$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft File: ddHHozMD2o3GQirjUXA_KlKN874.mft (raw, json) Hash identifier: eS4ex2PJHgetR07LvKOH9ru/FusUIj6Tv11gVwOq2xU= Subject key identifier: 01:0B:98:28:87:78:A2:DB:F4:DA:5D:0D:9F:FB:74:7E:24:4F:F2:C7 Authority key identifier: 75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE Certificate issuer: /CN=A91C5832/serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft Manifest number: 0151 Signing time: Sat 23 Aug 2025 04:23:41 +0000 Manifest this update: Sat 23 Aug 2025 04:23:41 +0000 Manifest next update: Sat 30 Aug 2025 04:23:40 +0000 Files and hashes: 1: ddHHozMD2o3GQirjUXA_KlKN874.crl (hash: VA3Wfluru438NlNBNZF2A62UUWoQ/YLfllBUoN/63GE=) 2: 3E6CF84C883311EE8822D90BC4F9AE02.roa (hash: gchZs9w0rw9TlztTLiN3YxQhLwyUQamaOc4Ws69TNxo=) 3: AC0E54A8C8E311EF98C2B365C4F9AE02.roa (hash: PlPXvige1wM44fDKeXBrjYCBTjGnK3s8s01Ti3fCICQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5832, serialNumber=75D1C7A33303DA8DC6422AE351703F2A528DF3BE Validity Not Before: Aug 23 04:23:41 2025 GMT Not After : Aug 30 04:23:40 2025 GMT Subject: CN=68a9424d-4c76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0d:c1:b6:b3:bb:bb:4d:98:02:4e:0a:59:31: 3e:c9:16:a9:00:23:bd:5b:5d:00:bf:f9:0f:90:95: 4b:58:80:b0:cd:2f:55:85:6d:34:f6:f3:9f:51:ea: 9f:46:cb:2e:42:df:ec:5e:dd:48:11:e6:89:0e:8e: 9d:61:db:42:29:5e:11:11:1a:d4:70:c2:a7:23:93: 9b:44:2b:46:4f:57:f2:ab:92:8d:96:02:f9:75:9d: e0:65:54:a2:93:de:44:77:83:8f:41:b0:26:47:d2: 11:2e:6d:34:4b:5b:10:51:e6:f5:f3:76:4d:48:24: 59:5e:64:9a:31:fb:c9:50:b7:4f:e1:60:62:27:7f: 9f:8d:ef:41:c7:29:13:cf:09:47:d3:f3:ba:ff:1b: ae:46:32:75:7c:9d:f3:74:1c:f2:38:12:7d:cc:61: 94:40:07:7a:bb:e1:3b:fb:54:ba:3a:1a:dc:f8:16: cd:df:d8:29:bd:25:55:e0:06:3e:58:23:bb:a6:26: db:d2:0a:b4:74:04:fd:32:23:c2:6e:9d:a5:f6:55: e1:3e:5a:94:59:f3:52:af:26:3b:1a:d3:b4:84:cd: d0:44:fa:ab:36:36:6f:9b:28:b9:db:9b:4c:85:d4: 66:bc:b9:52:d7:e4:d1:74:f6:69:95:01:0c:df:23: e2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:0B:98:28:87:78:A2:DB:F4:DA:5D:0D:9F:FB:74:7E:24:4F:F2:C7 X509v3 Authority Key Identifier: keyid:75:D1:C7:A3:33:03:DA:8D:C6:42:2A:E3:51:70:3F:2A:52:8D:F3:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ddHHozMD2o3GQirjUXA_KlKN874.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5832/6D60F9D8879711EE9F3ED44FC4F9AE02/ddHHozMD2o3GQirjUXA_KlKN874.