$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft File: DKQH8N1TBy-ooGCBaRkpbmV31oI.mft (raw, json) Hash identifier: F/njJ//sSMpLA6+mHfNwU5SlY0MC/T3h1aqwF2coXpg= Subject key identifier: 73:4F:1B:9A:59:D5:6B:86:07:4A:37:38:72:96:D8:BF:58:D0:75:65 Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0C73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft Manifest number: 0C66 Signing time: Fri 22 Aug 2025 18:35:21 +0000 Manifest this update: Fri 22 Aug 2025 18:35:20 +0000 Manifest next update: Fri 29 Aug 2025 18:35:20 +0000 Files and hashes: 1: DKQH8N1TBy-ooGCBaRkpbmV31oI.crl (hash: 5+YjIpqwdVs20pznJNXvixIShotP4uHEHWaWHSOSZaE=) 2: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (hash: YiyWCIvNLdPDV222FaDBu9f6FoqEAO4drbd6AsmezW0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:35:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE, serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: Aug 22 18:35:20 2025 GMT Not After : Aug 29 18:35:20 2025 GMT Subject: CN=68a8b869-6091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:25:d4:bd:86:9b:a4:a3:91:80:1a:f2:9e:36: b9:fd:9f:47:44:40:25:fe:c8:4c:38:61:82:19:6d: f9:78:21:90:4a:c4:c7:6f:5d:9f:b9:7a:93:06:54: 67:b5:43:ad:f9:27:32:2f:cf:01:a7:5f:fc:c6:ef: b9:1c:f0:36:08:24:ce:21:2e:28:83:f9:eb:b6:cc: 2e:bf:17:f6:01:b0:ea:c4:e0:62:5c:68:70:0e:36: 39:3d:b8:0b:45:38:e4:ea:04:ac:13:4a:5a:13:84: 1a:9b:07:c0:ac:2b:0a:30:31:e2:8e:4a:d2:e9:a4: 62:6c:5a:e0:25:d1:90:41:5d:3f:6b:8f:67:ac:3f: 11:07:db:76:0e:71:31:4d:e9:cf:1a:b0:e9:2a:c2: d8:ff:cc:aa:1e:81:2c:cc:3e:51:2d:e4:5b:90:e0: 38:92:38:9f:20:c2:5c:b3:63:b3:2e:bd:07:2f:74: a8:d6:90:42:39:e5:c3:0d:39:1d:1f:b8:10:37:11: 90:f1:d3:cc:d7:de:bb:3b:4a:4a:e0:67:37:8d:a8: 37:38:30:61:c4:59:07:c5:a5:ce:fc:41:d9:2f:e2: 16:81:48:0a:68:eb:ab:ef:a5:69:81:ab:eb:f9:25: 26:da:38:0a:ba:f2:d1:71:d4:b5:5f:b3:cb:e2:ac: 6d:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:4F:1B:9A:59:D5:6B:86:07:4A:37:38:72:96:D8:BF:58:D0:75:65 X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:b8:1d:02:08:2a:21:04:86:01:c7:8a:6b:65:94:fe:0c:fc: c4:29:74:6a:a4:b6:6b:e2:cc:63:89:4e:1a:c8:a1:2a:49:55: b5:db:79:e6:72:e0:6a:dc:3d:aa:76:4c:29:07:56:97:88:8d: 0d:8c:aa:f4:48:fe:35:74:44:00:bc:a6:6b:8b:b9:53:9c:ae: 54:b8:4c:53:0f:3f:0c:ff:a2:2f:72:d3:9f:b8:24:52:ea:d6: e2:92:ef:f0:49:bd:e4:5a:21:f7:d2:d6:9f:7c:8e:99:2c:0f: 8b:38:49:bb:14:3a:ed:23:a7:57:58:cf:f2:2b:7e:43:42:ed: 65:d8:26:11:32:33:00:6e:cd:3c:c9:fd:d9:55:9f:08:85:38: 7d:23:9b:42:11:33:2b:25:70:3f:0e:6b:6c:14:77:cf:73:b6: d5:aa:04:ca:da:b3:a4:5e:12:1c:f4:3d:22:8e:fa:56:80:ac: 4d:71:15:98:9e:54:24:96:2e:26:81:dc:61:ab:7d:9d:ff:fd: 7d:79:f6:40:f5:1a:c1:1e:00:24:b4:e8:92:e3:cc:93:12:68: b0:59:30:77:50:90:d5:d0:e3:95:35:7b:e4:b7:88:e2:55:cc: 7f:fc:6e:d8:14:10:28:f6:b6:19:94:1e:ba:05:71:18:4b:2a: 40:7c:0f:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjUwODIyMTgzNTIwWhcNMjUwODI5MTgzNTIwWjAYMRYwFAYD VQQDEw02OGE4Yjg2OS02MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iXUvYabpKORgBrynja5/Z9HREAl/shMOGGCGW35eCGQSsTHb12fuXqTBlRn tUOt+ScyL88Bp1/8xu+5HPA2CCTOIS4og/nrtswuvxf2AbDqxOBiXGhwDjY5PbgL RTjk6gSsE0paE4QamwfArCsKMDHijkrS6aRibFrgJdGQQV0/a49nrD8RB9t2DnEx TenPGrDpKsLY/8yqHoEszD5RLeRbkOA4kjifIMJcs2OzLr0HL3So1pBCOeXDDTkd H7gQNxGQ8dPM1967O0pK4Gc3jag3ODBhxFkHxaXO/EHZL+IWgUgKaOur76Vpgavr +SUm2jgKuvLRcdS1X7PL4qxt5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNPG5pZ 1WuGB0o3OHKW2L9Y0HVlMB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0JERS81MEE5MEUzNjA4MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5 LW9vR0NCYVJrcGJtVjMxb0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeuB0CCCohBIYBx4prZZT+DPzEKXRqpLZr4sxjiU4ayKEqSVW123nm cuBq3D2qdkwpB1aXiI0NjKr0SP41dEQAvKZri7lTnK5UuExTDz8M/6IvctOfuCRS 6tbiku/wSb3kWiH30taffI6ZLA+LOEm7FDrtI6dXWM/yK35DQu1l2CYRMjMAbs08 yf3ZVZ8IhTh9I5tCETMrJXA/DmtsFHfPc7bVqgTK2rOkXhIc9D0ijvpWgKxNcRWY nlQkli4mgdxhq32d//19efZA9RrBHgAktOiS48yTEmiwWTB3UJDV0OOVNXvkt4ji Vcx//G7YFBAo9rYZlB66BXEYSypAfA+D -----END CERTIFICATE-----Generated at Sat Aug 23 20:29:44 2025 by rpki-client