$ rpki-client -vvf rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft File: dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft (raw, json) Hash identifier: GCAsTYi255FoPUG8VPNICiBV2iPTAV5Kmnatcg9+ads= Subject key identifier: A1:00:E3:49:2D:AB:96:B3:86:C3:37:F1:9D:FC:D7:45:EA:29:42:4B Authority key identifier: 75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 Certificate issuer: /CN=A91273B6/serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Certificate serial: 0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft Manifest number: 0E Signing time: Wed 17 Sep 2025 08:49:30 +0000 Manifest this update: Wed 17 Sep 2025 08:49:29 +0000 Manifest next update: Wed 24 Sep 2025 08:49:29 +0000 Files and hashes: 1: dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl (hash: eUPOn909Lsemua7tz/Rb/WSm2Geplx23DTiEor47snQ=) 2: 5F9C3E0681AB11F09884FA0BC4F9AE02.roa (hash: F4Qio5WYvuiwdHGB0kchv0Q5AZIoWb0UXCVdpuPI1Cs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273B6, serialNumber=7511CB313EB83F1C3902AA63C43B7A036ACC6317 Validity Not Before: Sep 17 08:49:29 2025 GMT Not After : Sep 24 08:49:29 2025 GMT Subject: CN=68ca7619-c75f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:f4:9e:31:40:58:55:0d:8e:5c:3d:ca:35:7d: 10:5b:c4:96:1a:70:f7:fc:5a:0e:be:e6:d7:82:8b: fd:e6:61:81:c6:f9:cc:e1:6e:d5:61:50:6a:3a:12: 17:fc:d0:6a:55:6f:0c:be:a4:a2:ee:07:73:ac:01: 30:a7:5d:6c:0c:71:3e:e9:05:1f:c4:d0:b4:84:c7: 4f:c6:8d:d1:a6:bd:b3:1b:95:9d:42:69:83:67:40: 3e:64:91:f5:18:7e:96:d8:c9:d8:b3:5a:1d:a5:3a: e8:fb:1d:46:d8:81:4b:00:f5:6c:49:a1:22:fe:8b: 78:bf:bb:d3:3e:2e:b9:dd:49:b8:01:a3:46:00:8e: e2:35:0c:b4:66:75:f2:03:ee:fd:6a:57:67:15:d1: a5:c7:03:21:36:51:91:f5:fd:21:c1:bc:be:59:9d: e9:c3:71:55:8c:0d:c0:99:ec:ec:f5:57:4f:01:77: 54:fc:77:cb:73:fb:b1:04:eb:44:93:20:76:2b:9e: cd:ae:f3:11:0e:91:d3:1a:86:6e:30:01:b5:66:6a: 50:02:c2:51:1e:c0:3c:68:1e:97:f9:af:6a:26:2d: 45:72:35:f4:92:23:0c:5d:44:63:5e:88:1f:6f:cf: cb:cf:c9:ea:a4:b0:8c:6c:33:93:59:17:ad:f5:29: 20:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:00:E3:49:2D:AB:96:B3:86:C3:37:F1:9D:FC:D7:45:EA:29:42:4B X509v3 Authority Key Identifier: keyid:75:11:CB:31:3E:B8:3F:1C:39:02:AA:63:C4:3B:7A:03:6A:CC:63:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dRHLMT64Pxw5AqpjxDt6A2rMYxc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273B6/5481AFC081AA11F0B4CDAD1CC4F9AE02/dRHLMT64Pxw5AqpjxDt6A2rMYxc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:0c:b0:53:f4:7f:a2:24:41:8e:e3:02:92:69:75:d2:f5:9b: 