$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: toh8YCechtiCVoQRoqsezzPXyV9B3YI4fyoeDijmrmU= Subject key identifier: 05:92:D9:94:BA:17:7B:CD:DD:8E:E9:5C:76:2D:06:09:6B:1A:73:CB Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 8A Signing time: Sat 23 Aug 2025 06:49:09 +0000 Manifest this update: Sat 23 Aug 2025 06:49:08 +0000 Manifest next update: Sat 30 Aug 2025 06:49:08 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: f47G9kJpnBr/2Ec8+DxBzugcVcXdX0shsaMpFfYxv7g=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Aug 23 06:49:08 2025 GMT Not After : Aug 30 06:49:08 2025 GMT Subject: CN=68a96465-54b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:06:3d:be:c1:7a:b1:1c:36:d1:48:12:bd:64: 92:37:2a:87:ac:19:b2:c9:3a:03:cd:1b:74:f8:2e: 28:87:12:0f:cf:9b:78:89:ab:ef:80:ac:fe:0a:96: c0:07:63:23:08:f5:cc:cd:76:24:5c:ff:fa:f2:0e: 95:8f:60:09:62:6a:1b:af:73:3f:1a:a3:15:03:1f: 18:6c:1e:9e:13:ea:6e:3b:fa:1d:15:48:cb:70:b7: 83:ee:ae:85:c8:d7:50:1c:84:2f:52:2c:ed:1b:e1: 83:e3:11:37:76:b3:37:ef:9c:2f:ae:97:6a:a0:54: 10:a9:99:6e:35:c7:a8:54:28:0e:a9:c4:b9:b5:e2: ff:45:ae:8f:9d:69:86:d0:e8:79:e3:af:21:2d:1e: e2:6d:d6:fd:93:b9:76:1d:fa:a2:30:d4:b6:f9:53: 11:af:c3:0a:fb:3b:b6:7c:7f:82:39:c1:e1:88:89: 0b:0a:d4:53:99:bb:71:9d:d7:ca:e1:3e:73:5c:88: 43:de:c5:23:45:f3:f5:fd:b5:21:76:4f:a0:b1:f0: 12:bf:fd:c7:37:4e:74:88:be:c1:0b:d0:91:40:67: 8d:c8:79:d3:0a:9a:1f:cd:cd:57:59:1e:dc:6e:4c: 50:d7:d8:5d:56:5d:2a:75:93:fb:85:bb:b2:a5:82: c0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:92:D9:94:BA:17:7B:CD:DD:8E:E9:5C:76:2D:06:09:6B:1A:73:CB X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9c:20:b2:40:08:d1:e5:a1:68:a2:a4:4e:64:c2:91:fd:9a: 64:d9:d2:24:a8:e2:2a:6e:84:90:47:45:a1:8e:6e:1c:2c:43: d9:11:43:f6:35:be:6e:26:a9:15:54:d2:41:60:e6:62:87:4b: ae:94:65:7b:fe:88:76:f9:4c:72:9e:e8:db:9e:18:de:a7:f6: 08:cb:c4:f6:09:08:ab:07:0f:1e:d3:8e:a5:fa:b2:f8:27:f6: 39:b7:55:8f:3a:7b:e9:b1:29:97:6a:44:c2:45:83:23:86:ef: 15:07:5e:78:30:e3:17:4a:86:90:74:fb:1d:80:5b:a9:3f:30: d5:04:68:75:c4:7d:6b:38:29:51:54:0f:41:60:42:4b:ba:36: db:06:05:0a:b0:de:39:79:f2:d7:37:1d:ec:70:94:39:eb:b5: 1e:bb:62:8d:92:a4:e1:42:5c:9e:13:aa:1e:2c:8a:8f:53:ae: bf:6e:0d:73:67:fe:98:f6:34:82:91:31:be:4f:9f:bf:34:14: 2c:29:bf:b1:21:96:ff:bd:df:0d:0a:17:0b:bb:93:f9:f5:f8: b6:03:08:7e:52:05:07:5a:c0:62:fd:45:5d:71:c1:7b:37:42: d9:e5:f1:8e:b8:55:e2:b5:77:29:9b:07:7c:61:66:f4:6f:74: 7e:69:98:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjUwODIzMDY0OTA4WhcNMjUwODMwMDY0OTA4WjAYMRYwFAYD VQQDEw02OGE5NjQ2NS01NGI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgY9vsF6sRw20UgSvWSSNyqHrBmyyToDzRt0+C4ohxIPz5t4iavvgKz+CpbA B2MjCPXMzXYkXP/68g6Vj2AJYmobr3M/GqMVAx8YbB6eE+puO/odFUjLcLeD7q6F yNdQHIQvUiztG+GD4xE3drM375wvrpdqoFQQqZluNceoVCgOqcS5teL/Ra6PnWmG 0Oh5468hLR7ibdb9k7l2HfqiMNS2+VMRr8MK+zu2fH+COcHhiIkLCtRTmbtxndfK 4T5zXIhD3sUjRfP1/bUhdk+gsfASv/3HN050iL7BC9CRQGeNyHnTCpofzc1XWR7c bkxQ19hdVl0qdZP7hbuypYLABQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWS2ZS6 F3vN3Y7pXHYtBglrGnPLMB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrnCCyQAjR5aFooqROZMKR/Zpk2dIkqOIqboSQR0Whjm4cLEPZEUP2 Nb5uJqkVVNJBYOZih0uulGV7/oh2+Uxynujbnhjep/YIy8T2CQirBw8e046l+rL4 J/Y5t1WPOnvpsSmXakTCRYMjhu8VB154MOMXSoaQdPsdgFupPzDVBGh1xH1rOClR VA9BYEJLujbbBgUKsN45efLXNx3scJQ567Ueu2KNkqThQlyeE6oeLIqPU66/bg1z Z/6Y9jSCkTG+T5+/NBQsKb+xIZb/vd8NChcLu5P59fi2Awh+UgUHWsBi/UVdccF7 N0LZ5fGOuFXitXcpmwd8YWb0b3R+aZiT -----END CERTIFICATE-----Generated at Sat Aug 23 12:49:49 2025 by rpki-client