$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft File: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft (raw, json) Hash identifier: E50oTMaofMs37nxAM6MzneXcx7mJiFKE4Ur/IDCkadU= Subject key identifier: BF:06:C2:23:AF:3F:FC:07:71:A4:CF:63:C6:22:46:72:5A:2C:13:E0 Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Certificate serial: 01A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft Manifest number: 0188 Signing time: Sat 09 Aug 2025 04:15:58 +0000 Manifest this update: Sat 09 Aug 2025 04:15:57 +0000 Manifest next update: Sat 16 Aug 2025 04:15:57 +0000 Files and hashes: 1: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl (hash: XKBrEI+EGgK9gouhGbIU0VI8x0j2dckbvtCLTkmFCi4=) 2: E506BE2CF03811EFAD4C2257C4F9AE02.roa (hash: iRxA1ggG5Gg6gMWZuZ8L1lPJN3fft+M4sC43triwT/s=) 3: B67EFE26A2DB11EEABACB981C4F9AE02.roa (hash: bYvF1gDJX1ZeUVWwtl4pq/MaUKBYzhyJEZ9Gr/fKvjk=) 4: A045C92CB46611EEAFEE8758C4F9AE02.roa (hash: tbP1wHLZXWdBy80smo7nwsfBeTkYD2DmwbznFImHmJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A05D, serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Validity Not Before: Aug 9 04:15:57 2025 GMT Not After : Aug 16 04:15:57 2025 GMT Subject: CN=6896cb7e-2487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:08:3b:98:06:f8:b9:e6:d9:82:3c:9c:49:d8: 9e:e0:06:b4:2a:ec:bc:ce:40:0d:6d:35:65:eb:ef: c7:23:0c:35:61:b7:d7:fc:b6:05:aa:f3:88:b1:cf: 21:a6:63:c5:50:32:db:52:f5:62:b6:dd:b3:e3:d5: 42:af:e1:b6:d9:e7:06:1d:e6:25:a8:91:a4:c6:7a: d6:f3:8d:8b:54:e3:4d:bd:f5:59:c5:8b:c6:6e:b5: 8d:57:16:30:31:43:65:f6:fd:fe:a1:56:a8:15:d2: 17:6f:01:b1:71:70:c2:c8:7f:02:7c:50:cd:31:1a: 37:4e:bc:8d:88:22:8a:b5:7e:6d:6f:2b:a2:0b:cc: 7b:dc:d2:8f:7d:71:cc:aa:b8:8f:38:51:10:b4:6c: 38:8f:3d:f6:3b:a1:78:f0:9b:aa:28:d4:8d:b9:c8: 9c:f2:d4:26:81:2a:28:0f:7c:00:21:f1:e6:12:e4: 0a:3c:39:4e:4e:fa:4d:30:88:6b:a0:db:3b:b4:72: 23:e9:42:5a:68:3b:87:8f:a7:c6:73:6f:ea:f4:a3: c2:d1:58:dd:76:2a:da:9d:f6:3d:06:ed:80:05:c1: 73:0e:4b:e8:4e:eb:0d:b3:b2:37:80:0d:77:cb:61: bc:17:21:3c:9d:00:1a:f1:2f:1a:2f:3a:e0:9e:49: 9a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:06:C2:23:AF:3F:FC:07:71:A4:CF:63:C6:22:46:72:5A:2C:13:E0 X509v3 Authority Key Identifier: keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:4c:4c:f1:74:56:34:2a:ed:a1:8a:fa:a7:ca:bd:13:58:0d: 06:ec:0b:c7:ea:fd:62:fe:61:1d:f4:ea:20:b2:2c:f9:60:01: cf:42:10:b8:92:82:3c:f0:ca:48:1c:d0:d6:a0:ad:28:64:24: 65:dd:a9:bf:4b:7d:07:fd:16:a4:3d:1d:63:98:be:44:8b:af: fb:3a:89:a4:9c:47:7c:32:31:01:96:a0:f7:04:92:de:4d:52: 5c:bd:ac:e0:00:82:8c:4c:92:5f:1b:9d:24:37:a8:b7:80:74: 69:e2:08:4f:d5:4b:ae:4f:45:88:74:93:74:78:3c:33:b5:c8: f4:fb:d1:0b:cc:d0:b4:e7:fe:14:99:90:05:64:a9:48:47:8d: af:ce:67:4d:12:6b:b3:e7:29:81:ca:6c:94:9f:78:7c:79:87: 1a:ee:bf:a9:21:57:1b:b7:4e:89:30:73:09:50:96:63:bc:1a: 98:52:4b:6d:9c:f7:9f:2b:47:c6:d4:88:40:75:33:a9:7f:a0: b3:d3:f3:56:0d:72:ac:83:38:06:49:54:b4:81:6d:59:c6:b5: 4b:34:77:f4:d5:1e:aa:fc:b9:9a:87:d0:29:6e:95:30:17:8b: d1:d4:f2:f5:61:fa:55:df:a0:29:b4:35:1d:8b:02:10:e2:a9: a9:e4:d1:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwNUQxMTAvBgNVBAUTKDBGNTQ1RTYyNzNEN0M5N0U5OTk1NDExRjc2RDVDNEYw MDZCQjUxODYwHhcNMjUwODA5MDQxNTU3WhcNMjUwODE2MDQxNTU3WjAYMRYwFAYD VQQDEw02ODk2Y2I3ZS0yNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAowg7mAb4uebZgjycSdie4Aa0Kuy8zkANbTVl6+/HIww1YbfX/LYFqvOIsc8h pmPFUDLbUvVitt2z49VCr+G22ecGHeYlqJGkxnrW842LVONNvfVZxYvGbrWNVxYw MUNl9v3+oVaoFdIXbwGxcXDCyH8CfFDNMRo3TryNiCKKtX5tbyuiC8x73NKPfXHM qriPOFEQtGw4jz32O6F48JuqKNSNucic8tQmgSooD3wAIfHmEuQKPDlOTvpNMIhr oNs7tHIj6UJaaDuHj6fGc2/q9KPC0VjddiranfY9Bu2ABcFzDkvoTusNs7I3gA13 y2G8FyE8nQAa8S8aLzrgnkma2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8GwiOv P/wHcaTPY8YiRnJaLBPgMB8GA1UdIwQYMBaAFA9UXmJz18l+mZVBH3bVxPAGu1GG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTA1RC9DMUVGQjA4MDRF MjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlYNlpsVUVmZHRYRThBYTdV WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QxUmVZblBYeVg2WmxVRWZkdFhFOEFhN1VZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTA1RC9DMUVGQjA4MDRFMjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlY NlpsVUVmZHRYRThBYTdVWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzTEzxdFY0Ku2hivqnyr0TWA0G7AvH6v1i/mEd9Oogsiz5YAHPQhC4 koI88MpIHNDWoK0oZCRl3am/S30H/RakPR1jmL5Ei6/7OomknEd8MjEBlqD3BJLe TVJcvazgAIKMTJJfG50kN6i3gHRp4ghP1UuuT0WIdJN0eDwztcj0+9ELzNC05/4U mZAFZKlIR42vzmdNEmuz5ymBymyUn3h8eYca7r+pIVcbt06JMHMJUJZjvBqYUktt nPefK0fG1IhAdTOpf6Cz0/NWDXKsgzgGSVS0gW1ZxrVLNHf01R6q/Lmah9ApbpUw F4vR1PL1YfpV36AptDUdiwIQ4qmp5NHC -----END CERTIFICATE-----Generated at Mon Aug 11 01:49:11 2025 by rpki-client