$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft File: dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft (raw, json) Hash identifier: RQQwsvNs6HoYyJMgf+2sFPGyKQgMJ58zjt6L3hd3iBo= Subject key identifier: F4:8A:A4:E7:B5:28:46:D7:49:F4:BB:86:4F:39:31:F6:39:5D:4F:1D Authority key identifier: 75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED Certificate issuer: /CN=A91E85C5/serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Certificate serial: 0417 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft Manifest number: 0411 Signing time: Sat 23 Aug 2025 00:37:29 +0000 Manifest this update: Sat 23 Aug 2025 00:37:28 +0000 Manifest next update: Sat 30 Aug 2025 00:37:28 +0000 Files and hashes: 1: dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl (hash: spJzIZ9kuYW2rWK4hxCcS4lWgHIn8AXWF6yQjGTjH5g=) 2: 14AD3D427E9D11EC914D4A6DC4F9AE02.roa (hash: iIiLthCmbedJRo28SgXjSnyh36vN7rpzHjXfoOnGfcE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:37:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1047 (0x417) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85C5, serialNumber=759A6E03F0CE7D7C2DDA8048FBA8133ECC663EED Validity Not Before: Aug 23 00:37:28 2025 GMT Not After : Aug 30 00:37:28 2025 GMT Subject: CN=68a90d49-cc9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e5:20:0d:a3:e0:1a:87:2b:4a:67:52:0b:23: 80:79:cc:ac:4e:72:61:64:25:d1:d6:5f:b9:f1:88: 00:32:be:5d:27:a0:7c:47:53:74:53:f2:bc:74:ea: 17:54:b5:2f:32:8f:cc:60:07:04:76:37:7d:87:8d: 35:86:c3:dc:5e:01:ba:d3:14:1d:14:5c:ca:d1:8c: 3d:c0:ef:e0:99:34:16:6a:bf:d6:0e:aa:a9:b8:d2: 81:67:f4:b9:34:16:a1:35:2a:b9:1e:f9:47:49:50: 81:69:7b:34:36:86:ce:69:02:8c:fe:30:56:52:a6: a5:a0:13:9d:81:bf:5c:78:62:af:dd:e4:0d:e6:f6: e9:3f:a6:ef:9c:1b:40:26:a5:a7:77:c1:f5:59:4f: 24:b3:6a:a3:8c:7f:09:f0:f3:fb:2b:4a:49:c4:25: de:b6:ab:02:4c:f2:b1:bb:f7:69:f6:9a:f2:51:b4: 7e:89:37:2b:97:64:74:f5:7f:0e:e7:56:29:5a:59: 30:d6:e6:2b:62:54:74:c3:91:5a:de:f8:5d:67:9e: a0:0c:6d:e8:4c:25:d2:95:f2:96:6a:4c:3b:66:f9: e0:15:b2:75:10:86:84:99:a5:a4:54:94:46:c1:13: 99:95:79:74:7d:dd:f1:16:c7:bc:10:dd:3e:23:2f: 71:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:8A:A4:E7:B5:28:46:D7:49:F4:BB:86:4F:39:31:F6:39:5D:4F:1D X509v3 Authority Key Identifier: keyid:75:9A:6E:03:F0:CE:7D:7C:2D:DA:80:48:FB:A8:13:3E:CC:66:3E:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dZpuA_DOfXwt2oBI-6gTPsxmPu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85C5/893C64F67E9A11ECA5AD676BC4F9AE02/dZpuA_DOfXwt2oBI-6gTPsxmPu0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:0f:92:8e:45:d0:d1:01:91:09:59:a7:df:cb:76:d6:6b:8f: 