$ rpki-client -vvf rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft File: DlgFGyS9WtsbzJ844tPnN0to23w.mft (raw, json) Hash identifier: 3oJkoavQiTHB7zq96GFVst7CHKRslyealO5iSdQX60I= Subject key identifier: 6A:AA:C8:B7:8A:95:21:0B:D9:C9:1D:9E:34:B3:8D:C0:2F:4F:CE:27 Authority key identifier: 0E:58:05:1B:24:BD:5A:DB:1B:CC:9F:38:E2:D3:E7:37:4B:68:DB:7C Certificate issuer: /CN=A91847B9/serialNumber=0E58051B24BD5ADB1BCC9F38E2D3E7374B68DB7C Certificate serial: 01EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlgFGyS9WtsbzJ844tPnN0to23w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft Manifest number: 01E2 Signing time: Wed 13 Aug 2025 03:11:24 +0000 Manifest this update: Wed 13 Aug 2025 03:11:23 +0000 Manifest next update: Wed 20 Aug 2025 03:11:23 +0000 Files and hashes: 1: DlgFGyS9WtsbzJ844tPnN0to23w.crl (hash: sm8JnB0hVCHaqh9CSUYGY33hwu+nVgEJLGVHkFNB6zM=) 2: B08DD41EE73E11EDB9372A29C4F9AE02.roa (hash: 0gXG6s1XCg7u3bAeXFvctWsk7n6C+d/n5aBUKeABS1w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.crl rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlgFGyS9WtsbzJ844tPnN0to23w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 491 (0x1eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847B9, serialNumber=0E58051B24BD5ADB1BCC9F38E2D3E7374B68DB7C Validity Not Before: Aug 13 03:11:23 2025 GMT Not After : Aug 20 03:11:23 2025 GMT Subject: CN=689c025b-ef21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f4:9f:24:ed:fb:56:fd:57:07:10:9a:3b:77: f6:f8:eb:26:e0:db:74:36:ae:d5:5d:d1:a1:f6:26: ca:39:ba:38:e2:ff:fc:38:3d:dd:08:14:20:54:71: 30:b0:90:66:93:08:59:ec:b9:7e:1a:cb:a1:5d:df: 1c:14:6d:2d:e5:2d:10:80:75:24:d9:41:23:80:64: 7d:fd:3d:92:85:74:b8:b6:47:aa:db:3e:43:bf:4c: c7:68:1f:44:3c:2f:a2:e4:ac:b8:a3:39:f9:d4:4e: 88:01:05:e9:ea:68:b0:8a:09:4a:a1:7d:99:e0:e6: fd:c2:28:1e:77:1f:21:22:f1:92:de:41:b8:7e:1a: 71:e9:91:79:d9:39:89:47:52:5f:82:ab:02:31:95: 18:fd:f6:0a:8e:59:5f:40:91:3b:4c:63:e3:66:26: 4b:66:8d:cc:d3:5e:e9:c6:ec:37:48:c4:3b:79:c9: f0:35:74:c1:ff:4d:95:f4:74:6d:5c:40:ed:ca:2f: cf:22:d7:4f:d1:cf:d9:84:66:08:c3:4f:9e:fa:3f: 24:27:cc:ca:c3:23:b3:c9:ff:59:05:c0:62:dc:80: 74:a1:db:37:c6:af:45:ea:ad:36:6b:f3:77:8b:47: 50:3a:b1:6e:d9:e3:a5:c1:d3:e5:24:cf:76:8a:37: b1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AA:C8:B7:8A:95:21:0B:D9:C9:1D:9E:34:B3:8D:C0:2F:4F:CE:27 X509v3 Authority Key Identifier: keyid:0E:58:05:1B:24:BD:5A:DB:1B:CC:9F:38:E2:D3:E7:37:4B:68:DB:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlgFGyS9WtsbzJ844tPnN0to23w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847B9/FC558882A14411ED95704386C4F9AE02/DlgFGyS9WtsbzJ844tPnN0to23w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:ce:4b:70:b5:61:a8:11:4b:78:6f:3b:e9:09:6f:03:ce:a6: b8:6d:f1:19:c8:5e:63:be:e0:a4:ff:89:5f:7a:56:2a:35:b0: 07:b7:37:67:56:51:37:09:ce:cb:51:83:d2:17:87:9d:b5:5f: 4c:13:61:72:32:fc:23:87:42:37:6c:99:f1:8f:33:83:cd:a9: fd:14:4e:e0:eb:6a:98:11:03:88:0c:6b:f8:cd:4c:6d:a6:34: cd:4b:37:5a:f0:b4:c9:87:a6:28:47:eb:e8:fc:30:72:f2:67: bd:8e:c2:77:bd:81:20:eb:98:c9:0f:d8:8a:48:ab:11:53:58: 64:14:c4:a8:32:94:ae:47:fb:66:fd:bf:e6:c4:4b:5c:b2:4e: 0c:6c:5f:1a:b4:3d:4d:96:e5:5e:38:45:23:f7:51:3f:89:47: 72:1d:9b:53:61:57:e6:8a:6f:79:ed:36:05:c9:8b:ff:f9:78: d4:3a:fc:50:e0:5a:ee:97:57:18:21:01:98:3e:b6:69:ea:52: 55:1b:6f:dd:e5:f1:31:e2:38:87:10:c7:a2:00:84:d0:98:69: 80:24:44:da:5f:c1:8d:59:8e:45:4e:23:e0:3d:5f:8f:c9:e3: e1:a2:71:e3:f6:c8:16:4c:fd:0e:5c:70:30:8e:aa:f0:88:96: 4a:61:cf:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QjkxMTAvBgNVBAUTKDBFNTgwNTFCMjRCRDVBREIxQkNDOUYzOEUyRDNFNzM3 NEI2OERCN0MwHhcNMjUwODEzMDMxMTIzWhcNMjUwODIwMDMxMTIzWjAYMRYwFAYD VQQDEw02ODljMDI1Yi1lZjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/SfJO37Vv1XBxCaO3f2+Osm4Nt0Nq7VXdGh9ibKObo44v/8OD3dCBQgVHEw sJBmkwhZ7Ll+GsuhXd8cFG0t5S0QgHUk2UEjgGR9/T2ShXS4tkeq2z5Dv0zHaB9E PC+i5Ky4ozn51E6IAQXp6miwiglKoX2Z4Ob9wigedx8hIvGS3kG4fhpx6ZF52TmJ R1JfgqsCMZUY/fYKjllfQJE7TGPjZiZLZo3M017pxuw3SMQ7ecnwNXTB/02V9HRt XEDtyi/PItdP0c/ZhGYIw0+e+j8kJ8zKwyOzyf9ZBcBi3IB0ods3xq9F6q02a/N3 i0dQOrFu2eOlwdPlJM92ijexfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGqqyLeK lSEL2ckdnjSzjcAvT84nMB8GA1UdIwQYMBaAFA5YBRskvVrbG8yfOOLT5zdLaNt8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdCOS9GQzU1ODg4MkEx NDQxMUVEOTU3MDQzODZDNEY5QUUwMi9EbGdGR3lTOVd0c2J6Sjg0NHRQbk4wdG8y M3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsZ0ZHeVM5V3RzYnpKODQ0dFBuTjB0bzIzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdCOS9GQzU1ODg4MkExNDQxMUVEOTU3MDQzODZDNEY5QUUwMi9EbGdGR3lTOVd0 c2J6Sjg0NHRQbk4wdG8yM3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXzktwtWGoEUt4bzvpCW8Dzqa4bfEZyF5jvuCk/4lfelYqNbAHtzdn VlE3Cc7LUYPSF4edtV9ME2FyMvwjh0I3bJnxjzODzan9FE7g62qYEQOIDGv4zUxt pjTNSzda8LTJh6YoR+vo/DBy8me9jsJ3vYEg65jJD9iKSKsRU1hkFMSoMpSuR/tm /b/mxEtcsk4MbF8atD1NluVeOEUj91E/iUdyHZtTYVfmim957TYFyYv/+XjUOvxQ 4Frul1cYIQGYPrZp6lJVG2/d5fEx4jiHEMeiAITQmGmAJETaX8GNWY5FTiPgPV+P yePhonHj9sgWTP0OXHAwjqrwiJZKYc+u -----END CERTIFICATE-----Generated at Wed Aug 13 04:28:40 2025 by rpki-client