$ rpki-client -vvf rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft File: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft (raw, json) Hash identifier: m8rvk6RR/MYM51lzH8MEY5CYIrotg962UugpgYozJdE= Subject key identifier: B5:FA:CE:95:AC:1D:98:C1:D1:FA:2A:70:04:80:C3:0B:CD:FE:75:4F Authority key identifier: 0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 Certificate issuer: /CN=A9132AEB/serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Certificate serial: 34CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft Manifest number: 34BC Signing time: Fri 08 Aug 2025 15:09:08 +0000 Manifest this update: Fri 08 Aug 2025 15:09:07 +0000 Manifest next update: Fri 15 Aug 2025 15:09:07 +0000 Files and hashes: 1: D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl (hash: NxL4setZ9yfbSm+xmSOC2Sek8hvVf/d3lDLMBVq68s0=) 2: 514DBDFC98C711EAA0CFE582C4F9AE02.roa (hash: i+oLVOiTvF13PBUoOa9UfIxFEQhcYfTJRD1Exsj8GIk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13516 (0x34cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132AEB, serialNumber=0F952A27EF3EF27CEA08C57D202A38069ECB5840 Validity Not Before: Aug 8 15:09:07 2025 GMT Not After : Aug 15 15:09:07 2025 GMT Subject: CN=68961314-e6b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:5a:c0:f9:40:6b:c6:16:9d:9c:fd:d1:30:04: b4:45:c7:c7:37:0a:0a:e1:51:62:b1:bd:3d:e1:c6: 12:b4:38:04:f8:d3:08:6c:e1:d5:14:96:1b:82:77: f7:4c:ac:fe:3a:5b:ca:39:aa:2b:90:80:06:eb:fd: 3b:58:ad:eb:09:53:d6:f3:67:5f:56:65:59:3d:31: 4f:d9:d6:f8:f7:04:ed:ab:40:f8:65:7e:97:39:09: aa:1a:70:02:e6:45:b3:63:0d:ef:ef:d5:d3:5d:82: 8e:38:e9:4b:cd:3c:f5:b0:89:6a:45:42:a6:3f:56: 78:8e:f5:4c:1b:fa:07:d4:5a:52:cd:01:9d:c6:aa: a9:a8:2d:97:f7:84:d5:a4:34:8a:3b:0b:61:29:8f: 46:3b:fb:db:83:32:e7:14:f6:bd:ac:2d:86:a4:13: 4f:ee:0a:d6:46:66:15:a7:91:70:1a:1b:dd:ef:22: 07:15:5f:71:6e:73:f0:dc:ec:34:69:f3:61:56:b5: b7:5f:51:6f:74:c1:21:2f:26:1f:44:de:6d:47:1b: be:88:46:8a:3f:45:7f:8a:e8:80:47:d2:17:79:bd: 32:6e:17:37:6f:f4:0e:6f:1d:d8:16:a6:50:42:61: ca:f6:05:1d:55:f6:19:28:43:db:1c:09:56:1c:1d: 08:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:FA:CE:95:AC:1D:98:C1:D1:FA:2A:70:04:80:C3:0B:CD:FE:75:4F X509v3 Authority Key Identifier: keyid:0F:95:2A:27:EF:3E:F2:7C:EA:08:C5:7D:20:2A:38:06:9E:CB:58:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132AEB/EF29BA2A1DA111E2868B689408B02CD2/D5UqJ-8-8nzqCMV9ICo4Bp7LWEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:03:51:e4:20:de:5d:f9:ec:f8:f4:a7:0b:ad:c0:72:d1:4d: 