$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: KZgiOY1XwOtZbX23O7FeF1Fw5TCMBD2LY3cr7LkJbN8= Subject key identifier: 14:4F:09:A2:E4:BD:63:04:5E:56:6C:89:F5:44:D7:20:A1:56:60:48 Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: 98 Signing time: Sun 19 Oct 2025 08:35:44 +0000 Manifest this update: Sun 19 Oct 2025 08:35:43 +0000 Manifest next update: Sun 26 Oct 2025 08:35:43 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: ddAPmUfSzCX/hulSOMMIZrQXG38LSiOrWzUrGx0Jk/M=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: xHWD/+6Z6mOfeTNp4+pdNaNQc1T99Xc2O7Zqfmln3YE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:35:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: Oct 19 08:35:43 2025 GMT Not After : Oct 26 08:35:43 2025 GMT Subject: CN=68f4a2df-20c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:42:72:7d:5c:27:da:8c:b7:16:52:4c:9f: d5:31:be:12:ad:a2:50:a3:e0:49:5d:96:97:6b:c3: d7:36:2b:09:ae:ac:60:a7:71:9d:43:0c:2e:6c:00: e8:4d:eb:34:6a:77:35:a6:43:4a:52:74:3c:58:56: 61:5e:a0:60:59:3e:4a:ab:49:74:cb:c8:89:3a:37: be:45:ea:25:cd:36:f5:85:ec:b9:c1:31:d5:57:58: 06:87:63:fc:03:50:eb:28:e2:c6:e9:64:94:4b:7c: 67:02:f4:bb:cc:03:f7:61:28:1e:59:44:36:fd:01: de:69:4c:28:ff:ee:9d:23:5f:d6:07:f6:1e:6c:28: c5:a6:46:ab:84:5e:37:66:55:31:4c:df:8e:18:02: 11:cd:72:08:49:db:41:a2:99:fc:25:b8:3f:9c:a8: 84:d2:d6:85:7c:51:9c:d1:9f:24:c0:14:5d:5a:ae: 88:38:57:01:3f:8c:70:a9:8c:fd:56:e9:90:cb:a6: 1b:ff:e6:74:30:50:58:cd:1d:2c:64:73:83:dc:3c: 94:3a:39:80:18:5e:96:47:48:44:27:08:d8:c1:5d: 51:c0:86:c9:fa:2b:35:0e:ea:d3:b7:3a:7b:b3:1b: ad:b2:cb:df:00:2b:e6:16:ab:9f:01:15:02:72:80: ef:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:4F:09:A2:E4:BD:63:04:5E:56:6C:89:F5:44:D7:20:A1:56:60:48 X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:ad:08:70:84:00:b9:f2:bc:61:3d:a4:a5:6f:32:1d:e4:09: a9:5d:41:8a:72:a8:44:e8:71:dd:df:4f:35:fe:48:87:fc:03: 0c:d7:22:99:62:a0:ca:17:f0:45:af:54:21:27:93:7e:ce:52: 65:dc:00:f2:22:3c:a2:39:6e:49:8a:ae:ed:60:b9:04:9e:f6: 0b:e6:3b:6b:60:86:61:e3:75:ff:bc:5d:89:13:bc:16:2f:eb: 74:69:4a:a7:f7:fb:ab:2d:c1:30:f8:0b:97:19:3a:a3:0f:eb: 9b:b3:90:55:2c:8f:6e:16:18:00:20:89:ca:f7:4b:65:e6:e3: 46:c4:e7:79:73:bd:d5:98:7d:10:d6:1a:16:7b:a2:b5:bb:a7: 97:34:e8:3e:2e:77:2d:27:2c:db:0d:ac:72:e5:8b:1b:70:89: 89:cf:9b:76:b2:e9:ad:4a:d8:84:4d:d0:fa:2d:ec:e6:d8:af: 56:a6:f2:fe:3d:09:44:62:3c:65:87:a0:2d:97:f0:87:b2:ae: bc:8f:d1:bc:d4:ba:78:d5:4e:31:c9:72:65:97:b8:f7:9c:ce: b4:b9:4d:db:54:b7:d1:f4:42:4b:20:1d:e4:a6:89:83:60:21: ee:d1:ac:6e:6f:e1:d1:e8:b4:b9:50:36:7c:86:a0:01:65:25: d8:17:68:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk2NzIxMTAvBgNVBAUTKDBDNjk3MENBQjlERjhFOUJEMTBFMUMzRTkxODkxQTA5 QTdFODhDMjAwHhcNMjUxMDE5MDgzNTQzWhcNMjUxMDI2MDgzNTQzWjAYMRYwFAYD VQQDEw02OGY0YTJkZi0yMGMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhBCcn1cJ9qMtxZSTJ/VMb4SraJQo+BJXZaXa8PXNisJrqxgp3GdQwwubADo Tes0anc1pkNKUnQ8WFZhXqBgWT5Kq0l0y8iJOje+ReolzTb1hey5wTHVV1gGh2P8 A1DrKOLG6WSUS3xnAvS7zAP3YSgeWUQ2/QHeaUwo/+6dI1/WB/YebCjFpkarhF43 ZlUxTN+OGAIRzXIISdtBopn8Jbg/nKiE0taFfFGc0Z8kwBRdWq6IOFcBP4xwqYz9 VumQy6Yb/+Z0MFBYzR0sZHOD3DyUOjmAGF6WR0hEJwjYwV1RwIbJ+is1DurTtzp7 sxutssvfACvmFqufARUCcoDv2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBRPCaLk vWMEXlZsifVE1yChVmBIMB8GA1UdIwQYMBaAFAxpcMq5346b0Q4cPpGJGgmn6Iwg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTY3Mi84OEFEQ0E5OENC RUYxMUVGOTE2NUMyNDZDNEY5QUUwMi9ER2x3eXJuZmpwdlJEaHcta1lrYUNhZm9q Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTY3Mi84OEFEQ0E5OENCRUYxMUVGOTE2NUMyNDZDNEY5QUUwMi9ER2x3eXJuZmpw dlJEaHcta1lrYUNhZm9qQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrrQhwhAC58rxhPaSlbzId5AmpXUGKcqhE6HHd3081/kiH/AMM1yKZ YqDKF/BFr1QhJ5N+zlJl3ADyIjyiOW5Jiq7tYLkEnvYL5jtrYIZh43X/vF2JE7wW L+t0aUqn9/urLcEw+AuXGTqjD+ubs5BVLI9uFhgAIInK90tl5uNGxOd5c73VmH0Q 1hoWe6K1u6eXNOg+LnctJyzbDaxy5YsbcImJz5t2sumtStiETdD6Lezm2K9WpvL+ PQlEYjxlh6Atl/CHsq68j9G81Lp41U4xyXJll7j3nM60uU3bVLfR9EJLIB3kpomD YCHu0axub+HR6LS5UDZ8hqABZSXYF2iM -----END CERTIFICATE-----Generated at Mon Oct 20 19:47:45 2025 by rpki-client