$ rpki-client -vvf rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft File: dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft (raw, json) Hash identifier: bn3f7ptU/qeHEDarSMaXMlMEWHVPITidd3byFQgnouM= Subject key identifier: 4A:34:02:9F:85:F6:36:41:A0:24:58:DC:D3:39:D9:0C:DE:EB:53:E5 Authority key identifier: 76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF Certificate issuer: /CN=A91828F3/serialNumber=76661008DAC89284C537F2DCE0A920BA94E078CF Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft Manifest number: 01D5 Signing time: Mon 11 Aug 2025 02:51:46 +0000 Manifest this update: Mon 11 Aug 2025 02:51:45 +0000 Manifest next update: Mon 18 Aug 2025 02:51:45 +0000 Files and hashes: 1: dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl (hash: 5G4s3Yr17HiFXGt0vULbtRJDnU+sXWKG4iwO4CVIxhc=) 2: 05E078B2A5D211EDBC42DA12C4F9AE02.roa (hash: 949cDrd9O3ejSTUuoxYP0yKZgFwRWnkdff/N9Ay5rNE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91828F3, serialNumber=76661008DAC89284C537F2DCE0A920BA94E078CF Validity Not Before: Aug 11 02:51:45 2025 GMT Not After : Aug 18 02:51:45 2025 GMT Subject: CN=68995ac2-fc77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:11:92:f9:fc:db:21:45:fd:70:c6:b6:9a:52: 0f:c5:12:06:6f:ef:90:24:59:59:e2:90:23:82:f5: 3c:bd:11:16:7c:44:8a:9b:06:3e:cb:ba:7d:b3:9a: 6c:71:af:37:04:1b:69:24:9e:53:29:6e:a8:e4:7d: 5a:66:80:c0:f1:02:90:7b:51:8f:8d:0f:36:42:2f: 5a:99:e8:f6:b7:7e:28:17:d8:8c:05:2e:1c:d8:8d: d2:74:cd:b1:2a:7b:2e:4a:db:f4:18:c2:3e:55:03: ec:1d:10:ec:e8:bb:e1:8d:81:37:50:d9:cc:14:f5: 99:57:e9:4d:9c:4c:b1:5e:e0:59:db:dc:15:8f:2d: 6a:3a:a5:8b:e2:8d:94:b8:64:cf:ae:7f:00:0d:9c: 0c:f6:16:ce:92:70:45:d3:05:a5:46:f0:0b:dc:1f: 09:51:5d:48:8b:8b:04:ea:e5:6b:b4:52:11:15:2d: b8:41:97:ac:44:77:54:89:3f:39:ea:1f:2f:13:f8: 0a:17:65:cf:b3:cb:aa:37:0e:24:08:86:f8:81:21: 8c:1d:54:ac:e6:15:3e:54:fa:82:73:c3:c9:91:26: 84:01:fd:da:13:5d:c6:42:c6:7c:5b:0f:57:e7:11: ac:f6:b2:a6:cc:17:d8:30:fb:d8:02:fc:30:39:bf: bb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:34:02:9F:85:F6:36:41:A0:24:58:DC:D3:39:D9:0C:DE:EB:53:E5 X509v3 Authority Key Identifier: keyid:76:66:10:08:DA:C8:92:84:C5:37:F2:DC:E0:A9:20:BA:94:E0:78:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmYQCNrIkoTFN_Lc4KkgupTgeM8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91828F3/C27958B8A5CD11EDAECE1278C4F9AE02/dmYQCNrIkoTFN_Lc4KkgupTgeM8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:37:68:02:fa:68:f5:27:a3:b9:3b:4f:11:d8:3f:60:78:ed: 