$ rpki-client -vvf rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft File: 32d9hpNHe5Kh6f58IEImls6oYJ0.mft (raw, json) Hash identifier: PWtEZms7MQKAJAR0ETYvNhHxeQ6TE2HabGYQtog7pz8= Subject key identifier: 42:EB:F4:25:F2:F0:A5:A6:7C:1E:20:36:CE:75:3C:65:44:44:5C:18 Authority key identifier: DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D Certificate issuer: /CN=A918BDA2/serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Certificate serial: 0339 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft Manifest number: 0334 Signing time: Tue 05 Aug 2025 01:41:47 +0000 Manifest this update: Tue 05 Aug 2025 01:41:47 +0000 Manifest next update: Tue 12 Aug 2025 01:41:47 +0000 Files and hashes: 1: 32d9hpNHe5Kh6f58IEImls6oYJ0.crl (hash: gdnaVEzqZX3hIclb1BSLSq9IZGJFNLCS1/esTi8PF/c=) 2: 756558C6D19611ECB75A996BC4F9AE02.roa (hash: jBN+GZ5K5hQcx74ci+Zj74gtJO93V93U4mPbsdd8SsY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 01:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 825 (0x339) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BDA2, serialNumber=DF677D8693477B92A1E9FE7C20422696CEA8609D Validity Not Before: Aug 5 01:41:47 2025 GMT Not After : Aug 12 01:41:47 2025 GMT Subject: CN=6891615b-a227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1d:75:5a:07:5b:79:65:a0:e1:b5:ad:9c:0b: 96:4a:d5:9f:a5:e0:1e:2b:d0:9e:92:aa:b7:6b:f5: db:96:3d:56:1b:72:40:d3:d0:60:44:06:b9:e9:bb: f8:f6:c4:3d:3c:e9:32:95:6d:b5:7c:cb:30:79:9f: 54:f4:aa:33:f1:bf:0b:fc:07:64:6e:9c:eb:b4:9d: 03:72:b9:34:26:64:33:2c:b7:c4:b5:b9:68:e9:d0: a9:dc:32:cd:0b:b1:e0:4a:b5:e4:c0:49:78:4a:29: 8a:cd:29:bd:41:1c:42:a2:e9:fe:40:a9:d3:84:ea: d1:ea:94:26:fb:82:7b:35:80:b8:b1:6b:49:8e:ff: 1b:03:63:0d:ae:d6:d4:5c:91:24:a7:d8:41:cf:e5: 94:13:35:3e:c9:21:50:7c:54:8d:67:41:36:11:32: c9:84:45:df:d0:25:10:da:9b:71:bc:50:0e:97:4d: 2a:c0:34:7f:92:50:82:b4:6c:23:63:df:76:b1:4b: e4:aa:59:37:5a:45:f5:72:fd:d1:35:7e:5e:69:7e: 09:5e:a4:eb:fb:46:03:b2:91:c3:1f:73:f7:22:bc: 48:58:61:a9:5f:af:b2:85:e3:76:24:1a:00:f3:b2: 53:85:e6:cd:1b:b2:06:cf:11:8b:c2:b4:26:1c:05: 84:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:EB:F4:25:F2:F0:A5:A6:7C:1E:20:36:CE:75:3C:65:44:44:5C:18 X509v3 Authority Key Identifier: keyid:DF:67:7D:86:93:47:7B:92:A1:E9:FE:7C:20:42:26:96:CE:A8:60:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/32d9hpNHe5Kh6f58IEImls6oYJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BDA2/70E69C18D0EE11ECBC5C4973C4F9AE02/32d9hpNHe5Kh6f58IEImls6oYJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:a3:97:9d:95:ea:4f:7b:db:ab:6f:ed:cf:ce:35:99:3d:31: 