$ rpki-client -vvf rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft File: DGhYIowwF0gr3H85geiYuVbaoCk.mft (raw, json) Hash identifier: gZO0or6kBc3o8ovGFH5kbllvjYr6jR9Sj+tv6VqP/nI= Subject key identifier: FF:6A:AF:4E:B0:88:46:93:9E:11:25:74:6E:9A:7E:80:F2:B3:73:18 Authority key identifier: 0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 Certificate issuer: /CN=A9170975/serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft Manifest number: 2F Signing time: Sat 23 Aug 2025 07:55:29 +0000 Manifest this update: Sat 23 Aug 2025 07:55:29 +0000 Manifest next update: Sat 30 Aug 2025 07:55:29 +0000 Files and hashes: 1: DGhYIowwF0gr3H85geiYuVbaoCk.crl (hash: XqTc1iqlgTaY3dhcXwHNaLmz/cRBjRH5LXEaq/t9J3A=) 2: B12A39803A2A11F09E37DB48C4F9AE02.roa (hash: k8LJciNO3nbjiZjsCJ8G57U38keqVi40DfjRW/V+QTI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170975, serialNumber=0C6858228C3017482BDC7F3981E898B956DAA029 Validity Not Before: Aug 23 07:55:29 2025 GMT Not After : Aug 30 07:55:29 2025 GMT Subject: CN=68a973f1-8dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cd:c7:45:49:12:96:31:de:64:2e:4e:e6:cc: 0c:b4:c1:87:54:03:0f:8c:dd:f9:1d:ae:d6:0f:2e: cc:eb:de:1d:5b:c0:bc:5a:40:11:b4:b6:27:26:2e: dd:61:ef:7e:07:bd:89:c9:95:ad:e5:17:46:cd:65: 9f:82:e3:62:44:45:9c:af:fd:61:56:33:42:d0:dc: e7:0c:a8:8a:40:62:a9:29:4b:34:07:2b:c3:ba:38: 38:c3:2e:d3:81:2b:4f:f8:98:fd:19:73:84:46:5e: 37:e3:eb:07:a9:27:7e:0d:53:41:0f:53:50:4a:98: 93:a8:f0:9e:ff:6a:e3:55:5c:f2:e6:fb:13:f6:f8: 3a:cf:c5:67:b2:37:9a:f7:de:6b:de:dc:85:a1:21: 44:77:50:4b:9c:72:9d:2c:17:17:dd:a0:44:7d:29: 62:c7:04:d0:a9:df:80:7c:c9:14:e9:4d:0c:c7:3a: 04:27:88:e4:55:07:ec:96:c0:58:23:b5:2c:9e:7d: 5a:92:9f:b9:16:c4:40:c8:c6:58:fe:46:cc:64:6d: 0b:1f:30:8c:38:f3:e8:34:54:e4:6d:05:fe:2e:21: 76:7d:fa:2e:3b:c0:22:3c:39:b3:4f:4c:c8:39:44: 77:37:14:b4:e2:c7:54:32:ac:dd:1b:9b:50:8e:ba: c2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6A:AF:4E:B0:88:46:93:9E:11:25:74:6E:9A:7E:80:F2:B3:73:18 X509v3 Authority Key Identifier: keyid:0C:68:58:22:8C:30:17:48:2B:DC:7F:39:81:E8:98:B9:56:DA:A0:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGhYIowwF0gr3H85geiYuVbaoCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170975/67C7A42A3A2611F0BCCF5E1FC4F9AE02/DGhYIowwF0gr3H85geiYuVbaoCk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:1f:cb:bf:6a:8f:cc:00:9e:c7:7c:e1:66:7d:fd:b1:f7:63: