$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: /JijPlg3gnB3sHWosFm/7suzQMNWk7//QTStB6vE5Hg= Subject key identifier: 57:CD:7C:1A:E2:42:3D:07:5F:96:CA:B5:36:E7:A7:D3:14:BB:47:3E Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 07D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 07CB Signing time: Fri 22 Aug 2025 21:16:55 +0000 Manifest this update: Fri 22 Aug 2025 21:16:55 +0000 Manifest next update: Fri 29 Aug 2025 21:16:55 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: anVT2JMlDkCEf4gFZS5508dooSwy1PqR4cxS/cUXzGs=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: 0iyvzLFIUAJQiOyEvH+MRt0xVeTfFziku8Yy3Ho4c+k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:16:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2000 (0x7d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1, serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: Aug 22 21:16:55 2025 GMT Not After : Aug 29 21:16:55 2025 GMT Subject: CN=68a8de47-f793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5c:61:22:06:81:51:68:8f:7e:b2:02:29:02: 36:6b:f6:7f:9e:ea:3f:28:6a:6e:2b:79:37:aa:87: 49:71:77:e4:24:bc:74:fa:d9:4e:1b:75:36:f2:20: 16:26:44:ec:73:10:32:1e:9e:ce:f8:a3:33:5a:7a: a3:71:08:4a:05:15:34:f2:0c:41:bb:f7:db:30:f2: 8a:47:23:a7:d4:40:9a:a8:1e:ce:a1:c9:c9:2e:0c: 9a:1c:68:86:c6:a4:5f:82:92:32:ab:dc:cb:16:1e: 5f:34:36:00:6f:d1:fe:a5:20:84:8c:a1:5d:5c:5b: e8:c5:f4:c8:63:7c:06:66:ef:71:0b:19:f6:ae:e7: 66:da:b7:87:7a:b0:60:93:81:20:b4:76:83:66:4f: b7:a9:b1:4d:04:a1:80:63:90:bf:08:11:3c:73:ac: 99:f4:ad:63:b9:be:eb:5e:2a:f1:aa:b9:92:7e:01: 54:44:90:b1:8f:32:cf:ed:1e:06:13:9f:47:26:f3: c0:4a:f9:d7:73:33:2f:c1:0a:fd:2c:25:39:3b:6f: de:65:d4:02:4a:80:60:14:a3:5a:13:18:27:dc:1f: eb:a5:f7:d5:56:88:79:7b:c8:6a:cb:7a:d6:e2:3f: ad:d0:44:5b:f4:a6:2c:6d:97:ad:38:ea:b1:6b:ed: 89:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:CD:7C:1A:E2:42:3D:07:5F:96:CA:B5:36:E7:A7:D3:14:BB:47:3E X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:0c:f2:5b:2c:15:a6:28:eb:b1:39:c7:2f:7d:04:ed:d3:83: cf:10:24:21:43:d2:56:ea:78:e5:49:c7:83:bb:c9:7e:c2:28: da:61:b5:f3:e0:96:fd:e9:3a:1d:9c:15:0a:fd:12:eb:a5:f3: ff:90:4e:bc:a9:ae:7c:6e:dd:7c:e4:61:e1:f3:55:b8:b9:82: 71:c4:84:1f:0e:3f:11:e1:2a:8e:48:35:4a:a1:a1:21:69:71: c8:d0:3e:dd:5e:97:0c:c7:92:37:11:7c:b3:b3:86:2a:33:22: 57:f9:bf:22:20:fa:6c:dc:e7:de:80:ea:be:0c:f5:a9:58:86: 93:f6:a3:b4:93:61:c0:38:ce:64:ca:7c:1d:5b:38:02:54:f5: cf:5c:64:5a:75:07:68:9b:1c:62:73:31:9b:c6:b6:70:27:86: 28:cf:de:f5:53:2e:b7:b8:56:64:ad:1e:a9:1a:83:a5:9c:bb: f6:74:17:ab:3f:23:7e:4e:b8:81:03:ae:8f:57:1c:c1:db:07: d3:71:75:57:1f:7a:42:82:24:5d:61:a7:ce:32:b0:22:aa:15: 67:94:16:1c:46:d1:ba:6d:6a:c7:9f:0f:0c:0a:e0:53:94:31: da:6a:a4:38:16:27:79:b0:8f:2d:9f:5c:c5:65:52:96:b1:b2: 93:35:6a:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjUwODIyMjExNjU1WhcNMjUwODI5MjExNjU1WjAYMRYwFAYD VQQDEw02OGE4ZGU0Ny1mNzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21xhIgaBUWiPfrICKQI2a/Z/nuo/KGpuK3k3qodJcXfkJLx0+tlOG3U28iAW JkTscxAyHp7O+KMzWnqjcQhKBRU08gxBu/fbMPKKRyOn1ECaqB7OocnJLgyaHGiG xqRfgpIyq9zLFh5fNDYAb9H+pSCEjKFdXFvoxfTIY3wGZu9xCxn2rudm2reHerBg k4EgtHaDZk+3qbFNBKGAY5C/CBE8c6yZ9K1jub7rXirxqrmSfgFURJCxjzLP7R4G E59HJvPASvnXczMvwQr9LCU5O2/eZdQCSoBgFKNaExgn3B/rpffVVoh5e8hqy3rW 4j+t0ERb9KYsbZetOOqxa+2J0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFfNfBri Qj0HX5bKtTbnp9MUu0c+MB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3DPJbLBWmKOuxOccvfQTt04PPECQhQ9JW6njlSceDu8l+wijaYbXz 4Jb96TodnBUK/RLrpfP/kE68qa58bt185GHh81W4uYJxxIQfDj8R4SqOSDVKoaEh aXHI0D7dXpcMx5I3EXyzs4YqMyJX+b8iIPps3OfegOq+DPWpWIaT9qO0k2HAOM5k ynwdWzgCVPXPXGRadQdomxxiczGbxrZwJ4Yoz971Uy63uFZkrR6pGoOlnLv2dBer PyN+TriBA66PVxzB2wfTcXVXH3pCgiRdYafOMrAiqhVnlBYcRtG6bWrHnw8MCuBT lDHaaqQ4Fid5sI8tn1zFZVKWsbKTNWpR -----END CERTIFICATE-----Generated at Sat Aug 23 19:34:07 2025 by rpki-client