2d:81:98:8f:43:f9:bd:49:c6:a6:bb:a8:44:a2:0a:2c:45:84: 3d:64:4b:9f:89:d6:fb:51:a2:23:fa:d4:e3:c1:b1:af:51:d1: 7e:a5:2d:34:72:37:52:5d:17:68:3e:56:db:5d:b7:72:ef:16: 81:c8:c8:ef:47:6c:44:b2:b5:04:07:dc:0d:fb:b4:c3:8e:88: 5f:48:4c:27:b2:5f:04:a6:0e:56:c9:67:ab:38:6c:37:fd:e7: 6f:84:f9:70:49:b1:17:12:b4:cb:0d:c3:fc:75:41:54:29:9c: be:4b:bc:c8:24:84:37:ea:31:6b:66:a4:24:35:5e:59:0f:33: e6:eb:c1:9b:eb:ec:90:ed:fb:dc:43:83:67:4d:23:9f:4b:30: e5:18:06:16:5c:d5:8a:32:d7:55:5b:ac:51:5d:b7:87:96:de: 0e:8a:9c:14:35:aa:d4:d3:0e:79:83:e2:88:61:0d:57:16:d3: 2c:f1:05:ee:26:bc:6f:24:95:c1:14:32:d1:c6:88:99:c0:8f: 58:c3:6e:17:c5:16:82:c9:9a:82:87:e1:78:24:7e:d8:b0:5e: c4:ab:c6:59:e3:c6:46:96:1e:e9:71:e8:89:24:31:56:2d:e0: 06:cd:4b:93 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzNCNjExMC8GA1UEBRMoNzUxMUNCMzEzRUI4M0YxQzM5MDJBQTYzQzQzQjdBMDM2 QUNDNjMxNzAeFw0yNTA5MTcwODQ5MjlaFw0yNTA5MjQwODQ5MjlaMBgxFjAUBgNV BAMTDTY4Y2E3NjE5LWM3NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCY9J4xQFhVDY5cPco1fRBbxJYacPf8Wg6+5teCi/3mYYHG+czhbtVhUGo6Ehf8 0GpVbwy+pKLuB3OsATCnXWwMcT7pBR/E0LSEx0/GjdGmvbMblZ1CaYNnQD5kkfUY fpbYydizWh2lOuj7HUbYgUsA9WxJoSL+i3i/u9M+LrndSbgBo0YAjuI1DLRmdfID 7v1qV2cV0aXHAyE2UZH1/SHBvL5ZnenDcVWMDcCZ7Oz1V08Bd1T8d8tz+7EE60ST IHYrns2u8xEOkdMahm4wAbVmalACwlEewDxoHpf5r2omLUVyNfSSIwxdRGNeiB9v z8vPyeqksIxsM5NZF631KSDdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoQDjSS2r lrOGwzfxnfzXReopQkswHwYDVR0jBBgwFoAUdRHLMT64Pxw5AqpjxDt6A2rMYxcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3M0I2LzU0ODFBRkMwODFB QTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3NUFxcGp4RHQ2QTJyTVl4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZFJITE1UNjRQeHc1QXFwanhEdDZBMnJNWXhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3 M0I2LzU0ODFBRkMwODFBQTExRjBCNENEQUQxQ0M0RjlBRTAyL2RSSExNVDY0UHh3 NUFxcGp4RHQ2QTJyTVl4Yy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA8MsFP0f6IkQY7jApJpddL1my2BmI9D+b1Jxqa7qESiCixFhD1kS5+J 1vtRoiP61OPBsa9R0X6lLTRyN1JdF2g+Vttdt3LvFoHIyO9HbESytQQH3A37tMOO iF9ITCeyXwSmDlbJZ6s4bDf952+E+XBJsRcStMsNw/x1QVQpnL5LvMgkhDfqMWtm pCQ1XlkPM+brwZvr7JDt+9xDg2dNI59LMOUYBhZc1Yoy11VbrFFdt4eW3g6KnBQ1 qtTTDnmD4ohhDVcW0yzxBe4mvG8klcEUMtHGiJnAj1jDbhfFFoLJmoKH4Xgkftiw XsSrxlnjxkaWHulx6IkkMVYt4AbNS5M= -----END CERTIFICATE-----Generated at Thu Sep 18 20:52:10 2025 by rpki-client