$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft File: DWjbrWAPi9kLNVuY9LI4-56aV_o.mft (raw, json) Hash identifier: H38aY2DYhZFgtSSOOCAC6xCLNTMQnTQVcQjNjUItZOI= Subject key identifier: 3E:6A:22:DD:C7:AA:59:06:F9:06:74:50:50:88:27:2B:99:13:31:75 Authority key identifier: 0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA Certificate issuer: /CN=A91DBF0D/serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Certificate serial: 0879 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft Manifest number: 0870 Signing time: Mon 04 Aug 2025 20:55:15 +0000 Manifest this update: Mon 04 Aug 2025 20:55:15 +0000 Manifest next update: Mon 11 Aug 2025 20:55:15 +0000 Files and hashes: 1: DWjbrWAPi9kLNVuY9LI4-56aV_o.crl (hash: i56HXVa6gSvpDE10eS+TS3yMHCDTstbTfyVKcyn3sh4=) 2: 9D664600CB1211EAACC0E528C4F9AE02.roa (hash: UBw2PoTevAndZcrQq8icn0bOX1+H9RUk7B/v/OivD1E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 20:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2169 (0x879) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBF0D, serialNumber=0D68DBAD600F8BD90B355B98F4B238FB9E9A57FA Validity Not Before: Aug 4 20:55:15 2025 GMT Not After : Aug 11 20:55:15 2025 GMT Subject: CN=68911e33-9f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:26:6e:95:d9:9a:d5:3d:a1:9c:7d:cb:5d:f3: 7f:df:a8:56:d3:bd:76:a0:8d:bf:65:b4:f7:e7:e9: 2f:dc:7b:10:b3:8f:75:73:da:da:77:ac:87:fb:19: 9c:5f:7a:56:67:da:43:6f:de:dc:42:bb:1a:87:a1: be:ef:d2:aa:f2:3d:d0:f4:5b:13:ba:34:7a:d1:9e: 38:eb:28:ab:d3:57:37:d1:f4:b3:50:d6:ea:cf:a6: 91:34:be:04:66:a3:80:96:7a:d6:2f:94:61:85:cd: e2:c7:da:4c:9b:a6:2a:d9:20:83:2e:a4:ca:19:f1: fe:a0:e8:99:46:6d:1e:62:ea:4f:ca:d4:71:a1:d9: 5d:53:81:1a:00:f8:56:0e:22:12:c0:4a:23:27:88: d6:77:81:70:d0:7d:be:22:09:bd:e6:19:e8:ad:9c: ca:70:67:15:98:3b:76:61:1e:88:5a:9f:f3:7f:ab: 6c:c6:43:2c:47:db:ff:b1:5b:ef:2a:ec:43:93:32: 26:38:6a:f8:4c:82:d1:29:9d:f4:d6:e7:1f:7c:44: 32:26:66:d6:2a:85:76:42:6d:be:99:dc:5f:d9:8d: 18:21:30:6d:3b:ac:3d:ad:99:74:15:8a:f2:c0:ac: a5:05:e5:39:84:0a:80:c2:58:d6:bc:ad:08:fb:0d: 4d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:6A:22:DD:C7:AA:59:06:F9:06:74:50:50:88:27:2B:99:13:31:75 X509v3 Authority Key Identifier: keyid:0D:68:DB:AD:60:0F:8B:D9:0B:35:5B:98:F4:B2:38:FB:9E:9A:57:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DWjbrWAPi9kLNVuY9LI4-56aV_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBF0D/57964D4ACB0E11EAA10F331DC4F9AE02/DWjbrWAPi9kLNVuY9LI4-56aV_o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:92:26:d1:1e:e2:da:74:16:d1:09:fd:1c:21:6d:0a:c3:8f: 