$ rpki-client -vvf rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft File: 0DLgYUkj9KWCM463Y2w5aErtUe0.mft (raw, json) Hash identifier: OKV/P5J6T+KwgvrLmfKraLSBH8/OqPnj5FvmpHYlFyI= Subject key identifier: AB:11:69:E8:22:4B:2F:51:71:C8:87:DC:7F:02:9E:EC:E9:7B:7C:AA Authority key identifier: D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED Certificate issuer: /CN=A913559B/serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Certificate serial: 1098 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft Manifest number: 108C Signing time: Fri 22 Aug 2025 17:28:42 +0000 Manifest this update: Fri 22 Aug 2025 17:28:41 +0000 Manifest next update: Fri 29 Aug 2025 17:28:41 +0000 Files and hashes: 1: 0DLgYUkj9KWCM463Y2w5aErtUe0.crl (hash: FSErRm/IeREA1nnSjbSTSgJhXxImz093K4tbtb4ZSPk=) 2: DBC08AD4457911E9BA84DA51C4F9AE02.roa (hash: 2WzkstGBbGRj/Y7Ml4qowog4ksR3on7JJQYm4a6p25I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4248 (0x1098) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913559B, serialNumber=D032E0614923F4A582338EB7636C39684AED51ED Validity Not Before: Aug 22 17:28:41 2025 GMT Not After : Aug 29 17:28:41 2025 GMT Subject: CN=68a8a8c9-ab84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d2:33:7c:c9:83:39:c8:7f:de:c6:db:10:8a: f2:10:6d:5b:be:f4:d3:ac:e9:69:5c:e2:79:7c:ec: 60:1d:79:cf:e3:8d:b7:1f:d8:b1:17:e0:b0:bc:41: 03:9d:b6:22:34:ca:a7:36:ac:3e:80:06:16:fc:35: 3a:4f:69:06:66:86:f9:36:79:2c:c5:9a:f4:c1:76: b7:c6:fc:09:61:f9:51:57:28:d4:0c:e6:52:fe:9c: 27:c8:16:2c:78:e7:ab:9f:34:fa:f8:ee:48:26:e5: 6d:22:5e:19:f7:75:b3:77:18:7e:b4:35:0c:b5:f9: 98:09:c4:06:3a:da:d3:5f:80:12:97:d0:a4:2b:43: c3:01:5a:d5:6e:6b:f1:27:06:86:aa:b5:03:d2:5f: e3:74:18:fb:84:fd:1f:c9:61:1e:07:cd:79:89:f2: 9c:e7:89:ea:30:8c:a7:ff:07:e7:a6:6a:f6:b9:f2: 15:11:9f:23:75:16:c6:54:3a:60:54:5d:58:76:4e: 72:5e:62:5f:14:2e:e1:aa:9c:65:44:01:1c:da:88: e9:05:16:6c:21:5c:7d:28:2a:f1:85:88:18:9a:23: dd:bf:07:a3:a4:fc:c0:ce:48:61:02:14:d1:a4:92: b8:b3:32:c7:c8:bc:3e:50:e7:23:83:05:51:6e:5b: 1d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:11:69:E8:22:4B:2F:51:71:C8:87:DC:7F:02:9E:EC:E9:7B:7C:AA X509v3 Authority Key Identifier: keyid:D0:32:E0:61:49:23:F4:A5:82:33:8E:B7:63:6C:39:68:4A:ED:51:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DLgYUkj9KWCM463Y2w5aErtUe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913559B/6C1A0EFA367C11E9B278F93BC4F9AE02/0DLgYUkj9KWCM463Y2w5aErtUe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:ce:11:3e:ad:2b:fe:1c:e9:05:8f:89:0c:89:cc:7b:6e:8c: 