39:14:80:4a:8c:ba:36:fa:b8:90:4e:b1:1d:7c:af:2f:c7:f1: df:bf:4a:e5:e3:ba:86:21:71:4d:da:65:86:a9:00:83:03:49: aa:ba:0a:73:61:c3:fe:49:3f:56:00:b8:ab:9a:23:fc:15:c1: 3a:83:03:2a:b3:db:0e:c0:35:25:9c:fd:de:99:d5:b6:3b:28: 9e:38:c8:8b:6a:5e:1b:f5:88:5e:f4:38:66:1f:ac:da:72:29: 84:ad:18:35:56:c8:a0:87:64:f8:5f:0f:13:6a:17:df:07:24: 5d:95:aa:f4:1f:ca:3b:d8:f5:17:fa:de:62:5d:97:5e:d2:22: c0:90:a1:8c:16:7d:7f:86:12:73:d0:ba:90:4b:d0:54:e8:d5: ff:ec:54:71:3b:cc:7e:bf:72:8c:75:98:56:25:c0:ea:89:a9: 07:0f:0a:9f:d8:9b:c7:b3:4b:8d:de:28:62:91:38:13:ae:e2: 15:44:0a:23:5b:55:f5:91:86:d9:83:fb:e3:2e:34:f9:8d:67: 35:3e:c2:9e:0d:c7:54:63:c7:21:fa:cc:bd:5d:a2:ef:0b:24: 26:fd:37:b3:68:fc:e4:f3:0a:8e:9f:e9:90:a4:bd:33:35:99: f2:2f:ce:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI4RjMxMTAvBgNVBAUTKDc2NjYxMDA4REFDODkyODRDNTM3RjJEQ0UwQTkyMEJB OTRFMDc4Q0YwHhcNMjUwODExMDI1MTQ1WhcNMjUwODE4MDI1MTQ1WjAYMRYwFAYD VQQDEw02ODk5NWFjMi1mYzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxGS+fzbIUX9cMa2mlIPxRIGb++QJFlZ4pAjgvU8vREWfESKmwY+y7p9s5ps ca83BBtpJJ5TKW6o5H1aZoDA8QKQe1GPjQ82Qi9amej2t34oF9iMBS4c2I3SdM2x KnsuStv0GMI+VQPsHRDs6LvhjYE3UNnMFPWZV+lNnEyxXuBZ29wVjy1qOqWL4o2U uGTPrn8ADZwM9hbOknBF0wWlRvAL3B8JUV1Ii4sE6uVrtFIRFS24QZesRHdUiT85 6h8vE/gKF2XPs8uqNw4kCIb4gSGMHVSs5hU+VPqCc8PJkSaEAf3aE13GQsZ8Ww9X 5xGs9rKmzBfYMPvYAvwwOb+7uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEo0Ap+F 9jZBoCRY3NM52Qze61PlMB8GA1UdIwQYMBaAFHZmEAjayJKExTfy3OCpILqU4HjP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjhGMy9DMjc5NThCOEE1 Q0QxMUVEQUVDRTEyNzhDNEY5QUUwMi9kbVlRQ05ySWtvVEZOX0xjNEtrZ3VwVGdl TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtWVFDTnJJa29URk5fTGM0S2tndXBUZ2VNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjhGMy9DMjc5NThCOEE1Q0QxMUVEQUVDRTEyNzhDNEY5QUUwMi9kbVlRQ05ySWtv VEZOX0xjNEtrZ3VwVGdlTTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApN2gC+mj1J6O5O08R2D9geO05FIBKjLo2+riQTrEdfK8vx/Hfv0rl 47qGIXFN2mWGqQCDA0mqugpzYcP+ST9WALirmiP8FcE6gwMqs9sOwDUlnP3emdW2 OyieOMiLal4b9Yhe9DhmH6zacimErRg1Vsigh2T4Xw8TahffByRdlar0H8o72PUX +t5iXZde0iLAkKGMFn1/hhJz0LqQS9BU6NX/7FRxO8x+v3KMdZhWJcDqiakHDwqf 2JvHs0uN3ihikTgTruIVRAojW1X1kYbZg/vjLjT5jWc1PsKeDcdUY8ch+sy9XaLv CyQm/TezaPzk8wqOn+mQpL0zNZnyL86l -----END CERTIFICATE-----Generated at Mon Aug 11 07:28:07 2025 by rpki-client