$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: r3OQzMthzIE/lkSqVGI/3ywFvQ0VT8op+/3DKlWOTag= Subject key identifier: C0:66:17:CB:3F:7B:90:79:A4:0B:27:A2:A2:86:0C:56:0C:11:DE:73 Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: 79 Signing time: Sat 23 Aug 2025 06:05:37 +0000 Manifest this update: Sat 23 Aug 2025 06:05:36 +0000 Manifest next update: Sat 30 Aug 2025 06:05:36 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: 21f9Awql/YTspjGw4v3yKWA+ZduaXYnxx4PQfDFpFp0=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: 4UcuR0Va16pIipTBZBi5kSdFR7fOLDQRz2cgCZTL1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: Aug 23 06:05:36 2025 GMT Not After : Aug 30 06:05:36 2025 GMT Subject: CN=68a95a30-966e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:53:07:56:ca:0a:d0:e9:11:12:41:03:a8:64: 26:43:88:7c:86:7e:b8:8a:d4:53:68:c6:74:60:81: c6:86:0c:46:a2:22:1a:d9:4d:9c:aa:d9:2c:6a:5e: ca:b2:3b:80:3d:18:5a:5a:44:05:31:5a:c6:e1:db: a7:e6:2b:49:d1:79:e6:85:94:df:95:32:8f:d9:73: 40:5f:6b:65:e3:12:e0:db:1d:dd:06:8d:56:54:9b: cf:58:e6:ba:87:6c:90:a8:cd:81:da:46:91:dd:99: bd:8d:45:71:14:7f:9a:58:cf:02:f1:3b:47:c2:16: ba:1d:fb:4b:b9:60:e6:dc:6f:d6:ce:41:ef:60:3f: 4e:fd:a4:f2:98:a3:9e:2f:5b:3e:da:06:3a:2d:af: 66:54:19:b5:8e:03:d7:ee:7e:af:0d:49:9e:26:35: 8a:81:d2:08:ab:b8:43:14:0f:0c:25:3b:fb:46:8b: ca:5e:87:d7:e8:3d:a3:2a:24:93:fc:d5:e6:db:15: 8e:cd:2c:ec:6c:6c:27:a5:8f:f7:0d:bd:d6:3a:74: 20:8e:04:fe:c4:04:4b:30:6b:b8:3c:a4:78:28:2e: 11:24:7d:69:3a:63:41:58:23:a0:ae:24:b0:e0:a7: 62:4c:e7:e1:73:02:1a:f0:c9:e4:5a:ca:d5:d0:70: 70:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:66:17:CB:3F:7B:90:79:A4:0B:27:A2:A2:86:0C:56:0C:11:DE:73 X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:02:d9:8d:c8:06:53:68:8e:49:ad:c8:e5:5c:fa:3d:16:dc: 6a:fe:18:87:df:21:0f:29:fe:dc:e9:63:6d:96:c3:1e:3b:78: dd:1f:1b:ff:1d:51:34:db:16:58:33:c7:e0:7b:a7:28:9a:33: da:b4:79:77:e9:2d:1a:33:68:75:84:5d:42:af:ca:08:3b:6d: 2f:34:7e:d8:58:38:c3:8c:75:49:9d:71:09:f4:9b:78:d9:da: 91:d3:18:92:48:d7:13:3b:0c:4d:7e:fb:53:d1:be:e2:1e:4b: 2e:86:11:24:18:83:60:37:72:ad:0c:63:b8:d9:ae:f4:1c:5f: 84:4b:57:e7:ac:14:a9:9a:22:41:a0:eb:74:78:eb:c8:b5:6a: d8:f9:bc:df:96:32:07:4a:fd:0f:c4:81:b5:cf:ba:b6:c1:0b: a2:01:63:fa:0e:d1:1e:9a:71:66:4c:13:f6:2d:0a:d0:22:cd: 23:f0:2e:b9:42:0a:06:c1:4e:45:ef:ed:1f:5d:9b:fd:50:7d: 5b:8a:7c:41:a1:5c:3f:d1:c1:e3:33:a5:e3:de:d7:8c:c6:bd: c4:0a:d8:d4:1e:b4:c2:2a:36:53:89:5f:57:43:34:4f:48:87: ef:8c:64:b2:8c:13:6e:68:48:b1:bf:84:1e:2d:43:52:41:13: 7d:83:9e:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTY3MjExMC8GA1UEBRMoMEM2OTcwQ0FCOURGOEU5QkQxMEUxQzNFOTE4OTFBMDlB N0U4OEMyMDAeFw0yNTA4MjMwNjA1MzZaFw0yNTA4MzAwNjA1MzZaMBgxFjAUBgNV BAMTDTY4YTk1YTMwLTk2NmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjUwdWygrQ6RESQQOoZCZDiHyGfriK1FNoxnRggcaGDEaiIhrZTZyq2SxqXsqy O4A9GFpaRAUxWsbh26fmK0nReeaFlN+VMo/Zc0Bfa2XjEuDbHd0GjVZUm89Y5rqH bJCozYHaRpHdmb2NRXEUf5pYzwLxO0fCFrod+0u5YObcb9bOQe9gP079pPKYo54v Wz7aBjotr2ZUGbWOA9fufq8NSZ4mNYqB0giruEMUDwwlO/tGi8peh9foPaMqJJP8 1ebbFY7NLOxsbCelj/cNvdY6dCCOBP7EBEswa7g8pHgoLhEkfWk6Y0FYI6CuJLDg p2JM5+FzAhrwyeRaytXQcHAHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwGYXyz97 kHmkCyeiooYMVgwR3nMwHwYDVR0jBBgwFoAUDGlwyrnfjpvRDhw+kYkaCafojCAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjcyLzg4QURDQTk4Q0JF RjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pD QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREdsd3lybmZqcHZSRGh3LWtZa2FDYWZvakNBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5 NjcyLzg4QURDQTk4Q0JFRjExRUY5MTY1QzI0NkM0RjlBRTAyL0RHbHd5cm5manB2 UkRody1rWWthQ2Fmb2pDQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEAC2Y3IBlNojkmtyOVc+j0W3Gr+GIffIQ8p/tzpY22Wwx47eN0fG/8d UTTbFlgzx+B7pyiaM9q0eXfpLRozaHWEXUKvygg7bS80fthYOMOMdUmdcQn0m3jZ 2pHTGJJI1xM7DE1++1PRvuIeSy6GESQYg2A3cq0MY7jZrvQcX4RLV+esFKmaIkGg 63R468i1atj5vN+WMgdK/Q/EgbXPurbBC6IBY/oO0R6acWZME/YtCtAizSPwLrlC CgbBTkXv7R9dm/1QfVuKfEGhXD/RweMzpePe14zGvcQK2NQetMIqNlOJX1dDNE9I h++MZLKME25oSLG/hB4tQ1JBE32DnpA= -----END CERTIFICATE-----Generated at Sat Aug 23 20:39:48 2025 by rpki-client