$ rpki-client -vvf rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft File: D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft (raw, json) Hash identifier: LYkAJun5TNQ/KLtmI8mID914/TOUq6p4yyNkWN+x8uA= Subject key identifier: 3B:53:E7:AF:B7:50:B6:6B:C0:2A:E4:BC:61:A4:95:1B:00:3C:65:8E Authority key identifier: 0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 Certificate issuer: /CN=A9134BB0/serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft Manifest number: 019C Signing time: Sat 23 Aug 2025 03:29:08 +0000 Manifest this update: Sat 23 Aug 2025 03:29:08 +0000 Manifest next update: Sat 30 Aug 2025 03:29:08 +0000 Files and hashes: 1: D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl (hash: N5K4mn9QP0Ds5G3ZistAVd4hQ8yaj/fY/p3W7a/t5Gs=) 2: 075B4CC80AC511EEB25A152AC4F9AE02.roa (hash: oHGClGt0Y+/Ca/fTjOnKQ8pJUUYEh+Yq1JxoBHlpH4s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134BB0, serialNumber=0F6142AE4168DF0B1805FA581D20394767AA2258 Validity Not Before: Aug 23 03:29:08 2025 GMT Not After : Aug 30 03:29:08 2025 GMT Subject: CN=68a93584-c6f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:16:b0:43:af:2e:64:c9:d8:0a:d4:b8:7f: bd:30:62:a1:c6:61:de:ad:25:69:a8:84:c1:e9:c0: 8b:05:46:fa:12:34:5a:97:36:1b:91:68:9f:a8:2c: 81:45:70:f1:a2:de:1d:aa:f3:7f:52:bb:24:26:49: c1:bf:1f:a5:5d:07:e1:aa:29:41:20:4e:2e:3a:e1: 68:af:56:73:cc:7d:58:08:23:ce:93:b4:f2:c7:4f: ca:3a:5f:bb:5c:35:91:14:f0:34:c5:bd:a7:0d:8a: ea:e4:79:2e:bb:cb:44:a5:76:d4:e8:04:8f:e5:09: 78:c7:bd:42:20:41:11:ce:36:7c:2e:af:4c:31:8e: b9:16:d1:a5:a7:dc:f3:67:c9:33:05:e1:4b:d4:b6: 26:9b:56:95:d4:09:f3:b8:5d:14:c4:a3:6e:dd:09: 22:a1:d1:09:2c:eb:13:7f:54:61:38:b2:e3:93:a4: b7:4a:a0:e4:4e:4d:89:97:42:a5:dd:6f:21:54:5d: 54:ff:87:05:ad:c3:65:17:c1:67:b4:f8:0d:87:9e: 99:12:57:68:ac:28:43:9d:8f:82:15:ad:69:53:b6: 74:c8:40:ac:77:2c:68:59:4d:ac:0d:6c:0e:6c:fd: 35:60:39:3d:42:cb:c6:42:69:65:c3:2f:0e:5d:ed: 12:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:53:E7:AF:B7:50:B6:6B:C0:2A:E4:BC:61:A4:95:1B:00:3C:65:8E X509v3 Authority Key Identifier: keyid:0F:61:42:AE:41:68:DF:0B:18:05:FA:58:1D:20:39:47:67:AA:22:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D2FCrkFo3wsYBfpYHSA5R2eqIlg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134BB0/DD4738E00ABD11EE917DA655C4F9AE02/D2FCrkFo3wsYBfpYHSA5R2eqIlg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:78:35:d8:97:4e:66:70:ad:49:9b:a3:f9:50:23:14:d2:ab: 