$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: mKT5+Ai6gE7GCZIk0NMd5ZP8noF7Muad8t4S2myPNsg= Subject key identifier: 4F:D1:6A:E5:0C:66:82:B1:7E:E1:E1:0D:DB:A8:AA:59:22:7E:A9:DA Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FDA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0FB8 Signing time: Fri 22 Aug 2025 17:38:25 +0000 Manifest this update: Fri 22 Aug 2025 17:38:25 +0000 Manifest next update: Fri 29 Aug 2025 17:38:25 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: MDIcDgE7VhEaBdRFz2MUTu4taIxoX7zQ2o3oJdu7s6Q=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: Yxnc0WF7y7yG/Ke04997WUeH+aSKIu6WY3AiaujI7mg=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: fuYiIxAwDhO4bPXLu2NpIMN0ReUFHJNWZB+675RLxUg=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: 7y8BRBcxLZCZTnPYfc6VfQnaG4bxPBMAZ7uJUfKAC/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4058 (0xfda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Aug 22 17:38:25 2025 GMT Not After : Aug 29 17:38:25 2025 GMT Subject: CN=68a8ab11-be0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5c:e3:9b:96:c3:4f:e0:34:6c:b7:ac:f5:f2: d4:60:f1:b3:cd:ba:d3:ff:b0:88:03:85:e5:8f:a6: c8:c5:13:da:64:c6:e2:6d:17:86:66:ae:46:c5:15: 1d:8c:97:6d:eb:dc:18:8e:d9:65:22:c5:f1:9d:b5: c1:44:93:9d:6d:80:aa:fa:a1:66:4c:68:7a:dc:9e: d6:96:82:a8:83:b6:2c:45:06:b2:92:e3:09:41:b9: 8a:fd:42:45:26:49:ee:87:97:bd:a5:15:d9:f1:35: 1d:3a:3c:a9:80:cc:a7:0b:88:52:d3:32:a7:4b:4c: 01:fb:5f:34:44:63:ea:6e:d2:f8:b9:a9:ec:2f:fd: 79:a1:45:60:88:c6:02:1b:13:c2:dc:de:75:f7:5c: 01:ef:a9:07:4a:bf:48:23:32:5d:73:0b:6c:01:fd: 4d:30:28:7b:8f:14:19:4d:bc:b0:3f:ba:f7:b3:74: f3:d5:06:c2:8f:90:87:0e:19:e2:fc:98:91:2b:4c: 6d:31:69:2d:14:66:51:c4:31:32:b7:6d:9d:93:2b: a1:7a:3e:19:03:0a:5d:cf:57:0f:01:84:7a:53:78: 4a:f7:1d:b5:4d:bc:19:1c:5e:d2:0a:e4:6b:05:91: 73:c8:dc:ee:82:48:6f:de:eb:50:75:31:6e:88:7a: 41:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D1:6A:E5:0C:66:82:B1:7E:E1:E1:0D:DB:A8:AA:59:22:7E:A9:DA X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:24:70:83:37:6f:9d:31:63:41:de:25:5a:80:ae:e1:87:64: 95:3d:67:90:2b:e2:39:97:df:12:3a:e9:b7:cd:3b:8c:e8:25: ab:07:40:e5:90:bd:2b:de:4c:73:20:ca:33:2a:90:21:fb:98: 88:3a:a3:e9:cd:85:6b:e1:91:15:77:5e:4d:da:75:6a:31:2c: 06:c7:65:81:ff:55:42:e3:92:db:d2:05:b0:2d:1e:70:f7:40: cc:6c:1b:48:f5:16:3d:3b:a6:64:f0:c1:e3:a2:45:65:5f:10: f0:0b:f2:25:cd:d9:32:48:c8:49:87:a1:dd:d2:91:e2:41:3f: e9:ed:24:68:21:06:34:d7:a3:0b:a7:18:c8:c8:90:ac:66:14: c9:08:3d:7a:fd:e9:3c:f7:11:22:87:31:dd:27:7d:7e:82:ca: ba:9e:f1:8e:66:41:12:ba:9a:53:56:44:67:96:82:a0:b8:4b: 28:b7:ca:8a:40:70:3f:b4:df:78:ee:c2:26:df:c1:26:18:f3: 2d:1d:9a:0a:a9:7f:53:0d:cc:60:23:3c:2e:57:94:6a:c7:56: 94:68:47:8f:0e:16:dd:cf:1b:56:4e:bf:2b:fd:5e:d9:f6:dd: 68:30:65:3f:ea:3a:cd:8e:41:67:ac:d6:ba:fe:97:ad:52:34: 72:5a:7f:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwODIyMTczODI1WhcNMjUwODI5MTczODI1WjAYMRYwFAYD VQQDEw02OGE4YWIxMS1iZTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1zjm5bDT+A0bLes9fLUYPGzzbrT/7CIA4Xlj6bIxRPaZMbibReGZq5GxRUd jJdt69wYjtllIsXxnbXBRJOdbYCq+qFmTGh63J7WloKog7YsRQaykuMJQbmK/UJF Jknuh5e9pRXZ8TUdOjypgMynC4hS0zKnS0wB+180RGPqbtL4uansL/15oUVgiMYC GxPC3N5191wB76kHSr9IIzJdcwtsAf1NMCh7jxQZTbywP7r3s3Tz1QbCj5CHDhni /JiRK0xtMWktFGZRxDEyt22dkyuhej4ZAwpdz1cPAYR6U3hK9x21TbwZHF7SCuRr BZFzyNzugkhv3utQdTFuiHpBUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE/RauUM ZoKxfuHhDduoqlkifqnaMB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUJHCDN2+dMWNB3iVagK7hh2SVPWeQK+I5l98SOum3zTuM6CWrB0Dl kL0r3kxzIMozKpAh+5iIOqPpzYVr4ZEVd15N2nVqMSwGx2WB/1VC45Lb0gWwLR5w 90DMbBtI9RY9O6Zk8MHjokVlXxDwC/IlzdkySMhJh6Hd0pHiQT/p7SRoIQY016ML pxjIyJCsZhTJCD16/ek89xEihzHdJ31+gsq6nvGOZkESuppTVkRnloKguEsot8qK QHA/tN947sIm38EmGPMtHZoKqX9TDcxgIzwuV5Rqx1aUaEePDhbdzxtWTr8r/V7Z 9t1oMGU/6jrNjkFnrNa6/petUjRyWn/R -----END CERTIFICATE-----Generated at Sat Aug 23 17:19:02 2025 by rpki-client