$ rpki-client -vvf rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft File: DAsd1farZExXB4GkKeRIBQIY6es.mft (raw, json) Hash identifier: P+r/aeBfPntCSUEH189pEJqvN+GFcqFY/Sk9OpEJj4c= Subject key identifier: 2C:8D:6E:91:1A:61:FC:CE:28:D4:2E:D0:EA:D3:41:4F:B9:4E:F4:03 Authority key identifier: 0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB Certificate issuer: /CN=A9134C3E/serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB Certificate serial: 056D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft Manifest number: 0569 Signing time: Fri 22 Aug 2025 23:29:57 +0000 Manifest this update: Fri 22 Aug 2025 23:29:56 +0000 Manifest next update: Fri 29 Aug 2025 23:29:56 +0000 Files and hashes: 1: DAsd1farZExXB4GkKeRIBQIY6es.crl (hash: Ty1Re/B424/lkWMAdFO1ySkuNrpA5kDAzv7lsQXBohY=) 2: 9222BEB4F42811EB93675638C4F9AE02.roa (hash: 5ctxZQMCBBanRgJSVxk2lsTuco//bC5Osf3fvZWriiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.crl rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:29:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134C3E, serialNumber=0C0B1DD5F6AB644C570781A429E448050218E9EB Validity Not Before: Aug 22 23:29:56 2025 GMT Not After : Aug 29 23:29:56 2025 GMT Subject: CN=68a8fd74-6f0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:54:09:cf:94:f3:8b:72:2f:8e:64:87:9a:16: 8f:95:1f:73:e8:7c:6e:9e:01:d5:d2:36:83:4d:73: c1:fb:72:a3:66:ee:06:4c:3b:33:20:94:24:39:ff: 37:27:63:ad:f0:2a:09:f9:f7:7d:b1:20:9f:a4:a3: a4:3b:35:68:52:8a:a0:91:99:b8:63:19:07:bf:fb: 35:bb:a9:c0:eb:74:fd:3c:1e:1c:fc:45:45:da:2a: e8:a0:f1:e7:6c:51:09:bf:d2:50:f1:21:91:f3:25: 60:64:07:60:14:2d:8c:7e:79:b9:a4:16:d1:ae:7a: 7d:fb:91:98:fd:b6:c4:27:30:16:e4:cb:47:55:17: a8:96:7a:36:c2:88:4c:96:e4:f6:92:c1:ff:40:bc: 10:35:f6:03:d1:ee:80:4d:05:e0:6b:38:6d:d6:ec: 20:e6:80:3b:07:66:a5:15:63:7a:61:5b:8f:66:4c: 15:ae:ec:5a:79:7f:d9:ff:c8:f5:a9:e9:52:8b:ae: 22:65:69:82:1c:92:5a:c0:24:02:22:ca:fc:65:07: 9a:65:f8:45:81:77:8b:84:de:a8:c2:41:a9:b0:8f: 11:fb:e1:2a:0e:13:52:f0:15:26:4a:60:92:63:e1: 64:d7:86:f1:ee:cc:3f:a0:53:5f:d8:aa:31:43:47: 0c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8D:6E:91:1A:61:FC:CE:28:D4:2E:D0:EA:D3:41:4F:B9:4E:F4:03 X509v3 Authority Key Identifier: keyid:0C:0B:1D:D5:F6:AB:64:4C:57:07:81:A4:29:E4:48:05:02:18:E9:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DAsd1farZExXB4GkKeRIBQIY6es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134C3E/A807C1C8F42511EBBDE87E34C4F9AE02/DAsd1farZExXB4GkKeRIBQIY6es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:3b:37:e2:99:ab:13:fd:61:91:36:57:61:6b:fa:29:ed:4c: