$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft File: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft (raw, json) Hash identifier: 3S4iZmUYd3i+461sjbRweUj5yGIqMOr9RnJsk6FKvkk= Subject key identifier: 8B:68:89:4F:0F:0A:93:80:8A:EC:92:DB:5A:1E:30:DD:F3:56:AF:19 Authority key identifier: 09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF Certificate issuer: /CN=A91E9D0C/serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Certificate serial: 050D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft Manifest number: 0507 Signing time: Tue 05 Aug 2025 00:05:54 +0000 Manifest this update: Tue 05 Aug 2025 00:05:53 +0000 Manifest next update: Tue 12 Aug 2025 00:05:53 +0000 Files and hashes: 1: Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl (hash: LkpZ0xbCugYQ5oNayEdM70quMS30gnaESFsquHFdg+g=) 2: 630BCB6E1A1D11EC99B84C20C4F9AE02.roa (hash: DgUDwmkN0T0UntF7QmQLHNafJtdHs9vt+l0U9HNHmvY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 00:05:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1293 (0x50d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D0C, serialNumber=09DE1967E952EE8E1B2DD60F88F63BA2605753EF Validity Not Before: Aug 5 00:05:53 2025 GMT Not After : Aug 12 00:05:53 2025 GMT Subject: CN=68914ae1-5703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5a:1d:b5:28:15:df:ba:8e:25:41:7b:d8:84: c4:aa:5f:3b:3d:4b:3c:f5:c1:df:b5:15:43:fa:5a: 0f:44:5c:37:39:30:0c:8a:0e:20:6c:89:ef:0e:48: a7:31:8e:c1:c7:c4:d3:a9:e3:02:2a:d9:d5:63:f5: b1:91:e1:d8:fc:d1:bb:67:e7:2a:36:e1:8f:e6:69: 13:36:dd:3a:67:dc:92:a6:fe:70:35:9b:a8:72:c3: 5f:00:2f:57:dd:83:c0:c8:e1:10:46:a0:89:09:87: 4b:f9:4b:aa:d1:7f:ba:e6:d6:e5:56:87:05:1e:86: e4:ba:c5:f1:e3:fe:0c:18:1c:c4:f0:7a:c0:7a:6a: 69:15:0e:97:ff:88:d1:24:5d:0f:33:25:1b:5a:86: 9b:67:c7:ab:6d:d5:7f:1b:e7:08:ff:ce:98:a4:ba: ee:0a:3b:da:25:7d:5e:84:21:07:38:8a:af:d5:a6: d1:8c:42:dd:fa:05:6f:13:c5:d3:b3:e4:de:01:d1: eb:a3:5a:c4:8f:f8:11:62:6e:db:b9:48:cf:14:e3: ec:60:6f:12:0c:1e:df:bf:41:a4:21:bf:94:89:04: 17:b8:d8:ba:97:5b:75:b8:2a:2c:4d:c7:e0:44:8d: 94:98:bd:4c:c5:f2:ea:4e:3b:ac:ae:39:17:e0:d1: 39:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:68:89:4F:0F:0A:93:80:8A:EC:92:DB:5A:1E:30:DD:F3:56:AF:19 X509v3 Authority Key Identifier: keyid:09:DE:19:67:E9:52:EE:8E:1B:2D:D6:0F:88:F6:3B:A2:60:57:53:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D0C/814F6D041A1A11EC9D1CDF1EC4F9AE02/Cd4ZZ-lS7o4bLdYPiPY7omBXU-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:a8:de:57:61:64:3a:07:61:b2:32:59:da:0c:0e:8c:1e:91: 