:0b:38:7c:01:eb:bf:d6: 01:0f:ff:bb:3f:e2:a1:93:3e:c2:05:25:c0:4a:27:24:1d:79: 5c:6e:44:40:d8:fc:65:35:70:71:0c:2f:e7:00:10:be:64:c5: 6b:dd:81:42:4b:41:1f:e0:a1:4a:49:5c:0f:24:bc:54:49:23: 9f:bc:e6:d1:c9:36:57:69:2f:53:7a:05:de:76:56:45:21:67: c1:73:ea:43:76:5c:3c:b8:8e:a7:16:1e:37:71:45:98:45:6b: 9a:a4:00:4b:31:e4:c2:d3:e9:aa:9a:06:51:78:14:67:b7:51: 19:5d:bd:89:7e:9c:d6:7b:08:29:2b:69:2c:c6:79:cc:c0:51: 2e:1a:4b:00:52:49:e1:21:6a:39:3e:fa:f4:3b:43:71:2e:36: c4:8d:b4:83:7d:87:fb:ef:73:d9:ed:46:29:d9:4e:47:83:5f: 07:57:c7:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjUwODI0MTczODI3WhcNMjUwODMxMTczODI3WjAYMRYwFAYD VQQDEw02OGFiNGUxMy05NmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AYaKDlNpc8K71TW6dO3zAVtKVrjcah1SOStbJlKFv7drrhdei5Y+Lg9bUBO LvF9Lc9JgbaDv6m5wa5OLb53Bd1q5zlF91b02m8fyHCGRmw7Jfw4yczRSkALUI/9 zXLiTRDv23jd8kyXNKLncQ+8AWGbXXKSdotCN7iSvuqT64UlwOfUb71kDAj8cE47 oZWnWhsp5GhU7mZq4yQGXpQkNgPq2sZYytPyiY+Kuh3Q23WrsrXnAp6n2KdzsOwz lnUff3HgohQT6Nb72A+Wrlfba1v79JctWajVVvAl+oBs72nluLypuuW/M3xPrL24 pDxHwnvTy3rvUlrUGTnbwX5m4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIEiohCh vvl/o2mHGBRO1DpJFx0OMB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa9uc0+zThROgRa3aWvMp5p3FqAJyS8hYnhZnBhm2h24W5mLf2npes L0Mpun2CVadRUC/7pn+qraYWhrAe9yjMEsVPXXu09qLJPrAknGRUFZioSws4fAHr v9YBD/+7P+Khkz7CBSXASickHXlcbkRA2PxlNXBxDC/nABC+ZMVr3YFCS0Ef4KFK SVwPJLxUSSOfvObRyTZXaS9TegXedlZFIWfBc+pDdlw8uI6nFh43cUWYRWuapABL MeTC0+mqmgZReBRnt1EZXb2JfpzWewgpK2ksxnnMwFEuGksAUknhIWo5Pvr0O0Nx LjbEjbSDfYf773PZ7UYp2U5Hg18HV8f/ -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:09 2025 by rpki-client