$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft File: D9l6GEHJl08fSQQu2j5yhCGq5f4.mft (raw, json) Hash identifier: xlfCpyu9HpqBMiAbHo9gl/t3UwLmq+PV/CheOU4hI54= Subject key identifier: E6:3B:2E:07:86:9C:65:CE:9D:4C:22:FF:D8:35:00:3F:C2:5A:A9:F1 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0813 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft Manifest number: 0802 Signing time: Sat 06 Sep 2025 21:11:30 +0000 Manifest this update: Sat 06 Sep 2025 21:11:29 +0000 Manifest next update: Sat 13 Sep 2025 21:11:29 +0000 Files and hashes: 1: D9l6GEHJl08fSQQu2j5yhCGq5f4.crl (hash: L8d8MkGRXjf0EKj/7Tgm5db9HdNJjkBz/m9cFtcCd40=) 2: D31B3092F40911EA8A5C9E70C4F9AE02.roa (hash: ypu19bei6HfdziAUkQKrmGrUpzhyQcDpqvAElnhFxJ8=) 3: D25A6970F40911EA8A5C9E70C4F9AE02.roa (hash: IN3RfDkD8NjweSOu/JOBHYJplR97v1OTcMrbU5p1LVw=) 4: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (hash: 2VJGwp3cB6SQYB5sCKPYP1OXIy417U6bgx3FYDkVNxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:11:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B, serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Sep 6 21:11:29 2025 GMT Not After : Sep 13 21:11:29 2025 GMT Subject: CN=68bca381-2fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:80:fc:8f:63:50:44:47:17:34:11:a0:69:03: 1e:38:09:36:44:5a:68:7d:98:a8:a9:eb:54:4d:51: 77:67:49:db:16:66:0c:7d:cc:d7:9c:b6:a5:01:1f: 4c:da:b1:a4:69:ed:8d:0b:c8:9d:72:d4:7d:2b:b5: 65:54:e0:5f:38:0f:89:b3:49:ba:0f:64:a7:f7:9b: c7:15:75:28:75:55:d4:3a:c1:c9:76:ff:ad:40:21: 9c:96:a9:03:b8:22:fc:56:15:6e:ea:65:6e:1f:91: ce:04:cb:8a:f0:d6:04:0d:de:c6:4e:cc:58:36:ce: ff:e4:76:c8:9b:ed:34:58:08:ef:fd:30:e9:97:73: bb:63:88:09:03:0c:7d:cf:5c:21:60:0a:55:47:38: 06:d9:bd:a3:ab:d7:45:50:35:1e:e4:66:0a:3d:eb: 90:5a:e0:65:e2:3b:e3:8c:42:cf:f6:b3:53:92:9c: 0f:b2:50:00:01:eb:04:bf:15:dd:ca:ae:7f:b6:a6: 89:64:29:de:23:00:db:08:08:97:31:7b:8b:2d:83: 75:74:bf:48:65:07:18:f6:55:b2:2b:91:14:32:67: 10:d5:1e:f5:97:6c:74:da:ca:e0:d7:2a:31:0c:cd: 25:6b:be:38:1f:1f:57:8b:b3:d1:2c:34:51:13:0b: 20:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:3B:2E:07:86:9C:65:CE:9D:4C:22:FF:D8:35:00:3F:C2:5A:A9:F1 X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:43:5e:c8:1e:10:00:16:0c:a2:8b:21:ff:bb:a3:64:ef:76: eb:7b:a0:cb:04:e8:91:fb:93:55:82:30:3a:af:65:fb:10:45: 88:d6:35:6f:fa:f0:61:b9:06:b6:44:66:17:34:4d:74:61:4d: 76:17:40:dc:40:c1:98:9d:bb:84:95:cb:ba:f6:e0:08:81:82: 79:0c:df:e1:22:76:e6:a4:5e:83:ed:db:6f:65:b1:92:c5:a7: 0c:35:bb:12:74:bc:d8:2f:61:38:90:a6:5c:0a:2d:4f:5d:54: 69:40:7f:f5:78:7f:86:05:f1:e0:d3:88:2c:f7:a5:45:3c:5b: 15:ed:3a:23:40:b8:6f:84:e2:00:75:e6:53:e7:17:65:65:11: 3f:36:35:f3:5c:0a:f1:bc:a5:e3:48:7a:63:c8:77:69:53:d7: d0:66:ec:f8:de:49:45:d0:ef:21:d3:38:f4:c0:73:59:90:eb: 99:d6:52:02:29:1d:ec:f6:87:c4:99:a2:f9:73:46:2a:1d:12: 3b:ab:e7:44:45:e0:ce:8a:3e:d5:32:d3:1b:d2:a4:3f:ad:aa: c8:73:d7:3e:7d:9b:51:da:c7:02:5c:2c:ee:8e:e5:93:44:b9: f2:01:57:3e:d9:64:6c:85:04:d8:3a:ad:7d:66:a7:06:df:bf: a0:62:7e:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjUwOTA2MjExMTI5WhcNMjUwOTEzMjExMTI5WjAYMRYwFAYD VQQDEw02OGJjYTM4MS0yZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4D8j2NQREcXNBGgaQMeOAk2RFpofZioqetUTVF3Z0nbFmYMfczXnLalAR9M 2rGkae2NC8idctR9K7VlVOBfOA+Js0m6D2Sn95vHFXUodVXUOsHJdv+tQCGclqkD uCL8VhVu6mVuH5HOBMuK8NYEDd7GTsxYNs7/5HbIm+00WAjv/TDpl3O7Y4gJAwx9 z1whYApVRzgG2b2jq9dFUDUe5GYKPeuQWuBl4jvjjELP9rNTkpwPslAAAesEvxXd yq5/tqaJZCneIwDbCAiXMXuLLYN1dL9IZQcY9lWyK5EUMmcQ1R71l2x02srg1yox DM0la744Hx9Xi7PRLDRREwsgzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOY7LgeG nGXOnUwi/9g1AD/CWqnxMB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUQyQi84QjY3MDBBNkY0MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmww OGZTUVF1Mmo1eWhDR3E1ZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChQ17IHhAAFgyiiyH/u6Nk73bre6DLBOiR+5NVgjA6r2X7EEWI1jVv +vBhuQa2RGYXNE10YU12F0DcQMGYnbuElcu69uAIgYJ5DN/hInbmpF6D7dtvZbGS xacMNbsSdLzYL2E4kKZcCi1PXVRpQH/1eH+GBfHg04gs96VFPFsV7TojQLhvhOIA deZT5xdlZRE/NjXzXArxvKXjSHpjyHdpU9fQZuz43klF0O8h0zj0wHNZkOuZ1lIC KR3s9ofEmaL5c0YqHRI7q+dEReDOij7VMtMb0qQ/rarIc9c+fZtR2scCXCzujuWT RLnyAVc+2WRshQTYOq19ZqcG37+gYn4Z -----END CERTIFICATE-----Generated at Mon Sep 8 10:05:16 2025 by rpki-client