$ rpki-client -vvf rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft File: dd3NDNRiWKwZGsOQoskl2MA1qFc.mft (raw, json) Hash identifier: vUc3SMeE3Um0XPwhrvxeJ3S/PPvrKX/3tBXjtSbgYJc= Subject key identifier: 83:DC:6C:A3:33:6D:B2:AC:A0:E8:01:D2:45:2A:F0:17:10:4E:23:B9 Authority key identifier: 75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 Certificate issuer: /CN=A917E04F/serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Certificate serial: 0EA0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft Manifest number: 0E98 Signing time: Fri 08 Aug 2025 17:52:58 +0000 Manifest this update: Fri 08 Aug 2025 17:52:58 +0000 Manifest next update: Fri 15 Aug 2025 17:52:58 +0000 Files and hashes: 1: dd3NDNRiWKwZGsOQoskl2MA1qFc.crl (hash: RfBoUiVYXUVLMyiZOreeaohpKYzerV2dYHlolAzSGEk=) 2: 9C9389D4970311E9B7D3DE5AC4F9AE02.roa (hash: 0msFIFHq8Bi6Dy0orrBJDRYbRJioucs5FAZf2jEryJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3744 (0xea0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E04F, serialNumber=75DDCD0CD46258AC191AC390A2C925D8C035A857 Validity Not Before: Aug 8 17:52:58 2025 GMT Not After : Aug 15 17:52:58 2025 GMT Subject: CN=6896397a-e6cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ab:59:f7:95:7e:fb:9b:ce:cb:87:53:a0:d7: 2f:0a:21:60:5a:76:39:d1:ec:c0:56:42:33:f9:8e: 89:41:0e:e1:0d:3b:c6:dc:28:78:4c:96:27:72:10: 2a:fe:05:b3:8a:97:b2:0a:24:35:87:18:af:8a:69: fe:4e:43:fa:70:93:08:fa:83:70:e4:38:68:70:58: f4:24:cf:da:a9:2a:c1:5e:9d:83:f3:58:75:41:10: 36:ac:5e:0b:fc:f2:3e:91:ce:d0:31:ce:03:20:0a: db:9e:84:d1:1d:18:d4:3e:32:ae:7e:33:33:53:43: 8f:59:ee:4c:43:3f:6f:b0:35:a6:4a:54:02:29:81: 29:c1:54:eb:f5:a3:9f:67:77:4e:19:11:39:2a:a0: f3:f6:3e:1c:7b:3a:42:a6:17:8b:4a:4a:99:ff:cc: c8:4b:cb:53:bf:13:10:4f:27:c9:0b:98:f1:b9:f1: 4f:8f:b9:f7:15:df:3c:ae:c7:9e:98:35:36:0c:87: 01:7d:f0:82:d0:77:e6:a0:4a:08:39:4a:de:34:a6: 4d:b5:0c:3a:93:6f:2a:a6:5d:bd:8e:75:31:8a:7c: 2a:99:ad:bf:14:8e:72:e1:20:ac:c8:28:a2:65:03: 07:95:ad:ce:5e:ee:82:30:73:5a:f8:b7:5d:e4:f5: ee:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DC:6C:A3:33:6D:B2:AC:A0:E8:01:D2:45:2A:F0:17:10:4E:23:B9 X509v3 Authority Key Identifier: keyid:75:DD:CD:0C:D4:62:58:AC:19:1A:C3:90:A2:C9:25:D8:C0:35:A8:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dd3NDNRiWKwZGsOQoskl2MA1qFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E04F/418537F4970311E9B4B7B25AC4F9AE02/dd3NDNRiWKwZGsOQoskl2MA1qFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:63:3d:a2:f8:75:0c:55:1e:cd:c9:7d:af:ef:79:0f:b2:01: 