$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: ikCosp8XV7Kx9JiG1DbqPpeeD8LNbZfOV8XL+1mo7SM= Subject key identifier: 31:35:55:42:AE:05:21:E4:50:74:38:59:EF:65:61:0C:F5:55:5A:2E Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0BCE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0B66 Signing time: Wed 22 Oct 2025 20:06:46 +0000 Manifest this update: Wed 22 Oct 2025 20:06:45 +0000 Manifest next update: Wed 29 Oct 2025 20:06:45 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: jI/5aK7EJYrDfUHlp6Mp2r18+6ZhzWQDQ85xuuwf9hI=) 2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: 9HpfFO17Acvgd3bfoY1RRGMmr/S4lWCivU7zCXu99jQ=) 3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: NmSN6VJwUZ9ydFpM44jw4neBA26CzfMXA6i3a7+JHjs=) 4: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: f8EbYStIGSB7T55NTXn1S3YpmHpX1HZLI2JBGQCdMmI=) 5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: Ctrd7yzaoKhPJ1SZfLY/mtqd2cD4Mo1aULu0wXYXeDQ=) 6: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: O6CTOo/y474PcGRnYH9PhaTd1EVdAvkFEsjawJ8wYQ0=) 7: 305F24342A0811EE9D810010C4F9AE02.roa (hash: Z2pbtlXOSAO+jQlJKET8nsnjJlOh2Bme2k6kxjJMw0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:06:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3022 (0xbce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: Oct 22 20:06:45 2025 GMT Not After : Oct 29 20:06:45 2025 GMT Subject: CN=68f93956-892e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d8:ef:f8:d0:15:5b:49:16:48:c9:d0:9e:a1: 59:c7:51:a8:d8:2a:75:f9:24:6b:a0:57:95:2d:d9: 4b:04:b5:59:a3:40:0a:c7:0e:82:57:06:84:e2:0d: 32:39:cf:eb:d1:0a:54:3c:cb:d7:11:f2:73:81:17: 02:5f:54:2d:48:c7:04:a9:f5:b3:40:83:ce:0c:2a: 82:83:82:c6:e8:39:d6:a0:dc:20:b8:3f:e0:c4:68: c4:e1:3e:60:ba:51:e5:a6:05:15:10:6b:e5:f2:80: f9:88:c8:af:b3:b5:b3:85:43:1a:19:a0:55:7a:54: 16:83:f3:78:c3:7d:39:8f:6b:33:a9:f1:f4:ef:e4: d9:eb:fb:f4:dc:7e:57:f2:be:fa:be:64:4c:ed:f3: 4b:7f:ed:4f:3a:fb:40:44:b2:fc:af:1e:a8:c6:65: 79:a2:d1:2b:eb:fb:23:7e:93:61:af:34:bf:98:42: b9:96:5f:7f:17:31:f4:19:5e:6f:09:ae:cd:46:1f: fa:09:3d:25:83:44:47:45:f3:ef:a0:20:09:cd:73: ca:6c:ab:89:fc:e2:52:72:fc:47:b7:9d:cb:15:63: fd:09:f2:49:52:63:cc:ac:3b:f0:bf:72:3e:b3:88: 7f:f1:fa:38:48:2d:ac:68:99:e3:aa:4c:32:fd:99: ac:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:35:55:42:AE:05:21:E4:50:74:38:59:EF:65:61:0C:F5:55:5A:2E X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:ee:99:f5:80:36:69:90:5e:6e:9e:de:97:e8:8e:2a:35:f9: d9:76:f3:b6:95:ee:bf:36:3c:a4:47:42:39:f8:db:7e:05:b9: 9b:1c:f2:2d:35:4c:0a:92:17:c8:c5:af:92:94:5e:ae:33:7e: 23:24:2a:c0:6c:7c:6b:9e:8c:96:dd:78:e2:58:47:45:16:77: 56:f4:66:5b:cc:60:ff:d7:29:04:02:91:67:3b:f6:c3:1a:81: f7:71:94:21:63:81:aa:c2:f7:6e:2e:25:8d:79:12:04:89:d9: ed:d2:b4:60:77:c9:13:8d:05:83:c0:32:89:c7:4b:11:99:53: de:35:12:c9:51:63:b5:4c:20:fd:fe:47:07:8a:cd:fc:09:0c: de:ce:d0:62:32:70:ac:15:8f:f4:36:ac:61:b1:99:aa:1b:d9: 55:5b:61:72:8f:a4:bf:46:4b:31:33:44:35:d2:b4:08:3e:f1: 40:74:10:ed:60:86:59:7a:ca:be:83:73:f8:2c:9b:c6:92:a7: 33:ed:8b:db:f6:22:ec:7b:30:af:3e:cf:b7:5d:94:d8:df:29: fd:dd:e9:c6:c0:d0:69:4f:05:04:39:bd:b7:cc:02:c0:86:bd: 9f:92:b8:37:3a:c9:7b:c6:2b:bd:10:64:73:79:c7:ca:0a:61: 81:99:cf:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjUxMDIyMjAwNjQ1WhcNMjUxMDI5MjAwNjQ1WjAYMRYwFAYD VQQDEw02OGY5Mzk1Ni04OTJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2djv+NAVW0kWSMnQnqFZx1Go2Cp1+SRroFeVLdlLBLVZo0AKxw6CVwaE4g0y Oc/r0QpUPMvXEfJzgRcCX1QtSMcEqfWzQIPODCqCg4LG6DnWoNwguD/gxGjE4T5g ulHlpgUVEGvl8oD5iMivs7WzhUMaGaBVelQWg/N4w305j2szqfH07+TZ6/v03H5X 8r76vmRM7fNLf+1POvtARLL8rx6oxmV5otEr6/sjfpNhrzS/mEK5ll9/FzH0GV5v Ca7NRh/6CT0lg0RHRfPvoCAJzXPKbKuJ/OJScvxHt53LFWP9CfJJUmPMrDvwv3I+ s4h/8fo4SC2saJnjqkwy/ZmsfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE1VUKu BSHkUHQ4We9lYQz1VVouMB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA27pn1gDZpkF5unt6X6I4qNfnZdvO2le6/NjykR0I5+Nt+BbmbHPIt NUwKkhfIxa+SlF6uM34jJCrAbHxrnoyW3XjiWEdFFndW9GZbzGD/1ykEApFnO/bD GoH3cZQhY4GqwvduLiWNeRIEidnt0rRgd8kTjQWDwDKJx0sRmVPeNRLJUWO1TCD9 /kcHis38CQzeztBiMnCsFY/0NqxhsZmqG9lVW2Fyj6S/RksxM0Q10rQIPvFAdBDt YIZZesq+g3P4LJvGkqcz7Yvb9iLsezCvPs+3XZTY3yn93enGwNBpTwUEOb23zALA hr2fkrg3Osl7xiu9EGRzecfKCmGBmc8c -----END CERTIFICATE-----Generated at Fri Oct 24 01:42:18 2025 by rpki-client