$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: aAWWJuchgyxK/QPe9KazIdWnUKjTpiamjxg1w/5yiwM= Subject key identifier: 81:38:98:09:9F:CC:5D:58:E3:48:DB:77:5A:2F:41:59:E7:6A:89:74 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0332 Signing time: Fri 01 Aug 2025 02:24:35 +0000 Manifest this update: Fri 01 Aug 2025 02:24:35 +0000 Manifest next update: Fri 08 Aug 2025 02:24:35 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: KM73XDgPO0ejOGwZsFrsTjcaGAHQ/j74TzXp/2HZZYo=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: jBN+GZ5K5hQcx74ci+Zj74gtJO93V93U4mPbsdd8SsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 08 Aug 2025 02:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Aug 1 02:24:35 2025 GMT Not After : Aug 8 02:24:35 2025 GMT Subject: CN=688c2563-4051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0a:5d:f6:c6:02:00:d5:de:54:77:82:cd:d3: b8:08:73:26:cb:fb:dc:38:45:2b:a0:e5:39:22:01: 29:c8:37:bf:51:7d:9d:5f:47:e7:6b:e7:a5:d9:b4: 74:5d:76:e6:be:84:33:bb:a0:fb:d0:07:74:2d:fb: e7:e9:97:b5:1b:a6:bc:0a:cf:32:fb:3b:5d:06:67: 8e:11:f9:98:cb:32:b8:bd:c2:a6:c8:e3:f6:e6:28: 2a:c3:80:08:85:af:0b:93:b2:72:c4:a7:57:e9:7e: f6:fc:4f:a6:52:2a:04:fc:d1:43:e4:f4:f6:2e:2a: fc:e3:9a:ef:ec:78:52:27:8d:b4:18:88:b1:95:0f: 29:95:3d:f4:b3:cd:82:ca:cd:3b:21:4f:f3:b2:fe: 24:20:8f:c9:75:ec:6d:12:62:4a:c6:d8:ca:54:cd: 0a:a8:33:f7:38:fd:99:37:23:d5:49:14:8a:09:da: b3:08:d8:57:72:ee:5b:d0:12:c6:7c:59:58:e9:81: 42:cf:89:26:e0:ea:06:ae:86:f6:a9:cd:38:12:64: 48:65:c0:b7:e5:27:57:19:44:6c:8c:07:98:5c:df: 60:59:48:16:ca:86:fc:39:84:37:5b:22:50:c4:92: 2d:07:15:09:e6:98:29:af:74:e4:61:08:c7:d0:b3: 9b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:38:98:09:9F:CC:5D:58:E3:48:DB:77:5A:2F:41:59:E7:6A:89:74 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b4:c9:dd:62:4c:25:49:7e:df:f1:ac:46:f0:16:5c:34:c3: 50:92:32:e1:5f:5b:f3:95:a9:8b:a2:b2:48:b0:2e:21:3e:f5: bb:db:aa:75:2d:10:46:04:96:2d:dd:13:39:ba:cd:f0:68:d6: 96:85:32:28:98:f5:87:4e:70:dd:b7:ed:4d:aa:7e:c8:e6:17: 2c:c5:22:a1:42:d1:aa:46:45:3d:0d:ad:f1:72:9c:0c:ab:62: 39:b8:78:0e:cd:5d:08:cb:11:3f:69:ed:15:12:52:be:a4:60: 00:21:a2:ec:27:85:55:ff:ed:11:c2:6f:f3:e3:48:ee:ea:0d: bd:af:8a:c9:f2:60:c2:b3:bd:f4:cf:1f:1e:6c:5d:72:03:ba: af:5c:7c:da:1d:75:93:18:bb:91:7f:e6:5a:3f:f2:85:41:9f: 9a:ee:b8:24:6f:00:28:30:3f:fd:df:2c:9a:d6:3b:da:c6:e0: 29:40:49:49:c2:15:3f:fd:67:4d:d3:ae:cc:38:99:e9:80:45: 8b:4c:01:17:1d:6d:5e:6e:94:a1:d5:f6:aa:18:c1:2f:5e:57: 83:53:02:83:30:58:59:8d:40:f0:f5:9e:01:df:bf:25:27:84: 82:a6:f0:c1:5c:ce:bb:19:97:6d:88:18:1e:a0:e0:c4:57:87: e5:83:03:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUwODAxMDIyNDM1WhcNMjUwODA4MDIyNDM1WjAYMRYwFAYD VQQDEw02ODhjMjU2My00MDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wpd9sYCANXeVHeCzdO4CHMmy/vcOEUroOU5IgEpyDe/UX2dX0fna+el2bR0 XXbmvoQzu6D70Ad0Lfvn6Ze1G6a8Cs8y+ztdBmeOEfmYyzK4vcKmyOP25igqw4AI ha8Lk7JyxKdX6X72/E+mUioE/NFD5PT2Lir845rv7HhSJ420GIixlQ8plT30s82C ys07IU/zsv4kII/JdextEmJKxtjKVM0KqDP3OP2ZNyPVSRSKCdqzCNhXcu5b0BLG fFlY6YFCz4km4OoGrob2qc04EmRIZcC35SdXGURsjAeYXN9gWUgWyob8OYQ3WyJQ xJItBxUJ5pgpr3TkYQjH0LObOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIE4mAmf zF1Y40jbd1ovQVnnaol0MB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBftMndYkwlSX7f8axG8BZcNMNQkjLhX1vzlamLorJIsC4hPvW726p1 LRBGBJYt3RM5us3waNaWhTIomPWHTnDdt+1Nqn7I5hcsxSKhQtGqRkU9Da3xcpwM q2I5uHgOzV0IyxE/ae0VElK+pGAAIaLsJ4VV/+0Rwm/z40ju6g29r4rJ8mDCs730 zx8ebF1yA7qvXHzaHXWTGLuRf+ZaP/KFQZ+a7rgkbwAoMD/93yya1jvaxuApQElJ whU//WdN067MOJnpgEWLTAEXHW1ebpSh1faqGMEvXleDUwKDMFhZjUDw9Z4B378l J4SCpvDBXM67GZdtiBgeoODEV4flgwMV -----END CERTIFICATE-----Generated at Sun Aug 3 00:45:05 2025 by rpki-client