$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft File: d2KqgncCDQu1x1mX3l99ilFC3xQ.mft (raw, json) Hash identifier: eWRvSzLzHIp8Kb1FW33D1VOgQfGo7D1dV+S6gYPxRF0= Subject key identifier: A9:41:6A:56:8C:BE:C1:53:98:1F:2E:E7:1E:E6:00:80:80:94:8F:79 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 13DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft Manifest number: 13C0 Signing time: Mon 08 Sep 2025 16:59:20 +0000 Manifest this update: Mon 08 Sep 2025 16:59:20 +0000 Manifest next update: Mon 15 Sep 2025 16:59:20 +0000 Files and hashes: 1: d2KqgncCDQu1x1mX3l99ilFC3xQ.crl (hash: VG/KIcJGK87Zi07vtE31Rmb0/L0O1dwdw0cgOrFPIQk=) 2: 337C9CE4314C11F0845D2C39C4F9AE02.roa (hash: 3xfhrQz5XfecI25n9SPWe9dh+MA3sbDb74Wk4gI1r2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5087 (0x13df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Sep 8 16:59:20 2025 GMT Not After : Sep 15 16:59:20 2025 GMT Subject: CN=68bf0b68-d280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:60:4a:71:2c:e4:6c:fe:09:a7:30:b2:e5:ba: 87:2a:45:7c:2d:5d:3a:d9:06:96:7c:9b:49:7b:24: 0b:ac:60:16:a2:b9:89:1c:f2:fb:1c:52:35:53:47: 8d:22:29:c8:8e:af:57:f4:31:1d:dd:d6:cb:dc:f3: 8b:ec:ed:8e:1d:3b:96:20:af:23:4c:76:e9:53:25: 46:6e:d5:e5:74:2c:8b:a7:ca:07:c5:34:41:38:77: b3:d4:88:b0:0a:ea:f3:c9:2d:b3:be:da:bc:5a:6d: 8d:6f:d6:9e:e9:33:14:3a:d2:4f:a0:80:17:f2:12: 82:1e:26:b9:4f:7b:43:9d:e1:a7:2d:df:61:15:da: 3e:db:55:69:cd:53:65:bf:48:2a:e7:6c:39:1b:3d: bb:cd:91:b0:80:93:2d:e9:57:63:78:e7:be:00:c4: 83:ce:70:68:11:a7:97:36:e7:25:eb:6d:fd:38:c1: 07:84:56:49:d0:91:aa:bc:e0:01:af:09:7b:22:ef: fd:94:06:65:ed:0e:70:f2:9d:0a:6a:ee:05:9a:15: 08:48:97:54:a0:28:5f:24:a3:ac:61:90:c3:3e:13: 5b:09:1a:78:c1:d4:bf:7c:12:5e:a3:78:3d:a3:db: c9:57:78:15:3b:33:33:25:4e:84:18:59:69:ac:93: 29:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:41:6A:56:8C:BE:C1:53:98:1F:2E:E7:1E:E6:00:80:80:94:8F:79 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:fb:04:d5:82:1f:0d:a1:25:ad:94:70:06:39:24:eb:d0:32: ae:ab:67:d9:97:90:5c:e9:5e:1d:85:b0:b3:65:6e:a3:4f:87: e7:8e:2a:05:39:ee:f8:77:e6:9c:ea:f9:c3:49:25:c1:e8:8e: 35:be:d8:78:3a:30:6d:97:81:08:47:a9:bc:1f:01:e4:22:28: 04:e9:c9:96:5d:8d:79:96:65:81:90:29:97:b5:e4:8d:2b:d9: 71:af:62:1c:ce:fe:cb:f1:4e:d4:9c:94:cd:79:4e:20:d9:57: 7c:05:cc:5f:be:29:6c:4e:c3:4f:db:77:a7:5f:44:36:8f:fa: 64:62:c3:72:28:90:a7:74:c3:46:87:f7:16:f7:85:3e:8e:33: e2:6c:95:98:02:e6:e5:cd:d6:8f:3a:78:37:1d:4c:58:1c:e0: d8:b7:e2:c9:05:b6:62:9e:0c:da:45:cd:68:e9:4c:b3:48:cb: 37:c5:a9:02:52:60:d0:b8:fb:a4:67:a0:51:e1:ae:75:5e:e5: db:08:4c:f0:a6:6c:9a:ec:04:83:7c:f0:e4:01:0a:5c:b4:e6: bd:0c:3f:97:a4:5f:06:4d:20:fb:7b:5d:d7:53:66:9b:3b:50: 72:e1:74:55:4e:2d:64:c1:73:ac:f8:6a:1b:ae:e2:9e:41:1c: aa:54:ba:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUwOTA4MTY1OTIwWhcNMjUwOTE1MTY1OTIwWjAYMRYwFAYD VQQDEw02OGJmMGI2OC1kMjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumBKcSzkbP4JpzCy5bqHKkV8LV062QaWfJtJeyQLrGAWormJHPL7HFI1U0eN IinIjq9X9DEd3dbL3POL7O2OHTuWIK8jTHbpUyVGbtXldCyLp8oHxTRBOHez1Iiw CurzyS2zvtq8Wm2Nb9ae6TMUOtJPoIAX8hKCHia5T3tDneGnLd9hFdo+21VpzVNl v0gq52w5Gz27zZGwgJMt6VdjeOe+AMSDznBoEaeXNucl6239OMEHhFZJ0JGqvOAB rwl7Iu/9lAZl7Q5w8p0Kau4FmhUISJdUoChfJKOsYZDDPhNbCRp4wdS/fBJeo3g9 o9vJV3gVOzMzJU6EGFlprJMpyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKlBalaM vsFTmB8u5x7mAICAlI95MB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RkFDMy83Qjg2OEMwODlERjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RR dTF4MW1YM2w5OWlsRkMzeFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa+wTVgh8NoSWtlHAGOSTr0DKuq2fZl5Bc6V4dhbCzZW6jT4fnjioF Oe74d+ac6vnDSSXB6I41vth4OjBtl4EIR6m8HwHkIigE6cmWXY15lmWBkCmXteSN K9lxr2Iczv7L8U7UnJTNeU4g2Vd8BcxfvilsTsNP23enX0Q2j/pkYsNyKJCndMNG h/cW94U+jjPibJWYAublzdaPOng3HUxYHODYt+LJBbZingzaRc1o6UyzSMs3xakC UmDQuPukZ6BR4a51XuXbCEzwpmya7ASDfPDkAQpctOa9DD+XpF8GTSD7e13XU2ab O1By4XRVTi1kwXOs+GobruKeQRyqVLpI -----END CERTIFICATE-----Generated at Wed Sep 10 14:16:33 2025 by rpki-client