$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft File: dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft (raw, json) Hash identifier: w7hO/MLBmit+3rEQRTx0hkytGSVgycDoM1tEiNAsEm8= Subject key identifier: 31:36:73:77:34:96:FD:86:55:62:89:FF:5B:82:7F:72:AC:22:DB:45 Authority key identifier: 76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB Certificate issuer: /CN=A91D4DC1/serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Certificate serial: 05A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft Manifest number: 05A1 Signing time: Fri 08 Aug 2025 23:38:08 +0000 Manifest this update: Fri 08 Aug 2025 23:38:08 +0000 Manifest next update: Fri 15 Aug 2025 23:38:08 +0000 Files and hashes: 1: dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl (hash: XNFfDNJNGS8dhD7zKnu3x9Celt2uJSHsv/5WUrJsJpw=) 2: B5A7B020DBDB11EB8EC1494EC4F9AE02.roa (hash: pYihusS4UyoIsK9PCzKPk27dDaihl6ZYHFqiCUhf6Dc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1446 (0x5a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4DC1, serialNumber=76DF7F91169A3F380C0A6BCD38E9186DEFF31BAB Validity Not Before: Aug 8 23:38:08 2025 GMT Not After : Aug 15 23:38:08 2025 GMT Subject: CN=68968a60-d190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cd:bb:97:be:f3:a7:4d:1e:49:11:8e:5b:81: dd:47:f8:f6:48:be:0b:34:a2:7c:f6:f7:ac:05:de: 70:31:24:bd:01:f9:b5:07:dd:cf:b8:40:20:d3:ac: c8:57:a8:90:83:ed:e2:4f:69:e1:d1:fd:58:7c:80: ef:59:c9:48:a0:be:7c:a6:c6:f2:51:d6:7b:bb:f0: 19:a8:b1:cd:df:92:b0:c4:03:35:64:ab:27:01:31: 43:05:e1:5b:0f:57:74:af:eb:a3:1e:32:02:6d:97: e5:e1:37:dd:fc:d0:da:b9:fa:34:e2:b9:bf:32:66: f4:8e:e7:52:11:04:01:7b:92:8b:bb:6f:02:7d:32: 7a:ae:8d:ba:94:58:28:71:3b:17:ed:2c:b7:07:11: b9:2d:3d:cc:1f:a3:e4:a5:d8:cf:d2:9e:14:5d:d3: f0:01:37:40:73:0c:09:8b:3c:98:89:34:fe:20:f3: 82:8c:a5:3b:ea:7b:e3:c2:7a:ee:e6:a9:d6:bb:17: ad:94:c9:a4:72:a6:0d:6e:da:4f:e2:86:dd:e2:18: 82:de:3b:73:9d:39:b2:f2:38:bb:68:37:0c:81:32: 38:1e:3d:fe:4b:b3:4e:e8:fd:b6:4d:0a:64:dc:d3: f0:81:df:f1:0b:bc:08:70:65:8c:8e:89:b8:0d:6f: b8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:36:73:77:34:96:FD:86:55:62:89:FF:5B:82:7F:72:AC:22:DB:45 X509v3 Authority Key Identifier: keyid:76:DF:7F:91:16:9A:3F:38:0C:0A:6B:CD:38:E9:18:6D:EF:F3:1B:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dt9_kRaaPzgMCmvNOOkYbe_zG6s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4DC1/996F98EADBD711EBB9511745C4F9AE02/dt9_kRaaPzgMCmvNOOkYbe_zG6s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:0a:49:6c:0e:fd:78:db:9d:9c:f9:2a:b3:7a:cd:0d:37:e8: 