$ rpki-client -vvf rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft File: DtUqdvMcJCF0oq0ZSByVcDty4jY.mft (raw, json) Hash identifier: QAJnVBkS9uXk0b4hT3eP6ytSLE6lwysAiu+qP1/XOEE= Subject key identifier: 1D:D9:84:47:8C:3C:67:B0:D2:AF:C5:D7:25:27:01:7C:D8:F5:E4:3F Authority key identifier: 0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 Certificate issuer: /CN=A91E33D7/serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Certificate serial: 0E2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft Manifest number: 0E25 Signing time: Fri 22 Aug 2025 17:55:30 +0000 Manifest this update: Fri 22 Aug 2025 17:55:30 +0000 Manifest next update: Fri 29 Aug 2025 17:55:30 +0000 Files and hashes: 1: DtUqdvMcJCF0oq0ZSByVcDty4jY.crl (hash: NCqkNyEJbSDcUNpa9l7Z1bp8ybARLC4ErirHNJNiR2I=) 2: C26576D4F4ED11E9ACC51713C4F9AE02.roa (hash: leeMqNjzFzLxyR/PuwyeZTmIKl73aTot0VdgEtIi1fo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3630 (0xe2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E33D7, serialNumber=0ED52A76F31C242174A2AD19481C95703B72E236 Validity Not Before: Aug 22 17:55:30 2025 GMT Not After : Aug 29 17:55:30 2025 GMT Subject: CN=68a8af12-ab2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:03:ec:a7:8a:ab:15:e5:82:ff:8e:b9:0f:ed: 3d:20:40:38:c4:7e:48:cf:8c:5c:5b:82:25:aa:19: ac:4d:7e:70:cb:e2:1e:d5:2b:ea:3f:7c:31:87:78: 43:c4:59:03:9d:c8:e4:67:06:66:61:1e:6c:31:38: e1:07:a7:10:3d:61:fe:ce:ea:89:83:30:bf:fa:07: 76:23:cf:89:e0:6e:32:69:30:1e:86:85:f1:81:34: 59:57:e0:06:af:34:e0:69:06:b2:ab:1b:0e:76:52: 5a:5d:90:59:8a:90:d3:aa:80:46:4e:3d:b1:c8:37: 2e:b4:9d:d6:99:f3:54:6a:97:30:39:16:b6:e2:cf: b2:e3:21:fa:17:0d:6d:ad:63:3b:65:e4:55:d5:fe: dd:a3:65:89:29:df:42:22:f0:03:04:d4:3d:04:90: e1:32:28:0f:37:7e:36:30:1e:6d:0a:a4:ed:49:b0: fb:10:12:ae:a3:7a:47:cc:82:b3:71:a1:32:0b:ef: b2:e6:01:24:1c:8f:0f:a6:39:01:b3:a8:2e:40:d7: 1b:ad:d9:2d:e4:1c:0d:33:c3:a1:64:06:33:ec:8b: 87:65:f4:6d:88:cb:e5:54:ba:a4:ee:25:7e:17:03: 16:60:ba:63:41:59:c2:be:41:ee:fd:84:93:cf:49: 5c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:D9:84:47:8C:3C:67:B0:D2:AF:C5:D7:25:27:01:7C:D8:F5:E4:3F X509v3 Authority Key Identifier: keyid:0E:D5:2A:76:F3:1C:24:21:74:A2:AD:19:48:1C:95:70:3B:72:E2:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DtUqdvMcJCF0oq0ZSByVcDty4jY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E33D7/DC7D8864AEB011E98D08E13CC4F9AE02/DtUqdvMcJCF0oq0ZSByVcDty4jY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:19:02:72:0c:e2:bb:86:7e:8a:48:c9:29:cf:6d:ec:e4:d3: