$ rpki-client -vvf rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft File: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft (raw, json) Hash identifier: zMPNw+D6j+rciYHW17PhxhNRO/x14PEjZcOMx4GLthw= Subject key identifier: E3:72:BC:9E:7D:08:E2:F4:9A:49:44:3C:E9:85:38:85:DB:0A:BB:10 Authority key identifier: 0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 Certificate issuer: /CN=A9157ADC/serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Certificate serial: 0263 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft Manifest number: 0260 Signing time: Mon 15 Sep 2025 02:08:56 +0000 Manifest this update: Mon 15 Sep 2025 02:08:55 +0000 Manifest next update: Mon 22 Sep 2025 02:08:55 +0000 Files and hashes: 1: DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl (hash: KenkZg6Xdrz7PYco16rM0beVgWAb8vTvwQkGH2C7nP0=) 2: 88FCD2C62DBA11ED94AFED62C4F9AE02.roa (hash: XW5eQLHT9pjam4DydX+MPOf7MxBb8MiFoha5U/4pDCM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 02:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 611 (0x263) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157ADC, serialNumber=0C4C17229C6AB67F543FEC9C4D03E5FEE4ED2FF6 Validity Not Before: Sep 15 02:08:55 2025 GMT Not After : Sep 22 02:08:55 2025 GMT Subject: CN=68c77537-6c36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6d:30:cf:4c:e8:24:db:4f:f7:b6:87:bc:4c: 2d:71:82:f3:77:d1:76:71:7d:81:95:0d:9d:b5:c9: 27:49:8f:11:e2:2f:e7:cd:7e:76:6e:5b:43:8a:5b: 46:bc:17:61:66:e7:3b:1e:fc:99:98:cc:aa:2e:aa: 12:82:5d:d2:43:d3:f1:0a:e3:07:30:e6:65:26:5f: a1:b3:3d:5b:06:32:45:80:af:5e:56:d7:6e:c7:35: fc:80:00:a2:0c:b6:58:a2:25:a4:b0:43:c1:10:ac: 25:9a:fb:2e:5b:93:ad:2f:0a:0c:25:9d:ff:5c:85: aa:27:3f:f3:14:eb:94:e7:bd:2b:ce:b0:65:c6:e7: 62:d0:b5:70:41:a8:5b:71:c4:fa:b2:b1:32:15:ff: dd:bf:e7:98:07:b3:59:64:57:a6:28:31:61:ae:e6: d9:d5:b0:a6:56:a9:e9:54:1c:9e:c3:0b:f6:26:ca: 79:37:c1:c6:4e:4e:c6:91:e7:7d:70:84:86:b9:9c: d2:e6:05:11:4e:86:d5:36:c7:f4:f3:39:42:95:94: 25:58:aa:5b:46:fc:a8:f9:6d:6c:d5:e3:08:05:f8: 8b:c3:3e:0d:2f:72:92:cf:31:69:e1:68:1e:e3:92: e7:f8:01:25:b6:7f:85:97:db:09:c7:1e:bc:57:9a: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:72:BC:9E:7D:08:E2:F4:9A:49:44:3C:E9:85:38:85:DB:0A:BB:10 X509v3 Authority Key Identifier: keyid:0C:4C:17:22:9C:6A:B6:7F:54:3F:EC:9C:4D:03:E5:FE:E4:ED:2F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157ADC/F57589E22DB611ED82159B5EC4F9AE02/DEwXIpxqtn9UP-ycTQPl_uTtL_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:dc:92:b9:e1:5c:ca:ff:2b:41:d5:13:36:0c:61:0a:c3:20: 