e3:fe:f6:e9:f4:0e:c6:8b:e8:02:46:c4:fc:ca:af:cc:a9:02: 91:7f:34:a5:d7:47:31:ea:91:03:41:e3:45:ca:8c:f5:a0:a2: 7b:90:38:fc:fa:aa:7e:fd:79:6b:f9:42:99:ec:76:c2:21:3e: b1:25:52:a1:0b:19:be:18:e3:08:f2:80:2d:75:ea:27:3a:00: 9e:a4:50:ae:a4:0a:61:5a:17:23:6a:06:95:e6:49:44:3e:56: 74:37:eb:3b:57:ea:a2:10:e9:89:8f:71:b9:b2:8c:76:23:96: f1:0f:ff:2e:5b:bf:7a:27:54:3f:f0:e8:e1:d2:44:48:b6:f5: 03:71:54:94:bb:49:a2:ed:9f:7e:21:5c:fb:93:6c:38:8a:74: 65:32:de:c1:32:d7:de:29:e7:b7:0a:e9:4c:00:08:c8:26:20: c9:b1:a0:ff:98:47:e4:c3:86:84:8d:3a:10:22:fc:7e:ea:33: 06:9d:1d:85:e3:40:54:fc:58:8e:ce:0d:1c:9f:e8:d6:73:51: 39:99:62:7f:ce:6f:d4:38:a7:58:42:14:1c:d8:19:b7:e6:8d: 40:62:66:18:37:0f:01:33:45:21:3c:a6:6c:67:76:84:b9:17: 12:ce:82:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRDM0UxMTAvBgNVBAUTKDBDMEIxREQ1RjZBQjY0NEM1NzA3ODFBNDI5RTQ0ODA1 MDIxOEU5RUIwHhcNMjUwODIyMjMyOTU2WhcNMjUwODI5MjMyOTU2WjAYMRYwFAYD VQQDEw02OGE4ZmQ3NC02ZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7lQJz5Tzi3IvjmSHmhaPlR9z6HxungHV0jaDTXPB+3KjZu4GTDszIJQkOf83 J2Ot8CoJ+fd9sSCfpKOkOzVoUoqgkZm4YxkHv/s1u6nA63T9PB4c/EVF2irooPHn bFEJv9JQ8SGR8yVgZAdgFC2Mfnm5pBbRrnp9+5GY/bbEJzAW5MtHVReolno2wohM luT2ksH/QLwQNfYD0e6ATQXgazht1uwg5oA7B2alFWN6YVuPZkwVruxaeX/Z/8j1 qelSi64iZWmCHJJawCQCIsr8ZQeaZfhFgXeLhN6owkGpsI8R++EqDhNS8BUmSmCS Y+Fk14bx7sw/oFNf2KoxQ0cMkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCyNbpEa YfzOKNQu0OrTQU+5TvQDMB8GA1UdIwQYMBaAFAwLHdX2q2RMVweBpCnkSAUCGOnr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEMzRS9BODA3QzFDOEY0 MjUxMUVCQkRFODdFMzRDNEY5QUUwMi9EQXNkMWZhclpFeFhCNEdrS2VSSUJRSVk2 ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RBc2QxZmFyWkV4WEI0R2tLZVJJQlFJWTZlcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NEMzRS9BODA3QzFDOEY0MjUxMUVCQkRFODdFMzRDNEY5QUUwMi9EQXNkMWZhclpF eFhCNEdrS2VSSUJRSVk2ZXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFOzfimasT/WGRNldha/op7Uzj/vbp9A7Gi+gCRsT8yq/MqQKRfzSl 10cx6pEDQeNFyoz1oKJ7kDj8+qp+/Xlr+UKZ7HbCIT6xJVKhCxm+GOMI8oAtdeon OgCepFCupAphWhcjagaV5klEPlZ0N+s7V+qiEOmJj3G5sox2I5bxD/8uW796J1Q/ 8Ojh0kRItvUDcVSUu0mi7Z9+IVz7k2w4inRlMt7BMtfeKee3CulMAAjIJiDJsaD/ mEfkw4aEjToQIvx+6jMGnR2F40BU/FiOzg0cn+jWc1E5mWJ/zm/UOKdYQhQc2Bm3 5o1AYmYYNw8BM0UhPKZsZ3aEuRcSzoJx -----END CERTIFICATE-----Generated at Sat Aug 23 18:25:53 2025 by rpki-client