6b:ca:e6:a8:e5:ba:f9:fd:6c:2d:f4:73:89:c7:7c:0e:5f:2e: db:ad:d1:5f:3d:b9:bf:78:06:53:12:b7:a4:2d:30:62:f2:ab: 15:01:6c:fa:65:a8:6b:bb:1b:70:a5:f9:ae:3c:28:e1:35:c2: ec:02:23:b3:10:83:8f:90:2f:9a:0a:a1:2d:35:53:95:1e:7e: cb:d9:a8:3d:f7:2a:2c:03:75:58:66:29:1c:03:19:91:0f:57: 7d:92:0c:c4:05:32:69:59:3c:7c:c7:a9:c0:17:ea:2f:3d:d1: 8b:e6:09:c8:19:86:da:a9:7b:e5:6a:49:7c:c5:87:4b:43:a2: 04:17:0c:6c:55:25:98:28:4f:c6:22:8f:7d:85:eb:0c:8b:27: 9f:f5:cb:4a:d8:b2:a1:14:a4:0e:fa:d8:e0:9b:c6:ae:7b:64: 7c:e8:5a:11:09:33:7f:c0:59:04:d2:79:7c:d5:da:c0:4d:47: c6:1e:b5:aa:d0:a4:ca:92:95:d1:19:b9:78:b9:58:13:95:ba: 2a:e1:87:9e:f7:bf:97:74:85:8c:a5:6a:ed:3c:ba:9f:78:a9: 1d:bf:fa:6a:f6:44:ca:97:73:a8:bb:1e:e4:4e:34:ba:6d:81: dd:9a:0f:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg1QzUxMTAvBgNVBAUTKDc1OUE2RTAzRjBDRTdEN0MyRERBODA0OEZCQTgxMzNF Q0M2NjNFRUQwHhcNMjUwODIzMDAzNzI4WhcNMjUwODMwMDAzNzI4WjAYMRYwFAYD VQQDEw02OGE5MGQ0OS1jYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuUgDaPgGocrSmdSCyOAecysTnJhZCXR1l+58YgAMr5dJ6B8R1N0U/K8dOoX VLUvMo/MYAcEdjd9h401hsPcXgG60xQdFFzK0Yw9wO/gmTQWar/WDqqpuNKBZ/S5 NBahNSq5HvlHSVCBaXs0NobOaQKM/jBWUqaloBOdgb9ceGKv3eQN5vbpP6bvnBtA JqWnd8H1WU8ks2qjjH8J8PP7K0pJxCXetqsCTPKxu/dp9pryUbR+iTcrl2R09X8O 51YpWlkw1uYrYlR0w5Fa3vhdZ56gDG3oTCXSlfKWakw7ZvngFbJ1EIaEmaWkVJRG wROZlXl0fd3xFse8EN0+Iy9xmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSKpOe1 KEbXSfS7hk85MfY5XU8dMB8GA1UdIwQYMBaAFHWabgPwzn18LdqASPuoEz7MZj7t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODVDNS84OTNDNjRGNjdF OUExMUVDQTVBRDY3NkJDNEY5QUUwMi9kWnB1QV9ET2ZYd3Qyb0JJLTZnVFBzeG1Q dTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RacHVBX0RPZlh3dDJvQkktNmdUUHN4bVB1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVDNS84OTNDNjRGNjdFOUExMUVDQTVBRDY3NkJDNEY5QUUwMi9kWnB1QV9ET2ZY d3Qyb0JJLTZnVFBzeG1QdTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7D5KORdDRAZEJWaffy3bWa49ryuao5br5/Wwt9HOJx3wOXy7brdFf Pbm/eAZTErekLTBi8qsVAWz6ZahruxtwpfmuPCjhNcLsAiOzEIOPkC+aCqEtNVOV Hn7L2ag99yosA3VYZikcAxmRD1d9kgzEBTJpWTx8x6nAF+ovPdGL5gnIGYbaqXvl akl8xYdLQ6IEFwxsVSWYKE/GIo99hesMiyef9ctK2LKhFKQO+tjgm8aue2R86FoR CTN/wFkE0nl81drATUfGHrWq0KTKkpXRGbl4uVgTlboq4Yee97+XdIWMpWrtPLqf eKkdv/pq9kTKl3Ooux7kTjS6bYHdmg8+ -----END CERTIFICATE-----Generated at Sat Aug 23 17:10:50 2025 by rpki-client