$ rpki-client -vvf rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft File: Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft (raw, json) Hash identifier: 3pJEaBMf1jWRSKrzk295vPQMBZTL1ok+6Y8LArnJMbc= Subject key identifier: 60:05:18:D1:07:E1:D8:66:A7:73:8E:42:86:A7:DC:86:BB:A4:5E:6E Authority key identifier: 49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF Certificate issuer: /CN=A91947C4/serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft Manifest number: 015A Signing time: Sun 03 Aug 2025 04:27:13 +0000 Manifest this update: Sun 03 Aug 2025 04:27:13 +0000 Manifest next update: Sun 10 Aug 2025 04:27:13 +0000 Files and hashes: 1: Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl (hash: b8HfPlp+/O1G/2S2KkYQ4do9//36FtD15R8EFczJEMk=) 2: 08181C0C646D11EE82448758C4F9AE02.roa (hash: aw8y769dbHtoKJEd8vQWlpw8CKdXEBliY+eMjR7xPWk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 04:27:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91947C4, serialNumber=49DB61FF03C5516795CF78509EA37A060F4547BF Validity Not Before: Aug 3 04:27:13 2025 GMT Not After : Aug 10 04:27:13 2025 GMT Subject: CN=688ee521-6853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:82:62:eb:c8:6e:63:13:1e:f0:22:64:71:aa: 93:9c:75:57:2c:70:71:fc:c1:44:14:35:c1:87:07: b0:b1:c0:6f:ea:d3:e5:2a:81:b6:ad:98:8d:80:aa: 80:5f:4c:4c:62:2f:f1:cb:7e:8c:71:c1:ee:c0:2d: e6:5b:4d:21:4f:b9:08:e1:9b:ca:55:05:47:d1:92: 88:26:10:92:a9:73:4b:1c:48:23:71:92:f6:7f:2f: cf:8a:b1:c0:77:5e:de:7d:ff:0b:9e:80:cf:17:47: af:03:1d:32:36:e9:f5:41:f7:d2:54:36:d4:44:98: a3:e7:37:f6:e5:aa:eb:cc:e3:d0:08:b5:4d:0c:f6: 04:c9:91:d0:d6:4b:bd:6b:d3:1f:ae:d2:70:27:f0: 70:71:76:23:9d:f9:7a:aa:e9:d2:66:bd:9b:8f:3a: 44:b9:c8:b9:2c:70:82:9b:4a:3a:2f:f7:a0:0a:fa: 0c:02:c6:32:52:e3:68:48:c6:c4:f0:47:6b:17:53: 9d:36:74:73:29:16:90:e3:5e:bf:26:fb:a0:a4:e2: c0:b9:13:58:42:93:3c:e0:d0:40:f8:31:64:92:62: ae:c6:d4:d1:10:de:84:a1:7f:b2:e9:ba:9a:12:73: a8:b3:9e:02:a2:c8:aa:5b:0e:be:c9:99:c6:e9:df: 59:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:05:18:D1:07:E1:D8:66:A7:73:8E:42:86:A7:DC:86:BB:A4:5E:6E X509v3 Authority Key Identifier: keyid:49:DB:61:FF:03:C5:51:67:95:CF:78:50:9E:A3:7A:06:0F:45:47:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sdth_wPFUWeVz3hQnqN6Bg9FR78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91947C4/595BE82C635B11EE884CAD4FC4F9AE02/Sdth_wPFUWeVz3hQnqN6Bg9FR78.