$ rpki-client -vvf rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft File: dQVeDYzbFO-fBPi5XayLiclozd0.mft (raw, json) Hash identifier: r4YmRuLcPTWO1gXrgOU6WCAO5TUeJ270GH1kuT2k8xM= Subject key identifier: D7:25:75:DF:1F:B9:63:03:D8:30:81:C6:94:87:E6:51:6F:21:59:E2 Authority key identifier: 75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD Certificate issuer: /CN=A912C4DB/serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Certificate serial: 0C70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft Manifest number: 0C64 Signing time: Fri 22 Aug 2025 18:35:52 +0000 Manifest this update: Fri 22 Aug 2025 18:35:51 +0000 Manifest next update: Fri 29 Aug 2025 18:35:51 +0000 Files and hashes: 1: dQVeDYzbFO-fBPi5XayLiclozd0.crl (hash: mo+yzczWIRoL1LLqb0oCTw1dy1uAOk54JCAMxOqf5Zk=) 2: 3E0EDBC83E0111ECA3AF5462C4F9AE02.roa (hash: MeK9ET7gmT0HXM7WrsCFabf5Xt6ViCVNKTA3zZ5Z6Ss=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:35:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C4DB, serialNumber=75055E0D8CDB14EF9F04F8B95DAC8B89C968CDDD Validity Not Before: Aug 22 18:35:51 2025 GMT Not After : Aug 29 18:35:51 2025 GMT Subject: CN=68a8b888-9e0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ae:c4:53:31:a0:00:05:ea:d3:77:ce:79:be: 19:04:68:cb:6f:c5:cd:25:0d:89:82:32:c2:67:ec: b2:8c:74:f3:28:22:8f:04:30:3d:07:db:43:8e:ad: 03:d4:98:71:f4:fe:3b:5e:a0:c3:a7:66:31:60:2e: ec:71:27:f6:2a:48:d2:8f:a4:03:aa:bf:c9:ee:d0: 7d:88:4c:41:c3:2c:5a:77:56:9e:66:6e:4a:4d:7a: 84:db:02:40:6c:86:87:ac:58:bc:45:12:06:d8:9d: a6:d5:0a:22:63:6f:66:ea:cf:ed:1f:5b:3d:74:ab: 40:4b:33:1f:3e:d4:c9:5e:61:2f:db:a8:71:75:22: 56:21:2e:c9:72:fe:8b:a0:5d:5e:9f:d4:07:2d:a0: ea:ec:be:63:35:3a:2c:20:7d:89:60:5b:45:33:c5: be:98:ed:dc:5e:4a:e6:b1:57:72:19:6b:16:59:c1: 29:c1:d7:99:6d:e7:69:1a:e7:8b:c2:62:d0:04:4d: c1:81:11:d2:67:2d:21:af:48:98:46:5d:cd:1d:18: 98:0f:5c:e2:3e:82:86:33:80:3f:7a:e2:53:b8:cd: b2:42:a4:f9:d9:c4:f6:d8:0f:4b:9a:02:d4:48:b5: c1:ac:27:a3:e8:e2:8e:b1:e8:aa:f6:91:ba:b0:68: e7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:25:75:DF:1F:B9:63:03:D8:30:81:C6:94:87:E6:51:6F:21:59:E2 X509v3 Authority Key Identifier: keyid:75:05:5E:0D:8C:DB:14:EF:9F:04:F8:B9:5D:AC:8B:89:C9:68:CD:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dQVeDYzbFO-fBPi5XayLiclozd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C4DB/D7DFD6CA08F811EA9D18AE68C4F9AE02/dQVeDYzbFO-fBPi5XayLiclozd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:f7:6a:ad:d3:25:56:99:fc:ce:e9:6b:a5:4c:3f:3a:f2:75: 