$ rpki-client -vvf rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft File: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft (raw, json) Hash identifier: uGwNK6oUP1KDwMXeG9rEjv4gVvtrESsCkcfWhkjuPLg= Subject key identifier: 05:8E:80:F8:49:62:32:BE:F3:F0:3E:91:A8:D6:02:D8:5A:D7:6D:AD Authority key identifier: 0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 Certificate issuer: /CN=A9112BDE/serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Certificate serial: 073F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft Manifest number: 0739 Signing time: Fri 22 Aug 2025 21:54:28 +0000 Manifest this update: Fri 22 Aug 2025 21:54:28 +0000 Manifest next update: Fri 29 Aug 2025 21:54:28 +0000 Files and hashes: 1: DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl (hash: 0KuJwMYvXBGHaY74RZxJ7WhUNS/MfRjx727Ck/mjmzQ=) 2: 511EBFFE3E7E11EB979F564CC4F9AE02.roa (hash: Vr7eqcQZAVOzBkNtRv4RGA5ST9LjW4Xtker8ajEEVvQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112BDE, serialNumber=0D0346C8A266BE6ADCE4B7E83950AF5FE1EBE5C4 Validity Not Before: Aug 22 21:54:28 2025 GMT Not After : Aug 29 21:54:28 2025 GMT Subject: CN=68a8e714-09b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b5:b8:5d:ba:dd:81:15:41:a4:2e:2a:97:71: d4:f8:1a:d8:da:25:ee:d0:49:ed:a2:60:75:72:fa: 27:6c:19:6c:fa:2f:84:cf:85:7d:b0:a4:c4:80:c6: 46:85:1c:19:48:35:95:f6:cf:c9:32:22:e5:7e:ee: 3c:5a:fe:b7:1a:b5:86:70:55:4a:2d:33:a0:d0:03: 6b:b1:e1:67:3a:a8:8e:b6:10:1d:16:ff:b8:d4:82: e3:9b:c5:0b:3b:51:02:e8:28:c4:d5:dd:21:a4:af: f6:ad:13:57:2f:48:71:72:c3:9c:56:95:b5:17:98: af:2d:d6:7c:66:a9:b1:1d:59:68:9a:f6:73:e1:36: 63:56:4e:df:c8:bd:c0:13:09:77:f2:5c:87:ea:d2: a7:8a:0e:08:fc:6f:fb:44:56:5b:60:ec:f9:1f:35: e4:f8:3c:82:ab:86:00:13:d0:ad:79:09:ca:47:fa: d3:a8:99:65:30:4b:17:32:68:dd:b9:19:85:88:61: 42:d7:50:aa:15:c0:43:47:95:c4:62:15:7b:ec:fc: 5f:cc:e0:d8:eb:80:22:c0:79:96:a3:f9:45:05:29: 96:fd:e0:ba:9e:de:13:1f:15:e2:ce:84:7a:73:8b: ae:02:40:0f:75:79:51:c4:87:05:3d:c3:ee:99:f8: 44:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8E:80:F8:49:62:32:BE:F3:F0:3E:91:A8:D6:02:D8:5A:D7:6D:AD X509v3 Authority Key Identifier: keyid:0D:03:46:C8:A2:66:BE:6A:DC:E4:B7:E8:39:50:AF:5F:E1:EB:E5:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112BDE/5E128FFC3E7D11EBBBEF274CC4F9AE02/DQNGyKJmvmrc5LfoOVCvX-Hr5cQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:de:cd:b4:20:03:11:fe:15:0f:48:a4:02:8d:81:8d:c1:4c: 