a1:94:4f:21:a9:0f:e0:4d:18:8a:24:27:f2:ae:78:f9:46:6b: b8:05:2e:3b:6c:78:f8:f0:f6:a2:26:5b:8e:4d:c8:d5:be:c9: e4:6f:66:c9:40:9b:31:3d:81:ca:6b:ec:73:73:4e:9c:5d:c9: ab:8c:70:46:2c:08:de:ad:be:c1:31:0a:6b:f0:79:00:50:2b: 1a:19:38:2e:7b:14:a3:27:d8:6c:63:db:25:96:a6:8f:a0:44: 3f:4f:30:3e:e0:f5:21:f7:63:1d:c9:47:bc:0e:f8:0a:08:3f: 75:25:b4:05:b0:9b:33:39:6b:ef:0f:1e:a8:52:e8:a2:1c:e1: af:75:20:8b:c8:5b:86:a1:3f:c9:c0:53:49:e2:82:93:4f:a8: f1:4d:fb:c8:09:4c:d7:3b:c1:07:e3:9d:c8:ab:36:fa:9d:41: 61:71:f9:06:a7:e5:1c:aa:c0:20:14:6b:0b:a3:20:a7:d6:9c: f3:80:c2:d2:22:b4:df:28:71:9c:29:81:7a:b3:40:e7:6f:55: f9:d9:d2:b6:36:01:ab:7b:52:1e:ec:a3:b0:f3:d3:98:2d:23: 04:35:29:ac:11:ee:69:0c:ee:08:75:43:26:27:28:3e:6a:56: 40:d3:8f:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTMzRDcxMTAvBgNVBAUTKDBFRDUyQTc2RjMxQzI0MjE3NEEyQUQxOTQ4MUM5NTcw M0I3MkUyMzYwHhcNMjUwODIyMTc1NTMwWhcNMjUwODI5MTc1NTMwWjAYMRYwFAYD VQQDEw02OGE4YWYxMi1hYjJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQPsp4qrFeWC/465D+09IEA4xH5Iz4xcW4IlqhmsTX5wy+Ie1SvqP3wxh3hD xFkDncjkZwZmYR5sMTjhB6cQPWH+zuqJgzC/+gd2I8+J4G4yaTAehoXxgTRZV+AG rzTgaQayqxsOdlJaXZBZipDTqoBGTj2xyDcutJ3WmfNUapcwORa24s+y4yH6Fw1t rWM7ZeRV1f7do2WJKd9CIvADBNQ9BJDhMigPN342MB5tCqTtSbD7EBKuo3pHzIKz caEyC++y5gEkHI8PpjkBs6guQNcbrdkt5BwNM8OhZAYz7IuHZfRtiMvlVLqk7iV+ FwMWYLpjQVnCvkHu/YSTz0lcuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB3ZhEeM PGew0q/F1yUnAXzY9eQ/MB8GA1UdIwQYMBaAFA7VKnbzHCQhdKKtGUgclXA7cuI2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzNENy9EQzdEODg2NEFF QjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pDRjBvcTBaU0J5VmNEdHk0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R0VXFkdk1jSkNGMG9xMFpTQnlWY0R0eTRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzNENy9EQzdEODg2NEFFQjAxMUU5OEQwOEUxM0NDNEY5QUUwMi9EdFVxZHZNY0pD RjBvcTBaU0J5VmNEdHk0alkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGGQJyDOK7hn6KSMkpz23s5NOhlE8hqQ/gTRiKJCfyrnj5Rmu4BS47 bHj48PaiJluOTcjVvsnkb2bJQJsxPYHKa+xzc06cXcmrjHBGLAjerb7BMQpr8HkA UCsaGTguexSjJ9hsY9sllqaPoEQ/TzA+4PUh92MdyUe8DvgKCD91JbQFsJszOWvv Dx6oUuiiHOGvdSCLyFuGoT/JwFNJ4oKTT6jxTfvICUzXO8EH453Iqzb6nUFhcfkG p+UcqsAgFGsLoyCn1pzzgMLSIrTfKHGcKYF6s0Dnb1X52dK2NgGre1Ie7KOw89OY LSMENSmsEe5pDO4IdUMmJyg+alZA049s -----END CERTIFICATE-----Generated at Sat Aug 23 22:38:01 2025 by rpki-client