4a:2f:29:ee:5f:c2:e8:c7:b2:38:85:4d:3f:21:32:9f:6e:98: 65:73:63:c8:ea:f1:c4:c5:b8:50:d9:47:52:53:e6:09:69:af: 91:ce:f8:28:70:86:8c:63:04:f7:36:66:0e:ec:50:10:4d:df: ad:fa:9c:03:45:90:ab:f4:fd:80:8b:e7:2b:7c:3b:bb:22:2d: 65:fa:ef:af:f4:f3:94:af:32:c2:1f:c0:29:98:3c:99:e6:7c: 96:aa:67:ff:4b:88:db:71:28:82:ef:2e:93:15:b7:35:fc:54: 0b:9e:f7:5d:0b:2d:1f:77:be:7b:8d:10:6a:fa:56:48:ba:41: 2c:36:90:ae:29:5a:cf:fb:d5:fa:1e:7c:cf:b0:98:be:3b:98: 2b:7c:3e:e6:24:de:6e:a0:d2:38:f7:dc:3b:cc:2e:b8:10:14: 41:e0:f6:99:e3:f6:e2:96:80:3f:23:40:64:fd:3e:09:72:79: 1f:24:bd:66:47:62:48:52:62:1f:bd:86:a2:c9:1e:1a:3a:59: 09:29:6b:ce:ce:3a:7b:ab:de:1b:36:d9:ed:7c:db:15:10:45: 09:48:d4:2f:b3:34:75:4d:22:cc:68:61:39:04:77:2e:8e:07: 5a:2a:f9:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJBRUIxMTAvBgNVBAUTKDBGOTUyQTI3RUYzRUYyN0NFQTA4QzU3RDIwMkEzODA2 OUVDQjU4NDAwHhcNMjUwODA4MTUwOTA3WhcNMjUwODE1MTUwOTA3WjAYMRYwFAYD VQQDEw02ODk2MTMxNC1lNmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6lrA+UBrxhadnP3RMAS0RcfHNwoK4VFisb094cYStDgE+NMIbOHVFJYbgnf3 TKz+OlvKOaorkIAG6/07WK3rCVPW82dfVmVZPTFP2db49wTtq0D4ZX6XOQmqGnAC 5kWzYw3v79XTXYKOOOlLzTz1sIlqRUKmP1Z4jvVMG/oH1FpSzQGdxqqpqC2X94TV pDSKOwthKY9GO/vbgzLnFPa9rC2GpBNP7grWRmYVp5FwGhvd7yIHFV9xbnPw3Ow0 afNhVrW3X1FvdMEhLyYfRN5tRxu+iEaKP0V/iuiAR9IXeb0ybhc3b/QObx3YFqZQ QmHK9gUdVfYZKEPbHAlWHB0IswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLX6zpWs HZjB0foqcASAwwvN/nVPMB8GA1UdIwQYMBaAFA+VKifvPvJ86gjFfSAqOAaey1hA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkFFQi9FRjI5QkEyQTFE QTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThuenFDTVY5SUNvNEJwN0xX RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q1VXFKLTgtOG56cUNNVjlJQ280QnA3TFdFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkFFQi9FRjI5QkEyQTFEQTExMUUyODY4QjY4OTQwOEIwMkNEMi9ENVVxSi04LThu enFDTVY5SUNvNEJwN0xXRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6A1HkIN5d+ez49KcLrcBy0U1KLynuX8Lox7I4hU0/ITKfbphlc2PI 6vHExbhQ2UdSU+YJaa+RzvgocIaMYwT3NmYO7FAQTd+t+pwDRZCr9P2Ai+crfDu7 Ii1l+u+v9POUrzLCH8ApmDyZ5nyWqmf/S4jbcSiC7y6TFbc1/FQLnvddCy0fd757 jRBq+lZIukEsNpCuKVrP+9X6HnzPsJi+O5grfD7mJN5uoNI499w7zC64EBRB4PaZ 4/biloA/I0Bk/T4JcnkfJL1mR2JIUmIfvYaiyR4aOlkJKWvOzjp7q94bNtntfNsV EEUJSNQvszR1TSLMaGE5BHcujgdaKvkG -----END CERTIFICATE-----Generated at Sun Aug 10 13:47:21 2025 by rpki-client