$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: A6Qh2lsKDMDboEvdnDu2fKDHJK+fHs8ZbFCZYMCP/f0= Subject key identifier: D6:95:F9:00:CD:95:CA:89:67:08:8D:5A:6A:E2:F8:0A:C2:A5:7A:B6 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 13CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 13AE Signing time: Fri 08 Aug 2025 17:08:50 +0000 Manifest this update: Fri 08 Aug 2025 17:08:50 +0000 Manifest next update: Fri 15 Aug 2025 17:08:50 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: yxlDrpxfsHgrKv8hlC8tEVPOuM5UBwNH5/1FNVc51NM=) 2: 337C9CE4314C11F0845D2C39C4F9AE02.roa (hash: vrIMWDHbnqPNLJF4jHYmyNS+GSDUa49JaV3JBKcCD+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5068 (0x13cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Aug 8 17:08:50 2025 GMT Not After : Aug 15 17:08:50 2025 GMT Subject: CN=68962f22-0524 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e2:53:7c:d4:e0:6d:4d:93:d6:a7:b2:e6:6c: 4f:39:0c:57:aa:e6:61:99:6a:f2:fe:c2:26:94:84: 1d:82:00:aa:2b:31:28:a7:d3:4f:32:f7:c9:ff:e0: 7b:8c:e7:b9:44:d7:24:b7:bf:6c:61:e0:73:cc:bc: 9c:11:33:51:94:89:63:58:eb:b9:65:cd:84:90:4e: 95:76:6e:8b:6a:43:a0:38:91:09:75:90:d6:b1:e6: 30:81:28:f6:e1:5c:6a:c6:e6:49:90:5d:07:25:7b: 2a:ff:68:36:2b:01:22:07:ce:98:ae:9b:5d:0b:8a: b6:43:c8:6e:34:01:18:36:9f:64:0c:6c:a7:80:a0: 30:b1:db:cf:12:70:ed:b3:b2:6d:83:2f:e8:5f:8a: d2:ac:6e:06:48:8c:ad:92:0b:5b:da:7b:f6:52:f0: 87:09:9e:db:cc:20:17:6a:26:6f:7f:7c:09:51:65: f2:47:74:c9:ff:b5:13:f0:7d:2b:3b:cd:e8:2a:85: 2a:f8:88:af:97:57:80:d8:1d:06:ae:23:3f:53:59: 90:97:c6:2f:d6:1d:62:38:bb:cb:4f:dd:e9:f7:4d: d3:29:94:5a:d1:1a:89:c2:cc:ce:fe:de:5f:65:55: ab:bd:cc:bb:fb:22:b3:84:e4:30:ec:86:43:5d:1f: 1f:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:95:F9:00:CD:95:CA:89:67:08:8D:5A:6A:E2:F8:0A:C2:A5:7A:B6 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:03:d7:25:d6:a2:61:6b:71:51:98:68:fa:f0:1d:97:ec:bc: 9f:44:da:e8:6b:f7:18:fe:35:c1:6c:d0:c1:cc:9e:06:19:ee: 3a:2b:55:35:aa:e7:82:79:ba:ea:0a:83:01:52:b3:38:05:7e: 8b:8f:8a:4b:bb:c8:12:d0:77:9f:50:45:2b:8f:34:a0:00:a9: 66:eb:cc:1d:ce:d6:7d:ea:d4:e4:8d:85:c2:6e:e0:5c:a4:61: 12:98:b6:3a:7f:fc:48:c5:26:e9:e7:d3:c4:2a:e8:62:a1:73: 12:00:2e:a2:40:11:6b:b1:ae:e1:be:60:94:05:e9:b1:8f:f0: 1f:25:cc:ca:b0:81:e3:86:e6:62:1a:9c:2b:ef:29:b8:03:b5: 3a:fc:68:1a:54:11:a0:5e:dc:9f:31:7f:57:2e:79:3d:8d:2d: cf:27:b3:42:07:cd:76:e5:9a:06:31:77:3a:c8:02:4c:b4:1c: 9e:9a:48:71:a5:b4:95:9c:ce:e2:5a:3c:d7:13:c6:bd:45:3f: 25:8e:bf:68:6d:a2:f0:1c:6c:53:69:89:07:ca:46:b3:80:cb: 37:3e:42:68:fa:c9:d9:c6:82:b8:6e:4b:db:ba:c3:73:c1:80: 25:c0:3c:db:7c:ae:18:19:4f:39:06:11:58:e9:0c:e2:ae:f6: a5:2a:b2:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUwODA4MTcwODUwWhcNMjUwODE1MTcwODUwWjAYMRYwFAYD VQQDEw02ODk2MmYyMi0wNTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOJTfNTgbU2T1qey5mxPOQxXquZhmWry/sImlIQdggCqKzEop9NPMvfJ/+B7 jOe5RNckt79sYeBzzLycETNRlIljWOu5Zc2EkE6Vdm6LakOgOJEJdZDWseYwgSj2 4VxqxuZJkF0HJXsq/2g2KwEiB86YrptdC4q2Q8huNAEYNp9kDGyngKAwsdvPEnDt s7Jtgy/oX4rSrG4GSIytkgtb2nv2UvCHCZ7bzCAXaiZvf3wJUWXyR3TJ/7UT8H0r O83oKoUq+Iivl1eA2B0GriM/U1mQl8Yv1h1iOLvLT93p903TKZRa0RqJwszO/t5f ZVWrvcy7+yKzhOQw7IZDXR8fHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaV+QDN lcqJZwiNWmri+ArCpXq2MB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEA9cl1qJha3FRmGj68B2X7LyfRNroa/cY/jXBbNDBzJ4GGe46K1U1 queCebrqCoMBUrM4BX6Lj4pLu8gS0HefUEUrjzSgAKlm68wdztZ96tTkjYXCbuBc pGESmLY6f/xIxSbp59PEKuhioXMSAC6iQBFrsa7hvmCUBemxj/AfJczKsIHjhuZi Gpwr7ym4A7U6/GgaVBGgXtyfMX9XLnk9jS3PJ7NCB8125ZoGMXc6yAJMtByemkhx pbSVnM7iWjzXE8a9RT8ljr9obaLwHGxTaYkHykazgMs3PkJo+snZxoK4bkvbusNz wYAlwDzbfK4YGU85BhFY6QzirvalKrLX -----END CERTIFICATE-----Generated at Sun Aug 10 05:38:08 2025 by rpki-client