77:5c:c6:0a:2b:fe:de:89:16:f1:28:09:5d:82:36:4a:f4:40: b5:bc:3c:c4:8b:b7:b2:f4:af:00:d2:52:87:38:b3:99:bc:52: 54:75:31:54:86:e0:93:10:b5:a3:e7:42:7e:30:32:c4:fa:51: 8f:82:61:e6:0c:48:e3:b6:2a:b7:40:38:1e:5a:5b:5b:9d:a9: b1:ea:3d:79:2b:95:b9:b3:d1:41:e0:3d:17:63:a1:3e:f6:f0: bf:ff:b0:05:29:cf:d7:75:d4:e2:95:10:03:8a:57:59:5f:a1: 39:ef:63:73:be:33:f8:95:49:21:2a:41:7d:d5:c6:5e:65:01: 19:df:35:24:13:fc:94:68:9c:f4:12:04:74:b0:7f:42:5c:2f: 8b:dd:c2:01:bf:42:42:94:5f:6e:13:5c:d2:5b:3f:cb:8b:b4: 04:eb:fb:8f:d6:c1:18:ba:44:19:53:5f:4b:b7:c6:3c:87:5d: d9:d6:1e:cb:0f:09:76:20:e0:13:0a:e1:92:e5:92:b6:4c:7d: 2a:84:5e:58:39:6f:d9:43:0b:9c:9d:3d:3f:0e:b5:52:9f:56: e8:1a:f1:20:d7:2c:92:0c:d5:74:bb:8f:a3:61:44:a3:5d:da: 2b:fd:be:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJEQTIxMTAvBgNVBAUTKERGNjc3RDg2OTM0NzdCOTJBMUU5RkU3QzIwNDIyNjk2 Q0VBODYwOUQwHhcNMjUwODA1MDE0MTQ3WhcNMjUwODEyMDE0MTQ3WjAYMRYwFAYD VQQDEw02ODkxNjE1Yi1hMjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0h11WgdbeWWg4bWtnAuWStWfpeAeK9Cekqq3a/Xblj1WG3JA09BgRAa56bv4 9sQ9POkylW21fMsweZ9U9Koz8b8L/AdkbpzrtJ0Dcrk0JmQzLLfEtblo6dCp3DLN C7HgSrXkwEl4SimKzSm9QRxCoun+QKnThOrR6pQm+4J7NYC4sWtJjv8bA2MNrtbU XJEkp9hBz+WUEzU+ySFQfFSNZ0E2ETLJhEXf0CUQ2ptxvFAOl00qwDR/klCCtGwj Y992sUvkqlk3WkX1cv3RNX5eaX4JXqTr+0YDspHDH3P3IrxIWGGpX6+yheN2JBoA 87JThebNG7IGzxGLwrQmHAWEmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELr9CXy 8KWmfB4gNs51PGVERFwYMB8GA1UdIwQYMBaAFN9nfYaTR3uSoen+fCBCJpbOqGCd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkRBMi83MEU2OUMxOEQw RUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1S2g2ZjU4SUVJbWxzNm9Z SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyZDlocE5IZTVLaDZmNThJRUltbHM2b1lKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QkRBMi83MEU2OUMxOEQwRUUxMUVDQkM1QzQ5NzNDNEY5QUUwMi8zMmQ5aHBOSGU1 S2g2ZjU4SUVJbWxzNm9ZSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBto5edlepPe9urb+3PzjWZPTF3XMYKK/7eiRbxKAldgjZK9EC1vDzE i7ey9K8A0lKHOLOZvFJUdTFUhuCTELWj50J+MDLE+lGPgmHmDEjjtiq3QDgeWltb namx6j15K5W5s9FB4D0XY6E+9vC//7AFKc/XddTilRADildZX6E572NzvjP4lUkh KkF91cZeZQEZ3zUkE/yUaJz0EgR0sH9CXC+L3cIBv0JClF9uE1zSWz/Li7QE6/uP 1sEYukQZU19Lt8Y8h13Z1h7LDwl2IOATCuGS5ZK2TH0qhF5YOW/ZQwucnT0/DrVS n1boGvEg1yySDNV0u4+jYUSjXdor/b6E -----END CERTIFICATE-----Generated at Wed Aug 6 10:18:55 2025 by rpki-client