9b:94:e4:d7:62:78:22:18:dc:b2:2f:f9:fa:d4:6d:67:09:fb: 2a:ad:ea:64:c9:49:0e:6b:d0:18:d4:9f:25:cb:8d:f6:1c:0f: b8:84:95:bc:34:92:df:3c:4f:82:8f:16:8f:ea:dc:ba:c7:c3: 7d:70:12:1f:0b:ad:00:10:fd:64:cd:91:2e:19:00:f8:49:24: db:2b:ed:4b:47:ad:5c:3a:2f:7e:d7:e4:e0:e4:86:c5:7a:1f: f1:1d:5a:03:12:bc:42:36:34:87:5f:0f:33:99:b4:3c:c7:57: 3b:1f:54:1b:0b:98:ed:54:f4:f6:0e:f6:b3:cd:31:30:8b:87: 1c:10:e7:ec:f3:19:2a:2c:fd:67:9d:bc:7e:f4:c1:df:56:ec: a0:0a:82:f5:5e:14:4d:6a:1d:84:cb:21:d6:20:6c:90:12:23: f7:6d:6a:04:bd:e2:04:ed:fc:80:69:47:14:65:7a:c7:d2:00: 35:eb:35:f9:90:72:ee:e1:59:72:46:83:34:17:5a:1d:9d:0e: eb:14:99:f4:9e:9c:c6:6d:43:b4:e3:d8:32:53:0f:ba:14:84: ab:b0:61:07:fb:92:d7:4d:7b:a4:0d:b2:92:d2:6b:14:06:17: 7e:33:88:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCQjAxMTAvBgNVBAUTKDBGNjE0MkFFNDE2OERGMEIxODA1RkE1ODFEMjAzOTQ3 NjdBQTIyNTgwHhcNMjUwODIzMDMyOTA4WhcNMjUwODMwMDMyOTA4WjAYMRYwFAYD VQQDEw02OGE5MzU4NC1jNmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7sWsEOvLmTJ2ArUuH+9MGKhxmHerSVpqITB6cCLBUb6EjRalzYbkWifqCyB RXDxot4dqvN/UrskJknBvx+lXQfhqilBIE4uOuFor1ZzzH1YCCPOk7Tyx0/KOl+7 XDWRFPA0xb2nDYrq5Hkuu8tEpXbU6ASP5Ql4x71CIEERzjZ8Lq9MMY65FtGlp9zz Z8kzBeFL1LYmm1aV1AnzuF0UxKNu3QkiodEJLOsTf1RhOLLjk6S3SqDkTk2Jl0Kl 3W8hVF1U/4cFrcNlF8FntPgNh56ZEldorChDnY+CFa1pU7Z0yECsdyxoWU2sDWwO bP01YDk9QsvGQmllwy8OXe0SEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtT56+3 ULZrwCrkvGGklRsAPGWOMB8GA1UdIwQYMBaAFA9hQq5BaN8LGAX6WB0gOUdnqiJY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEJCMC9ERDQ3MzhFMDBB QkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3c1lCZnBZSFNBNVIyZXFJ bGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QyRkNya0ZvM3dzWUJmcFlIU0E1UjJlcUlsZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEJCMC9ERDQ3MzhFMDBBQkQxMUVFOTE3REE2NTVDNEY5QUUwMi9EMkZDcmtGbzN3 c1lCZnBZSFNBNVIyZXFJbGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxeDXYl05mcK1Jm6P5UCMU0qublOTXYngiGNyyL/n61G1nCfsqrepk yUkOa9AY1J8ly432HA+4hJW8NJLfPE+CjxaP6ty6x8N9cBIfC60AEP1kzZEuGQD4 SSTbK+1LR61cOi9+1+Tg5IbFeh/xHVoDErxCNjSHXw8zmbQ8x1c7H1QbC5jtVPT2 DvazzTEwi4ccEOfs8xkqLP1nnbx+9MHfVuygCoL1XhRNah2EyyHWIGyQEiP3bWoE veIE7fyAaUcUZXrH0gA16zX5kHLu4VlyRoM0F1odnQ7rFJn0npzGbUO049gyUw+6 FISrsGEH+5LXTXukDbKS0msUBhd+M4hk -----END CERTIFICATE-----Generated at Sat Aug 23 19:00:35 2025 by rpki-client