$ rpki-client -vvf rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft File: sdV2wMeOXPWNSDeibJJjxj8TFd0.mft (raw, json) Hash identifier: XiO0pavXbb1A4tfXsxADHUaxyO1MxSJl2vg1vxH5Dco= Subject key identifier: 57:B1:57:5B:0E:21:B6:E7:8C:65:B7:59:8E:AB:1D:42:C9:AC:3D:C3 Authority key identifier: B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD Certificate issuer: /CN=A914EB5A/serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft Manifest number: 0131 Signing time: Mon 11 Aug 2025 04:42:07 +0000 Manifest this update: Mon 11 Aug 2025 04:42:06 +0000 Manifest next update: Mon 18 Aug 2025 04:42:06 +0000 Files and hashes: 1: sdV2wMeOXPWNSDeibJJjxj8TFd0.crl (hash: AsI1ICjbpMb9KgW2qpLXvUR/BxG1h+E1G7a6v0JulP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 04:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EB5A, serialNumber=B1D576C0C78E5CF58D4837A26C9263C63F1315DD Validity Not Before: Aug 11 04:42:06 2025 GMT Not After : Aug 18 04:42:06 2025 GMT Subject: CN=6899749e-eb1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b7:bf:5e:59:2e:a4:aa:bb:02:a1:e5:9a:85: 32:0a:bf:29:ef:08:bb:a3:6a:f3:f2:82:43:61:11: 60:f6:33:10:49:e6:63:fe:93:3f:1c:87:0b:9d:37: 42:1d:d7:6b:e8:d3:42:6d:cd:c9:ba:58:d8:72:3b: c5:70:19:60:54:72:03:8c:09:48:2f:1c:d8:4b:ed: 4c:20:97:25:eb:36:60:f9:2b:3c:8b:c8:49:36:15: e7:7b:8f:10:dc:97:89:af:8d:de:fe:fe:64:b5:47: 9b:2d:77:2b:51:3a:bd:0e:44:49:eb:12:f7:ce:16: 02:07:80:b2:91:5c:e4:64:be:42:01:4a:82:be:8d: 22:a4:79:68:f3:f6:6c:eb:b2:06:2d:31:d4:06:3c: d9:41:51:54:55:66:ea:2d:44:ed:30:cd:22:98:93: 24:a0:ff:20:8f:58:4e:7c:a6:d0:46:08:ac:79:8d: c2:a2:9f:0e:7e:15:ca:15:a5:e1:11:db:2b:bf:83: a5:74:a8:a0:c0:3a:4c:5a:9a:16:c1:34:3d:1a:72: 3c:2e:54:df:92:20:08:db:e4:07:fa:31:3e:4e:54: 8a:35:37:4e:2c:3c:e0:4f:76:21:42:35:36:3f:2b: 2d:3c:7d:c8:e9:fe:ae:97:22:83:c6:94:fa:75:ee: ba:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:B1:57:5B:0E:21:B6:E7:8C:65:B7:59:8E:AB:1D:42:C9:AC:3D:C3 X509v3 Authority Key Identifier: keyid:B1:D5:76:C0:C7:8E:5C:F5:8D:48:37:A2:6C:92:63:C6:3F:13:15:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sdV2wMeOXPWNSDeibJJjxj8TFd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EB5A/7C075E18A3B311EEAD662919C4F9AE02/sdV2wMeOXPWNSDeibJJjxj8TFd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f7:75:ea:49:25:5b:ec:92:64:0f:a0:26:52:79:e6:ed:a9: f7:97:c5:1d:35:e5:80:9d:f6:a8:be:8e:9e:ee:4b:91:a2:db: 66:a8:e8:45:f5:82:c3:f8:0c:b3:e9:42:9b:59:93:7d:21:4d: c4:bf:4b:c7:37:ef:a6:95:2e:60:b6:67:70:7c:d9:60:c6:0b: 90:83:17:99:7f:49:37:cc:89:08:f5:89:03:6a:94:a2:41:a2: 7a:d8:ba:fb:08:b4:8a:fe:5e:8a:52:8e:86:3b:9d:8d:43:7b: df:1a:59:ab:b2:c9:7d:4f:ba:34:f5:ba:71:28:52:35:cc:0b: ac:8b:d8:dc:9b:df:5e:94:d6:14:b8:32:55:79:8f:29:2e:68: fc:30:78:8a:8a:45:20:60:57:5d:51:55:71:39:8e:78:5d:ab: 63:02:f3:c9:fc:ad:16:fa:b9:39:3e:3b:51:d5:17:d3:93:ec: 49:1b:e5:99:9d:8f:d6:5b:88:47:6d:8c:d9:49:b5:a9:a0:e4: c4:f0:0d:9e:b8:ba:60:b9:c0:a8:c7:6f:4e:1b:67:af:dd:d6: 3f:ef:23:6f:6d:d9:11:9a:dc:00:a3:bb:52:ab:08:d3:48:ff: 82:4f:8a:b1:bb:f0:9d:9a:a5:66:b9:87:44:d2:a3:08:4d:83: 2b:46:96:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVCNUExMTAvBgNVBAUTKEIxRDU3NkMwQzc4RTVDRjU4RDQ4MzdBMjZDOTI2M0M2 M0YxMzE1REQwHhcNMjUwODExMDQ0MjA2WhcNMjUwODE4MDQ0MjA2WjAYMRYwFAYD VQQDEw02ODk5NzQ5ZS1lYjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwre/XlkupKq7AqHlmoUyCr8p7wi7o2rz8oJDYRFg9jMQSeZj/pM/HIcLnTdC Hddr6NNCbc3JuljYcjvFcBlgVHIDjAlILxzYS+1MIJcl6zZg+Ss8i8hJNhXne48Q 3JeJr43e/v5ktUebLXcrUTq9DkRJ6xL3zhYCB4CykVzkZL5CAUqCvo0ipHlo8/Zs 67IGLTHUBjzZQVFUVWbqLUTtMM0imJMkoP8gj1hOfKbQRgiseY3Cop8OfhXKFaXh Edsrv4OldKigwDpMWpoWwTQ9GnI8LlTfkiAI2+QH+jE+TlSKNTdOLDzgT3YhQjU2 PystPH3I6f6ulyKDxpT6de66OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFexV1sO IbbnjGW3WY6rHULJrD3DMB8GA1UdIwQYMBaAFLHVdsDHjlz1jUg3omySY8Y/ExXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUI1QS83QzA3NUUxOEEz QjMxMUVFQUQ2NjI5MTlDNEY5QUUwMi9zZFYyd01lT1hQV05TRGVpYkpKanhqOFRG ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NkVjJ3TWVPWFBXTlNEZWliSkpqeGo4VEZkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUI1QS83QzA3NUUxOEEzQjMxMUVFQUQ2NjI5MTlDNEY5QUUwMi9zZFYyd01lT1hQ V05TRGVpYkpKanhqOFRGZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO93XqSSVb7JJkD6AmUnnm7an3l8UdNeWAnfaovo6e7kuRottmqOhF 9YLD+Ayz6UKbWZN9IU3Ev0vHN++mlS5gtmdwfNlgxguQgxeZf0k3zIkI9YkDapSi QaJ62Lr7CLSK/l6KUo6GO52NQ3vfGlmrssl9T7o09bpxKFI1zAusi9jcm99elNYU uDJVeY8pLmj8MHiKikUgYFddUVVxOY54XatjAvPJ/K0W+rk5PjtR1RfTk+xJG+WZ nY/WW4hHbYzZSbWpoOTE8A2euLpgucCox29OG2ev3dY/7yNvbdkRmtwAo7tSqwjT SP+CT4qxu/CdmqVmuYdE0qMITYMrRpbR -----END CERTIFICATE-----Generated at Tue Aug 12 18:59:34 2025 by rpki-client