$ rpki-client -vvf rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft File: 5DMXblmum0dk6179BKQ2hWKrXiE.mft (raw, json) Hash identifier: +/97hj6MXUFw+wFXaCqVTrxseLkAxhaww9ZDKoPb6Xs= Subject key identifier: 8A:F9:3F:BD:AA:2D:E7:84:90:B2:F0:A0:50:0F:69:9D:72:49:80:92 Authority key identifier: E4:33:17:6E:59:AE:9B:47:64:EB:5E:FD:04:A4:36:85:62:AB:5E:21 Certificate issuer: /CN=A9180318/serialNumber=E433176E59AE9B4764EB5EFD04A4368562AB5E21 Certificate serial: 34AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DMXblmum0dk6179BKQ2hWKrXiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft Manifest number: 34AC Signing time: Sun 10 Aug 2025 14:39:57 +0000 Manifest this update: Sun 10 Aug 2025 14:39:57 +0000 Manifest next update: Sun 17 Aug 2025 14:39:57 +0000 Files and hashes: 1: 5DMXblmum0dk6179BKQ2hWKrXiE.crl (hash: P/sF19KBX14ECwxWc/Zth22a576va6ViXc5BuMUu5LU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.crl rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DMXblmum0dk6179BKQ2hWKrXiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13484 (0x34ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180318, serialNumber=E433176E59AE9B4764EB5EFD04A4368562AB5E21 Validity Not Before: Aug 10 14:39:57 2025 GMT Not After : Aug 17 14:39:57 2025 GMT Subject: CN=6898af3d-6215 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6f:f3:c9:0e:6a:e1:2c:68:c7:c1:b6:17:db: 8f:71:82:56:7d:f5:8d:91:3a:89:6a:ff:68:0b:3a: 22:37:21:90:ab:e5:cf:a0:8f:71:4a:73:d8:80:3f: 0a:7a:c3:d7:0a:f9:ef:0e:d2:40:b3:21:96:79:aa: 45:d2:52:d7:e3:2b:ae:29:52:06:4f:59:40:c4:10: 14:65:c7:ce:2c:0f:c2:cb:46:59:8f:19:f7:28:a1: 8f:65:21:10:74:94:ab:df:ed:86:6f:97:6b:d9:ea: 69:29:18:f0:53:b5:47:a1:4f:15:66:6e:0a:4b:eb: b1:89:87:6d:ef:b3:eb:fb:47:7b:3c:cb:fb:5d:fb: 5f:65:ab:b9:8c:9b:97:79:3d:36:93:ff:55:a8:6a: 22:a1:eb:f0:50:fb:20:ee:42:32:92:67:7f:0d:b1: 0d:56:1a:7d:af:5b:fa:2e:79:c9:21:e7:9e:82:06: 37:77:65:5f:5c:f2:60:1e:6a:cc:d8:e9:dc:8a:82: 52:d2:15:e9:bc:fa:9d:d2:27:18:e5:eb:13:25:3e: 27:f0:20:87:f1:e9:9a:ba:60:2f:8f:7c:ee:5b:06: 81:42:dc:eb:bc:6d:1c:55:f5:29:d4:e4:f7:23:94: 12:c4:94:d7:48:29:29:2e:37:cb:ec:80:c7:02:a9: b7:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F9:3F:BD:AA:2D:E7:84:90:B2:F0:A0:50:0F:69:9D:72:49:80:92 X509v3 Authority Key Identifier: keyid:E4:33:17:6E:59:AE:9B:47:64:EB:5E:FD:04:A4:36:85:62:AB:5E:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DMXblmum0dk6179BKQ2hWKrXiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180318/B5719DD21D8F11E2B05707EF08B02CD2/5DMXblmum0dk6179BKQ2hWKrXiE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:bc:80:f2:53:d2:f0:cb:2b:f5:09:b3:4d:f4:9f:cd:b0:0b: 