84:4d:a2:25:46:93:eb:bb:c9:37:0c:5e:75:c5:d6:4a:3f:d7: 6d:64:ac:85:43:65:77:33:26:c7:c0:d0:c2:9c:4f:6f:4c:f7: ea:21:2e:4f:39:3c:29:09:fc:02:cc:53:10:5b:25:e0:47:76: 40:72:2e:50:9a:e0:3e:67:dc:28:62:f6:a8:5c:68:aa:c7:53: 18:ad:f3:4b:d9:b0:83:35:73:cd:24:d5:b8:81:05:db:a4:4c: f1:59:be:a8:e6:9b:cc:28:f8:47:85:c4:4a:8b:93:ed:1a:cf: c3:4d:85:17:9f:bd:8b:9b:75:84:9b:e4:b5:21:79:35:17:ce: 4b:cc:4b:e5:3f:df:24:d6:32:a8:7d:3c:9c:c9:10:1d:2a:76: b7:7d:fe:53:0e:df:fd:94:7c:02:f2:34:17:63:b9:d4:92:40: 82:3c:7d:0b:50:e5:32:39:40:e2:91:44:2f:c5:ff:92:9d:2f: 01:a8:bf:86:92:6a:68:6f:cd:c4:8a:53:70:e0:f6:ab:f1:38: 17:4a:99:06:11:70:89:47:52:cc:ce:9b:e3:79:aa:41:95:5a: 58:e0:b0:87:3f:c6:41:74:7c:0e:ec:40:d7:01:72:37:d4:25: ab:77:98:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdBREMxMTAvBgNVBAUTKDBDNEMxNzIyOUM2QUI2N0Y1NDNGRUM5QzREMDNFNUZF RTRFRDJGRjYwHhcNMjUwOTE1MDIwODU1WhcNMjUwOTIyMDIwODU1WjAYMRYwFAYD VQQDEw02OGM3NzUzNy02YzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5G0wz0zoJNtP97aHvEwtcYLzd9F2cX2BlQ2dtcknSY8R4i/nzX52bltDiltG vBdhZuc7HvyZmMyqLqoSgl3SQ9PxCuMHMOZlJl+hsz1bBjJFgK9eVtduxzX8gACi DLZYoiWksEPBEKwlmvsuW5OtLwoMJZ3/XIWqJz/zFOuU570rzrBlxudi0LVwQahb ccT6srEyFf/dv+eYB7NZZFemKDFhrubZ1bCmVqnpVByewwv2Jsp5N8HGTk7Gked9 cISGuZzS5gURTobVNsf08zlClZQlWKpbRvyo+W1s1eMIBfiLwz4NL3KSzzFp4Wge 45Ln+AEltn+Fl9sJxx68V5phPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFONyvJ59 COL0mklEPOmFOIXbCrsQMB8GA1UdIwQYMBaAFAxMFyKcarZ/VD/snE0D5f7k7S/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0FEQy9GNTc1ODlFMjJE QjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRuOVVQLXljVFFQbF91VHRM X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RFd1hJcHhxdG45VVAteWNUUVBsX3VUdExfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0FEQy9GNTc1ODlFMjJEQjYxMUVEODIxNTlCNUVDNEY5QUUwMi9ERXdYSXB4cXRu OVVQLXljVFFQbF91VHRMX1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAe3JK54VzK/ytB1RM2DGEKwyCETaIlRpPru8k3DF51xdZKP9dtZKyF Q2V3MybHwNDCnE9vTPfqIS5POTwpCfwCzFMQWyXgR3ZAci5QmuA+Z9woYvaoXGiq x1MYrfNL2bCDNXPNJNW4gQXbpEzxWb6o5pvMKPhHhcRKi5PtGs/DTYUXn72Lm3WE m+S1IXk1F85LzEvlP98k1jKofTycyRAdKna3ff5TDt/9lHwC8jQXY7nUkkCCPH0L UOUyOUDikUQvxf+SnS8BqL+Gkmpob83EilNw4Par8TgXSpkGEXCJR1LMzpvjeapB lVpY4LCHP8ZBdHwO7EDXAXI31CWrd5gX -----END CERTIFICATE-----Generated at Mon Sep 15 12:11:27 2025 by rpki-client