$ rpki-client -vvf rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft File: D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft (raw, json) Hash identifier: aptCl5yzS4XpOeisqtuyo2Rp+h+/fJ7j7Nv+Jgq0K/s= Subject key identifier: 1F:27:7A:AF:89:FB:5B:40:9C:47:EB:7A:25:37:68:EC:7D:59:86:F1 Authority key identifier: 0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 Certificate issuer: /CN=A911E0B4/serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Certificate serial: 86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft Manifest number: 83 Signing time: Sat 09 Aug 2025 07:08:22 +0000 Manifest this update: Sat 09 Aug 2025 07:08:22 +0000 Manifest next update: Sat 16 Aug 2025 07:08:22 +0000 Files and hashes: 1: D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl (hash: Qm58Oc+ExO7sWJhdSH6i/gqoQEZ4sNO6o3Dtj0+eFsg=) 2: 5AF3ECBEAFBA11EF91955453C4F9AE02.roa (hash: x22vmPwJWZ5KhIsY5PtxJtvF9T7oNt50WfxUCDRwJlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E0B4, serialNumber=0FD4437521DB5C0BC99E45B59754FF7B671F86F3 Validity Not Before: Aug 9 07:08:22 2025 GMT Not After : Aug 16 07:08:22 2025 GMT Subject: CN=6896f3e6-7ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:61:c2:56:08:89:33:f9:6e:89:35:90:a4: 76:09:43:e1:f4:e2:50:48:14:f2:59:d7:c7:32:42: 22:d4:ad:de:0d:11:15:ea:85:84:31:5a:cd:e2:75: ab:6a:8e:8b:04:cd:29:5a:a6:59:d8:c7:8f:f0:c1: 3c:6d:e8:13:ba:97:27:93:39:db:5f:15:d6:63:dc: b0:6f:75:88:65:e3:f6:18:39:cd:5b:6c:8e:bd:29: 71:26:d6:f9:5b:15:4d:62:ac:29:90:d6:51:32:e3: ba:14:4e:bf:1f:f6:e5:d3:39:75:c3:7c:72:68:11: c8:a7:b3:3c:d9:e6:d9:88:2a:b7:6f:77:d6:be:21: 93:d5:46:61:d0:23:e0:d3:55:5c:61:ff:0f:51:05: 56:e4:e5:48:25:fd:36:d0:67:e8:f1:23:74:3d:ce: ae:16:9b:af:0e:61:40:5b:14:b5:19:43:11:90:25: 2b:f0:4b:ce:9f:55:30:c3:5e:60:d6:73:10:8a:33: 8d:23:23:fa:48:ca:2c:7e:6a:2b:23:3d:b8:24:53: 8f:f0:72:f1:c3:7e:3e:00:fc:bb:b3:d5:db:a0:2d: 82:1c:7d:53:3e:fd:33:63:d8:a4:3d:64:9b:05:1b: d2:55:b4:53:fd:00:1b:0d:d8:df:a9:80:91:a1:96: 4a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:27:7A:AF:89:FB:5B:40:9C:47:EB:7A:25:37:68:EC:7D:59:86:F1 X509v3 Authority Key Identifier: keyid:0F:D4:43:75:21:DB:5C:0B:C9:9E:45:B5:97:54:FF:7B:67:1F:86:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D9RDdSHbXAvJnkW1l1T_e2cfhvM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E0B4/E96489AEAF3811EFA20DD013C4F9AE02/D9RDdSHbXAvJnkW1l1T_e2cfhvM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:16:49:82:ab:93:c3:87:dd:00:39:24:e4:c6:03:36:89:4b: