$ rpki-client -vvf rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft File: dK-15U8HPzwgdjJdKsf3AA4uaoY.mft (raw, json) Hash identifier: XI9/SrIFZ9U+rwkLM1M4vjeDCGPyqsIAYGN6oRUQhbY= Subject key identifier: 63:7E:4C:FE:8F:37:0B:E9:69:44:29:F6:81:E9:4E:5D:65:15:DD:89 Authority key identifier: 74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 Certificate issuer: /CN=A916EDC2/serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Certificate serial: 035F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft Manifest number: 035B Signing time: Mon 11 Aug 2025 01:09:42 +0000 Manifest this update: Mon 11 Aug 2025 01:09:41 +0000 Manifest next update: Mon 18 Aug 2025 01:09:41 +0000 Files and hashes: 1: dK-15U8HPzwgdjJdKsf3AA4uaoY.crl (hash: f6LCcdvJz9+zrtGJwV60oKyHvdTmpuj+UdlKtE563+8=) 2: 5E8E08E8C26211ECBFC22B20C4F9AE02.roa (hash: w37S3Bt2sSTPCiMAqtrHuEG6jTfY7XCc/TsnG1ZQfsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 863 (0x35f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EDC2, serialNumber=74AFB5E54F073F3C2076325D2AC7F7000E2E6A86 Validity Not Before: Aug 11 01:09:41 2025 GMT Not After : Aug 18 01:09:41 2025 GMT Subject: CN=689942d6-eee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cf:16:c6:33:29:68:c8:b9:11:d1:3c:1d:77: 4e:c4:3c:08:4a:28:8e:b8:94:f8:12:16:c7:f0:a0: b1:b3:6a:7a:90:76:86:c3:4b:ba:9b:08:69:5e:ea: 31:51:ae:1f:aa:75:8f:8e:cd:0d:a4:11:ba:fd:d9: 26:85:60:7e:95:32:9c:da:59:f8:ab:bf:ac:ee:9e: f5:9e:f1:81:64:35:f7:f5:b5:27:f3:10:0e:60:f3: cf:28:ed:d5:32:ff:27:d5:b9:23:3f:cb:ff:53:5b: 4d:82:fd:91:a9:d8:cb:fd:35:8a:0c:a6:fd:c8:ba: c7:89:2a:55:b2:08:73:55:13:4c:75:48:05:cd:43: 8d:75:22:8f:9a:66:d8:63:90:93:ca:56:c7:eb:43: f4:32:5e:63:b4:8e:ce:cd:38:1d:43:00:57:51:b2: b2:e7:3e:6a:59:6b:bb:61:c2:a1:c0:bf:a0:7f:27: 4e:94:b4:5b:9f:9b:d6:7f:5b:49:6e:1d:36:f8:3a: 66:f4:cb:f3:47:e2:9f:76:55:d9:11:54:56:4f:6c: 04:6e:53:1d:02:ba:ce:e9:72:ad:ed:2e:1b:7c:7b: 53:db:97:5a:2d:62:a4:12:fa:1c:ed:56:fb:46:ec: 1d:ed:a2:4c:d9:25:68:91:68:56:a9:c9:71:f3:40: ed:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:7E:4C:FE:8F:37:0B:E9:69:44:29:F6:81:E9:4E:5D:65:15:DD:89 X509v3 Authority Key Identifier: keyid:74:AF:B5:E5:4F:07:3F:3C:20:76:32:5D:2A:C7:F7:00:0E:2E:6A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dK-15U8HPzwgdjJdKsf3AA4uaoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EDC2/36EB2328C25F11EC8C3B001DC4F9AE02/dK-15U8HPzwgdjJdKsf3AA4uaoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c1:02:5e:ef:cb:92:ef:cc:77:ee:33:24:2e:d2:7d:3c:a1: 