$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft File: DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft (raw, json) Hash identifier: HUcAHmaRk143i0PtNouPqJ9tsddZiq2NakUFcNTAAKk= Subject key identifier: D1:2B:E9:A0:90:90:1F:8E:B6:BB:4E:FC:10:37:20:20:CB:A1:56:01 Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 0A2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft Manifest number: 0A26 Signing time: Thu 04 Sep 2025 20:00:56 +0000 Manifest this update: Thu 04 Sep 2025 20:00:55 +0000 Manifest next update: Thu 11 Sep 2025 20:00:55 +0000 Files and hashes: 1: DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl (hash: UKqM4tM/jeiOvnT90On4M7smNYPMo2CyySnH8VRmTSc=) 2: A42489D8799211EAA230E17FC4F9AE02.roa (hash: OnZAowiVuvOnwLvfgL0R8vIbc2U3axlj1bMkwdwdu4I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2606 (0xa2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31, serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: Sep 4 20:00:55 2025 GMT Not After : Sep 11 20:00:55 2025 GMT Subject: CN=68b9eff8-8b32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:09:49:a1:90:93:f3:ba:35:59:ba:1d:e9:c9: b8:63:27:98:66:9f:63:3d:cd:c8:9e:3e:37:77:e9: 66:af:68:ea:27:27:6a:54:2e:2c:03:62:cd:73:9f: 80:18:d4:c5:fc:bf:1d:a9:1a:d2:42:74:be:58:ca: 34:1a:3f:21:3a:05:9d:ad:12:d3:ef:2a:2e:ee:92: 8e:b9:ee:59:3e:8d:6d:a5:69:5c:30:16:1e:c4:72: ea:6c:ad:9a:df:c3:d2:10:6b:35:3a:4b:8b:3d:0c: 67:c2:2b:c7:cf:7e:6e:5c:ce:aa:64:f1:50:8c:21: a6:d9:9d:0b:6a:d6:e4:8a:f5:1e:a7:bd:35:d0:21: 5e:fd:c7:4e:1e:c8:72:5a:b6:a0:b8:11:0d:6f:a1: 64:77:0e:95:20:a7:c5:25:1b:6a:67:ae:59:80:71: c8:07:41:22:bc:86:a6:87:71:04:41:dd:21:36:cb: 51:b7:fd:3c:89:b5:8d:90:c6:cf:00:29:71:f7:a6: 99:2d:de:0b:22:f9:aa:c8:78:d4:0e:ff:54:d3:0f: d8:5a:2a:ea:6e:93:1d:93:27:8c:90:73:e8:54:be: c5:06:b2:19:77:00:db:39:12:d3:cd:60:43:da:06: 73:57:1e:c8:2e:27:ae:49:c6:25:39:9c:67:f5:82: c8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2B:E9:A0:90:90:1F:8E:B6:BB:4E:FC:10:37:20:20:CB:A1:56:01 X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:6f:80:06:8f:6a:0b:3a:5f:d4:fb:f6:0b:15:d8:0b:5e:15: 45:16:24:15:bf:49:a0:a4:fd:f0:c7:b1:ac:f9:2e:24:45:3e: 46:42:e5:47:9c:dd:cd:d3:c3:f9:24:d3:e4:e2:95:14:34:9a: 54:84:a2:8a:7b:c2:84:38:d5:92:b7:c0:a3:87:6c:ce:f0:52: c6:bc:74:78:52:94:10:e7:1b:5e:8a:bd:eb:40:51:cd:f0:6a: 04:79:fe:49:80:af:ca:61:92:a3:de:19:d4:15:78:52:07:a8: b3:7c:b8:14:7d:d2:04:15:a7:3a:1c:6b:7a:2a:bd:b6:8f:13: c7:53:0e:bc:03:d6:c8:4d:7b:5a:4d:62:8b:4a:3a:ed:71:fc: d1:30:7c:e5:d9:d8:3d:8d:eb:a8:75:fa:00:23:5f:df:b0:09: 74:22:9f:6f:99:ff:96:c2:b7:3a:1a:bc:95:c2:f3:93:39:77: 24:ff:e0:4e:c4:a3:56:ec:b5:ac:5c:8b:ea:1e:19:b1:e8:b0: 76:a1:ce:94:35:f2:ba:81:20:c0:16:d2:ff:81:29:00:f7:76: 70:7b:83:a8:10:07:4c:7f:6f:07:ab:17:fb:40:b0:fa:84:fd: 6e:ff:1d:26:f6:94:16:dd:c2:5d:bf:72:0c:98:96:9a:9e:eb: 3e:b8:fd:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjUwOTA0MjAwMDU1WhcNMjUwOTExMjAwMDU1WjAYMRYwFAYD VQQDEw02OGI5ZWZmOC04YjMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywlJoZCT87o1Wbod6cm4YyeYZp9jPc3Inj43d+lmr2jqJydqVC4sA2LNc5+A GNTF/L8dqRrSQnS+WMo0Gj8hOgWdrRLT7you7pKOue5ZPo1tpWlcMBYexHLqbK2a 38PSEGs1OkuLPQxnwivHz35uXM6qZPFQjCGm2Z0LatbkivUep7010CFe/cdOHshy WraguBENb6Fkdw6VIKfFJRtqZ65ZgHHIB0EivIamh3EEQd0hNstRt/08ibWNkMbP AClx96aZLd4LIvmqyHjUDv9U0w/YWirqbpMdkyeMkHPoVL7FBrIZdwDbORLTzWBD 2gZzVx7ILieuScYlOZxn9YLIXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEr6aCQ kB+OtrtO/BA3ICDLoVYBMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RkUzMS9BQjc5NTZENDc5MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1Y Y1JUbTFHV3dwdlZXbjFPRDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEb4AGj2oLOl/U+/YLFdgLXhVFFiQVv0mgpP3wx7Gs+S4kRT5GQuVH nN3N08P5JNPk4pUUNJpUhKKKe8KEONWSt8Cjh2zO8FLGvHR4UpQQ5xteir3rQFHN 8GoEef5JgK/KYZKj3hnUFXhSB6izfLgUfdIEFac6HGt6Kr22jxPHUw68A9bITXta TWKLSjrtcfzRMHzl2dg9jeuodfoAI1/fsAl0Ip9vmf+Wwrc6GryVwvOTOXck/+BO xKNW7LWsXIvqHhmx6LB2oc6UNfK6gSDAFtL/gSkA93Zwe4OoEAdMf28Hqxf7QLD6 hP1u/x0m9pQW3cJdv3IMmJaanus+uP1j -----END CERTIFICATE-----Generated at Sat Sep 6 14:28:01 2025 by rpki-client