15:68:23:81:07:67:cc:9b:c1:da:0b:11:9b:d2:4a:6f:a9:82: fa:cb:5b:86:03:2f:f6:19:64:3a:b2:c7:32:77:ed:40:bb:14: 51:03:55:e0:56:49:da:12:d2:a1:e9:63:05:dd:ee:06:92:e8: 90:43:ba:42:b0:da:62:73:1d:78:61:fc:5c:5c:9b:c9:25:c1: f7:fa:ad:25:c0:e8:f2:bc:d4:d1:fa:7b:25:96:22:f0:55:a8: 08:33:09:35:16:ad:62:8c:9a:b7:cb:a2:c2:f0:bd:6a:6a:d4: 66:d4:6c:37:de:b7:33:37:3d:8a:75:74:9a:16:09:47:e6:b5: 73:08:41:97:4f:e0:51:3c:42:91:08:dd:ed:4c:bf:bb:ad:2f: 63:df:4d:db:d6:22:72:bb:c4:53:12:cd:b2:25:81:86:05:e9: 61:8e:bc:e6:cf:c3:c7:e2:4c:ff:94:15:fc:81:97:13:92:53: 0b:b5:ec:8a:e7:88:79:cf:ce:c5:35:c4:e0:cf:86:4e:f9:ab: 89:40:09:fd:a0:90:91:bc:e5:1a:2b:26:27:7f:ca:c8:5e:2b: 02:a5:bc:54:c0:fd:7e:29:3d:fa:c1:4a:9b:d9:d0:9e:73:7d: 62:c6:97:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMEMxMTAvBgNVBAUTKDA5REUxOTY3RTk1MkVFOEUxQjJERDYwRjg4RjYzQkEy NjA1NzUzRUYwHhcNMjUwODA1MDAwNTUzWhcNMjUwODEyMDAwNTUzWjAYMRYwFAYD VQQDEw02ODkxNGFlMS01NzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlodtSgV37qOJUF72ITEql87PUs89cHftRVD+loPRFw3OTAMig4gbInvDkin MY7Bx8TTqeMCKtnVY/WxkeHY/NG7Z+cqNuGP5mkTNt06Z9ySpv5wNZuocsNfAC9X 3YPAyOEQRqCJCYdL+Uuq0X+65tblVocFHobkusXx4/4MGBzE8HrAemppFQ6X/4jR JF0PMyUbWoabZ8erbdV/G+cI/86YpLruCjvaJX1ehCEHOIqv1abRjELd+gVvE8XT s+TeAdHro1rEj/gRYm7buUjPFOPsYG8SDB7fv0GkIb+UiQQXuNi6l1t1uCosTcfg RI2UmL1MxfLqTjusrjkX4NE5gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItoiU8P CpOAiuyS21oeMN3zVq8ZMB8GA1UdIwQYMBaAFAneGWfpUu6OGy3WD4j2O6JgV1Pv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQwQy84MTRGNkQwNDFB MUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdvNGJMZFlQaVBZN29tQlhV LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NkNFpaLWxTN280YkxkWVBpUFk3b21CWFUtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUQwQy84MTRGNkQwNDFBMUExMUVDOUQxQ0RGMUVDNEY5QUUwMi9DZDRaWi1sUzdv NGJMZFlQaVBZN29tQlhVLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEqN5XYWQ6B2GyMlnaDA6MHpEVaCOBB2fMm8HaCxGb0kpvqYL6y1uG Ay/2GWQ6sscyd+1AuxRRA1XgVknaEtKh6WMF3e4GkuiQQ7pCsNpicx14YfxcXJvJ JcH3+q0lwOjyvNTR+nslliLwVagIMwk1Fq1ijJq3y6LC8L1qatRm1Gw33rczNz2K dXSaFglH5rVzCEGXT+BRPEKRCN3tTL+7rS9j303b1iJyu8RTEs2yJYGGBelhjrzm z8PH4kz/lBX8gZcTklMLteyK54h5z87FNcTgz4ZO+auJQAn9oJCRvOUaKyYnf8rI XisCpbxUwP1+KT36wUqb2dCec31ixpdc -----END CERTIFICATE-----Generated at Wed Aug 6 16:05:05 2025 by rpki-client