$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: l1uaLQEbucKl5vcIUHDMF72WZssQur6AI0onYxTBnok= Subject key identifier: 6B:92:BC:59:69:EC:D0:A2:BA:CF:31:93:95:6E:43:4C:96:19:C8:6D Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 350C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34E5 Signing time: Fri 08 Aug 2025 14:27:15 +0000 Manifest this update: Fri 08 Aug 2025 14:27:15 +0000 Manifest next update: Fri 15 Aug 2025 14:27:15 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: O5sJxXkuhPjQYwoVN4e0ZpnT7cTlE+LyX5DKHKQo+6Y=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: 6CSktOcA4MnBe9beO9qKaaWhMjSNipfCRcL+x7I1JgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13580 (0x350c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Aug 8 14:27:15 2025 GMT Not After : Aug 15 14:27:15 2025 GMT Subject: CN=68960943-44b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9a:6c:08:74:0a:6b:9a:a3:3b:d4:84:c1:e8: 4e:ff:30:aa:84:44:f8:a7:46:75:ea:c3:f6:2f:88: 4d:5b:62:f6:32:3d:06:32:0b:3a:71:dd:4c:bd:a2: b8:dc:d4:e6:c4:29:96:95:82:06:90:fe:0e:01:b4: f2:19:03:a5:3f:f5:36:3b:c3:1c:7f:85:9e:ed:94: 4d:f2:72:6f:ab:ee:95:80:36:df:ff:de:fd:4c:20: cc:3a:87:12:7d:12:57:d2:3d:7c:92:72:f2:2f:47: 6e:c0:c8:78:58:15:4c:7b:89:5e:1f:41:7b:f4:5d: 45:9b:09:d5:c6:79:34:be:09:2c:d9:6b:0a:16:ab: 3a:16:89:b5:ac:b9:85:47:d6:f2:2b:f3:0c:6e:9d: 27:b6:e2:89:46:3e:fa:8f:a8:96:88:11:bf:ec:f3: ff:2a:0a:8f:eb:e7:b6:78:fa:fb:3a:e5:6f:c9:b0: 8c:a3:cb:2b:01:32:24:bf:a1:e8:ab:60:26:5e:d5: f3:81:15:0e:c4:ab:49:eb:4f:90:94:24:f9:17:e7: 87:dc:bb:ae:5d:c3:85:5f:df:b2:9b:21:ed:42:08: bb:9f:c2:f4:34:01:1b:17:78:f4:45:fe:6d:41:b6: fb:f8:3f:35:13:3b:69:bf:33:9a:f0:98:75:9f:cc: a2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:92:BC:59:69:EC:D0:A2:BA:CF:31:93:95:6E:43:4C:96:19:C8:6D X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:83:1a:24:95:5d:0d:c9:97:08:23:3a:41:ec:4d:13:8a:a5: 74:4e:d4:a3:7c:5a:17:9c:26:f5:de:71:06:02:da:c7:62:92: 27:82:9c:60:2e:8d:d2:0c:aa:cc:89:1a:e8:c6:fc:5f:3c:0c: 27:5c:5e:64:a9:47:cb:93:b8:19:95:8d:d0:d5:da:93:7d:03: 78:01:4e:45:a5:46:db:12:ea:8d:99:7b:ab:81:64:43:b4:3a: 6e:15:63:ca:38:23:b1:5b:0a:9d:67:df:35:48:e0:66:05:5d: 57:84:05:d6:15:c8:18:70:64:a2:7b:ad:f9:65:c5:b1:08:45: 4a:f6:80:cf:28:bb:3f:d5:b3:51:d3:34:f1:c3:b8:9b:c0:4a: 1d:ba:fe:c0:ae:0a:66:4e:5a:45:f6:8d:f4:66:5b:01:fe:41: 05:29:ec:61:2c:a8:53:83:bc:29:03:fe:b2:06:a8:a4:25:f4: 75:61:70:81:e5:4a:59:3d:86:41:03:7b:3d:fa:b4:90:6e:18: 8f:e4:6d:ee:09:76:60:d4:4e:20:c4:a4:da:06:a2:8a:63:d7: 0a:43:4d:50:ea:be:f7:0a:26:1a:ad:d8:69:f4:69:12:b3:54: 66:f9:d6:ad:9f:c1:6a:46:95:2e:31:9f:e6:72:3a:2e:ee:67: 6a:fa:a7:67 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwODA4MTQyNzE1WhcNMjUwODE1MTQyNzE1WjAYMRYwFAYD VQQDEw02ODk2MDk0My00NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1JpsCHQKa5qjO9SEwehO/zCqhET4p0Z16sP2L4hNW2L2Mj0GMgs6cd1MvaK4 3NTmxCmWlYIGkP4OAbTyGQOlP/U2O8Mcf4We7ZRN8nJvq+6VgDbf/979TCDMOocS fRJX0j18knLyL0duwMh4WBVMe4leH0F79F1FmwnVxnk0vgks2WsKFqs6Fom1rLmF R9byK/MMbp0ntuKJRj76j6iWiBG/7PP/KgqP6+e2ePr7OuVvybCMo8srATIkv6Ho q2AmXtXzgRUOxKtJ60+QlCT5F+eH3LuuXcOFX9+ymyHtQgi7n8L0NAEbF3j0Rf5t Qbb7+D81EztpvzOa8Jh1n8yiEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGuSvFlp 7NCius8xk5VuQ0yWGchtMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWgxoklV0NyZcIIzpB7E0TiqV0TtSjfFoXnCb13nEGAtrHYpIngpxg Lo3SDKrMiRroxvxfPAwnXF5kqUfLk7gZlY3Q1dqTfQN4AU5FpUbbEuqNmXurgWRD tDpuFWPKOCOxWwqdZ981SOBmBV1XhAXWFcgYcGSie635ZcWxCEVK9oDPKLs/1bNR 0zTxw7ibwEoduv7ArgpmTlpF9o30ZlsB/kEFKexhLKhTg7wpA/6yBqikJfR1YXCB 5UpZPYZBA3s9+rSQbhiP5G3uCXZg1E4gxKTaBqKKY9cKQ01Q6r73CiYardhp9GkS s1Rm+datn8FqRpUuMZ/mcjou7mdq+qdn -----END CERTIFICATE-----Generated at Fri Aug 8 20:42:28 2025 by rpki-client