2d:b6:e4:8a:05:5b:e7:77:ac:b1:76:97:29:dc:cc:49:ce:fd: bc:8f:86:02:fd:e8:23:67:8b:fd:52:1b:1e:66:e1:fb:ff:05: d9:05:26:d7:7f:bd:a3:57:d2:34:ff:5b:c5:19:a2:c9:e0:d7: 1b:7b:92:db:bb:a9:59:32:4a:70:6e:fe:1e:93:47:5a:bd:5f: c8:5a:45:51:cd:96:13:fe:d6:ab:6e:db:46:ca:21:71:14:cd: 7b:e6:48:6e:2b:ee:94:c1:e4:9c:9d:bc:18:5c:9b:bd:fb:50: 90:37:88:7b:ff:96:50:f5:50:5c:00:65:6c:3f:7f:09:3b:f9: 40:48:12:a6:69:7e:2a:8f:aa:e9:13:37:d5:ef:b5:ed:94:a5: d8:8a:2c:de:3d:3f:c1:34:ca:9e:88:cf:92:3e:d5:0e:46:45: 29:22:53:73:47:3d:f3:b1:61:97:57:fc:fb:60:63:40:34:da: a4:21:48:f7:88:cb:7e:c2:0c:ce:40:4a:69:e0:54:c6:3d:c3: e6:ee:28:00:aa:5c:ac:cc:81:9e:5d:a6:0c:04:f9:81:1b:da: 56:c2:32:04:d9:ae:95:89:e2:81:6d:41:53:e4:6b:ea:f6:80: a7:bf:49:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDREQzExMTAvBgNVBAUTKDc2REY3RjkxMTY5QTNGMzgwQzBBNkJDRDM4RTkxODZE RUZGMzFCQUIwHhcNMjUwODA4MjMzODA4WhcNMjUwODE1MjMzODA4WjAYMRYwFAYD VQQDEw02ODk2OGE2MC1kMTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt827l77zp00eSRGOW4HdR/j2SL4LNKJ89vesBd5wMSS9Afm1B93PuEAg06zI V6iQg+3iT2nh0f1YfIDvWclIoL58psbyUdZ7u/AZqLHN35KwxAM1ZKsnATFDBeFb D1d0r+ujHjICbZfl4Tfd/NDaufo04rm/Mmb0judSEQQBe5KLu28CfTJ6ro26lFgo cTsX7Sy3BxG5LT3MH6PkpdjP0p4UXdPwATdAcwwJizyYiTT+IPOCjKU76nvjwnru 5qnWuxetlMmkcqYNbtpP4obd4hiC3jtznTmy8ji7aDcMgTI4Hj3+S7NO6P22TQpk 3NPwgd/xC7wIcGWMjom4DW+4HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE2c3c0 lv2GVWKJ/1uCf3KsIttFMB8GA1UdIwQYMBaAFHbff5EWmj84DAprzTjpGG3v8xur MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENERDMS85OTZGOThFQURC RDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6Z01DbXZOT09rWWJlX3pH NnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R0OV9rUmFhUHpnTUNtdk5PT2tZYmVfekc2cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NERDMS85OTZGOThFQURCRDcxMUVCQjk1MTE3NDVDNEY5QUUwMi9kdDlfa1JhYVB6 Z01DbXZOT09rWWJlX3pHNnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTCklsDv14252c+Sqzes0NN+gttuSKBVvnd6yxdpcp3MxJzv28j4YC /egjZ4v9UhseZuH7/wXZBSbXf72jV9I0/1vFGaLJ4Ncbe5Lbu6lZMkpwbv4ek0da vV/IWkVRzZYT/tarbttGyiFxFM175khuK+6UweScnbwYXJu9+1CQN4h7/5ZQ9VBc AGVsP38JO/lASBKmaX4qj6rpEzfV77XtlKXYiizePT/BNMqeiM+SPtUORkUpIlNz Rz3zsWGXV/z7YGNANNqkIUj3iMt+wgzOQEpp4FTGPcPm7igAqlyszIGeXaYMBPmB G9pWwjIE2a6VieKBbUFT5Gvq9oCnv0lK -----END CERTIFICATE-----Generated at Sat Aug 9 10:53:42 2025 by rpki-client