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:4c:90:58:07:6c:c3:68:0c:7a:89:72:12:c7:a8:05:37:c2: 7d:cb:2b:57:08:1d:91:ea:3f:fa:0a:2d:8d:20:4c:5d:8d:6b: ce:d9:6c:7f:68:c9:ed:bf:a1:e3:9b:22:b6:5c:b4:26:b4:7e: f8:74:93:45:da:49:42:27:04:e9:9c:3f:01:ce:b2:b1:90:97: e5:a8:b4:59:bc:f0:e7:e7:1b:2a:6d:dc:bb:c2:52:92:4e:c2: 47:6f:31:90:7d:c0:d4:aa:bc:4c:d1:e2:ff:1b:c2:cf:6f:df: d3:8c:da:0c:66:f7:ed:e7:5f:f8:3f:84:66:00:2d:62:96:31: cc:4e:08:e3:6f:27:42:bf:cd:4c:13:af:90:1c:41:b0:9e:58: e4:2f:02:5c:30:2f:53:98:73:c5:d3:46:3f:87:89:e1:70:2a: 5c:1e:0f:7d:1e:4c:74:70:4a:ba:0b:d3:80:2d:3b:76:60:48: 0f:b3:64:04:3e:a9:fc:f9:66:3a:ab:f0:a3:16:41:6b:4f:24: 1a:21:91:6e:d3:44:9f:1a:3d:72:9f:d0:21:4c:0d:ed:0a:97: a7:44:c6:5b:90:e6:6f:31:d2:85:40:c9:4c:11:4e:12:9c:bd: 91:7e:fa:4d:fa:fb:3b:15:9f:7a:a6:b1:25:9e:1f:ea:ed:a3: bc:74:3c:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ3QzQxMTAvBgNVBAUTKDQ5REI2MUZGMDNDNTUxNjc5NUNGNzg1MDlFQTM3QTA2 MEY0NTQ3QkYwHhcNMjUwODAzMDQyNzEzWhcNMjUwODEwMDQyNzEzWjAYMRYwFAYD VQQDEw02ODhlZTUyMS02ODUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4Ji68huYxMe8CJkcaqTnHVXLHBx/MFEFDXBhwewscBv6tPlKoG2rZiNgKqA X0xMYi/xy36MccHuwC3mW00hT7kI4ZvKVQVH0ZKIJhCSqXNLHEgjcZL2fy/PirHA d17eff8LnoDPF0evAx0yNun1QffSVDbURJij5zf25arrzOPQCLVNDPYEyZHQ1ku9 a9MfrtJwJ/BwcXYjnfl6qunSZr2bjzpEuci5LHCCm0o6L/egCvoMAsYyUuNoSMbE 8EdrF1OdNnRzKRaQ416/JvugpOLAuRNYQpM84NBA+DFkkmKuxtTREN6EoX+y6bqa EnOos54CosiqWw6+yZnG6d9ZbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGAFGNEH 4dhmp3OOQoan3Ia7pF5uMB8GA1UdIwQYMBaAFEnbYf8DxVFnlc94UJ6jegYPRUe/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDdDNC81OTVCRTgyQzYz NUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVXZVZ6M2hRbnFONkJnOUZS NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NkdGhfd1BGVVdlVnozaFFucU42Qmc5RlI3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDdDNC81OTVCRTgyQzYzNUIxMUVFODg0Q0FENEZDNEY5QUUwMi9TZHRoX3dQRlVX ZVZ6M2hRbnFONkJnOUZSNzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcTJBYB2zDaAx6iXISx6gFN8J9yytXCB2R6j/6Ci2NIExdjWvO2Wx/ aMntv6HjmyK2XLQmtH74dJNF2klCJwTpnD8BzrKxkJflqLRZvPDn5xsqbdy7wlKS TsJHbzGQfcDUqrxM0eL/G8LPb9/TjNoMZvft51/4P4RmAC1iljHMTgjjbydCv81M E6+QHEGwnljkLwJcMC9TmHPF00Y/h4nhcCpcHg99Hkx0cEq6C9OALTt2YEgPs2QE Pqn8+WY6q/CjFkFrTyQaIZFu00SfGj1yn9AhTA3tCpenRMZbkOZvMdKFQMlMEU4S nL2RfvpN+vs7FZ96prElnh/q7aO8dDzz -----END CERTIFICATE-----Generated at Mon Aug 4 15:36:33 2025 by rpki-client