$ rpki-client -vvf rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft File: k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft (raw, json) Hash identifier: K+H3ipl9KzAJAYhBbNH39JNv5Nv3pDVybNOTylfYBIU= Subject key identifier: BB:0A:54:5E:E5:3A:0B:86:37:B1:63:80:82:40:5D:97:5B:DE:EB:8A Authority key identifier: 93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 Certificate issuer: /CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Certificate serial: 0559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft Manifest number: 0555 Signing time: Wed 06 Aug 2025 23:52:21 +0000 Manifest this update: Wed 06 Aug 2025 23:52:21 +0000 Manifest next update: Wed 13 Aug 2025 23:52:21 +0000 Files and hashes: 1: k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl (hash: +mVloqpbmGbxzA9NXYf7UAZ2RrZHsu/K7eYn5dB0+Cc=) 2: CE00DA34FF4411EBAD3A632AC4F9AE02.roa (hash: gsNxtD+HCrA+T6b9YqONqQ4jv3lalAETh9MJihh24Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:52:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1369 (0x559) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917584F, serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Validity Not Before: Aug 6 23:52:21 2025 GMT Not After : Aug 13 23:52:21 2025 GMT Subject: CN=6893eab5-eb5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:91:35:8d:da:ba:80:04:5b:c3:bc:24:54:16: 9d:53:fa:35:83:15:c9:3a:b3:f6:1d:93:02:83:05: dc:70:1d:aa:09:e5:84:db:48:08:92:51:d8:0c:3a: 34:81:55:5b:cd:c9:62:67:95:4a:88:dc:bf:47:8d: d3:53:79:c4:d9:71:af:96:b3:7a:a2:61:f7:f9:81: 7b:51:b3:10:7b:6b:45:3c:01:ee:83:d9:5b:d9:26: e9:00:f3:89:0b:02:c6:95:be:25:6d:b5:2e:84:eb: fe:a2:3d:7c:b2:c2:60:3f:32:63:68:64:48:c3:e6: 4e:e0:44:90:a7:c4:9c:7b:c2:40:ea:54:17:63:53: 2f:5e:f5:92:43:29:91:24:f1:e1:50:7f:64:6a:ac: 62:c3:49:81:ba:4b:f5:a5:65:9b:bb:e1:f8:4e:e2: fc:47:85:9b:ff:f9:a0:12:0a:ee:86:a2:f6:c4:c6: ae:37:bd:33:7e:de:70:1c:22:0e:11:f1:00:b6:4b: 41:71:82:d3:2d:7d:2a:c8:45:c6:49:0a:22:60:32: a5:f6:34:c5:fa:12:e8:24:fc:b3:03:e0:bb:1b:36: 2a:18:ec:b7:6e:5d:f9:0f:0d:30:54:d8:77:2a:f0: 37:5c:33:a8:b0:62:52:7d:76:96:f6:ec:12:3b:1d: c1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:0A:54:5E:E5:3A:0B:86:37:B1:63:80:82:40:5D:97:5B:DE:EB:8A X509v3 Authority Key Identifier: keyid:93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:4e:ce:6a:de:55:02:d7:46:47:c7:de:1a:9f:12:44:34:d7: 46:18:a8:db:55:90:f7:4a:54:9e:0a:bf:89:45:c7:91:a5:0c: 17:ff:da:5a:74:59:91:1d:a0:33:8b:3d:74:5a:47:d9:72:3c: 9d:30:52:7e:5d:71:f2:92:d9:cd:32:21:f8:8b:73:f3:d9:10: a2:92:df:04:b8:f3:28:28:9b:28:f9:2b:bc:ff:21:bf:e0:1c: ba:c9:7d:0f:40:ba:3f:f7:1d:65:82:8b:f5:15:0e:5a:d0:6b: 80:ef:06:ac:4d:2b:84:d7:e7:b0:b9:67:e7:c4:b5:7d:d9:a4: c8:1b:df:5c:68:41:2d:4f:60:1f:3b:e9:25:d7:d7:34:05:41: 76:b6:79:8f:05:81:d8:b9:51:3e:26:40:16:02:b2:27:59:8f: a4:8d:03:de:50:f2:d4:85:bc:11:03:9d:31:a8:cf:f3:0f:99: 53:ba:80:ca:57:59:5c:53:2f:fe:79:4f:97:a3:4b:38:21:78: aa:7e:e4:fc:77:f3:12:9d:a6:ff:e6:ab:d8:75:80:c0:79:f8: 70:ef:fb:c0:88:45:12:5f:60:2d:bd:88:64:7e:0f:8d:11:13: 47:7e:4f:38:c3:43:a9:02:4f:78:f7:54:87:9e:d2:32:fd:77: e3:f9:de:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NEYxMTAvBgNVBAUTKDkzNEFERkI5NEEzOUEwQzM3Qjc3Rjk3OTAzNzA2QjYx RjBCRUZFRTcwHhcNMjUwODA2MjM1MjIxWhcNMjUwODEzMjM1MjIxWjAYMRYwFAYD VQQDEw02ODkzZWFiNS1lYjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZE1jdq6gARbw7wkVBadU/o1gxXJOrP2HZMCgwXccB2qCeWE20gIklHYDDo0 gVVbzcliZ5VKiNy/R43TU3nE2XGvlrN6omH3+YF7UbMQe2tFPAHug9lb2SbpAPOJ CwLGlb4lbbUuhOv+oj18ssJgPzJjaGRIw+ZO4ESQp8Sce8JA6lQXY1MvXvWSQymR JPHhUH9kaqxiw0mBukv1pWWbu+H4TuL8R4Wb//mgEgruhqL2xMauN70zft5wHCIO EfEAtktBcYLTLX0qyEXGSQoiYDKl9jTF+hLoJPyzA+C7GzYqGOy3bl35Dw0wVNh3 KvA3XDOosGJSfXaW9uwSOx3BdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsKVF7l OguGN7FjgIJAXZdb3uuKMB8GA1UdIwQYMBaAFJNK37lKOaDDe3f5eQNwa2Hwvv7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg0Ri9ERDcyQ0U1OEY5 QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9NTjdkX2w1QTNCcllmQy1f dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swcmZ1VW81b01ON2RfbDVBM0JyWWZDLV91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTg0Ri9ERDcyQ0U1OEY5QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9N TjdkX2w1QTNCcllmQy1fdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTTs5q3lUC10ZHx94anxJENNdGGKjbVZD3SlSeCr+JRceRpQwX/9pa dFmRHaAziz10WkfZcjydMFJ+XXHyktnNMiH4i3Pz2RCikt8EuPMoKJso+Su8/yG/ 4By6yX0PQLo/9x1lgov1FQ5a0GuA7wasTSuE1+ewuWfnxLV92aTIG99caEEtT2Af O+kl19c0BUF2tnmPBYHYuVE+JkAWArInWY+kjQPeUPLUhbwRA50xqM/zD5lTuoDK V1lcUy/+eU+Xo0s4IXiqfuT8d/MSnab/5qvYdYDAefhw7/vAiEUSX2AtvYhkfg+N ERNHfk84w0OpAk9491SHntIy/Xfj+d6Z -----END CERTIFICATE-----Generated at Sat Aug 9 01:02:25 2025 by rpki-client