$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft File: CDWHSXi6MJ7X2kZz53OdkyLyYps.mft (raw, json) Hash identifier: pkFzCrq7UJK/nMGyq3+9j3680VYfcZQ1kMBUuSsNPbk= Subject key identifier: 8A:DB:2C:68:09:E7:DF:EB:C4:9D:9F:7F:9A:06:56:21:D8:83:6C:C6 Authority key identifier: 08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B Certificate issuer: /CN=A917E00F/serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Certificate serial: 6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft Manifest number: 69 Signing time: Wed 06 Aug 2025 23:46:00 +0000 Manifest this update: Wed 06 Aug 2025 23:46:00 +0000 Manifest next update: Wed 13 Aug 2025 23:46:00 +0000 Files and hashes: 1: CDWHSXi6MJ7X2kZz53OdkyLyYps.crl (hash: 4srOfy89/loKvHjlrYEN4xH58m0ghS5itbarmAq7tG4=) 2: 2DA549EAE23E11EFB267422EC4F9AE02.roa (hash: IwOryXN0CLNaxtv7IBy7ZDsktAOlHn3+ya1AEPZi2Ak=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F, serialNumber=0835874978BA309ED7DA4673E7739D9322F2629B Validity Not Before: Aug 6 23:46:00 2025 GMT Not After : Aug 13 23:46:00 2025 GMT Subject: CN=6893e938-95c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2e:e3:81:21:18:d0:b5:33:ce:48:60:2c:ad: fc:8f:1e:1d:5c:2c:76:b9:63:15:38:e2:34:62:97: 9a:66:8e:1a:97:1b:42:f9:fb:de:27:a1:ec:d7:79: 49:c8:c8:14:eb:0d:11:85:75:1e:a2:3c:16:e0:ad: 62:68:bf:d0:7a:31:59:a0:cf:c1:29:ea:b7:a1:43: 2a:e3:92:6a:e8:5c:55:2f:a2:b5:f8:fb:40:de:33: 26:cc:50:52:a4:cb:1c:e9:3c:12:15:93:34:f6:4b: 67:1f:1a:27:9c:85:5d:e7:05:15:73:a6:e7:0c:79: 74:98:7f:40:b2:33:ab:ae:3a:0d:04:dd:d2:b7:31: c1:a4:e9:0c:f6:30:f4:76:3b:65:ce:c2:7a:eb:49: 46:9b:c1:53:f9:d7:aa:18:24:cc:82:99:68:77:59: 21:31:27:d4:5b:a3:1a:f9:53:de:ab:4f:e4:02:9e: 8b:9b:91:47:2f:d2:c8:6f:a0:8a:03:cb:39:9d:b0: a6:b0:53:24:59:40:f7:b4:79:4a:d3:ce:a6:e3:c3: 4e:2a:91:a1:f6:03:df:79:30:2b:d7:74:f7:15:ef: a2:26:cf:70:63:21:d4:cc:b5:e3:2a:ae:4a:8f:af: c1:e7:eb:10:f6:c3:20:e1:c7:b8:be:f7:c0:e2:99: 67:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:DB:2C:68:09:E7:DF:EB:C4:9D:9F:7F:9A:06:56:21:D8:83:6C:C6 X509v3 Authority Key Identifier: keyid:08:35:87:49:78:BA:30:9E:D7:DA:46:73:E7:73:9D:93:22:F2:62:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CDWHSXi6MJ7X2kZz53OdkyLyYps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/7D2B1DF0D7D011EF9EFC910DC4F9AE02/CDWHSXi6MJ7X2kZz53OdkyLyYps.