$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: P2Uh0wPCm4qQ4lqEnPaQ+6imxQenSlq/tgZmpfW2OKo= Subject key identifier: 3F:EC:82:23:E0:23:A9:F5:53:60:83:92:87:45:CF:93:B0:CD:41:82 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0B11 Signing time: Fri 18 Jul 2025 19:47:50 +0000 Manifest this update: Fri 18 Jul 2025 19:47:50 +0000 Manifest next update: Fri 25 Jul 2025 19:47:50 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: bkB4nejAEx5GbIB2t10UuoqoKsBx6YT6bc9cTuRWxr0=) 2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: 9HpfFO17Acvgd3bfoY1RRGMmr/S4lWCivU7zCXu99jQ=) 3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: NmSN6VJwUZ9ydFpM44jw4neBA26CzfMXA6i3a7+JHjs=) 4: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: f8EbYStIGSB7T55NTXn1S3YpmHpX1HZLI2JBGQCdMmI=) 5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: Ctrd7yzaoKhPJ1SZfLY/mtqd2cD4Mo1aULu0wXYXeDQ=) 6: 305F24342A0811EE9D810010C4F9AE02.roa (hash: Z2pbtlXOSAO+jQlJKET8nsnjJlOh2Bme2k6kxjJMw0Q=) 7: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: d4UXXCMBLzbA5F5CBh6+/uxfNEdacqbjKjEwNBL2vSE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:47:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: Jul 18 19:47:50 2025 GMT Not After : Jul 25 19:47:50 2025 GMT Subject: CN=687aa4e6-0759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b8:74:46:16:b0:e6:d7:9c:91:85:e2:16:f0: c0:17:52:85:bb:46:81:88:ac:dd:69:7d:5e:49:3c: d9:2b:1e:83:9d:b5:e0:c5:7f:f0:43:67:89:af:db: 85:2b:4d:b4:85:f8:83:29:9c:14:e7:a5:02:d4:eb: d8:de:fc:8c:00:96:ba:bf:44:a0:b1:31:b0:19:a5: 32:aa:8e:eb:f6:57:1e:c9:fd:3a:51:49:65:f3:a8: c2:cd:d4:c8:1b:b8:aa:d1:21:21:69:f0:cc:32:85: d9:6f:63:b2:72:94:c1:ff:a1:b6:8e:0a:be:9d:2a: e9:8b:24:14:49:ec:d8:c6:e4:58:3b:4c:7c:e2:7b: 87:1d:f8:96:32:0a:c9:0f:a8:69:eb:68:7b:06:62: b8:fd:65:2c:52:96:16:59:3c:21:45:0a:e6:f6:aa: 19:2a:d1:1f:cc:d1:5f:96:64:39:61:2d:8f:ac:30: 14:9a:08:b6:9f:43:dd:51:5c:c2:5e:17:b3:f2:88: 46:3b:72:a6:34:54:36:7c:20:48:13:cd:44:2c:69: 10:e3:6a:aa:5d:b9:f5:fe:f5:10:45:dd:95:7a:1c: 94:59:dc:45:2a:8a:5a:eb:66:3e:28:99:3d:f4:97: 6b:b1:15:9d:9f:7b:f9:3e:31:75:b2:2c:44:33:b7: 13:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:EC:82:23:E0:23:A9:F5:53:60:83:92:87:45:CF:93:B0:CD:41:82 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:16:8e:ac:83:8f:dd:83:a4:77:5d:22:d4:2e:6a:86:3f:a5: e9:3d:2f:0e:6c:b0:64:2e:d3:94:37:78:1a:31:a6:3d:de:20: 43:69:db:5a:e2:56:26:f8:7e:42:ed:27:79:61:11:ed:5e:ab: f4:9a:9c:8d:6f:98:ad:25:9e:c0:0b:b6:0f:a0:1e:89:83:d5: 89:ba:3d:5b:07:1f:62:f3:15:f7:58:7b:d7:e9:53:55:66:fe: cf:d2:b8:1e:43:81:5d:16:d3:19:20:1f:70:a6:73:8f:90:cc: bf:e3:b3:17:20:b4:47:3b:a1:12:64:72:1f:34:a9:01:f3:8a: 13:83:8a:10:11:1e:de:c8:03:0f:08:e5:ca:0b:93:bb:88:83: d3:b1:06:36:b7:b1:17:39:f7:6f:cd:02:f2:9f:b9:e9:29:bc: 12:a3:0e:3e:bb:19:3d:e2:c4:0a:57:5e:b7:55:86:2d:05:fb: 06:32:19:fc:68:a8:7d:d5:20:2b:e9:f7:b0:a2:62:d1:f0:6f: 2f:89:b9:83:18:77:62:9d:4d:e5:84:37:d3:83:17:16:f1:53: 78:ed:ea:20:90:82:17:56:be:e4:46:94:5e:65:55:88:b0:84: bf:28:c2:08:c8:2e:85:7e:66:ba:a8:13:14:b2:01:95:ba:26: 64:2e:00:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjUwNzE4MTk0NzUwWhcNMjUwNzI1MTk0NzUwWjAYMRYwFAYD VQQDEw02ODdhYTRlNi0wNzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbh0Rhaw5teckYXiFvDAF1KFu0aBiKzdaX1eSTzZKx6DnbXgxX/wQ2eJr9uF K020hfiDKZwU56UC1OvY3vyMAJa6v0SgsTGwGaUyqo7r9lceyf06UUll86jCzdTI G7iq0SEhafDMMoXZb2OycpTB/6G2jgq+nSrpiyQUSezYxuRYO0x84nuHHfiWMgrJ D6hp62h7BmK4/WUsUpYWWTwhRQrm9qoZKtEfzNFflmQ5YS2PrDAUmgi2n0PdUVzC Xhez8ohGO3KmNFQ2fCBIE81ELGkQ42qqXbn1/vUQRd2VehyUWdxFKopa62Y+KJk9 9JdrsRWdn3v5PjF1sixEM7cTdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD/sgiPg I6n1U2CDkodFz5OwzUGCMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLFo6sg4/dg6R3XSLULmqGP6XpPS8ObLBkLtOUN3gaMaY93iBDadta 4lYm+H5C7Sd5YRHtXqv0mpyNb5itJZ7AC7YPoB6Jg9WJuj1bBx9i8xX3WHvX6VNV Zv7P0rgeQ4FdFtMZIB9wpnOPkMy/47MXILRHO6ESZHIfNKkB84oTg4oQER7eyAMP COXKC5O7iIPTsQY2t7EXOfdvzQLyn7npKbwSow4+uxk94sQKV163VYYtBfsGMhn8 aKh91SAr6fewomLR8G8vibmDGHdinU3lhDfTgxcW8VN47eogkIIXVr7kRpReZVWI sIS/KMIIyC6Ffma6qBMUsgGVuiZkLgBf -----END CERTIFICATE-----Generated at Sun Jul 20 07:13:47 2025 by rpki-client