$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: xgWkAIiq7lv/KsornrdAVGphVPZgNCFzVVIGVw24mpU= Subject key identifier: 7E:E5:A0:1B:E9:EE:9B:CD:E7:42:4D:B6:D4:54:E7:BC:18:AB:01:04 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 34FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 34CC Signing time: Fri 08 Aug 2025 14:52:33 +0000 Manifest this update: Fri 08 Aug 2025 14:52:32 +0000 Manifest next update: Fri 15 Aug 2025 14:52:32 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: JDb4hUxK1nyDTMWPmRFE1hbKRwJBvyzGlQ6mI2Xf374=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13562 (0x34fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Aug 8 14:52:32 2025 GMT Not After : Aug 15 14:52:32 2025 GMT Subject: CN=68960f30-b70c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dd:47:6a:0f:70:78:5f:b3:33:26:88:12:38: 34:86:4b:93:11:63:39:61:b5:b9:2e:d8:59:ad:62: 1d:5b:f1:8d:82:6e:ec:b2:8c:21:3e:ea:9e:58:ca: 40:71:79:1b:d4:28:26:a1:35:9e:82:ad:50:e6:8c: 53:71:70:44:f2:52:a1:e5:cc:55:be:3b:a1:d6:3d: d2:95:8c:08:6e:ea:be:ed:61:d9:b4:f1:72:cb:0f: 29:be:de:5d:89:01:bf:8a:bb:90:39:a9:5b:46:f5: 77:e9:9a:d9:60:e2:50:5d:c8:cb:e6:fc:96:71:ae: c7:8d:4b:96:9a:09:1c:73:95:7f:ec:a2:73:d2:f4: 95:cc:5d:50:34:f3:eb:b2:e4:ec:7f:24:21:62:b4: 78:cc:94:70:9c:37:8f:d7:65:67:b0:63:a9:55:36: d3:a0:b3:fc:88:9f:22:aa:eb:69:ce:a6:e2:a5:bc: 4c:d5:75:99:14:bc:8d:e6:56:8e:f0:d3:c1:a8:98: 70:ad:f0:93:58:b6:c2:96:3c:06:34:4d:21:6d:5c: 9b:e5:d7:89:f1:62:53:74:19:f4:33:e3:36:62:73: d3:e2:07:1d:46:6b:e9:bb:33:e3:ee:b8:b4:21:5d: 3c:72:f4:f8:3e:20:83:90:7d:38:36:b9:c0:3b:c0: 3f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E5:A0:1B:E9:EE:9B:CD:E7:42:4D:B6:D4:54:E7:BC:18:AB:01:04 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b0:7a:6a:57:2e:f6:00:78:9c:ba:9b:26:61:10:9c:69:e7: 9c:d5:e4:55:30:63:1c:e2:e9:a4:96:99:f8:17:e9:d8:59:a3: a2:39:40:0b:95:d8:56:65:55:55:34:40:8a:14:cd:88:ca:e0: 8f:b0:1d:04:0c:76:54:5b:6b:62:55:cd:73:50:56:0b:9f:3e: f6:73:6f:8d:b4:3e:6c:2a:5d:04:67:a9:8c:78:7a:3c:db:3d: 51:43:35:7b:88:b1:53:71:a8:b4:61:fa:ef:58:e9:aa:be:69: 47:42:e2:97:1d:81:5f:fd:5b:98:52:58:1b:dc:bc:1a:f6:5a: 2b:35:d3:57:32:2b:a2:e7:54:78:74:71:8e:06:fa:28:36:b7: 6f:0c:c0:04:24:bf:a8:ae:63:11:10:8d:1c:7b:19:d0:cc:ea: 5e:56:68:9d:9e:53:01:e1:44:ee:ef:9b:22:77:0b:12:8d:34: bb:c4:2a:8f:99:97:7d:0e:fa:24:57:5a:a6:07:db:d5:65:9d: 4f:86:a7:bd:82:87:a0:d1:30:6e:5d:17:91:a7:07:98:c6:1d: 1c:b1:72:e8:d1:47:b3:12:0b:2d:89:69:5f:6d:35:b5:f3:3b: 83:1b:55:b3:b3:09:8a:f2:96:3e:ed:44:3f:c9:91:34:af:68: 29:21:3a:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUwODA4MTQ1MjMyWhcNMjUwODE1MTQ1MjMyWjAYMRYwFAYD VQQDEw02ODk2MGYzMC1iNzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwt1Hag9weF+zMyaIEjg0hkuTEWM5YbW5LthZrWIdW/GNgm7ssowhPuqeWMpA cXkb1CgmoTWegq1Q5oxTcXBE8lKh5cxVvjuh1j3SlYwIbuq+7WHZtPFyyw8pvt5d iQG/iruQOalbRvV36ZrZYOJQXcjL5vyWca7HjUuWmgkcc5V/7KJz0vSVzF1QNPPr suTsfyQhYrR4zJRwnDeP12VnsGOpVTbToLP8iJ8iqutpzqbipbxM1XWZFLyN5laO 8NPBqJhwrfCTWLbCljwGNE0hbVyb5deJ8WJTdBn0M+M2YnPT4gcdRmvpuzPj7ri0 IV08cvT4PiCDkH04NrnAO8A/GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH7loBvp 7pvN50JNttRU57wYqwEEMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdsHpqVy72AHicupsmYRCcaeec1eRVMGMc4umklpn4F+nYWaOiOUAL ldhWZVVVNECKFM2IyuCPsB0EDHZUW2tiVc1zUFYLnz72c2+NtD5sKl0EZ6mMeHo8 2z1RQzV7iLFTcai0YfrvWOmqvmlHQuKXHYFf/VuYUlgb3Lwa9lorNdNXMiui51R4 dHGOBvooNrdvDMAEJL+ormMREI0cexnQzOpeVmidnlMB4UTu75sidwsSjTS7xCqP mZd9DvokV1qmB9vVZZ1Phqe9goeg0TBuXReRpweYxh0csXLo0UezEgstiWlfbTW1 8zuDG1WzswmK8pY+7UQ/yZE0r2gpIToE -----END CERTIFICATE-----Generated at Fri Aug 8 20:39:54 2025 by rpki-client