$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft File: -D3DokbRIVGsh6dyzsoO3SFfhio.mft (raw, json) Hash identifier: NTqIhO3AQIAz+a5Krl9zFwamqRMyKpC7RyfqntTDC9M= Subject key identifier: AD:F2:CE:3B:79:D7:48:B6:24:31:0F:4E:4F:A6:7D:B1:DC:44:18:B0 Authority key identifier: F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A Certificate issuer: /CN=A91DDFF2/serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft Manifest number: 010A Signing time: Sat 23 Aug 2025 05:07:20 +0000 Manifest this update: Sat 23 Aug 2025 05:07:20 +0000 Manifest next update: Sat 30 Aug 2025 05:07:20 +0000 Files and hashes: 1: -D3DokbRIVGsh6dyzsoO3SFfhio.crl (hash: F+OA6ATkwc91GDIJR4QbxXhxACy2f7bwUiDLhPgq+o8=) 2: EC7311FEE5C311EEBF217685C4F9AE02.roa (hash: qmFjn7wAfMqWkF24WNm8IekVR4ecxQdIio3RLzGcoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDFF2, serialNumber=F83DC3A246D12151AC87A772CECA0EDD215F862A Validity Not Before: Aug 23 05:07:20 2025 GMT Not After : Aug 30 05:07:20 2025 GMT Subject: CN=68a94c88-0ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4c:c0:48:7f:93:b5:c5:72:a1:02:ab:53:63: 22:0b:58:14:49:99:e5:59:c1:ff:27:02:7a:15:74: 71:7a:0e:16:3a:f6:eb:2b:90:4c:92:9f:c3:97:06: ee:c6:d9:90:86:7f:93:1c:a4:9c:78:61:5a:96:f4: d0:57:27:db:91:0f:2d:bc:fd:b5:1b:c9:dc:f2:ed: c6:79:b1:e1:a9:bb:1a:d6:6d:75:f6:1e:58:16:a6: a4:5f:36:ba:fa:3b:ef:33:9e:18:0f:d3:bc:ef:2e: d1:d2:16:a1:44:4e:ce:1b:4c:c3:c3:1e:07:78:a9: fe:18:69:e8:8d:d4:67:ba:a4:e1:02:b8:e1:cc:ee: 6f:fe:4e:ff:3d:78:3b:1e:1e:78:1c:96:c7:1d:fb: d5:65:fd:e6:3b:8d:a7:ec:22:23:25:6d:99:dd:26: 82:b3:b5:58:28:51:dd:01:17:1c:eb:fc:3c:f3:9c: 28:d3:a9:6e:01:65:d3:80:f8:58:55:ba:39:24:4a: eb:0e:7f:d0:be:e3:01:5a:6b:6e:b3:60:f5:0a:da: 54:9f:4d:25:91:fa:9f:6f:c2:73:0b:c6:7d:18:59: f9:39:eb:6d:56:e1:83:d9:bf:83:c0:99:56:8c:24: 21:e6:87:ba:ea:4d:05:ba:d5:e5:52:1f:09:8a:c4: ef:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F2:CE:3B:79:D7:48:B6:24:31:0F:4E:4F:A6:7D:B1:DC:44:18:B0 X509v3 Authority Key Identifier: keyid:F8:3D:C3:A2:46:D1:21:51:AC:87:A7:72:CE:CA:0E:DD:21:5F:86:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-D3DokbRIVGsh6dyzsoO3SFfhio.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDFF2/C9AF2934E5C111EE98DBE962C4F9AE02/-D3DokbRIVGsh6dyzsoO3SFfhio.