$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: YdbtvMDtiQlau3s8zIQPN9wIj+v0DU+q4PpmWVZT+MI= Subject key identifier: C8:97:12:F1:3B:C9:38:0E:56:BE:49:B4:9D:59:1D:82:99:2C:D2:5B Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0806 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 07F8 Signing time: Fri 22 Aug 2025 21:06:39 +0000 Manifest this update: Fri 22 Aug 2025 21:06:38 +0000 Manifest next update: Fri 29 Aug 2025 21:06:38 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: weKzHMzCfiv6alG5Q9CrymEnmFnoWArkqOQAr/snjZw=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: Es/KgzPMe1zYauziZBRZHyjZJ35reOpMCOBV6MckhCs=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: Ka3pUjVhAjV8Jw2bqRS1fw1Jl4NqlRDOjR/Fjs/H0+M=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: OhYJKozvfID8ylqYGKB5GjbLkxxbmKyR5Jo0rIME+Bo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:06:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2054 (0x806) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Aug 22 21:06:38 2025 GMT Not After : Aug 29 21:06:38 2025 GMT Subject: CN=68a8dbdf-953b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f2:45:72:90:f0:d6:40:03:43:13:46:f2:6e: 84:8c:db:02:46:a6:dd:49:e7:52:a3:83:2c:c1:b3: 97:d5:9a:0b:8e:e5:97:fc:d4:63:d2:f7:37:3b:7d: 7a:27:27:b0:e2:9c:5a:a6:59:ed:26:47:1f:8e:0f: f4:78:a7:0a:18:45:2c:d7:8d:eb:8e:54:39:0e:8b: f0:c5:8b:e3:ac:af:f9:2d:6e:cb:1e:94:80:88:e0: 96:c7:f4:7c:ee:a8:fd:ed:86:26:59:25:2c:5a:a5: ca:dd:9a:75:85:a3:3e:a0:dc:05:6f:13:7f:32:92: f5:d4:d9:35:22:b7:08:fb:10:d2:00:ff:35:b8:37: 19:6f:c4:53:b5:cf:4e:6a:65:73:4c:a8:00:0d:87: f9:98:e8:40:da:c5:69:c4:63:f5:e2:59:50:2a:79: 8e:1c:55:c2:b2:84:94:f2:60:ba:0a:1d:ab:53:67: 1c:6f:93:86:85:4b:f1:7b:6c:1c:10:6c:5d:a6:46: ad:32:c5:f6:29:85:c1:9a:62:4d:76:7e:be:e0:54: 1d:47:e5:e4:81:00:e3:62:25:40:17:9e:c7:b8:1f: e7:b6:e7:01:66:7a:cd:1b:36:b8:b3:c3:22:e3:e0: 71:64:1b:59:51:13:a2:9e:9f:88:92:b8:47:f2:74: d0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:97:12:F1:3B:C9:38:0E:56:BE:49:B4:9D:59:1D:82:99:2C:D2:5B X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:07:97:6f:9f:89:e3:9f:e1:67:3e:bb:6c:82:cc:29:3b:e4: 15:05:9c:3f:87:e3:4d:34:d4:27:15:50:98:bb:e9:19:8c:2e: 75:04:be:cf:51:e6:78:8b:7a:07:a4:db:a8:83:2d:e6:2b:f9: e0:9c:7a:ea:13:e0:db:ef:24:70:37:a5:92:2d:2a:5a:e8:1b: 4f:aa:db:27:9b:0b:d0:da:68:49:44:92:3e:55:35:43:a4:42: 53:ca:d3:24:03:b6:d0:bd:25:5e:1c:5b:5f:6f:5c:3b:29:7e: bb:4d:fb:92:e2:44:2f:10:89:ed:ff:d3:bf:ec:b8:fa:18:f4: 77:bf:e1:f0:4b:ce:bb:16:e0:36:a9:e5:1e:4f:bd:9d:67:d3: 99:19:0d:60:87:14:48:21:0d:75:19:27:a4:0f:03:19:c7:9f: 8b:2c:5a:0b:df:6f:86:cb:01:a4:ec:c0:77:19:7f:7b:e9:01: 2b:b3:f3:36:00:ab:59:a8:35:5f:a1:94:3a:ad:e9:24:b7:3a: 2b:55:5e:d5:6b:02:92:d7:62:09:f9:d4:f8:d1:42:16:a4:a6: 35:82:a3:3a:dd:85:3e:c1:df:0e:85:a5:8c:17:b6:9e:e1:a3: c0:f4:40:48:f0:5a:3f:91:79:53:3c:90:e4:87:87:69:50:bd: bc:60:81:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUwODIyMjEwNjM4WhcNMjUwODI5MjEwNjM4WjAYMRYwFAYD VQQDEw02OGE4ZGJkZi05NTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfJFcpDw1kADQxNG8m6EjNsCRqbdSedSo4MswbOX1ZoLjuWX/NRj0vc3O316 Jyew4pxaplntJkcfjg/0eKcKGEUs143rjlQ5DovwxYvjrK/5LW7LHpSAiOCWx/R8 7qj97YYmWSUsWqXK3Zp1haM+oNwFbxN/MpL11Nk1IrcI+xDSAP81uDcZb8RTtc9O amVzTKgADYf5mOhA2sVpxGP14llQKnmOHFXCsoSU8mC6Ch2rU2ccb5OGhUvxe2wc EGxdpkatMsX2KYXBmmJNdn6+4FQdR+XkgQDjYiVAF57HuB/ntucBZnrNGza4s8Mi 4+BxZBtZUROinp+IkrhH8nTQLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiXEvE7 yTgOVr5JtJ1ZHYKZLNJbMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6B5dvn4njn+FnPrtsgswpO+QVBZw/h+NNNNQnFVCYu+kZjC51BL7P UeZ4i3oHpNuogy3mK/ngnHrqE+Db7yRwN6WSLSpa6BtPqtsnmwvQ2mhJRJI+VTVD pEJTytMkA7bQvSVeHFtfb1w7KX67TfuS4kQvEInt/9O/7Lj6GPR3v+HwS867FuA2 qeUeT72dZ9OZGQ1ghxRIIQ11GSekDwMZx5+LLFoL32+GywGk7MB3GX976QErs/M2 AKtZqDVfoZQ6rekktzorVV7VawKS12IJ+dT40UIWpKY1gqM63YU+wd8OhaWMF7ae 4aPA9EBI8Fo/kXlTPJDkh4dpUL28YIEl -----END CERTIFICATE-----Generated at Sat Aug 23 21:17:30 2025 by rpki-client