71:6d:4a:62:eb:a7:ce:8d:eb:bd:20:ef:ca:88:fe:2a:b3:63: ef:a0:51:38:fe:63:b2:d8:62:58:6a:28:29:91:ce:bd:08:8d: 2d:ab:7f:44:31:2c:71:69:9d:8e:83:17:25:16:da:22:dc:3e: fb:d8:e0:c7:83:73:8d:79:08:e4:eb:99:da:1b:ed:68:d3:9b: cc:8f:8b:2a:9d:af:29:77:ce:7b:ef:de:41:39:1a:d7:2d:54: f2:bf:7c:fb:c6:90:db:5b:39:c7:b6:b9:cc:45:45:8e:40:a9: f2:73:b3:ed:58:a9:54:14:39:b0:09:b3:d6:34:01:9a:b1:ee: cf:2e:e2:43:0a:25:7f:45:8d:b9:65:28:83:44:e3:94:e8:7e: 23:76:3f:13:81:61:1c:7c:bf:5b:63:16:9e:8f:1a:3a:db:07: 22:06:1e:46:9c:5e:fb:66:e1:de:18:b3:a3:da:ce:fa:e5:31: 06:a0:64:a8:b4:4f:01:ce:ad:66:5b:da:de:88:86:70:2d:3d: 1f:04:f2:c5:f3:b4:51:d8:7b:91:48:28:be:27:82:d8:c9:03: f6:2a:b7:3b:dd:c6:e5:ec:28:2d:8b:c7:94:59:2f:34:7a:36: 8b:11:44:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMTgxMTAvBgNVBAUTKEU0MzMxNzZFNTlBRTlCNDc2NEVCNUVGRDA0QTQzNjg1 NjJBQjVFMjEwHhcNMjUwODEwMTQzOTU3WhcNMjUwODE3MTQzOTU3WjAYMRYwFAYD VQQDEw02ODk4YWYzZC02MjE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzG/zyQ5q4Sxox8G2F9uPcYJWffWNkTqJav9oCzoiNyGQq+XPoI9xSnPYgD8K esPXCvnvDtJAsyGWeapF0lLX4yuuKVIGT1lAxBAUZcfOLA/Cy0ZZjxn3KKGPZSEQ dJSr3+2Gb5dr2eppKRjwU7VHoU8VZm4KS+uxiYdt77Pr+0d7PMv7XftfZau5jJuX eT02k/9VqGoioevwUPsg7kIykmd/DbENVhp9r1v6LnnJIeeeggY3d2VfXPJgHmrM 2OncioJS0hXpvPqd0icY5esTJT4n8CCH8emaumAvj3zuWwaBQtzrvG0cVfUp1OT3 I5QSxJTXSCkpLjfL7IDHAqm33QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIr5P72q LeeEkLLwoFAPaZ1ySYCSMB8GA1UdIwQYMBaAFOQzF25ZrptHZOte/QSkNoViq14h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMxOC9CNTcxOUREMjFE OEYxMUUyQjA1NzA3RUYwOEIwMkNEMi81RE1YYmxtdW0wZGs2MTc5QktRMmhXS3JY aUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVETVhibG11bTBkazYxNzlCS1EyaFdLclhpRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDMxOC9CNTcxOUREMjFEOEYxMUUyQjA1NzA3RUYwOEIwMkNEMi81RE1YYmxtdW0w ZGs2MTc5QktRMmhXS3JYaUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgvIDyU9Lwyyv1CbNN9J/NsAtxbUpi66fOjeu9IO/KiP4qs2PvoFE4 /mOy2GJYaigpkc69CI0tq39EMSxxaZ2OgxclFtoi3D772ODHg3ONeQjk65naG+1o 05vMj4sqna8pd857795BORrXLVTyv3z7xpDbWznHtrnMRUWOQKnyc7PtWKlUFDmw CbPWNAGase7PLuJDCiV/RY25ZSiDROOU6H4jdj8TgWEcfL9bYxaejxo62wciBh5G nF77ZuHeGLOj2s765TEGoGSotE8Bzq1mW9reiIZwLT0fBPLF87RR2HuRSCi+J4LY yQP2Krc73cbl7Cgti8eUWS80ejaLEUSx -----END CERTIFICATE-----Generated at Mon Aug 11 09:52:18 2025 by rpki-client