$ rpki-client -vvf rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft File: dpU2g0Agk0lSKX69t4GJNXsToUU.mft (raw, json) Hash identifier: szEPU+na2IQ3bR0KlWmJCZaUufN4hygFzq1rDB3QWCQ= Subject key identifier: EE:C3:3F:78:F8:9C:6D:86:F4:7C:02:F1:79:FC:A8:12:AC:36:AD:EB Authority key identifier: 76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 Certificate issuer: /CN=A9111623/serialNumber=769536834020934952297EBDB78189357B13A145 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft Manifest number: F3 Signing time: Sun 03 Aug 2025 05:36:36 +0000 Manifest this update: Sun 03 Aug 2025 05:36:35 +0000 Manifest next update: Sun 10 Aug 2025 05:36:35 +0000 Files and hashes: 1: dpU2g0Agk0lSKX69t4GJNXsToUU.crl (hash: tIrGwxUx6XVdkt71zJw7+HgXXDRjhIjMJBoGtNgdeAY=) 2: CAE74ADEFD4511EEA97C9D1CC4F9AE02.roa (hash: x+MnRTchXkq8wJ5cg2oYxcQp1KP3MUe6WvYTybdbFLc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 05:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111623, serialNumber=769536834020934952297EBDB78189357B13A145 Validity Not Before: Aug 3 05:36:35 2025 GMT Not After : Aug 10 05:36:35 2025 GMT Subject: CN=688ef564-42ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:51:d3:4e:30:cf:56:6e:7c:72:7d:a6:8a:ae: 53:4a:43:0a:15:25:51:da:32:c8:2e:9e:3b:40:6b: ab:7d:ec:54:97:12:ff:86:e9:e9:c4:6a:2d:a4:14: 6a:af:75:06:38:9a:69:e0:86:88:f6:d2:e2:f8:bb: ce:02:18:c0:49:c3:22:e4:d3:3c:5d:89:37:8c:f6: 75:f5:25:0b:13:4b:15:cb:da:9a:50:c1:22:04:15: 61:e5:2e:b1:9c:a6:87:88:d8:7f:a4:cc:06:56:cf: 07:8a:ed:c6:5b:14:c1:3b:b6:7a:d8:f8:68:cb:b9: cb:0c:53:7e:d2:d4:95:14:f9:e7:01:b1:55:64:48: 6e:34:3f:72:e9:26:23:c1:38:b3:3f:4d:66:62:d5: 65:bd:32:5b:d6:8f:2d:0d:9d:09:76:79:82:ac:05: a1:16:ea:6b:5c:bd:18:61:26:c6:91:fc:81:24:5e: 3f:4d:8b:b0:11:62:71:94:30:a2:1c:60:cc:3e:0f: b8:6f:c8:40:19:f4:84:f9:12:c7:d1:d0:84:16:50: ea:bd:9e:26:df:89:7d:da:4e:2a:dc:60:5e:13:70: 8c:00:ed:73:b7:f3:a7:07:37:05:8b:85:36:90:4a: 42:15:51:1a:4d:b8:cd:6e:09:21:29:ba:35:15:0e: 13:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C3:3F:78:F8:9C:6D:86:F4:7C:02:F1:79:FC:A8:12:AC:36:AD:EB X509v3 Authority Key Identifier: keyid:76:95:36:83:40:20:93:49:52:29:7E:BD:B7:81:89:35:7B:13:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dpU2g0Agk0lSKX69t4GJNXsToUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111623/50AD0718FD4511EEAB3AD71BC4F9AE02/dpU2g0Agk0lSKX69t4GJNXsToUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:82:3c:a2:c2:a6:1d:a7:b3:ba:35:91:cf:14:84:1f:23:af: fe:65:60:8e:2e:e8:1d:8e:0b:40:7a:66:ae:b2:1c:56:2d:05: 0a:72:26:9c:7d:47:41:72:c1:65:5c:1b:79:a1:cb:a7:7c:cb: 6d:f7:d6:60:ba:4f:2c:6b:61:cb:85:b3:03:fc:73:ab:cb:7c: 4d:4b:b8:f3:a3:e5:eb:6a:c7:69:55:6b:1f:63:05:f1:9f:9f: d8:66:8c:38:df:11:c1:35:8f:f9:d3:f3:35:62:72:df:89:3d: 17:5e:12:8d:a0:19:80:93:ac:b6:0b:80:6d:3f:12:05:0f:fa: b2:48:c0:f5:9c:ef:fe:a9:5e:b2:c8:a4:34:1f:2a:6b:83:08: 3b:cd:66:f3:f9:d8:95:21:06:24:66:51:97:7f:27:fb:4f:92: 43:88:0f:cd:d2:79:e5:9b:75:cc:15:01:21:bc:33:ec:89:31: 9e:bd:81:cf:22:52:b9:53:2d:ae:62:7f:9c:8a:42:85:aa:29: d0:ed:f8:c1:15:53:33:2d:56:b7:c9:5f:b3:0c:34:9d:a8:c5: 9d:ba:7e:b1:b5:ee:d8:7f:4f:85:5c:22:c9:98:61:b6:78:1a: 13:48:24:aa:c1:5b:b3:aa:a4:d4:50:c6:91:2b:26:38:9d:86: 83:a6:c2:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2MjMxMTAvBgNVBAUTKDc2OTUzNjgzNDAyMDkzNDk1MjI5N0VCREI3ODE4OTM1 N0IxM0ExNDUwHhcNMjUwODAzMDUzNjM1WhcNMjUwODEwMDUzNjM1WjAYMRYwFAYD VQQDEw02ODhlZjU2NC00MmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFHTTjDPVm58cn2miq5TSkMKFSVR2jLILp47QGurfexUlxL/hunpxGotpBRq r3UGOJpp4IaI9tLi+LvOAhjAScMi5NM8XYk3jPZ19SULE0sVy9qaUMEiBBVh5S6x nKaHiNh/pMwGVs8Hiu3GWxTBO7Z62Phoy7nLDFN+0tSVFPnnAbFVZEhuND9y6SYj wTizP01mYtVlvTJb1o8tDZ0JdnmCrAWhFuprXL0YYSbGkfyBJF4/TYuwEWJxlDCi HGDMPg+4b8hAGfSE+RLH0dCEFlDqvZ4m34l92k4q3GBeE3CMAO1zt/OnBzcFi4U2 kEpCFVEaTbjNbgkhKbo1FQ4TNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7DP3j4 nG2G9HwC8Xn8qBKsNq3rMB8GA1UdIwQYMBaAFHaVNoNAIJNJUil+vbeBiTV7E6FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTYyMy81MEFEMDcxOEZE NDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2swbFNLWDY5dDRHSk5Yc1Rv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RwVTJnMEFnazBsU0tYNjl0NEdKTlhzVG9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTYyMy81MEFEMDcxOEZENDUxMUVFQUIzQUQ3MUJDNEY5QUUwMi9kcFUyZzBBZ2sw bFNLWDY5dDRHSk5Yc1RvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzgjyiwqYdp7O6NZHPFIQfI6/+ZWCOLugdjgtAemaushxWLQUKciac fUdBcsFlXBt5ocunfMtt99Zguk8sa2HLhbMD/HOry3xNS7jzo+XrasdpVWsfYwXx n5/YZow43xHBNY/50/M1YnLfiT0XXhKNoBmAk6y2C4BtPxIFD/qySMD1nO/+qV6y yKQ0Hyprgwg7zWbz+diVIQYkZlGXfyf7T5JDiA/N0nnlm3XMFQEhvDPsiTGevYHP IlK5Uy2uYn+cikKFqinQ7fjBFVMzLVa3yV+zDDSdqMWdun6xte7Yf0+FXCLJmGG2 eBoTSCSqwVuzqqTUUMaRKyY4nYaDpsJd -----END CERTIFICATE-----Generated at Mon Aug 4 15:36:33 2025 by rpki-client