7d:9f:f8:e7:64:7d:f7:8c:fe:fa:3d:73:f4:77:61:fd:c0:04: c7:77:30:7c:2c:34:50:da:0f:31:92:90:e7:bf:24:4f:2a:9e: 9a:c5:78:6b:00:2f:de:57:b4:df:f9:0c:0c:bf:70:96:4e:02: bc:82:0f:eb:b1:ec:da:7a:7f:64:6b:c0:a1:23:be:d4:27:49: 85:01:46:c2:16:c9:40:5c:eb:66:91:b0:96:5d:ee:14:80:27: d4:7c:e4:a3:93:a3:93:69:f0:f5:07:24:dd:55:0e:a7:5c:40: d0:72:44:f1:50:42:57:cd:86:51:f7:44:48:aa:b5:1a:81:b2: 8b:9c:29:d2:f5:36:e0:b1:f5:5e:f0:84:e8:bf:01:45:a7:5f: b1:52:3f:b2:f8:d0:28:db:e7:93:4d:e3:f6:d6:d5:b3:d2:7d: dd:ae:a0:93:be:23:79:77:b8:95:72:22:d1:5c:b9:00:2c:86: 9b:7a:68:d2:e0:97:25:a5:56:93:f3:ba:50:e3:5d:23:eb:1e: 23:2c:0a:b3:af:5e:ca:c1:b4:1b:37:fd:89:0d:1b:f9:d2:5f: 54:1b:a5:96:02:87:3b:02:4f:fe:56:fd:ce:eb:a2:3d:32:9f: 89:14:68:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU1OUIxMTAvBgNVBAUTKEQwMzJFMDYxNDkyM0Y0QTU4MjMzOEVCNzYzNkMzOTY4 NEFFRDUxRUQwHhcNMjUwODIyMTcyODQxWhcNMjUwODI5MTcyODQxWjAYMRYwFAYD VQQDEw02OGE4YThjOS1hYjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNIzfMmDOch/3sbbEIryEG1bvvTTrOlpXOJ5fOxgHXnP4423H9ixF+CwvEED nbYiNMqnNqw+gAYW/DU6T2kGZob5NnksxZr0wXa3xvwJYflRVyjUDOZS/pwnyBYs eOernzT6+O5IJuVtIl4Z93Wzdxh+tDUMtfmYCcQGOtrTX4ASl9CkK0PDAVrVbmvx JwaGqrUD0l/jdBj7hP0fyWEeB815ifKc54nqMIyn/wfnpmr2ufIVEZ8jdRbGVDpg VF1Ydk5yXmJfFC7hqpxlRAEc2ojpBRZsIVx9KCrxhYgYmiPdvwejpPzAzkhhAhTR pJK4szLHyLw+UOcjgwVRblsd2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKsRaegi Sy9RcciH3H8Cnuzpe3yqMB8GA1UdIwQYMBaAFNAy4GFJI/SlgjOOt2NsOWhK7VHt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTU5Qi82QzFBMEVGQTM2 N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlLV0NNNDYzWTJ3NWFFcnRV ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBETGdZVWtqOUtXQ000NjNZMnc1YUVydFVlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTU5Qi82QzFBMEVGQTM2N0MxMUU5QjI3OEY5M0JDNEY5QUUwMi8wRExnWVVrajlL V0NNNDYzWTJ3NWFFcnRVZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3zhE+rSv+HOkFj4kMicx7box9n/jnZH33jP76PXP0d2H9wATHdzB8 LDRQ2g8xkpDnvyRPKp6axXhrAC/eV7Tf+QwMv3CWTgK8gg/rsezaen9ka8ChI77U J0mFAUbCFslAXOtmkbCWXe4UgCfUfOSjk6OTafD1ByTdVQ6nXEDQckTxUEJXzYZR 90RIqrUagbKLnCnS9TbgsfVe8ITovwFFp1+xUj+y+NAo2+eTTeP21tWz0n3drqCT viN5d7iVciLRXLkALIabemjS4JclpVaT87pQ410j6x4jLAqzr17KwbQbN/2JDRv5 0l9UG6WWAoc7Ak/+Vv3O66I9Mp+JFGgo -----END CERTIFICATE-----Generated at Sat Aug 23 10:46:04 2025 by rpki-client