8d:2b:46:a1:24:b1:ea:57:2a:1b:34:c5:50:68:66:63:e1:fc: 48:8c:c9:12:33:7c:12:c6:32:16:ca:ba:ce:ee:c1:8f:f6:a5: 42:44:68:cb:2b:3b:a6:89:ea:f0:7c:40:b9:73:5d:97:6d:c1: 6e:2f:83:4a:29:92:2b:99:b5:f3:2b:37:0e:d6:c1:42:8e:bd: 9a:fd:d4:9c:ce:b9:85:0d:ac:44:b8:34:32:60:69:0b:5d:b2: 14:ea:b7:2b:af:38:f8:44:52:17:00:4c:39:e9:8d:97:18:54: a7:46:69:57:3c:97:4d:d7:65:c6:46:ea:a5:ee:10:5d:d6:9d: 22:30:cf:83:82:14:fb:bb:3f:0a:48:8c:ec:b0:2f:b4:03:d1: 4a:3e:55:24:09:9f:37:6e:40:4c:57:2c:bf:8e:ac:e4:4b:c7: 84:ce:66:ee:69:0e:0e:22:95:0e:57:da:72:0c:12:a6:f2:f5: f1:93:1e:26:7d:f6:a5:c3:cd:78:c8:3f:2a:9e:f2:58:cd:75: 38:3c:5c:07:8f:ec:b2:89:10:65:2e:22:b7:89:7e:02:e5:0b: e1:c1:2a:10:86:9a:1a:f9:fd:b9:34:d6:d2:05:08:da:73:a7: 9c:8a:fb:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJCREUxMTAvBgNVBAUTKDBEMDM0NkM4QTI2NkJFNkFEQ0U0QjdFODM5NTBBRjVG RTFFQkU1QzQwHhcNMjUwODIyMjE1NDI4WhcNMjUwODI5MjE1NDI4WjAYMRYwFAYD VQQDEw02OGE4ZTcxNC0wOWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7W4XbrdgRVBpC4ql3HU+BrY2iXu0EntomB1cvonbBls+i+Ez4V9sKTEgMZG hRwZSDWV9s/JMiLlfu48Wv63GrWGcFVKLTOg0ANrseFnOqiOthAdFv+41ILjm8UL O1EC6CjE1d0hpK/2rRNXL0hxcsOcVpW1F5ivLdZ8ZqmxHVlomvZz4TZjVk7fyL3A Ewl38lyH6tKnig4I/G/7RFZbYOz5HzXk+DyCq4YAE9CteQnKR/rTqJllMEsXMmjd uRmFiGFC11CqFcBDR5XEYhV77PxfzODY64AiwHmWo/lFBSmW/eC6nt4THxXizoR6 c4uuAkAPdXlRxIcFPcPumfhEdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWOgPhJ YjK+8/A+kajWAtha122tMB8GA1UdIwQYMBaAFA0DRsiiZr5q3OS36DlQr1/h6+XE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkJERS81RTEyOEZGQzNF N0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZtcmM1TGZvT1ZDdlgtSHI1 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RRTkd5S0ptdm1yYzVMZm9PVkN2WC1IcjVjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkJERS81RTEyOEZGQzNFN0QxMUVCQkJFRjI3NENDNEY5QUUwMi9EUU5HeUtKbXZt cmM1TGZvT1ZDdlgtSHI1Y1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBj3s20IAMR/hUPSKQCjYGNwUyNK0ahJLHqVyobNMVQaGZj4fxIjMkS M3wSxjIWyrrO7sGP9qVCRGjLKzumierwfEC5c12XbcFuL4NKKZIrmbXzKzcO1sFC jr2a/dSczrmFDaxEuDQyYGkLXbIU6rcrrzj4RFIXAEw56Y2XGFSnRmlXPJdN12XG Ruql7hBd1p0iMM+DghT7uz8KSIzssC+0A9FKPlUkCZ83bkBMVyy/jqzkS8eEzmbu aQ4OIpUOV9pyDBKm8vXxkx4mffalw814yD8qnvJYzXU4PFwHj+yyiRBlLiK3iX4C 5QvhwSoQhpoa+f25NNbSBQjac6ecivuH -----END CERTIFICATE-----Generated at Sat Aug 23 19:25:09 2025 by rpki-client