8a:53:b7:3f:88:27:b5:ea:02:11:90:f7:0f:e0:bc:99:1c:ad: be:3a:2b:c1:c8:b8:1f:3e:91:51:b9:6d:aa:38:e2:00:de:7c: 20:46:46:f3:9c:b6:d9:8a:0d:29:db:c2:13:0c:4d:18:a1:3b: a4:2e:03:8c:f3:49:c5:2a:ba:2d:cd:28:5e:5e:93:f1:7e:92: 1b:c3:31:27:31:28:4e:ea:87:57:1b:b9:35:3e:83:8d:aa:27: 16:f8:46:f1:f8:e9:be:4b:45:91:05:10:6c:b4:31:8c:8c:23: f2:6b:d4:d3:85:2e:4f:e1:df:ef:47:85:eb:8e:a8:d4:ba:0f: d4:a0:5b:de:c9:12:48:2f:b4:fc:3e:c4:c4:de:20:76:ab:e8: 51:6b:7a:33:6d:6e:db:8e:88:a5:37:e6:a7:f4:60:fc:d0:58: 44:e3:71:f0:cd:47:01:81:6d:76:12:6f:f8:00:98:ba:61:65: 66:23:7e:f7:ab:a2:ff:ae:b7:32:9a:b0:30:6a:74:5e:c6:de: ca:58:64:1e:36:16:8e:0d:45:65:68:03:38:54:04:57:f2:6c: cc:e2:6b:54:ee:88:6b:c6:b9:b3:e4:22:47:af:8b:eb:29:d4: 01:54:7a:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwNEYxMTAvBgNVBAUTKDc1RERDRDBDRDQ2MjU4QUMxOTFBQzM5MEEyQzkyNUQ4 QzAzNUE4NTcwHhcNMjUwODA4MTc1MjU4WhcNMjUwODE1MTc1MjU4WjAYMRYwFAYD VQQDEw02ODk2Mzk3YS1lNmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyatZ95V++5vOy4dToNcvCiFgWnY50ezAVkIz+Y6JQQ7hDTvG3Ch4TJYnchAq /gWzipeyCiQ1hxivimn+TkP6cJMI+oNw5DhocFj0JM/aqSrBXp2D81h1QRA2rF4L /PI+kc7QMc4DIArbnoTRHRjUPjKufjMzU0OPWe5MQz9vsDWmSlQCKYEpwVTr9aOf Z3dOGRE5KqDz9j4cezpCpheLSkqZ/8zIS8tTvxMQTyfJC5jxufFPj7n3Fd88rsee mDU2DIcBffCC0HfmoEoIOUreNKZNtQw6k28qpl29jnUxinwqma2/FI5y4SCsyCii ZQMHla3OXu6CMHNa+Ldd5PXudwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIPcbKMz bbKsoOgB0kUq8BcQTiO5MB8GA1UdIwQYMBaAFHXdzQzUYlisGRrDkKLJJdjANahX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTA0Ri80MTg1MzdGNDk3 MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdLd1pHc09Rb3NrbDJNQTFx RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RkM05ETlJpV0t3WkdzT1Fvc2tsMk1BMXFGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTA0Ri80MTg1MzdGNDk3MDMxMUU5QjRCN0IyNUFDNEY5QUUwMi9kZDNORE5SaVdL d1pHc09Rb3NrbDJNQTFxRmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMYz2i+HUMVR7NyX2v73kPsgGKU7c/iCe16gIRkPcP4LyZHK2+OivB yLgfPpFRuW2qOOIA3nwgRkbznLbZig0p28ITDE0YoTukLgOM80nFKrotzSheXpPx fpIbwzEnMShO6odXG7k1PoONqicW+Ebx+Om+S0WRBRBstDGMjCPya9TThS5P4d/v R4XrjqjUug/UoFveyRJIL7T8PsTE3iB2q+hRa3ozbW7bjoilN+an9GD80FhE43Hw zUcBgW12Em/4AJi6YWVmI373q6L/rrcymrAwanRext7KWGQeNhaODUVlaAM4VARX 8mzM4mtU7ohrxrmz5CJHr4vrKdQBVHrQ -----END CERTIFICATE-----Generated at Sat Aug 9 14:25:26 2025 by rpki-client