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:08:70:a7:69:e5:da:24:13:95:34:ff:ed:41:b5:f3:34:52: d3:9b:fb:d1:dd:f7:df:5a:6a:32:ed:a6:fc:dc:27:39:be:f1: 55:8e:34:5f:47:1d:51:b0:0e:95:da:5a:a4:1c:2d:67:ea:d2: c8:b5:f8:40:88:ba:8e:c4:3f:dc:af:4e:63:9e:3e:c2:0a:9d: 21:4a:01:3a:b9:7b:03:ea:2e:75:87:99:47:5e:53:48:fb:44: f4:50:c9:7b:ab:89:a0:64:05:c8:15:b5:07:e5:eb:70:7b:81: 4b:33:86:e3:4f:39:e4:bf:cf:75:93:4d:b8:8d:cb:fc:f4:72: a5:ad:44:b7:32:09:1d:18:a2:75:20:fe:47:11:c1:5d:ef:eb: f1:8b:b4:62:3e:f7:31:95:55:bb:3b:ea:03:fc:d9:d5:16:29: 86:f7:8d:f0:5a:8e:bc:d4:42:9b:79:03:fb:76:c7:fd:2b:82: ee:6a:0a:03:0d:ac:c9:fb:ee:49:9a:3f:9d:21:74:c1:05:8d: 8a:81:a6:4d:d1:59:65:bc:a8:83:f9:a4:2c:73:b1:33:19:2f: 93:01:20:bf:a1:9a:94:62:31:79:0e:fa:2b:b2:74:ed:66:17: 5f:b8:e2:62:4a:88:12:f2:55:66:9c:a8:3b:66:69:b5:46:f1: 61:bb:70:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU4MzIxMTAvBgNVBAUTKDc1RDFDN0EzMzMwM0RBOERDNjQyMkFFMzUxNzAzRjJB NTI4REYzQkUwHhcNMjUwODIzMDQyMzQxWhcNMjUwODMwMDQyMzQwWjAYMRYwFAYD VQQDEw02OGE5NDI0ZC00Yzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0A3BtrO7u02YAk4KWTE+yRapACO9W10Av/kPkJVLWICwzS9VhW009vOfUeqf RssuQt/sXt1IEeaJDo6dYdtCKV4RERrUcMKnI5ObRCtGT1fyq5KNlgL5dZ3gZVSi k95Ed4OPQbAmR9IRLm00S1sQUeb183ZNSCRZXmSaMfvJULdP4WBiJ3+fje9BxykT zwlH0/O6/xuuRjJ1fJ3zdBzyOBJ9zGGUQAd6u+E7+1S6Ohrc+BbN39gpvSVV4AY+ WCO7pibb0gq0dAT9MiPCbp2l9lXhPlqUWfNSryY7GtO0hM3QRPqrNjZvmyi525tM hdRmvLlS1+TRdPZplQEM3yPiswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAELmCiH eKLb9NpdDZ/7dH4kT/LHMB8GA1UdIwQYMBaAFHXRx6MzA9qNxkIq41FwPypSjfO+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTgzMi82RDYwRjlEODg3 OTcxMUVFOUYzRUQ0NEZDNEY5QUUwMi9kZEhIb3pNRDJvM0dRaXJqVVhBX0tsS044 NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkSEhvek1EMm8zR1FpcmpVWEFfS2xLTjg3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTgzMi82RDYwRjlEODg3OTcxMUVFOUYzRUQ0NEZDNEY5QUUwMi9kZEhIb3pNRDJv M0dRaXJqVVhBX0tsS044NzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+CHCnaeXaJBOVNP/tQbXzNFLTm/vR3fffWmoy7ab83Cc5vvFVjjRf Rx1RsA6V2lqkHC1n6tLItfhAiLqOxD/cr05jnj7CCp0hSgE6uXsD6i51h5lHXlNI +0T0UMl7q4mgZAXIFbUH5etwe4FLM4bjTznkv891k024jcv89HKlrUS3MgkdGKJ1 IP5HEcFd7+vxi7RiPvcxlVW7O+oD/NnVFimG943wWo681EKbeQP7dsf9K4LuagoD DazJ++5Jmj+dIXTBBY2KgaZN0VllvKiD+aQsc7EzGS+TASC/oZqUYjF5DvorsnTt ZhdfuOJiSogS8lVmnKg7Zmm1RvFhu3C0 -----END CERTIFICATE-----Generated at Sun Aug 24 22:07:08 2025 by rpki-client