$ rpki-client -vvf rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft File: ReDCzhRgM0N0_BWzcEXXajTd7l0.mft (raw, json) Hash identifier: U6XO/+uwbB3iDPE6dUFbS3y0aPnk17SDEJ9qCVAa4xQ= Subject key identifier: E5:AF:AC:27:86:D5:5D:90:71:CC:75:E3:27:46:73:B5:E6:04:BC:CE Authority key identifier: 45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D Certificate issuer: /CN=A911465D/serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft Manifest number: 39 Signing time: Thu 07 Aug 2025 08:14:09 +0000 Manifest this update: Thu 07 Aug 2025 08:14:08 +0000 Manifest next update: Thu 14 Aug 2025 08:14:08 +0000 Files and hashes: 1: ReDCzhRgM0N0_BWzcEXXajTd7l0.crl (hash: xsdBLPgDYDQLvNLbV/Uq0QCBZZ+z+SlIIv+QXV9qxaE=) 2: 8494A0A8202211F091667E59C4F9AE02.roa (hash: 0td0rYY1sI6ZCcrPq8Ekycn5CSJTuG2FeaNe5fiVsgQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911465D, serialNumber=45E0C2CE1460334374FC15B37045D76A34DDEE5D Validity Not Before: Aug 7 08:14:08 2025 GMT Not After : Aug 14 08:14:08 2025 GMT Subject: CN=68946050-d806 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b6:1a:ac:b7:e4:07:7b:73:f1:f2:aa:73:ef: 94:bf:5f:53:74:c0:65:47:7d:3d:7e:0c:23:ce:d6: 4f:19:e0:43:8b:3b:06:e0:21:83:6e:dc:83:75:ff: a0:10:8d:9b:d5:0f:30:9b:51:49:a6:3b:d5:77:e0: 8e:1b:c1:8c:d2:6f:8c:f5:1b:45:48:a1:b1:47:11: c9:1f:7d:83:9e:79:33:de:e2:9c:a0:33:da:5b:38: 95:3e:98:01:e6:03:3a:cb:12:cc:53:f5:2d:db:5d: 47:87:b3:96:0f:5d:87:28:b1:39:67:ee:3c:e1:60: 1f:2f:eb:b1:b3:4c:88:20:53:57:59:0c:88:6a:19: 32:a3:cc:34:38:51:b0:bd:17:a5:b1:f3:4c:74:c9: 42:82:92:10:04:af:25:ed:74:84:c9:f4:12:6f:73: 96:89:a7:c5:0e:75:8f:dc:b6:96:5c:cf:b5:3a:74: 85:99:34:d0:9d:b0:72:9d:47:c4:55:46:7a:54:54: 3e:2f:0b:91:29:53:3f:5a:01:c2:ac:52:79:2c:7d: 18:0d:c2:79:9a:a6:55:15:87:62:e6:3c:67:07:c6: d6:b1:44:8c:b1:f3:c7:ef:98:2c:21:c0:92:b1:58: 61:9f:df:e3:40:6b:b8:49:f2:5f:4c:14:3e:6e:22: 74:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:AF:AC:27:86:D5:5D:90:71:CC:75:E3:27:46:73:B5:E6:04:BC:CE X509v3 Authority Key Identifier: keyid:45:E0:C2:CE:14:60:33:43:74:FC:15:B3:70:45:D7:6A:34:DD:EE:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ReDCzhRgM0N0_BWzcEXXajTd7l0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911465D/D419DC4A201A11F0A402F63BC4F9AE02/ReDCzhRgM0N0_BWzcEXXajTd7l0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:6a:06:cc:aa:58:d5:15:dc:86:c0:52:1e:de:63:03:dc:2d: 