$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: lr61LEqH1+/nDn0w3/y5lSbSdz/n7FkDqwuaZM7PE8E= Subject key identifier: C4:7D:DB:5F:59:02:3F:D0:2B:F6:5A:E4:2C:93:CF:27:B9:3F:6B:BE Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0673 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 0666 Signing time: Fri 08 Aug 2025 19:53:31 +0000 Manifest this update: Fri 08 Aug 2025 19:53:31 +0000 Manifest next update: Fri 15 Aug 2025 19:53:31 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: V4u9hpYQtw7odd2JfcKP+kXPQ2VLGGIkkD+b3QOOGZ4=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: c7+1xl97Qj2WBa7uEaRi3C9ZQy4QYdknXZBQu0sbmag=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: nh7VvVbwlcEI7LPWlEzxHGSM7ZH4CPOm9G5I1MGrFHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Aug 8 19:53:31 2025 GMT Not After : Aug 15 19:53:31 2025 GMT Subject: CN=689655bb-9713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:d7:3e:8e:06:62:f2:bc:dc:30:63:0c:4b:a3: 95:a1:6b:a6:56:ec:5d:17:c1:6f:11:ff:2a:32:23: 7f:67:ee:67:33:63:7a:06:23:ae:58:04:44:86:93: e2:58:70:7b:b2:0a:6f:f4:4e:09:45:f2:1d:d3:77: b0:0f:30:a8:55:2b:36:4c:e9:62:46:71:04:e3:93: 03:46:8e:3a:4f:ed:28:5f:79:2b:68:a5:0d:4b:b6: 61:7e:33:28:23:7b:62:40:98:27:0b:42:0d:15:42: 29:1e:b7:f7:8d:5a:99:b2:7b:73:5c:43:a4:ea:b6: ca:79:40:25:3a:e4:20:86:ee:b6:9a:dc:3e:59:2f: 69:92:94:b2:07:a3:f4:20:63:84:05:a7:39:d1:6c: 00:fd:09:2f:dd:66:75:8d:ec:20:49:f9:f5:b2:94: 1c:40:50:3e:73:f6:a0:e1:5b:29:7e:b7:df:05:25: 53:41:5a:7e:67:ab:19:40:04:51:bc:80:3d:88:60: 49:bc:d6:e5:3e:bb:51:cb:45:24:50:7a:a0:0a:b9: 22:c4:c8:5f:e5:fe:0a:9c:7c:9e:47:dc:4d:1d:23: 03:23:ca:7e:fe:bb:87:e3:cf:94:8b:30:a5:77:55: 1e:c1:e0:be:aa:44:d0:cd:18:53:af:b6:00:07:11: f5:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7D:DB:5F:59:02:3F:D0:2B:F6:5A:E4:2C:93:CF:27:B9:3F:6B:BE X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:37:b4:16:fc:84:f3:89:1b:b0:d3:b7:69:8a:3c:3a:89:50: 8e:32:4a:17:56:8c:ce:ae:62:08:57:78:45:57:dd:47:04:ef: 52:ba:9f:d9:7a:4c:b7:d2:03:fe:6e:24:d0:3c:80:90:8b:79: 68:0c:93:f5:74:b1:47:13:cf:49:61:d7:fc:0e:56:7f:0f:54: 3d:4e:84:29:0b:f8:f0:c3:fd:f3:34:51:49:d5:60:ec:7c:4c: 7b:83:8b:db:22:93:44:0c:a6:1c:bc:dd:b7:00:dd:ff:82:00: 02:40:9f:d9:39:7c:54:12:66:4a:a1:b8:ab:ed:b4:ef:4c:a4: ce:c1:e2:5a:0c:90:ee:01:ea:fe:56:02:6a:aa:73:89:e2:9a: 30:0c:a1:0d:f3:3d:ef:d0:a8:58:9a:7c:c5:77:55:ed:9e:b8: 79:19:8e:1f:b9:c9:90:38:68:b0:72:fe:2c:61:db:26:f7:eb: 27:62:a7:11:ad:37:29:62:29:da:8c:0c:1d:a1:2b:53:f9:4a: ec:96:a8:b9:9f:4d:2a:a2:ca:ad:fe:c9:4d:27:ca:7c:a1:53: 16:ab:80:ea:a7:b8:65:04:ea:93:fd:cf:3d:9b:dc:66:2f:6d: 2e:62:58:c7:dc:f5:66:77:35:1a:f0:6a:bd:ef:7e:cc:14:17: 8e:49:3f:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUwODA4MTk1MzMxWhcNMjUwODE1MTk1MzMxWjAYMRYwFAYD VQQDEw02ODk2NTViYi05NzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7tc+jgZi8rzcMGMMS6OVoWumVuxdF8FvEf8qMiN/Z+5nM2N6BiOuWAREhpPi WHB7sgpv9E4JRfId03ewDzCoVSs2TOliRnEE45MDRo46T+0oX3kraKUNS7ZhfjMo I3tiQJgnC0INFUIpHrf3jVqZsntzXEOk6rbKeUAlOuQghu62mtw+WS9pkpSyB6P0 IGOEBac50WwA/Qkv3WZ1jewgSfn1spQcQFA+c/ag4VspfrffBSVTQVp+Z6sZQARR vIA9iGBJvNblPrtRy0UkUHqgCrkixMhf5f4KnHyeR9xNHSMDI8p+/ruH48+UizCl d1UeweC+qkTQzRhTr7YABxH1nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMR9219Z Aj/QK/Za5CyTzye5P2u+MB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUN7QW/ITziRuw07dpijw6iVCOMkoXVozOrmIIV3hFV91HBO9Sup/Z eky30gP+biTQPICQi3loDJP1dLFHE89JYdf8DlZ/D1Q9ToQpC/jww/3zNFFJ1WDs fEx7g4vbIpNEDKYcvN23AN3/ggACQJ/ZOXxUEmZKobir7bTvTKTOweJaDJDuAer+ VgJqqnOJ4powDKEN8z3v0KhYmnzFd1Xtnrh5GY4fucmQOGiwcv4sYdsm9+snYqcR rTcpYinajAwdoStT+Urslqi5n00qosqt/slNJ8p8oVMWq4Dqp7hlBOqT/c89m9xm L20uYljH3PVmdzUa8Gq9737MFBeOST9+ -----END CERTIFICATE-----Generated at Sun Aug 10 18:48:19 2025 by rpki-client