41:1b:8e:fe:64:bf:2c:86:7c:33:23:67:b4:a4:c4:b1:2a:b7: ec:f4:81:39:99:50:28:4f:fd:02:84:95:52:4a:33:48:93:2a: 27:60:5a:43:8e:c6:86:36:4f:eb:0e:ef:47:75:03:a3:1a:fb: 6c:30:54:0f:d0:08:90:9d:76:ef:12:4f:07:99:7b:b3:fb:6f: fe:cc:5c:ab:f7:ea:0d:93:3c:ca:19:d5:a4:bf:3e:ff:c8:ba: b3:a9:98:0d:b0:6a:08:3a:c1:05:f9:f7:61:fc:d4:01:96:dd: b4:9d:3e:93:ca:1d:86:08:f7:b2:9e:4a:29:58:ba:d7:1a:b4: ea:86:2d:ed:62:f2:b6:66:ed:d7:e0:8b:36:91:50:a7:1f:75: b4:35:08:66:6d:d8:d7:9f:c4:a2:d5:3c:c8:20:4e:0a:ef:9c: f4:6f:ae:75:4f:09:a1:44:7b:cf:d6:0f:a5:5e:ba:ab:b1:a8: 04:85:e3:bc:f3:60:7d:62:b1:6c:e1:c9:01:ca:56:a0:71:aa: 24:55:04:97:c0:78:b6:a6:32:10:e8:e4:84:f2:ea:6a:65:f9: b7:a1:84:41:72:36:5c:3d:aa:07:16:a4:3b:b8:67:19:b9:54: 7f:8a:c2:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA18wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVEQzIxMTAvBgNVBAUTKDc0QUZCNUU1NEYwNzNGM0MyMDc2MzI1RDJBQzdGNzAw MEUyRTZBODYwHhcNMjUwODExMDEwOTQxWhcNMjUwODE4MDEwOTQxWjAYMRYwFAYD VQQDEw02ODk5NDJkNi1lZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1M8WxjMpaMi5EdE8HXdOxDwISiiOuJT4EhbH8KCxs2p6kHaGw0u6mwhpXuox Ua4fqnWPjs0NpBG6/dkmhWB+lTKc2ln4q7+s7p71nvGBZDX39bUn8xAOYPPPKO3V Mv8n1bkjP8v/U1tNgv2RqdjL/TWKDKb9yLrHiSpVsghzVRNMdUgFzUONdSKPmmbY Y5CTylbH60P0Ml5jtI7OzTgdQwBXUbKy5z5qWWu7YcKhwL+gfydOlLRbn5vWf1tJ bh02+Dpm9MvzR+KfdlXZEVRWT2wEblMdArrO6XKt7S4bfHtT25daLWKkEvoc7Vb7 Ruwd7aJM2SVokWhWqclx80DtoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGN+TP6P NwvpaUQp9oHpTl1lFd2JMB8GA1UdIwQYMBaAFHSvteVPBz88IHYyXSrH9wAOLmqG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RURDMi8zNkVCMjMyOEMy NUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6d2dkakpkS3NmM0FBNHVh b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RLLTE1VThIUHp3Z2RqSmRLc2YzQUE0dWFvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RURDMi8zNkVCMjMyOEMyNUYxMUVDOEMzQjAwMURDNEY5QUUwMi9kSy0xNVU4SFB6 d2dkakpkS3NmM0FBNHVhb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/wQJe78uS78x37jMkLtJ9PKFBG47+ZL8shnwzI2e0pMSxKrfs9IE5 mVAoT/0ChJVSSjNIkyonYFpDjsaGNk/rDu9HdQOjGvtsMFQP0AiQnXbvEk8HmXuz +2/+zFyr9+oNkzzKGdWkvz7/yLqzqZgNsGoIOsEF+fdh/NQBlt20nT6Tyh2GCPey nkopWLrXGrTqhi3tYvK2Zu3X4Is2kVCnH3W0NQhmbdjXn8Si1TzIIE4K75z0b651 TwmhRHvP1g+lXrqrsagEheO882B9YrFs4ckBylagcaokVQSXwHi2pjIQ6OSE8upq Zfm3oYRBcjZcPaoHFqQ7uGcZuVR/isJs -----END CERTIFICATE-----Generated at Mon Aug 11 04:20:17 2025 by rpki-client