c0:17:47:fb:df:5f:e9:6b:65:10:7e:65:41:c0:dd:8c:25:1f: 8d:5c:42:b3:83:9e:94:c0:ae:08:be:e3:67:77:39:80:26:8a: e6:43:aa:34:d7:31:cd:d0:a8:00:e7:b7:97:8e:4e:0a:ec:e7: d3:0d:78:df:5b:57:49:2b:da:88:02:09:2b:06:42:8e:6c:a1: f6:76:9f:2b:e1:c1:aa:78:28:9f:4b:33:17:95:d0:b9:c8:47: 3a:41:a1:c0:a6:48:0d:25:ff:57:ba:25:d5:fa:fe:8b:d9:e6: a6:e9:b7:e5:62:e9:9c:8b:85:78:98:e5:80:66:e6:d4:9f:a6: c8:b8:d1:cc:96:de:fd:55:ce:de:04:76:1b:8e:46:bd:c5:eb: ea:ab:60:25:90:59:74:82:50:ee:ed:f7:da:31:51:c9:4d:d8: bb:c1:e6:ac:c5:9a:12:da:17:39:b9:02:80:36:9b:1e:26:40: 49:83:73:e2:b1:0e:3f:c9:04:77:7b:26:16:84:d7:49:75:dd: 3c:3f:ea:62:59:57:73:22:ee:12:76:f7:4b:01:29:8f:e8:d1: bc:39:26:68:eb:52:79:e2:68:7c:be:cc:73:f0:c0:0d:88:ee: 81:8c:31:ef -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDk3NTExMC8GA1UEBRMoMEM2ODU4MjI4QzMwMTc0ODJCREM3RjM5ODFFODk4Qjk1 NkRBQTAyOTAeFw0yNTA4MjMwNzU1MjlaFw0yNTA4MzAwNzU1MjlaMBgxFjAUBgNV BAMTDTY4YTk3M2YxLThkZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJzcdFSRKWMd5kLk7mzAy0wYdUAw+M3fkdrtYPLszr3h1bwLxaQBG0ticmLt1h 734HvYnJla3lF0bNZZ+C42JERZyv/WFWM0LQ3OcMqIpAYqkpSzQHK8O6ODjDLtOB K0/4mP0Zc4RGXjfj6wepJ34NU0EPU1BKmJOo8J7/auNVXPLm+xP2+DrPxWeyN5r3 3mve3IWhIUR3UEuccp0sFxfdoER9KWLHBNCp34B8yRTpTQzHOgQniORVB+yWwFgj tSyefVqSn7kWxEDIxlj+RsxkbQsfMIw48+g0VORtBf4uIXZ9+i47wCI8ObNPTMg5 RHc3FLTix1QyrN0bm1COusJPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU/2qvTrCI RpOeESV0bpp+gPKzcxgwHwYDVR0jBBgwFoAUDGhYIowwF0gr3H85geiYuVbaoCkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwOTc1LzY3QzdBNDJBM0Ey NjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBncjNIODVnZWlZdVZiYW9D ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdoWUlvd3dGMGdyM0g4NWdlaVl1VmJhb0NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw OTc1LzY3QzdBNDJBM0EyNjExRjBCQ0NGNUUxRkM0RjlBRTAyL0RHaFlJb3d3RjBn cjNIODVnZWlZdVZiYW9Day5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADcfy79qj8wAnsd84WZ9/bH3Y8AXR/vfX+lrZRB+ZUHA3YwlH41cQrOD npTArgi+42d3OYAmiuZDqjTXMc3QqADnt5eOTgrs59MNeN9bV0kr2ogCCSsGQo5s ofZ2nyvhwap4KJ9LMxeV0LnIRzpBocCmSA0l/1e6JdX6/ovZ5qbpt+Vi6ZyLhXiY 5YBm5tSfpsi40cyW3v1Vzt4EdhuORr3F6+qrYCWQWXSCUO7t99oxUclN2LvB5qzF mhLaFzm5AoA2mx4mQEmDc+KxDj/JBHd7JhaE10l13Tw/6mJZV3Mi7hJ290sBKY/o 0bw5JmjrUnniaHy+zHPwwA2I7oGMMe8= -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:51 2025 by rpki-client