$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft File: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft (raw, json) Hash identifier: Xes8cYIEJSBJ50wOu9rSjOBwaNxsu5Q0zDaDA4TR85Q= Subject key identifier: 66:3D:D3:FD:24:9A:44:A5:4D:C9:88:BE:C2:0A:57:66:E3:C1:1D:F7 Authority key identifier: 76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 Certificate issuer: /CN=A912C8AF/serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Certificate serial: 0BA3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft Manifest number: 0B40 Signing time: Sat 06 Sep 2025 19:41:53 +0000 Manifest this update: Sat 06 Sep 2025 19:41:52 +0000 Manifest next update: Sat 13 Sep 2025 19:41:52 +0000 Files and hashes: 1: dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl (hash: oQgc9kDw5IlK6nRtmUA2GdBYT6VqUNkAElMGgfH14Ic=) 2: 9D060E183ED611ED8963B549C4F9AE02.roa (hash: 9HpfFO17Acvgd3bfoY1RRGMmr/S4lWCivU7zCXu99jQ=) 3: 261A2BA2F39611EDA98C5D4DC4F9AE02.roa (hash: NmSN6VJwUZ9ydFpM44jw4neBA26CzfMXA6i3a7+JHjs=) 4: 50448A72911411EF9CAF3E55C4F9AE02.roa (hash: f8EbYStIGSB7T55NTXn1S3YpmHpX1HZLI2JBGQCdMmI=) 5: DCFFE916452611EDA4853E62C4F9AE02.roa (hash: Ctrd7yzaoKhPJ1SZfLY/mtqd2cD4Mo1aULu0wXYXeDQ=) 6: 0FB29E462A0811EE9A08C30FC4F9AE02.roa (hash: uzF/Sz81usRWwgvdDfaWzl6XXZzJQh5pY9ywZtPzClI=) 7: 305F24342A0811EE9D810010C4F9AE02.roa (hash: Z2pbtlXOSAO+jQlJKET8nsnjJlOh2Bme2k6kxjJMw0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2979 (0xba3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=763F7FBD964A1C3668308C9A29E15025C0DDF9D4 Validity Not Before: Sep 6 19:41:52 2025 GMT Not After : Sep 13 19:41:52 2025 GMT Subject: CN=68bc8e80-9c5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1c:68:7f:65:13:49:bd:78:02:3c:ef:05:c2: be:f8:28:5a:c1:e6:c1:6c:86:83:3a:8b:88:70:c2: 5e:db:f5:e4:d4:ee:6c:e8:73:5b:4d:0c:be:80:e6: 6f:e1:20:52:93:05:83:1d:f6:28:81:48:74:df:9a: 20:14:ab:42:4a:62:fa:e5:8b:f4:7a:eb:1f:a0:11: ee:1a:98:a6:b2:2c:5a:d5:c9:ac:2b:6d:b3:ee:0b: 2b:ca:79:db:9f:25:e8:d9:a4:bf:81:14:01:17:8e: 25:83:26:31:e3:a6:91:4c:d3:b0:ef:d7:19:a0:ca: 4d:92:20:59:49:77:1a:23:4e:b6:97:60:a6:8a:eb: 6b:9f:ec:4b:1c:72:4b:5a:98:59:d7:01:d6:e4:2b: 7a:90:ff:4f:0c:a1:1d:4e:f3:74:79:60:1c:69:34: c1:83:66:c4:89:41:7e:56:86:c4:f9:d4:09:9d:04: 03:73:36:f8:4a:69:46:fb:1c:c6:5a:71:c8:57:16: 33:32:15:8b:00:9d:4d:31:a5:d9:37:bf:aa:4d:d4: d9:79:a6:9d:8d:a1:2b:b5:e5:6e:cd:ad:89:e2:3c: 90:d7:3a:24:a0:19:8f:b4:9a:27:d1:c7:b7:62:c0: 12:d1:bb:cf:3f:d0:36:7a:20:21:33:50:27:0d:ff: e3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:3D:D3:FD:24:9A:44:A5:4D:C9:88:BE:C2:0A:57:66:E3:C1:1D:F7 