$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: tt1wmn0iWxoYtanDev1F3vpnYuOAtw9AJ2RVz1Fs0bs= Subject key identifier: A9:96:61:D3:41:19:4F:21:7F:C2:B2:6B:A5:AC:FA:3A:83:09:57:E9 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: BA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: B9 Signing time: Sat 23 Aug 2025 06:08:09 +0000 Manifest this update: Sat 23 Aug 2025 06:08:08 +0000 Manifest next update: Sat 30 Aug 2025 06:08:08 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: YuMm+4lhRDatGx2k9kicvp+vNbcjdDySJm7sET0nkm4=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Aug 23 06:08:08 2025 GMT Not After : Aug 30 06:08:08 2025 GMT Subject: CN=68a95ac8-50b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:72:58:4c:e2:ce:40:97:4c:50:b8:94:87:30: 01:04:d7:e5:6a:5c:0c:15:6e:cf:d7:0e:7c:6e:77: 42:09:6d:99:fc:60:a5:76:9f:d8:15:eb:31:76:be: 8c:5e:61:8d:22:bf:ed:2a:ce:9d:ad:b5:83:3f:d5: 6a:29:3d:7f:3f:e7:73:f7:f0:fc:d4:fc:9d:1e:8d: 8d:e6:a0:07:08:66:d7:d6:5b:22:94:98:80:23:d1: 3c:7d:0c:d4:03:ca:00:8f:c8:98:d7:bd:79:27:c0: 1b:91:b8:e5:28:b1:3f:42:35:ee:fa:3b:50:af:f6: af:34:d5:05:66:b2:4f:61:5f:9d:fe:ba:cf:81:fe: b3:1e:c2:3e:d1:3b:6e:ab:e5:0d:bb:e4:5f:66:bc: 93:55:23:ce:1e:f9:d7:56:1b:a4:03:19:04:c4:27: b5:e6:f6:e3:6c:b6:70:dc:ce:4e:a9:69:06:81:3a: 70:80:c4:19:79:0b:6a:2c:9e:ad:58:63:78:d5:f3: 63:6c:37:2d:62:a5:f1:3e:d1:c8:68:5c:51:56:88: 4e:f7:d4:99:5b:77:c9:3a:fa:d7:9b:e3:3a:84:54: fa:10:3f:fc:a5:82:5f:bb:61:47:bf:b7:ab:6c:91: 2f:08:f7:8c:20:94:64:52:50:37:53:d7:af:4e:d5: c5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:96:61:D3:41:19:4F:21:7F:C2:B2:6B:A5:AC:FA:3A:83:09:57:E9 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:75:4d:81:a1:d3:fe:6f:e0:0b:0c:d2:a9:9c:ef:62:3e:97: d7:26:cf:d4:69:90:6b:da:98:4d:1c:37:92:a2:50:4b:4f:0f: f4:b3:3b:b1:32:85:45:b8:61:c2:56:da:47:91:22:95:71:29: 09:e9:0f:18:22:85:67:a7:69:3e:ec:7c:5b:f1:0a:9b:22:82: 71:88:de:28:f3:28:7a:da:20:a3:df:e3:05:9b:06:b1:56:8b: f0:c0:2d:42:39:f2:80:c8:43:4a:a4:38:5a:83:90:67:0d:a6: 8d:0b:f7:51:72:c3:85:95:de:ba:ec:ae:0b:59:2d:63:a5:8a: 2a:08:b2:b2:5b:2c:96:79:3c:8c:75:09:a5:3f:17:ac:26:eb: 3b:7c:3e:33:eb:54:fd:5f:69:28:c9:ef:f8:b7:f2:05:a6:d3: 0e:64:f2:d5:87:7a:66:22:bc:a0:6f:f7:ce:0e:81:c0:7b:31: ea:53:5e:69:0b:3a:6e:8c:83:73:3a:7e:12:18:67:e6:03:77: ab:7b:a8:36:27:dc:21:42:7c:fa:c2:fb:a8:c6:cb:bb:57:80: 1b:54:e4:36:4d:f1:5a:f1:48:49:c2:ab:25:6e:7f:a9:e1:e0: 47:e3:72:c9:c3:07:60:39:1d:2b:bd:4d:5f:c9:63:ae:e6:4e: 93:ba:5b:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwODIzMDYwODA4WhcNMjUwODMwMDYwODA4WjAYMRYwFAYD VQQDEw02OGE5NWFjOC01MGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXJYTOLOQJdMULiUhzABBNflalwMFW7P1w58bndCCW2Z/GCldp/YFesxdr6M XmGNIr/tKs6drbWDP9VqKT1/P+dz9/D81PydHo2N5qAHCGbX1lsilJiAI9E8fQzU A8oAj8iY1715J8AbkbjlKLE/QjXu+jtQr/avNNUFZrJPYV+d/rrPgf6zHsI+0Ttu q+UNu+RfZryTVSPOHvnXVhukAxkExCe15vbjbLZw3M5OqWkGgTpwgMQZeQtqLJ6t WGN41fNjbDctYqXxPtHIaFxRVohO99SZW3fJOvrXm+M6hFT6ED/8pYJfu2FHv7er bJEvCPeMIJRkUlA3U9evTtXFGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKmWYdNB GU8hf8Kya6Ws+jqDCVfpMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCndU2BodP+b+ALDNKpnO9iPpfXJs/UaZBr2phNHDeSolBLTw/0szux MoVFuGHCVtpHkSKVcSkJ6Q8YIoVnp2k+7Hxb8QqbIoJxiN4o8yh62iCj3+MFmwax VovwwC1COfKAyENKpDhag5BnDaaNC/dRcsOFld667K4LWS1jpYoqCLKyWyyWeTyM dQmlPxesJus7fD4z61T9X2koye/4t/IFptMOZPLVh3pmIrygb/fODoHAezHqU15p CzpujINzOn4SGGfmA3ere6g2J9whQnz6wvuoxsu7V4AbVOQ2TfFa8UhJwqslbn+p 4eBH43LJwwdgOR0rvU1fyWOu5k6Tulu0 -----END CERTIFICATE-----Generated at Sat Aug 23 12:43:49 2025 by rpki-client