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:40:ed:9b:b4:2e:47:c3:36:46:84:72:5f:94:64:55:57:2b: e2:0d:6f:8b:d2:b8:85:ff:19:3e:b1:69:2f:cb:a5:ba:e5:1d: 4a:2f:07:ab:41:54:a9:a9:cf:aa:f0:9a:04:f5:e9:55:fa:e1: 63:22:1c:1e:e7:25:11:1a:c6:35:aa:86:76:5c:8f:66:c0:05: c9:1c:1a:59:72:48:55:41:f2:be:0e:ab:5f:f5:b9:db:1f:49: a1:b8:90:38:94:36:6e:30:03:09:aa:e9:4a:e6:c4:93:7b:2d: f9:40:85:20:1c:e0:62:24:26:0d:48:84:f8:a0:d3:1e:da:b9: ed:44:a3:53:da:a3:f6:84:63:11:16:19:f8:8e:3e:f3:e7:29: 50:8c:f3:bb:53:e5:f5:22:bf:f7:b8:b2:11:c1:8f:6f:d7:aa: 77:ab:57:b3:5e:6f:4b:d2:4a:26:2b:91:48:1b:15:cf:39:a7: de:41:fe:ba:72:b9:16:cb:96:43:10:1b:68:8b:e3:a5:00:02: 8c:2e:6e:7a:d6:e7:37:52:76:e6:bf:e7:ab:21:29:ed:ac:ca: 31:fa:d6:b4:fd:bc:b7:11:27:47:3b:3b:e7:4a:12:58:b7:17: 44:27:b2:75:98:6f:5d:f8:16:5f:75:26:5d:89:c0:32:9a:11: b9:f5:17:6a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTAwRjExMC8GA1UEBRMoMDgzNTg3NDk3OEJBMzA5RUQ3REE0NjczRTc3MzlEOTMy MkYyNjI5QjAeFw0yNTA4MDYyMzQ2MDBaFw0yNTA4MTMyMzQ2MDBaMBgxFjAUBgNV BAMTDTY4OTNlOTM4LTk1YzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCLuOBIRjQtTPOSGAsrfyPHh1cLHa5YxU44jRil5pmjhqXG0L5+94noezXeUnI yBTrDRGFdR6iPBbgrWJov9B6MVmgz8Ep6rehQyrjkmroXFUvorX4+0DeMybMUFKk yxzpPBIVkzT2S2cfGiechV3nBRVzpucMeXSYf0CyM6uuOg0E3dK3McGk6Qz2MPR2 O2XOwnrrSUabwVP516oYJMyCmWh3WSExJ9Rboxr5U96rT+QCnoubkUcv0shvoIoD yzmdsKawUyRZQPe0eUrTzqbjw04qkaH2A995MCvXdPcV76Imz3BjIdTMteMqrkqP r8Hn6xD2wyDhx7i+98DimWe1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUitssaAnn 3+vEnZ9/mgZWIdiDbMYwHwYDVR0jBBgwFoAUCDWHSXi6MJ7X2kZz53OdkyLyYpsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMDBGLzdEMkIxREYwRDdE MDExRUY5RUZDOTEwREM0RjlBRTAyL0NEV0hTWGk2TUo3WDJrWno1M09ka3lMeVlw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0RXSFNYaTZNSjdYMmtaejUzT2RreUx5WXBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdF MDBGLzdEMkIxREYwRDdEMDExRUY5RUZDOTEwREM0RjlBRTAyL0NEV0hTWGk2TUo3 WDJrWno1M09ka3lMeVlwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFdA7Zu0LkfDNkaEcl+UZFVXK+INb4vSuIX/GT6xaS/LpbrlHUovB6tB VKmpz6rwmgT16VX64WMiHB7nJREaxjWqhnZcj2bABckcGllySFVB8r4Oq1/1udsf SaG4kDiUNm4wAwmq6UrmxJN7LflAhSAc4GIkJg1IhPig0x7aue1Eo1Pao/aEYxEW GfiOPvPnKVCM87tT5fUiv/e4shHBj2/XqnerV7Neb0vSSiYrkUgbFc85p95B/rpy uRbLlkMQG2iL46UAAowubnrW5zdSdua/56shKe2syjH61rT9vLcRJ0c7O+dKEli3 F0QnsnWYb134Fl91Jl2JwDKaEbn1F2o= -----END CERTIFICATE-----Generated at Thu Aug 7 04:00:51 2025 by rpki-client