59:ba:e1:88:74:cd:7c:68:a7:7d:1e:a7:82:5f:0f:21:c6:64: cd:32:5d:0a:fc:eb:ae:ab:fc:71:6b:cc:c1:c9:4f:8e:c3:21: 83:d4:95:dd:5d:4f:30:ee:fe:b4:d6:b1:dc:c6:92:b2:fa:dd: 1c:d8:42:13:a2:9f:f8:74:0f:75:79:72:0d:fc:c1:b7:dc:5a: 68:6c:9a:92:d8:d7:7c:c9:be:b6:87:05:52:db:cf:16:27:ca: 2c:92:47:17:d8:c6:93:82:7f:b2:c0:bc:40:6a:67:51:0c:0d: 38:0a:06:28:58:1d:3c:0c:74:83:10:d0:7d:71:14:ae:21:31: 19:32:5c:5e:33:ca:b8:74:a7:ab:78:f9:da:27:f2:60:f0:f2: fc:fa:ac:27:4d:07:64:9a:aa:26:0d:c3:0f:92:df:46:ed:96: fc:cd:57:eb:4a:29:f4:31:d6:47:d0:22:c6:74:c4:c0:a0:f7: 6e:6d:f5:9d:39:0b:f4:dc:ba:c0:a1:37:47:87:d9:ca:ab:f1: 07:d8:ab:bc:f8:18:3b:09:6b:65:ac:dd:93:34:2c:69:fa:45: 02:c0:eb:d7:d6:e4:6c:70:1d:8c:b2:ff:5d:69:e2:8a:29:57: 03:63:ca:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NDY1RDExMC8GA1UEBRMoNDVFMEMyQ0UxNDYwMzM0Mzc0RkMxNUIzNzA0NUQ3NkEz NERERUU1RDAeFw0yNTA4MDcwODE0MDhaFw0yNTA4MTQwODE0MDhaMBgxFjAUBgNV BAMTDTY4OTQ2MDUwLWQ4MDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDthqst+QHe3Px8qpz75S/X1N0wGVHfT1+DCPO1k8Z4EOLOwbgIYNu3IN1/6AQ jZvVDzCbUUmmO9V34I4bwYzSb4z1G0VIobFHEckffYOeeTPe4pygM9pbOJU+mAHm AzrLEsxT9S3bXUeHs5YPXYcosTln7jzhYB8v67GzTIggU1dZDIhqGTKjzDQ4UbC9 F6Wx80x0yUKCkhAEryXtdITJ9BJvc5aJp8UOdY/ctpZcz7U6dIWZNNCdsHKdR8RV RnpUVD4vC5EpUz9aAcKsUnksfRgNwnmaplUVh2LmPGcHxtaxRIyx88fvmCwhwJKx WGGf3+NAa7hJ8l9MFD5uInSHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU5a+sJ4bV XZBxzHXjJ0ZzteYEvM4wHwYDVR0jBBgwFoAUReDCzhRgM0N0/BWzcEXXajTd7l0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0NjVEL0Q0MTlEQzRBMjAx QTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBOMF9CV3pjRVhYYWpUZDds MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUmVEQ3poUmdNME4wX0JXemNFWFhhalRkN2wwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE0 NjVEL0Q0MTlEQzRBMjAxQTExRjBBNDAyRjYzQkM0RjlBRTAyL1JlREN6aFJnTTBO MF9CV3pjRVhYYWpUZDdsMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIZqBsyqWNUV3IbAUh7eYwPcLVm64Yh0zXxop30ep4JfDyHGZM0yXQr8 666r/HFrzMHJT47DIYPUld1dTzDu/rTWsdzGkrL63RzYQhOin/h0D3V5cg38wbfc WmhsmpLY13zJvraHBVLbzxYnyiySRxfYxpOCf7LAvEBqZ1EMDTgKBihYHTwMdIMQ 0H1xFK4hMRkyXF4zyrh0p6t4+don8mDw8vz6rCdNB2SaqiYNww+S30btlvzNV+tK KfQx1kfQIsZ0xMCg925t9Z05C/TcusChN0eH2cqr8QfYq7z4GDsJa2Ws3ZM0LGn6 RQLA69fW5GxwHYyy/11p4oopVwNjylE= -----END CERTIFICATE-----Generated at Fri Aug 8 20:55:40 2025 by rpki-client