$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: W/n7CoWh+D8SHFGtRLcTQ2OcZ9gDg+9QcdWMofUa/1k= Subject key identifier: 20:4D:05:82:33:4B:86:91:FE:40:03:9C:6D:2D:DB:61:87:4C:91:4F Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: B4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: B3 Signing time: Mon 11 Aug 2025 06:13:08 +0000 Manifest this update: Mon 11 Aug 2025 06:13:08 +0000 Manifest next update: Mon 18 Aug 2025 06:13:08 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: Ca3qY194+t4em/04Vq3ASEiSDc4KLAH10wOZ+/3QDIU=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Aug 11 06:13:08 2025 GMT Not After : Aug 18 06:13:08 2025 GMT Subject: CN=689989f4-0cb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:94:4c:a7:ba:10:da:2b:b8:bf:70:20:3a:2e: 86:1c:02:aa:99:0a:2a:db:84:f1:6d:c2:5f:9d:78: b1:3a:02:80:88:dd:be:a6:86:5d:87:51:08:2a:8e: d1:80:dc:b2:36:5d:ac:d0:3c:08:13:15:e0:ea:18: f2:b5:02:6d:af:55:1a:8b:2a:87:0e:3a:1e:89:67: 94:5e:5e:83:ad:66:73:27:02:cf:db:fd:22:87:ab: c4:8f:94:b9:f2:1a:c6:8c:1f:44:30:9a:bc:3c:a8: 07:cc:b1:8f:a2:c8:79:3e:6c:27:cb:ea:dd:38:28: ee:dc:b6:e1:56:9f:0c:6f:4e:86:cf:48:b0:4b:10: ff:d0:c1:c4:7d:f4:77:20:7e:02:e3:3e:69:e0:01: db:6d:e8:bc:06:6b:be:72:bf:bd:5b:ec:51:77:fe: 99:73:6f:52:2e:e7:18:f0:52:ac:b2:dc:f7:52:5c: 15:9f:af:1a:ee:02:cb:b7:07:7a:97:ec:e5:41:e8: ab:0d:27:4b:9a:9f:21:c0:84:a1:d6:86:64:8b:21: 94:3a:86:85:b7:7e:ae:bb:97:2e:bb:9c:ec:44:83: 44:53:7d:23:d6:9d:f0:11:2a:3d:50:a6:58:6a:69: 20:cd:a4:46:cf:b9:4e:90:f4:f6:e2:8c:a5:e8:37: 8b:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:4D:05:82:33:4B:86:91:FE:40:03:9C:6D:2D:DB:61:87:4C:91:4F X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:50:a6:28:1f:cb:ec:ef:88:66:b0:50:c4:6f:10:27:7b:d7: c3:bd:fd:e6:45:7b:08:15:10:cb:b4:5c:2f:c8:bd:e0:54:1f: f1:82:a1:ac:9b:bb:d9:ac:b7:46:fa:c9:0b:c9:0c:85:e6:6b: b8:96:2d:0c:69:98:10:d1:25:1c:10:f1:8a:9c:7f:d8:d1:fe: 07:ec:08:02:70:d3:fa:a0:21:47:9c:b8:bc:34:2c:d7:1a:03: d2:6f:c1:87:66:0a:74:7c:48:6d:cf:0b:32:df:98:16:d5:cd: 51:f5:de:78:68:93:61:3b:93:5a:9b:ce:ef:b2:e8:5b:a6:20: 89:09:b7:a2:e7:df:66:b0:35:30:cf:fa:9e:38:64:be:bb:94: b2:2a:f3:7b:b8:13:de:db:8d:80:af:f3:4d:e1:c1:9c:9e:32: 7d:14:fe:e4:78:62:a2:ca:f4:b5:86:9b:37:3d:57:3b:f5:89: bb:87:20:92:dc:47:17:8b:a7:a1:3b:56:f8:08:4d:6a:5a:6e: 1d:a9:ea:89:c5:5f:8f:b4:91:68:96:ec:14:0e:e5:76:5d:53: ca:47:b2:9e:f5:8b:4f:e2:33:95:d6:80:20:cd:3b:0d:a5:f0: a6:d0:b7:9c:7b:4f:a4:67:57:4a:8d:dc:17:88:9f:d8:4e:c6: be:7f:e7:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwODExMDYxMzA4WhcNMjUwODE4MDYxMzA4WjAYMRYwFAYD VQQDEw02ODk5ODlmNC0wY2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJRMp7oQ2iu4v3AgOi6GHAKqmQoq24TxbcJfnXixOgKAiN2+poZdh1EIKo7R gNyyNl2s0DwIExXg6hjytQJtr1UaiyqHDjoeiWeUXl6DrWZzJwLP2/0ih6vEj5S5 8hrGjB9EMJq8PKgHzLGPosh5Pmwny+rdOCju3LbhVp8Mb06Gz0iwSxD/0MHEffR3 IH4C4z5p4AHbbei8Bmu+cr+9W+xRd/6Zc29SLucY8FKsstz3UlwVn68a7gLLtwd6 l+zlQeirDSdLmp8hwISh1oZkiyGUOoaFt36uu5cuu5zsRINEU30j1p3wESo9UKZY amkgzaRGz7lOkPT24oyl6DeLlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBNBYIz S4aR/kADnG0t22GHTJFPMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHUKYoH8vs74hmsFDEbxAne9fDvf3mRXsIFRDLtFwvyL3gVB/xgqGs m7vZrLdG+skLyQyF5mu4li0MaZgQ0SUcEPGKnH/Y0f4H7AgCcNP6oCFHnLi8NCzX GgPSb8GHZgp0fEhtzwsy35gW1c1R9d54aJNhO5Nam87vsuhbpiCJCbei599msDUw z/qeOGS+u5SyKvN7uBPe242Ar/NN4cGcnjJ9FP7keGKiyvS1hps3PVc79Ym7hyCS 3EcXi6ehO1b4CE1qWm4dqeqJxV+PtJFoluwUDuV2XVPKR7Ke9YtP4jOV1oAgzTsN pfCm0Lece0+kZ1dKjdwXiJ/YTsa+f+cr -----END CERTIFICATE-----Generated at Mon Aug 11 13:13:53 2025 by rpki-client