$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: iYrUSe7h4uq6cCxHtJyETZbrmFnEjx0GWBafeGBKSxI= Subject key identifier: 38:DE:69:9F:3D:2C:82:D0:90:0D:3A:53:A7:3E:03:ED:68:11:84:AD Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: C2 Signing time: Sat 23 Aug 2025 05:57:38 +0000 Manifest this update: Sat 23 Aug 2025 05:57:38 +0000 Manifest next update: Sat 30 Aug 2025 05:57:38 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: +HKPAZXevu3Iirje8UkQOfgKyeK3ATwrWKUfS1ZhSB8=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: bgNsvlct6cf/BWMOzM4D0nnTwsIX5vRKPjJTejU5LP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Aug 23 05:57:38 2025 GMT Not After : Aug 30 05:57:38 2025 GMT Subject: CN=68a95852-d1c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4e:9d:0c:af:6b:21:cf:d9:2e:68:5b:65:b8: a6:b9:77:96:3b:d2:96:c8:a5:e3:92:1b:29:12:d5: ce:b5:b8:79:4d:e1:c1:6d:4b:ac:57:9f:ca:ac:59: 5d:5f:3f:a9:fe:42:d2:4d:8b:90:dc:d7:ad:67:a4: c5:0d:3a:b0:ef:f0:6e:92:be:e3:7b:75:fc:a6:7c: c4:11:bf:2e:f0:9c:d7:d1:00:24:aa:58:8e:0f:c1: 11:17:2b:92:89:14:32:2d:dd:0f:13:c9:10:8d:8f: 3f:95:4d:24:26:d4:eb:78:c7:ee:2a:5b:d8:47:a0: 91:97:6d:44:ec:08:26:63:63:43:f9:54:5c:58:83: c3:fa:f9:3a:3d:f5:e0:c3:61:88:f1:3d:1e:a7:6d: 8d:57:f1:42:8e:db:8b:c7:51:f1:d7:2c:28:8d:f2: f1:dd:ce:e1:df:6f:08:48:28:7f:c0:d4:92:dd:7c: e5:14:0b:a7:97:43:b3:42:80:8c:06:c7:b4:85:79: 7d:b1:c5:b1:67:c4:e6:ca:f2:8b:cd:dc:cc:07:13: 9b:3b:35:d9:3c:f0:93:e2:ae:ce:70:07:15:31:ce: 02:ec:11:f6:d1:75:52:df:b2:56:49:01:26:f4:30: 71:74:dc:d0:8b:c5:70:21:62:86:cb:2e:3a:ab:7c: 7d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:DE:69:9F:3D:2C:82:D0:90:0D:3A:53:A7:3E:03:ED:68:11:84:AD X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:e4:d5:0b:bc:03:27:6a:73:63:d0:d8:fe:9e:1c:0a:d0:7a: f3:b5:da:60:76:d7:f4:7f:7c:ed:43:c0:11:5f:25:97:50:6f: ea:b4:d8:db:9b:ad:23:82:cf:7d:34:94:dc:0a:c8:f9:b1:27: d5:7e:d1:db:ce:41:18:95:fa:b4:ff:68:38:3e:cc:97:cb:ea: 10:d0:b9:2a:45:68:e4:41:c4:51:a8:c0:9f:a1:15:ca:5d:41: 8a:43:c5:29:3a:9c:48:57:16:39:ae:1c:d8:8b:35:5b:76:ee: a3:ae:2e:34:e7:3b:16:a3:f0:04:5c:d0:36:b1:73:f8:e3:8c: ea:e0:10:44:0c:dd:0a:b4:95:eb:47:59:99:2b:1f:13:71:8d: 38:6b:20:27:53:4a:16:28:20:77:55:ee:60:8c:89:30:70:9b: 71:91:8b:69:e2:de:93:29:e7:de:54:2f:fe:5e:3b:33:ff:9a: 9c:c8:af:16:84:c5:6d:d1:41:37:40:1b:07:d3:e0:28:3b:db: b0:76:bf:91:3d:cb:5e:0f:c0:93:2a:d9:b0:00:36:66:f2:69: 30:b6:db:6f:7b:53:99:c0:5f:dd:7f:9b:78:0d:cd:08:dd:54: 1f:a3:81:9d:5c:62:68:3e:29:88:44:ac:77:60:53:4e:73:c4: eb:8e:a1:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUwODIzMDU1NzM4WhcNMjUwODMwMDU1NzM4WjAYMRYwFAYD VQQDEw02OGE5NTg1Mi1kMWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy06dDK9rIc/ZLmhbZbimuXeWO9KWyKXjkhspEtXOtbh5TeHBbUusV5/KrFld Xz+p/kLSTYuQ3NetZ6TFDTqw7/Bukr7je3X8pnzEEb8u8JzX0QAkqliOD8ERFyuS iRQyLd0PE8kQjY8/lU0kJtTreMfuKlvYR6CRl21E7AgmY2ND+VRcWIPD+vk6PfXg w2GI8T0ep22NV/FCjtuLx1Hx1ywojfLx3c7h328ISCh/wNSS3XzlFAunl0OzQoCM Bse0hXl9scWxZ8TmyvKLzdzMBxObOzXZPPCT4q7OcAcVMc4C7BH20XVS37JWSQEm 9DBxdNzQi8VwIWKGyy46q3x9GQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDjeaZ89 LILQkA06U6c+A+1oEYStMB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAI5NULvAMnanNj0Nj+nhwK0Hrztdpgdtf0f3ztQ8ARXyWXUG/qtNjb m60jgs99NJTcCsj5sSfVftHbzkEYlfq0/2g4PsyXy+oQ0LkqRWjkQcRRqMCfoRXK XUGKQ8UpOpxIVxY5rhzYizVbdu6jri405zsWo/AEXNA2sXP444zq4BBEDN0KtJXr R1mZKx8TcY04ayAnU0oWKCB3Ve5gjIkwcJtxkYtp4t6TKefeVC/+Xjsz/5qcyK8W hMVt0UE3QBsH0+AoO9uwdr+RPcteD8CTKtmwADZm8mkwtttve1OZwF/df5t4Dc0I 3VQfo4GdXGJoPimIRKx3YFNOc8TrjqFb -----END CERTIFICATE-----Generated at Sat Aug 23 17:09:04 2025 by rpki-client