$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft File: dCWq4W3bRko-K0ecekDJkCODa6A.mft (raw, json) Hash identifier: dyhK+mX1QzDF4UsbaFO7dgaVLSLXI17VMlhQxVUOfTk= Subject key identifier: 88:21:E0:18:E7:8C:0B:2D:03:5A:DF:EC:F8:51:14:46:BA:28:51:37 Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 02E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft Manifest number: 02D1 Signing time: Sat 23 Aug 2025 01:44:44 +0000 Manifest this update: Sat 23 Aug 2025 01:44:43 +0000 Manifest next update: Sat 30 Aug 2025 01:44:43 +0000 Files and hashes: 1: dCWq4W3bRko-K0ecekDJkCODa6A.crl (hash: NS5A0DsVxChbQiZb+1K/4Cywkaa7OVOCnGZjoMkMQKM=) 2: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (hash: oF4weljdyCKoRiSGG2z17wTaQsEcpMts8sv9D62jJPE=) 3: A3C1A64E020811EF900CC60CC4F9AE02.roa (hash: D7GG+9V9VetFTo3WS2746v47jcVH9mGxmAznj65oILQ=) 4: 1EA5984A0BE111ED9E3AA135C4F9AE02.roa (hash: TJ9ECbrNmrbj5mhfI5HTyIvIslW5iwcIqu2ptc1cXhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:44:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 745 (0x2e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Aug 23 01:44:43 2025 GMT Not After : Aug 30 01:44:43 2025 GMT Subject: CN=68a91d0b-0787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ff:a0:e5:ec:4d:e3:ca:5d:e9:45:d4:78:d6: 1f:63:15:af:71:92:24:61:d0:1a:2b:fb:24:ec:87: cd:a3:bf:5f:b9:0a:69:12:5e:35:b2:89:c7:41:31: 40:97:08:f5:ae:40:7a:3c:d4:c7:53:a9:10:9a:0f: 4b:9b:fb:44:c8:eb:e8:e6:d2:bd:b1:f8:81:9c:c9: fe:e2:06:12:14:d2:c4:dc:1f:f5:37:eb:c6:63:29: 04:00:95:08:48:92:bb:d1:4f:61:d2:4b:f4:7c:5b: 2d:37:fb:3f:db:b2:64:af:3c:39:45:17:21:0f:81: ad:2f:09:74:92:79:26:f3:b9:a6:50:28:9e:30:58: 20:9c:31:12:9f:60:61:47:cd:fb:9f:9c:2c:17:f5: 98:61:b4:e9:a3:b8:6a:95:33:77:24:cb:f8:3b:04: c0:d6:dc:4d:97:0d:67:45:b1:b6:f7:21:00:d9:10: 16:07:b5:14:37:d4:05:79:59:07:8a:df:0c:3f:5c: 5b:a1:72:24:e6:cc:9a:e9:f5:0c:63:5f:53:30:8c: db:9a:c7:25:07:2c:78:ea:9c:5a:b0:a4:57:94:7b: 7c:b8:ae:74:07:2b:1c:35:a7:2f:0c:f9:ef:84:7f: 18:1f:0d:37:76:cc:fb:91:9f:00:70:15:89:2e:55: cb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:21:E0:18:E7:8C:0B:2D:03:5A:DF:EC:F8:51:14:46:BA:28:51:37 X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:94:1d:fd:ad:c6:84:bf:46:13:b3:e4:e9:bc:c2:57:ab:e7: 18:c5:b3:fc:a2:c5:ff:e2:ec:3f:3c:d3:26:b3:85:1b:44:76: eb:23:e1:3b:9c:09:3a:2a:2a:99:1e:e6:fb:41:2c:f9:b7:6f: 65:cc:90:87:8b:56:b6:6f:de:61:2e:ef:5c:26:17:fd:34:14: 04:51:5a:aa:f2:35:e3:1d:26:17:8e:6c:65:46:63:d7:0b:f0: ce:28:26:2b:f9:6b:f4:0c:45:3e:5a:00:87:1f:21:80:e8:dd: 4c:ba:95:bc:76:83:c3:ec:91:92:2f:14:7c:7c:3e:5e:6d:9e: 2b:56:b8:21:f9:4c:19:7a:d5:8f:06:f1:fb:00:c1:1d:28:e9: d0:79:ab:91:8d:ab:e0:40:00:99:5b:98:0f:40:21:8b:a0:76: ec:5a:8f:99:ee:81:bb:4e:85:fb:03:30:80:7b:23:78:fa:89: 27:8d:bd:8c:09:7c:3c:20:c7:72:7a:80:7a:db:81:bb:4c:aa: 82:c8:81:4d:83:95:d9:ed:c8:35:4d:f6:84:39:6e:1f:60:03: 64:4e:43:ca:e0:bd:aa:71:8f:c8:f5:5e:68:c8:70:68:74:70: 89:1d:6b:4e:c3:89:76:8f:ef:6f:c3:d9:d9:a3:31:44:1a:9a: 68:44:73:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjUwODIzMDE0NDQzWhcNMjUwODMwMDE0NDQzWjAYMRYwFAYD VQQDEw02OGE5MWQwYi0wNzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzP+g5exN48pd6UXUeNYfYxWvcZIkYdAaK/sk7IfNo79fuQppEl41sonHQTFA lwj1rkB6PNTHU6kQmg9Lm/tEyOvo5tK9sfiBnMn+4gYSFNLE3B/1N+vGYykEAJUI SJK70U9h0kv0fFstN/s/27Jkrzw5RRchD4GtLwl0knkm87mmUCieMFggnDESn2Bh R837n5wsF/WYYbTpo7hqlTN3JMv4OwTA1txNlw1nRbG29yEA2RAWB7UUN9QFeVkH it8MP1xboXIk5sya6fUMY19TMIzbmsclByx46pxasKRXlHt8uK50ByscNacvDPnv hH8YHw03dsz7kZ8AcBWJLlXLsQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIgh4Bjn jAstA1rf7PhRFEa6KFE3MB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mzk5OC8zMENDMDg0QTA4REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJr by1LMGVjZWtESmtDT0RhNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYlB39rcaEv0YTs+TpvMJXq+cYxbP8osX/4uw/PNMms4UbRHbrI+E7 nAk6KiqZHub7QSz5t29lzJCHi1a2b95hLu9cJhf9NBQEUVqq8jXjHSYXjmxlRmPX C/DOKCYr+Wv0DEU+WgCHHyGA6N1MupW8doPD7JGSLxR8fD5ebZ4rVrgh+UwZetWP BvH7AMEdKOnQeauRjavgQACZW5gPQCGLoHbsWo+Z7oG7ToX7AzCAeyN4+oknjb2M CXw8IMdyeoB624G7TKqCyIFNg5XZ7cg1TfaEOW4fYANkTkPK4L2qcY/I9V5oyHBo dHCJHWtOw4l2j+9vw9nZozFEGppoRHMJ -----END CERTIFICATE-----Generated at Sat Aug 23 17:07:50 2025 by rpki-client