$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft File: dD54xFmO_HLaCEZGUOuPnNoW-YA.mft (raw, json) Hash identifier: JHfsxNEWbgTfLCcmQ55/211hzMCx+d64ujJ5u98kjkM= Subject key identifier: 40:5F:8A:C6:89:6A:41:7F:C5:16:51:CC:97:3D:C9:86:3A:6B:C7:2C Authority key identifier: 74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 Certificate issuer: /CN=A91DE500/serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft Manifest number: 0233 Signing time: Sat 09 Aug 2025 05:14:21 +0000 Manifest this update: Sat 09 Aug 2025 05:14:21 +0000 Manifest next update: Sat 16 Aug 2025 05:14:21 +0000 Files and hashes: 1: dD54xFmO_HLaCEZGUOuPnNoW-YA.crl (hash: awKmFVozIK76v6hHkuW4BLl41lRzlpZ9FDllsiS7Cuk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=743E78C4598EFC72DA08464650EB8F9CDA16F980 Validity Not Before: Aug 9 05:14:21 2025 GMT Not After : Aug 16 05:14:21 2025 GMT Subject: CN=6896d92d-d8c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5b:4b:60:f2:86:fc:01:d5:46:d3:e3:c8:d8: 39:5c:1d:84:b2:05:fb:2a:bd:11:7e:39:9a:64:c6: 4a:c6:8d:42:58:0c:9d:3f:36:ef:9e:fc:51:a2:41: 7f:db:96:7b:05:cd:e0:0c:d9:b9:65:77:5d:73:8d: a4:25:40:85:ea:06:09:96:e4:e4:2d:f3:9f:4c:54: 41:cc:c9:1d:fb:f2:0c:59:43:76:3b:96:ab:7c:df: cf:c0:66:28:41:0f:59:11:79:fd:b0:c3:c4:3d:c3: e4:56:a9:a5:cb:25:f6:fe:44:3a:8b:cc:51:20:9f: c5:9c:85:9b:11:d3:1f:17:e2:6e:e9:ae:09:de:e8: 1f:b9:c3:6b:4a:06:38:aa:90:29:e1:9b:be:0c:0a: ca:22:6e:59:67:fc:04:ed:d4:42:36:49:97:5e:d5: 73:96:35:aa:47:95:9f:8b:96:71:53:05:ad:73:72: 06:7b:cc:40:fd:e1:91:56:7f:6e:f4:3c:4e:69:84: 7a:2f:63:a4:db:90:c8:5d:97:70:54:35:98:1e:72: 04:3b:47:03:4a:8e:d3:d1:cf:18:e6:b1:26:5c:83: 4d:6b:e2:01:72:6e:62:0a:c3:c3:26:6f:a4:eb:36: d6:fd:8b:a1:f5:c2:d2:83:35:21:46:de:2a:05:01: 68:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5F:8A:C6:89:6A:41:7F:C5:16:51:CC:97:3D:C9:86:3A:6B:C7:2C X509v3 Authority Key Identifier: keyid:74:3E:78:C4:59:8E:FC:72:DA:08:46:46:50:EB:8F:9C:DA:16:F9:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dD54xFmO_HLaCEZGUOuPnNoW-YA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/dD54xFmO_HLaCEZGUOuPnNoW-YA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:3c:71:da:1f:48:45:99:a0:89:32:8b:f7:1c:aa:04:b1:c5: 66:a4:76:ba:3c:f7:ea:31:4e:eb:b7:cd:33:a6:9d:f0:dc:72: 4b:ab:5a:8a:ae:6d:09:94:6b:b4:71:20:9c:20:4a:ab:d4:6e: a2:10:eb:5e:66:2c:b3:f3:5a:87:48:4e:b6:40:35:fe:76:a5: b4:f2:02:9b:11:6c:c6:5e:e3:af:7c:de:91:8f:4b:61:83:1d: 72:fc:54:3d:e8:c4:c7:d5:eb:19:62:08:68:64:cb:d6:1d:da: 40:c3:54:9c:87:ac:9d:6c:45:e8:29:f6:ff:59:03:de:36:6e: b6:e4:9a:be:a0:98:eb:90:31:da:de:6e:7e:de:a1:df:c3:5d: 4f:ff:67:f1:02:91:5d:70:92:76:37:3e:5a:05:6b:8b:d8:4e: 8b:fc:44:ea:d3:dd:72:bb:8a:a2:6f:b7:ea:36:5a:93:5f:35: 18:21:aa:0d:c2:81:99:b6:0a:65:fd:98:ba:89:36:64:f9:67: 3c:c4:59:29:01:88:7c:16:da:10:d6:27:ac:7a:07:48:73:98: 47:b8:4b:54:4d:92:07:32:75:07:21:31:ff:c4:90:49:45:5b: 2e:f4:0b:87:91:31:aa:b2:15:a5:e2:87:b8:b5:c9:c9:f7:ed: 84:d7:8f:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKDc0M0U3OEM0NTk4RUZDNzJEQTA4NDY0NjUwRUI4RjlD REExNkY5ODAwHhcNMjUwODA5MDUxNDIxWhcNMjUwODE2MDUxNDIxWjAYMRYwFAYD VQQDEw02ODk2ZDkyZC1kOGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1tLYPKG/AHVRtPjyNg5XB2EsgX7Kr0RfjmaZMZKxo1CWAydPzbvnvxRokF/ 25Z7Bc3gDNm5ZXddc42kJUCF6gYJluTkLfOfTFRBzMkd+/IMWUN2O5arfN/PwGYo QQ9ZEXn9sMPEPcPkVqmlyyX2/kQ6i8xRIJ/FnIWbEdMfF+Ju6a4J3ugfucNrSgY4 qpAp4Zu+DArKIm5ZZ/wE7dRCNkmXXtVzljWqR5Wfi5ZxUwWtc3IGe8xA/eGRVn9u 9DxOaYR6L2Ok25DIXZdwVDWYHnIEO0cDSo7T0c8Y5rEmXINNa+IBcm5iCsPDJm+k 6zbW/Yuh9cLSgzUhRt4qBQFogQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBfisaJ akF/xRZRzJc9yYY6a8csMB8GA1UdIwQYMBaAFHQ+eMRZjvxy2ghGRlDrj5zaFvmA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19ITGFDRVpHVU91UG5Ob1ct WUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RENTR4Rm1PX0hMYUNFWkdVT3VQbk5vVy1ZQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTUwMC8zRkZGNUMzRUM3MkQxMUVFOUM3QzM1MURDNEY5QUUwMi9kRDU0eEZtT19I TGFDRVpHVU91UG5Ob1ctWUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABPHHaH0hFmaCJMov3HKoEscVmpHa6PPfqMU7rt80zpp3w3HJLq1qK rm0JlGu0cSCcIEqr1G6iEOteZiyz81qHSE62QDX+dqW08gKbEWzGXuOvfN6Rj0th gx1y/FQ96MTH1esZYghoZMvWHdpAw1Sch6ydbEXoKfb/WQPeNm625Jq+oJjrkDHa 3m5+3qHfw11P/2fxApFdcJJ2Nz5aBWuL2E6L/ETq091yu4qib7fqNlqTXzUYIaoN woGZtgpl/Zi6iTZk+Wc8xFkpAYh8FtoQ1iesegdIc5hHuEtUTZIHMnUHITH/xJBJ RVsu9AuHkTGqshWl4oe4tcnJ9+2E149L -----END CERTIFICATE-----Generated at Sun Aug 10 18:17:25 2025 by rpki-client