$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft File: dEWTNjfMowmkwWGr_t-HecsqsT8.mft (raw, json) Hash identifier: rDN36FW6HLR0ASEwlH/Ydi27qLmzcgAuamZA0/uy76Y= Subject key identifier: 42:C8:42:2F:9E:09:1B:8B:11:9C:AA:B8:B4:EC:51:17:86:DF:E4:51 Authority key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F Certificate issuer: /CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft Manifest number: A8 Signing time: Fri 05 Sep 2025 05:09:21 +0000 Manifest this update: Fri 05 Sep 2025 05:09:20 +0000 Manifest next update: Fri 12 Sep 2025 05:09:20 +0000 Files and hashes: 1: dEWTNjfMowmkwWGr_t-HecsqsT8.crl (hash: 3aiZ/N3NLKtXwuL6JMG82pU/7xMndafcieoqOxcP9Mo=) 2: 9E3D544AFFFD11EF8D8A924EC4F9AE02.roa (hash: kvDpEJ4vNqB5v/40TPE8rSrj+LHjgO0UCi0Xf8q1/Kg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:09:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E53C, serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Validity Not Before: Sep 5 05:09:20 2025 GMT Not After : Sep 12 05:09:20 2025 GMT Subject: CN=68ba7081-3309 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3e:3b:fa:9c:44:f5:06:05:4e:33:cd:86:47: 07:10:6f:a0:a8:ba:d6:bd:8f:3b:61:b1:b3:bb:74: 52:2c:b9:4f:6c:16:55:a1:fa:89:49:c7:4e:15:59: e3:0e:be:3f:a2:de:d7:20:7d:7f:58:95:74:99:7d: ab:5b:72:78:94:b9:5d:d5:4c:d5:82:54:2a:9d:45: 19:7b:6c:62:46:1b:a0:38:ee:1c:e6:60:21:5d:7a: 7d:6f:bf:7b:16:ed:ed:84:a3:79:2d:53:c2:86:12: 15:a7:89:69:94:4c:f2:55:ef:6d:b8:47:0e:ee:d5: 38:1e:7e:af:12:0a:5a:dc:c9:36:69:d1:f6:66:cf: 32:22:a0:b1:8f:e4:b4:4e:f6:d0:99:8b:d2:91:af: d7:43:d3:50:67:cc:d1:db:e7:d0:01:2b:9d:5e:0a: b4:5d:16:11:9e:11:8e:03:fc:6b:bb:7a:97:78:7a: bf:19:3d:97:7f:d3:42:8e:4d:88:eb:51:46:fd:8d: 0f:1b:e4:cf:27:ba:42:00:a8:77:f3:4d:e9:83:48: d8:89:c7:31:ba:22:df:fa:af:2b:a8:86:16:41:29: e6:01:88:cd:cd:a8:c9:f7:f1:ce:d6:b1:5d:00:ba: cb:93:d8:01:c8:d6:ac:bd:60:dd:e5:60:80:4b:0a: 07:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:C8:42:2F:9E:09:1B:8B:11:9C:AA:B8:B4:EC:51:17:86:DF:E4:51 X509v3 Authority Key Identifier: keyid:74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:6e:15:22:21:3f:87:4c:e1:cb:94:36:35:15:fe:25:25:a9: 38:ae:ba:33:90:1f:5f:db:f9:e0:52:bf:3c:ef:62:71:a8:9f: ad:5b:10:1d:7e:b1:dd:1c:4c:c0:fa:84:7b:8d:b2:9d:68:8d: bd:2d:0e:6b:9c:e8:80:4b:9f:5a:fd:e5:f1:6a:29:a3:28:86: 7e:03:ac:df:75:22:e1:d6:f0:64:f2:cd:d0:30:0f:88:e1:8a: 52:c8:2b:d5:c7:73:64:9d:71:e1:86:f7:0d:d9:54:4e:5d:63: 38:57:94:bd:f9:ae:57:bd:c9:a2:b0:d3:69:0b:ed:55:7a:06: 06:fe:ea:03:84:e0:ae:3c:ee:b8:5d:4a:05:ef:79:67:8e:cf: 15:7f:61:6b:85:85:3f:55:08:34:db:c1:39:ea:a5:ea:c8:ff: fd:da:bb:63:e8:7f:fe:d4:60:0f:76:d2:06:07:5e:fe:4a:dd: 40:c7:68:4d:07:36:49:53:50:f3:75:9f:58:ba:ab:c4:b7:c1: 5b:d5:16:db:23:99:0e:65:63:de:e9:b6:9d:ea:52:7a:6e:4b: 23:52:18:c0:04:61:4a:21:83:43:17:1e:30:39:1f:92:7b:52: e7:40:0d:f3:5a:43:a6:a9:e4:2d:eb:78:d9:a9:14:3d:a0:ab: 9c:63:21:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1M0MxMTAvBgNVBAUTKDc0NDU5MzM2MzdDQ0EzMDlBNEMxNjFBQkZFREY4Nzc5 Q0IyQUIxM0YwHhcNMjUwOTA1MDUwOTIwWhcNMjUwOTEyMDUwOTIwWjAYMRYwFAYD VQQDEw02OGJhNzA4MS0zMzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6j47+pxE9QYFTjPNhkcHEG+gqLrWvY87YbGzu3RSLLlPbBZVofqJScdOFVnj Dr4/ot7XIH1/WJV0mX2rW3J4lLld1UzVglQqnUUZe2xiRhugOO4c5mAhXXp9b797 Fu3thKN5LVPChhIVp4lplEzyVe9tuEcO7tU4Hn6vEgpa3Mk2adH2Zs8yIqCxj+S0 TvbQmYvSka/XQ9NQZ8zR2+fQASudXgq0XRYRnhGOA/xru3qXeHq/GT2Xf9NCjk2I 61FG/Y0PG+TPJ7pCAKh3803pg0jYiccxuiLf+q8rqIYWQSnmAYjNzajJ9/HO1rFd ALrLk9gByNasvWDd5WCASwoHNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELIQi+e CRuLEZyquLTsUReG3+RRMB8GA1UdIwQYMBaAFHRFkzY3zKMJpMFhq/7fh3nLKrE/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTUzQy8yOUI4Njk5NDkw M0ExMUVGQkYxNTZEODFDNEY5QUUwMi9kRVdUTmpmTW93bWt3V0dyX3QtSGVjc3Fz VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RFV1ROamZNb3dta3dXR3JfdC1IZWNzcXNUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTUzQy8yOUI4Njk5NDkwM0ExMUVGQkYxNTZEODFDNEY5QUUwMi9kRVdUTmpmTW93 bWt3V0dyX3QtSGVjc3FzVDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfbhUiIT+HTOHLlDY1Ff4lJak4rrozkB9f2/ngUr8872JxqJ+tWxAd frHdHEzA+oR7jbKdaI29LQ5rnOiAS59a/eXxaimjKIZ+A6zfdSLh1vBk8s3QMA+I 4YpSyCvVx3NknXHhhvcN2VROXWM4V5S9+a5XvcmisNNpC+1VegYG/uoDhOCuPO64 XUoF73lnjs8Vf2FrhYU/VQg028E56qXqyP/92rtj6H/+1GAPdtIGB17+St1Ax2hN BzZJU1DzdZ9YuqvEt8Fb1RbbI5kOZWPe6bad6lJ6bksjUhjABGFKIYNDFx4wOR+S e1LnQA3zWkOmqeQt63jZqRQ9oKucYyFs -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:11 2025 by rpki-client