95:3f:58:e8:75:d5:7a:b4:0f:b8:e8:13:47:86:d3:0a:98:07: 21:c7:25:28:c3:53:ac:46:a0:51:c6:40:ec:80:43:9c:d7:d8: d6:6c:de:b2:9c:2c:57:ff:6c:d8:76:ee:3f:53:b6:a3:c2:6c: 1b:19:ce:f8:f3:8c:c8:a4:1a:c9:62:c6:5d:c7:3b:61:0a:2e: e8:4a:7e:cf:f8:22:80:07:93:ce:99:7c:e8:c7:1d:47:79:28: cb:91:b2:7c:cd:95:d1:ff:e6:78:42:9c:99:ba:92:df:6f:5d: f1:1b:c2:d1:39:a4:4c:72:a3:c3:85:01:83:23:d7:7a:13:7c: f0:a8:6f:c4:e8:ac:79:ed:c4:80:51:78:9f:55:61:5f:41:e4: bc:de:b4:ad:7e:32:1b:f3:60:95:6b:b1:d0:b4:bd:a2:b6:79: 4c:d5:ec:22:ae:c1:93:0d:b7:87:41:e8:d2:6b:cb:10:a1:bd: 9f:7a:44:83:18:16:ac:20:87:46:b9:7d:16:6b:bf:52:ca:3d: 93:28:d9:9d:8a:51:65:66:fe:85:55:65:8d:b3:12:d1:28:c7: db:41:d6:26:61:9e:03:07:67:80:bd:60:ec:34:b6:7e:5a:cc: ea:0c:18:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REJGMEQxMTAvBgNVBAUTKDBENjhEQkFENjAwRjhCRDkwQjM1NUI5OEY0QjIzOEZC OUU5QTU3RkEwHhcNMjUwODA0MjA1NTE1WhcNMjUwODExMjA1NTE1WjAYMRYwFAYD VQQDEw02ODkxMWUzMy05ZjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSZuldma1T2hnH3LXfN/36hW0712oI2/ZbT35+kv3HsQs491c9rad6yH+xmc X3pWZ9pDb97cQrsah6G+79Kq8j3Q9FsTujR60Z446yir01c30fSzUNbqz6aRNL4E ZqOAlnrWL5Rhhc3ix9pMm6Yq2SCDLqTKGfH+oOiZRm0eYupPytRxodldU4EaAPhW DiISwEojJ4jWd4Fw0H2+Igm95hnorZzKcGcVmDt2YR6IWp/zf6tsxkMsR9v/sVvv KuxDkzImOGr4TILRKZ301ucffEQyJmbWKoV2Qm2+mdxf2Y0YITBtO6w9rZl0FYry wKylBeU5hAqAwljWvK0I+w1NlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5qIt3H qlkG+QZ0UFCIJyuZEzF1MB8GA1UdIwQYMBaAFA1o261gD4vZCzVbmPSyOPuemlf6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQkYwRC81Nzk2NEQ0QUNC MEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5a0xOVnVZOUxJNC01NmFW X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RXamJyV0FQaTlrTE5WdVk5TEk0LTU2YVZfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QkYwRC81Nzk2NEQ0QUNCMEUxMUVBQTEwRjMzMURDNEY5QUUwMi9EV2picldBUGk5 a0xOVnVZOUxJNC01NmFWX28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvkibRHuLadBbRCf0cIW0Kw4+VP1joddV6tA+46BNHhtMKmAchxyUo w1OsRqBRxkDsgEOc19jWbN6ynCxX/2zYdu4/U7ajwmwbGc7484zIpBrJYsZdxzth Ci7oSn7P+CKAB5POmXzoxx1HeSjLkbJ8zZXR/+Z4QpyZupLfb13xG8LROaRMcqPD hQGDI9d6E3zwqG/E6Kx57cSAUXifVWFfQeS83rStfjIb82CVa7HQtL2itnlM1ewi rsGTDbeHQejSa8sQob2fekSDGBasIIdGuX0Wa79Syj2TKNmdilFlZv6FVWWNsxLR KMfbQdYmYZ4DB2eAvWDsNLZ+WszqDBgJ -----END CERTIFICATE-----Generated at Tue Aug 5 17:24:03 2025 by rpki-client