$ rpki-client -vvf rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft File: DWTFbg5hGlzB01iGdsV03iLVdQE.mft (raw, json) Hash identifier: MwztHwisJ8CUxdY+ESHyvYlznK8Hd1v2QHJ0zM8Z724= Subject key identifier: 1A:4F:3B:EF:00:A2:99:64:7D:FD:FD:FA:24:7B:7A:78:00:A9:BB:71 Authority key identifier: 0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 Certificate issuer: /CN=A9128D30/serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft Manifest number: 0134 Signing time: Mon 11 Aug 2025 04:41:16 +0000 Manifest this update: Mon 11 Aug 2025 04:41:15 +0000 Manifest next update: Mon 18 Aug 2025 04:41:15 +0000 Files and hashes: 1: DWTFbg5hGlzB01iGdsV03iLVdQE.crl (hash: 630avtzOwPs+C4Pwf39AHAsPXHFXby3lg3QrJjYSurc=) 2: 7D28601A9FD211EEAC56900AC4F9AE02.roa (hash: zd1TDezrr156c4EY6JDMzWwdgb+33lD768j6PJBUhL8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 04:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128D30, serialNumber=0D64C56E0E611A5CC1D3588676C574DE22D57501 Validity Not Before: Aug 11 04:41:15 2025 GMT Not After : Aug 18 04:41:15 2025 GMT Subject: CN=6899746c-4f8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3a:1c:3b:df:9a:ef:7a:c5:46:b6:ef:67:b0: 43:92:4c:2c:3e:ae:25:4a:de:d7:48:b3:41:19:9f: ac:f7:7f:a1:c8:da:5d:50:e6:f5:b5:e3:68:31:3b: 96:d7:bb:de:b6:21:46:0e:96:ed:1b:b7:01:2b:a2: 19:5c:ab:77:9b:85:fb:4b:a0:85:33:bf:5c:58:15: 10:6f:00:b5:4b:94:ef:8c:2d:83:68:a0:f3:95:5d: ed:53:c6:bd:ab:a7:1e:eb:6c:cd:04:6a:51:75:08: 2e:25:33:87:26:0b:20:52:b5:1f:a8:5a:c7:09:2a: e5:ad:35:91:cf:39:fa:e9:1b:4a:40:90:4f:8a:37: 32:7d:76:8d:ac:07:af:b6:3a:d1:65:07:6e:a2:2a: d1:ce:92:17:4b:7a:e5:98:88:09:c0:71:d5:88:3b: 04:2c:e4:67:16:5f:37:da:e8:15:89:95:6d:8e:fb: cb:9f:fa:b8:db:be:77:6b:58:cd:9d:18:68:1d:29: 32:27:c6:56:ab:44:34:5b:ff:8a:cc:c1:65:71:b2: 71:37:fe:bd:69:3b:3d:d7:54:85:ba:ca:ee:ce:2f: ae:b5:1b:f7:51:83:b9:66:24:52:a7:60:79:01:e6: ae:f7:e6:ff:67:c5:3a:4a:d2:4b:7a:a7:4b:1a:2f: a0:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:4F:3B:EF:00:A2:99:64:7D:FD:FD:FA:24:7B:7A:78:00:A9:BB:71 X509v3 Authority Key Identifier: keyid:0D:64:C5:6E:0E:61:1A:5C:C1:D3:58:86:76:C5:74:DE:22:D5:75:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWTFbg5hGlzB01iGdsV03iLVdQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128D30/CD80AAE69FD111EEAD704409C4F9AE02/DWTFbg5hGlzB01iGdsV03iLVdQE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:8a:a9:f7:9b:0e:f7:96:9c:70:8b:7a:c1:52:98:b1:2d:50: b1:5f:3a:4e:0d:1f:98:96:65:c5:40:1e:73:4b:1f:f1:1d:65: ef:1d:1a:94:35:d8:dd:e3:44:88:46:55:1f:28:a3:50:44:8d: 26:cb:33:83:8c:de:c6:0e:e5:1c:75:d6:c9:18:e8:c3:4c:af: 67:c3:64:1f:ab:1f:a9:fa:94:f3:f0:8c:34:38:26:ae:f3:19: b6:79:2b:ab:8e:2b:7c:8a:86:9e:15:bc:c5:4b:b9:1f:99:2d: d0:bc:85:51:03:a5:fe:27:56:51:bd:80:a6:c2:cb:74:f1:1c: c9:92:28:35:dc:3d:55:ce:db:65:c1:8b:0b:af:3d:c2:f5:90: df:73:19:d0:89:59:a9:d2:c6:7b:17:9d:85:06:ef:a5:9b:66: 90:cd:80:88:39:cb:f6:f2:ce:92:99:56:e3:3a:f9:66:30:30: c8:70:0d:79:fc:23:ba:47:2a:26:e6:18:ed:00:bb:57:ba:db: 24:5b:da:70:e7:b3:3f:2a:81:a1:21:66:38:ae:42:c8:0b:51: 1e:4e:c1:6a:91:df:a7:5a:b0:3c:8a:9c:b0:9a:9b:dc:96:a4: 2d:0d:66:df:1a:ce:7c:8e:a6:a5:31:11:02:98:f5:96:58:1f: 42:80:75:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhEMzAxMTAvBgNVBAUTKDBENjRDNTZFMEU2MTFBNUNDMUQzNTg4Njc2QzU3NERF MjJENTc1MDEwHhcNMjUwODExMDQ0MTE1WhcNMjUwODE4MDQ0MTE1WjAYMRYwFAYD VQQDEw02ODk5NzQ2Yy00ZjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjocO9+a73rFRrbvZ7BDkkwsPq4lSt7XSLNBGZ+s93+hyNpdUOb1teNoMTuW 17vetiFGDpbtG7cBK6IZXKt3m4X7S6CFM79cWBUQbwC1S5TvjC2DaKDzlV3tU8a9 q6ce62zNBGpRdQguJTOHJgsgUrUfqFrHCSrlrTWRzzn66RtKQJBPijcyfXaNrAev tjrRZQduoirRzpIXS3rlmIgJwHHViDsELORnFl832ugViZVtjvvLn/q42753a1jN nRhoHSkyJ8ZWq0Q0W/+KzMFlcbJxN/69aTs911SFusruzi+utRv3UYO5ZiRSp2B5 Aeau9+b/Z8U6StJLeqdLGi+gQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBpPO+8A oplkff39+iR7engAqbtxMB8GA1UdIwQYMBaAFA1kxW4OYRpcwdNYhnbFdN4i1XUB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEQzMC9DRDgwQUFFNjlG RDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEdsekIwMWlHZHNWMDNpTFZk UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXVEZiZzVoR2x6QjAxaUdkc1YwM2lMVmRRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OEQzMC9DRDgwQUFFNjlGRDExMUVFQUQ3MDQ0MDlDNEY5QUUwMi9EV1RGYmc1aEds ekIwMWlHZHNWMDNpTFZkUUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLiqn3mw73lpxwi3rBUpixLVCxXzpODR+YlmXFQB5zSx/xHWXvHRqU Ndjd40SIRlUfKKNQRI0myzODjN7GDuUcddbJGOjDTK9nw2Qfqx+p+pTz8Iw0OCau 8xm2eSurjit8ioaeFbzFS7kfmS3QvIVRA6X+J1ZRvYCmwst08RzJkig13D1Vzttl wYsLrz3C9ZDfcxnQiVmp0sZ7F52FBu+lm2aQzYCIOcv28s6SmVbjOvlmMDDIcA15 /CO6Ryom5hjtALtXutskW9pw57M/KoGhIWY4rkLIC1EeTsFqkd+nWrA8ipywmpvc lqQtDWbfGs58jqalMRECmPWWWB9CgHWu -----END CERTIFICATE-----Generated at Tue Aug 12 20:38:06 2025 by rpki-client