$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: thet+8akPA0HdZSqydbB85eeGDBhsOhFwLG8pmg3M+Y= Subject key identifier: DA:BE:A5:B8:6D:4A:42:48:6B:66:67:A2:21:3E:FA:F5:AA:7A:7B:9F Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 05AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 05A8 Signing time: Fri 22 Aug 2025 23:21:20 +0000 Manifest this update: Fri 22 Aug 2025 23:21:20 +0000 Manifest next update: Fri 29 Aug 2025 23:21:20 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: cyxrhhE6iPvmeT12Q/8mK4/qw0HI08bTlTy6uZO84JY=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: pYihusS4UyoIsK9PCzKPk27dDaihl6ZYHFqiCUhf6Dc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Aug 22 23:21:20 2025 GMT Not After : Aug 29 23:21:20 2025 GMT Subject: CN=68a8fb70-ac84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:fb:a5:ed:78:a0:90:94:7b:eb:81:2c:a1:22: a8:11:9a:4e:90:cb:60:45:4a:45:96:b6:ab:84:87: 7a:e7:d8:23:e8:e6:bc:01:36:48:9f:3b:78:e8:84: 3c:77:57:64:27:4e:d0:d6:70:82:a1:22:4d:6a:0f: 01:03:a8:af:1e:78:b9:6e:39:6d:98:f0:40:2b:18: 86:e4:da:b1:a7:d7:9b:70:74:8f:f8:e3:71:6a:c9: 98:f4:90:91:77:a7:c8:23:2c:c8:5e:0d:00:44:25: c1:1c:0d:ad:c8:ec:76:fc:6c:f0:08:df:69:8b:7c: 7e:67:20:e3:54:06:74:10:3a:6a:02:fc:14:64:8a: 2d:74:5a:dd:87:42:4d:99:ae:3c:2b:eb:45:19:1c: 33:69:f5:d1:7d:4d:e4:0d:4d:0d:3f:24:3b:e0:9b: 1a:33:af:45:3d:02:eb:fc:65:fd:81:de:ff:5e:01: 29:30:ef:8f:2d:a4:71:f4:b5:1f:6c:de:29:67:bb: 07:53:4c:13:5d:0b:36:1d:b6:5f:0f:9a:0c:78:bc: 20:4c:76:9f:55:5f:3f:df:c1:90:c7:51:35:e0:f0: 17:30:f8:ae:14:e5:35:53:7e:c6:1a:4b:a7:61:7a: cc:dd:ac:bc:18:b0:cd:66:99:bb:9a:97:6d:93:a3: c1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:BE:A5:B8:6D:4A:42:48:6B:66:67:A2:21:3E:FA:F5:AA:7A:7B:9F X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:49:ea:d3:35:ad:3a:0f:ef:97:fe:a5:61:f6:bc:cf:e5:8f: 21:07:6b:9f:aa:dc:ac:ee:63:1c:16:35:d9:c8:3a:06:a5:4d: 4c:ec:a2:46:4b:77:b8:a5:70:e4:ba:d7:72:ba:91:cb:15:0b: b5:75:92:8d:e3:f2:8e:9f:4c:0f:a9:98:f7:68:75:f7:eb:5b: 90:35:94:18:9d:c6:00:58:a4:5c:2c:9f:9a:6e:94:cb:84:42: b8:4c:d8:87:c5:ce:2c:cd:46:c4:85:40:be:d5:1a:27:28:28: f9:4d:57:19:bd:8c:62:7e:c7:8b:fd:06:fe:be:bc:74:21:08: ab:f7:98:84:d8:de:2a:c4:c4:c5:b0:d5:c5:45:e5:e5:c2:b1: a5:a8:e8:65:57:38:9b:15:c8:6b:0a:62:f8:70:55:96:de:df: 29:36:87:db:9c:18:ed:f7:8f:0a:af:20:3d:52:93:09:d1:b6: a5:2c:6d:30:18:e8:39:8b:b6:6c:0b:64:ea:c6:92:a2:2c:6f: 5b:2e:42:5b:7e:7e:d9:68:61:3e:10:da:f4:10:8f:c7:15:08: 91:a6:f8:75:b6:2e:44:df:32:7f:75:5b:54:b6:db:51:ea:54: 82:5d:9b:d3:03:4a:60:f2:33:4c:76:d2:72:6e:15:93:e8:a3: a2:03:88:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUwODIyMjMyMTIwWhcNMjUwODI5MjMyMTIwWjAYMRYwFAYD VQQDEw02OGE4ZmI3MC1hYzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsful7XigkJR764EsoSKoEZpOkMtgRUpFlrarhId659gj6Oa8ATZInzt46IQ8 d1dkJ07Q1nCCoSJNag8BA6ivHni5bjltmPBAKxiG5Nqxp9ebcHSP+ONxasmY9JCR d6fIIyzIXg0ARCXBHA2tyOx2/GzwCN9pi3x+ZyDjVAZ0EDpqAvwUZIotdFrdh0JN ma48K+tFGRwzafXRfU3kDU0NPyQ74JsaM69FPQLr/GX9gd7/XgEpMO+PLaRx9LUf bN4pZ7sHU0wTXQs2HbZfD5oMeLwgTHafVV8/38GQx1E14PAXMPiuFOU1U37GGkun YXrM3ay8GLDNZpm7mpdtk6PB+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNq+pbht SkJIa2ZnoiE++vWqenufMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcSerTNa06D++X/qVh9rzP5Y8hB2ufqtys7mMcFjXZyDoGpU1M7KJG S3e4pXDkutdyupHLFQu1dZKN4/KOn0wPqZj3aHX361uQNZQYncYAWKRcLJ+abpTL hEK4TNiHxc4szUbEhUC+1RonKCj5TVcZvYxifseL/Qb+vrx0IQir95iE2N4qxMTF sNXFReXlwrGlqOhlVzibFchrCmL4cFWW3t8pNofbnBjt948KryA9UpMJ0balLG0w GOg5i7ZsC2TqxpKiLG9bLkJbfn7ZaGE+ENr0EI/HFQiRpvh1ti5E3zJ/dVtUtttR 6lSCXZvTA0pg8jNMdtJybhWT6KOiA4iA -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:31 2025 by rpki-client