X509v3 Authority Key Identifier: keyid:76:3F:7F:BD:96:4A:1C:36:68:30:8C:9A:29:E1:50:25:C0:DD:F9:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/D1F64E725EEF11EAA54E6C6CC4F9AE02/dj9_vZZKHDZoMIyaKeFQJcDd-dQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:96:d2:a5:a2:1a:ba:66:32:71:5d:46:e1:fd:e7:55:fc:1d: 4e:f9:ab:cc:11:ed:29:5e:63:4f:ac:13:73:48:1e:62:7d:11: 7d:b3:02:16:7f:18:c8:de:9e:de:00:2a:2c:49:23:76:9e:a0: 39:03:50:41:8e:f4:fb:b3:c2:af:fa:cd:01:1c:7e:2b:44:7b: fc:91:57:37:a7:9a:6f:0a:0a:9d:b6:67:6b:04:6a:38:a4:08: 2f:a9:41:b8:ef:8e:c1:21:59:b2:09:53:9d:d0:b4:66:8f:54: 04:d2:94:72:ec:4d:cc:d2:67:58:b0:fd:af:44:ea:75:1f:3f: 30:94:32:26:c8:63:0a:df:24:03:85:08:44:e1:a7:86:19:b8: 9b:cf:6f:25:cc:2e:81:48:ca:27:80:6a:ad:e4:eb:bf:93:4b: 0c:0d:ef:44:38:cc:2f:e3:c1:91:c5:88:52:66:39:b0:ff:f1: 8b:2c:a3:69:79:25:87:98:0c:cb:c3:b0:b0:84:35:46:95:7a: f8:f2:22:23:75:61:73:29:22:e7:10:e8:72:b1:5d:14:11:ae: f0:55:96:72:8c:b6:01:10:1d:d4:91:1e:93:2c:67:af:99:a7: 83:ec:b2:11:0a:a4:64:ab:72:02:dd:10:d0:b4:3a:99:8d:4e: d4:78:3d:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDc2M0Y3RkJEOTY0QTFDMzY2ODMwOEM5QTI5RTE1MDI1 QzBEREY5RDQwHhcNMjUwOTA2MTk0MTUyWhcNMjUwOTEzMTk0MTUyWjAYMRYwFAYD VQQDEw02OGJjOGU4MC05YzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hxof2UTSb14AjzvBcK++ChawebBbIaDOouIcMJe2/Xk1O5s6HNbTQy+gOZv 4SBSkwWDHfYogUh035ogFKtCSmL65Yv0eusfoBHuGpimsixa1cmsK22z7gsrynnb nyXo2aS/gRQBF44lgyYx46aRTNOw79cZoMpNkiBZSXcaI062l2Cmiutrn+xLHHJL WphZ1wHW5Ct6kP9PDKEdTvN0eWAcaTTBg2bEiUF+VobE+dQJnQQDczb4SmlG+xzG WnHIVxYzMhWLAJ1NMaXZN7+qTdTZeaadjaErteVuza2J4jyQ1zokoBmPtJon0ce3 YsAS0bvPP9A2eiAhM1AnDf/jjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGY90/0k mkSlTcmIvsIKV2bjwR33MB8GA1UdIwQYMBaAFHY/f72WShw2aDCMminhUCXA3fnU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi9EMUY2NEU3MjVF RUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hEWm9NSXlhS2VGUUpjRGQt ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RqOV92WlpLSERab01JeWFLZUZRSmNEZC1kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QzhBRi9EMUY2NEU3MjVFRUYxMUVBQTU0RTZDNkNDNEY5QUUwMi9kajlfdlpaS0hE Wm9NSXlhS2VGUUpjRGQtZFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0ltKlohq6ZjJxXUbh/edV/B1O+avMEe0pXmNPrBNzSB5ifRF9swIW fxjI3p7eACosSSN2nqA5A1BBjvT7s8Kv+s0BHH4rRHv8kVc3p5pvCgqdtmdrBGo4 pAgvqUG4747BIVmyCVOd0LRmj1QE0pRy7E3M0mdYsP2vROp1Hz8wlDImyGMK3yQD hQhE4aeGGbibz28lzC6BSMongGqt5Ou/k0sMDe9EOMwv48GRxYhSZjmw//GLLKNp eSWHmAzLw7CwhDVGlXr48iIjdWFzKSLnEOhysV0UEa7wVZZyjLYBEB3UkR6TLGev maeD7LIRCqRkq3IC3RDQtDqZjU7UeD01 -----END CERTIFICATE-----Generated at Sun Sep 7 14:02:40 2025 by rpki-client