12:f1:56:0c:9b:95:b5:4e:75:63:41:f3:9e:46:fa:24:1b:ac: 33:de:3a:28:b1:6b:e5:99:e9:ab:cf:b7:fd:4e:89:e6:67:cf: fb:7c:b4:b6:f1:67:ca:d0:19:e2:45:dc:be:bb:68:fa:a4:66: f6:85:de:f5:8e:29:8b:27:58:92:a2:3a:1e:78:1c:67:c8:23: 09:4b:43:2c:b3:00:d7:e4:83:a3:a9:3f:54:e4:06:10:f3:13: e7:34:53:b0:98:63:fa:45:9d:98:c9:79:13:b8:46:92:27:02: 77:b9:87:55:1e:f0:7d:b7:c0:1d:b6:57:59:72:f4:22:1f:b3: 8c:b3:35:7a:94:bf:ab:9b:ac:6e:0d:a0:5e:17:98:34:ff:02: c4:dd:f0:8f:48:27:bd:75:10:d5:f8:1d:fc:1e:3b:f5:ed:9f: e5:49:d6:00:d8:22:b1:01:b4:3a:56:74:13:58:22:7c:5a:e2: 24:ff:62:33:ee:b0:09:9c:7e:fc:e9:89:59:2f:6e:5c:87:64: 66:f1:06:19:d3:0a:df:c8:44:d3:e4:c5:df:1b:f2:47:2f:17: ed:56:ab:e8:71:1f:e1:cf:7a:07:a8:b7:d6:77:45:82:32:26: 9e:3a:da:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM0REIxMTAvBgNVBAUTKDc1MDU1RTBEOENEQjE0RUY5RjA0RjhCOTVEQUM4Qjg5 Qzk2OENEREQwHhcNMjUwODIyMTgzNTUxWhcNMjUwODI5MTgzNTUxWjAYMRYwFAYD VQQDEw02OGE4Yjg4OC05ZTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq7EUzGgAAXq03fOeb4ZBGjLb8XNJQ2JgjLCZ+yyjHTzKCKPBDA9B9tDjq0D 1Jhx9P47XqDDp2YxYC7scSf2KkjSj6QDqr/J7tB9iExBwyxad1aeZm5KTXqE2wJA bIaHrFi8RRIG2J2m1QoiY29m6s/tH1s9dKtASzMfPtTJXmEv26hxdSJWIS7Jcv6L oF1en9QHLaDq7L5jNTosIH2JYFtFM8W+mO3cXkrmsVdyGWsWWcEpwdeZbedpGueL wmLQBE3BgRHSZy0hr0iYRl3NHRiYD1ziPoKGM4A/euJTuM2yQqT52cT22A9LmgLU SLXBrCej6OKOseiq9pG6sGjn/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNcldd8f uWMD2DCBxpSH5lFvIVniMB8GA1UdIwQYMBaAFHUFXg2M2xTvnwT4uV2si4nJaM3d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzREQi9EN0RGRDZDQTA4 RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZPLWZCUGk1WGF5TGljbG96 ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RRVmVEWXpiRk8tZkJQaTVYYXlMaWNsb3pkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzREQi9EN0RGRDZDQTA4RjgxMUVBOUQxOEFFNjhDNEY5QUUwMi9kUVZlRFl6YkZP LWZCUGk1WGF5TGljbG96ZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC92qt0yVWmfzO6WulTD868nUS8VYMm5W1TnVjQfOeRvokG6wz3joo sWvlmemrz7f9TonmZ8/7fLS28WfK0BniRdy+u2j6pGb2hd71jimLJ1iSojoeeBxn yCMJS0MsswDX5IOjqT9U5AYQ8xPnNFOwmGP6RZ2YyXkTuEaSJwJ3uYdVHvB9t8Ad tldZcvQiH7OMszV6lL+rm6xuDaBeF5g0/wLE3fCPSCe9dRDV+B38Hjv17Z/lSdYA 2CKxAbQ6VnQTWCJ8WuIk/2Iz7rAJnH786YlZL25ch2Rm8QYZ0wrfyETT5MXfG/JH LxftVqvocR/hz3oHqLfWd0WCMiaeOtpy -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:28 2025 by rpki-client