f6:4c:27:ca:2d:cb:db:a8:ce:8e:ef:fe:ba:3e:c5:6b:22:51: f4:90:91:9d:1d:f2:9e:db:61:44:ed:38:09:79:31:79:5c:57: 33:9d:4f:80:f0:f7:28:2f:fd:ca:e3:68:aa:de:4b:0f:e5:85: fb:81:e0:0c:f3:2f:e5:d8:60:fd:2f:a7:5e:f5:4d:ef:4a:d1: af:1c:fc:f0:87:29:05:b8:4f:fc:0d:0b:e8:81:0f:0f:a5:50: cf:89:29:b5:c7:82:91:ce:5d:bb:e3:b5:b4:2e:ba:fb:57:7e: df:16:d0:ee:7e:c6:98:da:82:af:df:b7:d8:c7:44:1a:41:12: d5:7e:4a:32:9f:d4:e0:25:07:ff:1c:f6:dc:dd:fd:52:47:06: 7d:9f:6b:c8:89:04:b8:6a:c8:23:f3:7e:82:72:f0:81:2a:33: ec:49:bc:d6:45:14:66:52:56:41:1c:b7:5a:37:bf:f0:3f:8b: 92:a6:c6:a5:05:57:e8:9e:77:ba:85:ba:82:3f:a6:b1:37:e3: 81:74:8f:ec:15:3e:48:9a:2e:9c:a9:d5:ec:bb:4d:1d:81:5a: 63:c0:48:09:fd:12:09:83:49:92:2f:22:93:2e:a3:e4:45:99: 0d:83:4e:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUUwQjQxMTAvBgNVBAUTKDBGRDQ0Mzc1MjFEQjVDMEJDOTlFNDVCNTk3NTRGRjdC NjcxRjg2RjMwHhcNMjUwODA5MDcwODIyWhcNMjUwODE2MDcwODIyWjAYMRYwFAYD VQQDEw02ODk2ZjNlNi03ZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJhhwlYIiTP5bok1kKR2CUPh9OJQSBTyWdfHMkIi1K3eDREV6oWEMVrN4nWr ao6LBM0pWqZZ2MeP8ME8begTupcnkznbXxXWY9ywb3WIZeP2GDnNW2yOvSlxJtb5 WxVNYqwpkNZRMuO6FE6/H/bl0zl1w3xyaBHIp7M82ebZiCq3b3fWviGT1UZh0CPg 01VcYf8PUQVW5OVIJf020Gfo8SN0Pc6uFpuvDmFAWxS1GUMRkCUr8EvOn1Uww15g 1nMQijONIyP6SMosfmorIz24JFOP8HLxw34+APy7s9XboC2CHH1TPv0zY9ikPWSb BRvSVbRT/QAbDdjfqYCRoZZK6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8neq+J +1tAnEfreiU3aOx9WYbxMB8GA1UdIwQYMBaAFA/UQ3Uh21wLyZ5FtZdU/3tnH4bz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTBCNC9FOTY0ODlBRUFG MzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhBdkpua1cxbDFUX2UyY2Zo dk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Q5UkRkU0hiWEF2Sm5rVzFsMVRfZTJjZmh2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTBCNC9FOTY0ODlBRUFGMzgxMUVGQTIwREQwMTNDNEY5QUUwMi9EOVJEZFNIYlhB dkpua1cxbDFUX2UyY2Zodk0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrFkmCq5PDh90AOSTkxgM2iUv2TCfKLcvbqM6O7/66PsVrIlH0kJGd HfKe22FE7TgJeTF5XFcznU+A8PcoL/3K42iq3ksP5YX7geAM8y/l2GD9L6de9U3v StGvHPzwhykFuE/8DQvogQ8PpVDPiSm1x4KRzl2747W0Lrr7V37fFtDufsaY2oKv 37fYx0QaQRLVfkoyn9TgJQf/HPbc3f1SRwZ9n2vIiQS4asgj836CcvCBKjPsSbzW RRRmUlZBHLdaN7/wP4uSpsalBVfonne6hbqCP6axN+OBdI/sFT5Imi6cqdXsu00d gVpjwEgJ/RIJg0mSLyKTLqPkRZkNg06L -----END CERTIFICATE-----Generated at Sun Aug 10 20:03:42 2025 by rpki-client