$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft File: drnTOfrNYrR-k-iITehQOW2877Q.mft (raw, json) Hash identifier: 6VETtJ2Mq4tMMpHNpwPCgvlxReGy4lItIMcyzdbtM1g= Subject key identifier: 93:CB:AC:CF:FB:DF:D3:B9:76:57:F6:FF:4E:EF:87:9B:81:D4:A3:2F Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 0B16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft Manifest number: 0AFE Signing time: Sun 24 Aug 2025 19:22:45 +0000 Manifest this update: Sun 24 Aug 2025 19:22:44 +0000 Manifest next update: Sun 31 Aug 2025 19:22:44 +0000 Files and hashes: 1: drnTOfrNYrR-k-iITehQOW2877Q.crl (hash: DzIyAsq/VThQ8RmnesyIBeVcCsUvEwnqvNZvjwEOh/I=) 2: 83882F7AF83B11ECB4154E31C4F9AE02.roa (hash: YH3lhLXoSVbhjIpXiN2vn5qlApvWo5uVmDvE4K7XYgk=) 3: 4FFC83964CA311EE815AF017C4F9AE02.roa (hash: UA3Z3TNFXnNBwmElq5Ec0QuBLoZlUKqnBYT4/k/3BsY=) 4: AA1ABF0AB20011EA9C0DFB2FC4F9AE02.roa (hash: FcXy6QLc2Tvjs24Fp66P1cwtAXMmWgi5gNPzljev1BY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2838 (0xb16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA, serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Aug 24 19:22:44 2025 GMT Not After : Aug 31 19:22:44 2025 GMT Subject: CN=68ab6684-f642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:92:99:e6:cb:34:47:01:14:7a:5e:cf:e9:d0: 43:77:fb:9f:a3:dc:85:6d:56:3b:66:e7:bc:dc:cd: cd:37:a1:22:30:61:35:73:da:71:59:f9:4b:b2:89: c8:c2:bf:d7:3a:cb:1a:ba:f9:29:ed:9c:4e:1f:b0: 7c:46:3f:10:99:31:7b:fd:52:d5:5f:25:b3:1b:13: 30:dd:03:16:5d:f0:93:89:8f:87:e9:a7:99:c1:e9: 6a:d8:bc:76:59:ef:ab:c0:12:4b:25:a1:41:d1:1c: 62:18:5d:ec:ca:34:af:10:d8:83:29:c6:ee:bf:fb: ce:ad:19:9e:4b:a4:95:5a:da:df:a9:61:89:c3:33: 90:43:0b:a1:c9:67:a7:ba:8f:a8:57:7e:24:c8:7b: 58:35:54:55:c7:55:4d:16:ba:45:22:5e:b7:c3:20: 8f:31:4f:68:bd:34:ba:ee:24:77:3b:f5:dd:b3:9a: 11:30:ed:da:21:bc:23:e8:49:1c:02:61:2d:fd:62: 39:e9:a6:05:dd:f6:43:cc:fc:bc:2e:40:72:ef:36: 04:4d:8c:f8:c1:fc:b0:79:b8:65:c2:ed:e3:bb:39: 21:ff:a1:b9:5a:82:c5:15:fb:07:e4:bd:95:ff:a6: 00:5a:3c:4e:1e:b8:77:46:67:f3:71:9e:e4:cf:4c: 0b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:CB:AC:CF:FB:DF:D3:B9:76:57:F6:FF:4E:EF:87:9B:81:D4:A3:2F X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f5:c1:e6:57:62:48:89:85:cd:00:ac:61:bf:82:94:cf:52: 69:6e:0d:08:be:a4:3e:2f:d9:83:40:60:13:76:07:83:1a:d9: dd:60:97:5d:a9:18:57:cb:43:9d:d2:ca:fe:05:ca:9b:4d:f8: ed:33:24:9d:55:79:81:e4:c8:b8:a5:45:38:a8:96:53:87:96: a6:7c:a3:d0:62:c3:2c:68:5a:96:3c:b6:dc:1a:f8:d1:bf:e1: b4:4f:3d:59:08:f3:f7:6e:1f:05:8d:a5:e9:c8:c9:cd:7b:de: c0:ca:32:2b:f0:fe:8d:a1:3d:9f:05:46:6b:4b:41:3d:c3:24: 7d:e7:a4:71:f7:0c:40:ed:fc:11:66:0f:01:89:b4:ce:1b:f2: fa:bc:26:09:71:84:e7:ed:f4:4c:bf:ca:6e:f0:79:35:41:a7: 13:12:96:13:eb:99:c1:09:9e:ac:ff:a1:09:14:ce:74:1b:35: 85:e4:74:a5:0d:6c:d6:90:e6:b1:39:d7:a0:a4:5b:64:bf:69: 56:a9:0a:d1:df:40:b7:47:bc:d4:da:b9:bf:db:77:57:73:33: fe:c2:cd:ee:fd:80:e0:08:9d:e6:9a:03:26:8e:d2:c9:2b:54: 47:ae:b2:6d:da:85:f2:b7:08:d9:83:33:4d:9e:cd:7d:fa:f8: 36:2a:3c:c2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjUwODI0MTkyMjQ0WhcNMjUwODMxMTkyMjQ0WjAYMRYwFAYD VQQDEw02OGFiNjY4NC1mNjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55KZ5ss0RwEUel7P6dBDd/ufo9yFbVY7Zue83M3NN6EiMGE1c9pxWflLsonI wr/XOssauvkp7ZxOH7B8Rj8QmTF7/VLVXyWzGxMw3QMWXfCTiY+H6aeZwelq2Lx2 We+rwBJLJaFB0RxiGF3syjSvENiDKcbuv/vOrRmeS6SVWtrfqWGJwzOQQwuhyWen uo+oV34kyHtYNVRVx1VNFrpFIl63wyCPMU9ovTS67iR3O/Xds5oRMO3aIbwj6Ekc AmEt/WI56aYF3fZDzPy8LkBy7zYETYz4wfywebhlwu3juzkh/6G5WoLFFfsH5L2V /6YAWjxOHrh3RmfzcZ7kz0wLPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJPLrM/7 39O5dlf2/07vh5uB1KMvMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTZDQS83NDA5QjQ3QTRGQzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTlly Ui1rLWlJVGVoUU9XMjg3N1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/9cHmV2JIiYXNAKxhv4KUz1Jpbg0IvqQ+L9mDQGATdgeDGtndYJdd qRhXy0Od0sr+BcqbTfjtMySdVXmB5Mi4pUU4qJZTh5amfKPQYsMsaFqWPLbcGvjR v+G0Tz1ZCPP3bh8FjaXpyMnNe97AyjIr8P6NoT2fBUZrS0E9wyR956Rx9wxA7fwR Zg8BibTOG/L6vCYJcYTn7fRMv8pu8Hk1QacTEpYT65nBCZ6s/6EJFM50GzWF5HSl DWzWkOaxOdegpFtkv2lWqQrR30C3R7zU2rm/23dXczP+ws3u/YDgCJ3mmgMmjtLJ K1RHrrJt2oXytwjZgzNNns19+vg2KjzC -----END CERTIFICATE-----Generated at Sun Aug 24 22:23:10 2025 by rpki-client