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:83:01:f6:66:8f:1f:ce:2c:f2:bb:ac:d4:a2:09:c9:2a:af: 0f:8a:50:0b:ed:84:22:9f:3d:73:64:fc:b7:fa:77:5b:c9:20: 6d:0e:f2:9d:2d:b6:c8:aa:54:1c:d5:fb:8e:78:17:ca:51:eb: 40:15:1e:fc:d7:89:a6:5e:bb:4c:54:14:11:eb:f8:4c:7e:a6: 15:2b:dc:ef:1f:31:88:1d:c9:b5:0a:c2:81:78:98:5c:78:5e: 29:2a:fc:c5:e7:ac:b3:37:0e:9f:16:a5:74:cb:78:10:22:d1: 2b:0c:71:e3:9b:2b:ca:06:39:35:f6:7b:30:c3:05:b1:82:12: a9:94:a2:7a:ba:f9:8d:56:6d:08:7b:4b:ea:a7:2f:8f:0f:5f: 47:b9:00:67:f3:16:ee:33:ef:44:4c:86:44:ca:cf:9a:5a:36: 10:33:33:18:0d:01:34:94:cb:0d:1f:1c:aa:a0:10:d6:7e:2a: b4:86:4f:81:5c:a0:a3:1a:0b:24:78:ce:93:79:43:34:9f:cb: 27:1d:83:50:2b:61:5e:86:a6:69:85:02:3e:fb:bd:76:a8:0a: b4:7e:69:0c:a1:58:17:97:11:35:31:e4:fd:e0:59:10:5c:fb: 9a:0a:d1:ec:97:ca:50:fe:f5:88:9e:de:cf:5c:ec:35:f4:37: ad:03:eb:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERGRjIxMTAvBgNVBAUTKEY4M0RDM0EyNDZEMTIxNTFBQzg3QTc3MkNFQ0EwRURE MjE1Rjg2MkEwHhcNMjUwODIzMDUwNzIwWhcNMjUwODMwMDUwNzIwWjAYMRYwFAYD VQQDEw02OGE5NGM4OC0wZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0zASH+TtcVyoQKrU2MiC1gUSZnlWcH/JwJ6FXRxeg4WOvbrK5BMkp/Dlwbu xtmQhn+THKSceGFalvTQVyfbkQ8tvP21G8nc8u3GebHhqbsa1m119h5YFqakXza6 +jvvM54YD9O87y7R0hahRE7OG0zDwx4HeKn+GGnojdRnuqThArjhzO5v/k7/PXg7 Hh54HJbHHfvVZf3mO42n7CIjJW2Z3SaCs7VYKFHdARcc6/w885wo06luAWXTgPhY Vbo5JErrDn/QvuMBWmtus2D1CtpUn00lkfqfb8JzC8Z9GFn5OettVuGD2b+DwJlW jCQh5oe66k0FutXlUh8JisTvMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK3yzjt5 10i2JDEPTk+mfbHcRBiwMB8GA1UdIwQYMBaAFPg9w6JG0SFRrIencs7KDt0hX4Yq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEREZGMi9DOUFGMjkzNEU1 QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklWR3NoNmR5enNvTzNTRmZo aW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1EM0Rva2JSSVZHc2g2ZHl6c29PM1NGZmhpby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE REZGMi9DOUFGMjkzNEU1QzExMUVFOThEQkU5NjJDNEY5QUUwMi8tRDNEb2tiUklW R3NoNmR5enNvTzNTRmZoaW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsgwH2Zo8fzizyu6zUognJKq8PilAL7YQinz1zZPy3+ndbySBtDvKd LbbIqlQc1fuOeBfKUetAFR7814mmXrtMVBQR6/hMfqYVK9zvHzGIHcm1CsKBeJhc eF4pKvzF56yzNw6fFqV0y3gQItErDHHjmyvKBjk19nswwwWxghKplKJ6uvmNVm0I e0vqpy+PD19HuQBn8xbuM+9ETIZEys+aWjYQMzMYDQE0lMsNHxyqoBDWfiq0hk+B XKCjGgskeM6TeUM0n8snHYNQK2FehqZphQI++712qAq0fmkMoVgXlxE1MeT94FkQ XPuaCtHsl8pQ/vWInt7PXOw19DetA+u0 -----END CERTIFICATE-----Generated at Sat Aug 23 19:32:14 2025 by rpki-client