$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft File: dOW7m208x_jCmoO9yEkrllnw7hc.mft (raw, json) Hash identifier: sZLWQTYK9xK99GlbHvk3SPgGtdMNB/9m+ARjl5JCt2A= Subject key identifier: 76:0D:BA:14:CF:D7:D9:FD:EC:90:45:92:FF:11:26:AD:6B:99:90:3C Authority key identifier: 74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 Certificate issuer: /CN=A91620E0/serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Certificate serial: 0EE0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft Manifest number: 0D99 Signing time: Sat 06 Sep 2025 19:10:00 +0000 Manifest this update: Sat 06 Sep 2025 19:10:00 +0000 Manifest next update: Sat 13 Sep 2025 19:10:00 +0000 Files and hashes: 1: dOW7m208x_jCmoO9yEkrllnw7hc.crl (hash: TivOFd5X4N1rvyRYT0M9oU25mo2wthmlcm0RZaRIIo0=) 2: 1CC3EA9EF83911EF9736296CC4F9AE02.roa (hash: 6Pi+AcjQmgkSt7LQCM8O94HpFlAA8PbPulU9ElH1QXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 18:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3808 (0xee0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0, serialNumber=74E5BB9B6D3CC7F8C29A83BDC8492B9659F0EE17 Validity Not Before: Sep 6 19:10:00 2025 GMT Not After : Sep 13 19:10:00 2025 GMT Subject: CN=68bc8708-a1ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:97:46:06:9a:fb:fd:56:e3:4e:8e:20:55:7f: 5c:46:12:9f:80:b2:37:b1:a6:b3:c9:de:59:8e:1e: d7:95:b9:b7:76:9f:dc:91:1a:d6:9b:dd:75:aa:4e: bf:02:7e:6f:e0:da:48:10:f9:d9:4d:6a:8a:f3:2c: f7:68:b4:1e:53:84:f5:c0:e5:5c:57:2a:5f:22:6d: 19:8f:4b:c0:da:e1:39:a8:ef:5d:c3:3d:7a:19:f8: aa:8e:b2:26:93:6a:6a:37:53:58:63:d0:24:c1:ab: 56:66:af:94:54:75:31:39:7d:55:bb:19:37:fd:97: ea:00:1d:0f:95:f9:fd:18:40:ec:e0:df:68:4e:50: 79:88:48:e4:28:81:b4:7a:07:49:49:c0:f2:da:7b: aa:ae:2b:8f:df:aa:7e:80:9d:7e:5c:e9:3d:7a:af: 0d:9c:3d:d1:30:31:ea:53:34:82:18:e7:61:1d:32: 34:2e:de:1e:4a:bc:a6:ec:47:2d:d0:79:fe:33:17: 77:95:91:fc:be:87:74:d2:46:c1:9a:a1:6a:62:67: a3:c9:df:2b:2c:fc:6d:0e:9e:b4:a3:3f:e7:04:3c: d3:9f:75:1f:f9:f3:89:cb:c2:98:24:32:51:df:ef: 27:30:ad:d3:4c:66:6b:ef:5b:52:25:8e:16:7a:33: 38:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:0D:BA:14:CF:D7:D9:FD:EC:90:45:92:FF:11:26:AD:6B:99:90:3C X509v3 Authority Key Identifier: keyid:74:E5:BB:9B:6D:3C:C7:F8:C2:9A:83:BD:C8:49:2B:96:59:F0:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dOW7m208x_jCmoO9yEkrllnw7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/D964B482310E11EA9C3CE72FC4F9AE02/dOW7m208x_jCmoO9yEkrllnw7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:ef:a2:24:93:0f:a4:6b:1e:f2:67:06:ba:f0:83:fe:c0:dc: f7:19:f9:be:c2:28:5b:c4:5f:1a:fb:d9:fd:8b:81:3d:8a:c6: c7:37:3b:78:d0:ea:ff:b2:b6:ab:f8:28:a6:a3:d1:9e:b4:c3: 94:48:17:5f:5b:45:88:26:c9:56:77:d2:5c:6a:69:fd:b8:7f: 3c:0d:78:e3:0c:a1:72:a1:64:f0:d3:20:c1:25:00:cd:76:15: 40:e9:c2:dd:5f:a4:62:4c:08:9b:37:54:07:46:79:e7:88:bb: 00:bf:75:fb:ad:74:13:88:33:dd:44:82:b4:9c:5e:dc:00:24: 5a:9d:07:dc:3b:18:28:1a:de:d0:57:6c:92:d4:f9:f1:86:b0: 1e:4e:0f:ce:a6:bc:fd:ef:ea:85:db:80:70:b4:4f:1f:0d:a3: 28:85:23:51:0c:bb:e2:25:ac:15:b6:2b:60:de:05:68:78:d5: ca:13:f4:c9:b9:6e:cd:e5:fa:b4:f0:d6:63:29:c1:73:a8:ab: f3:a5:54:db:92:72:ae:c6:9d:b9:d3:f3:ef:ed:cf:73:27:39: 82:18:44:60:38:7a:d8:f6:88:28:f0:93:b4:a8:13:f3:63:52: f0:6c:df:c7:01:7f:e7:5e:87:3e:f2:b6:98:54:48:09:d0:71: 4b:2b:d7:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKDc0RTVCQjlCNkQzQ0M3RjhDMjlBODNCREM4NDkyQjk2 NTlGMEVFMTcwHhcNMjUwOTA2MTkxMDAwWhcNMjUwOTEzMTkxMDAwWjAYMRYwFAYD VQQDEw02OGJjODcwOC1hMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJdGBpr7/VbjTo4gVX9cRhKfgLI3saazyd5Zjh7Xlbm3dp/ckRrWm911qk6/ An5v4NpIEPnZTWqK8yz3aLQeU4T1wOVcVypfIm0Zj0vA2uE5qO9dwz16GfiqjrIm k2pqN1NYY9AkwatWZq+UVHUxOX1Vuxk3/ZfqAB0Plfn9GEDs4N9oTlB5iEjkKIG0 egdJScDy2nuqriuP36p+gJ1+XOk9eq8NnD3RMDHqUzSCGOdhHTI0Lt4eSrym7Ect 0Hn+Mxd3lZH8vod00kbBmqFqYmejyd8rLPxtDp60oz/nBDzTn3Uf+fOJy8KYJDJR 3+8nMK3TTGZr71tSJY4WejM4RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHYNuhTP 19n97JBFkv8RJq1rmZA8MB8GA1UdIwQYMBaAFHTlu5ttPMf4wpqDvchJK5ZZ8O4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9EOTY0QjQ4MjMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhfakNtb085eUVrcmxsbnc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RPVzdtMjA4eF9qQ21vTzl5RWtybGxudzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjBFMC9EOTY0QjQ4MjMxMEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9kT1c3bTIwOHhf akNtb085eUVrcmxsbnc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+76Ikkw+kax7yZwa68IP+wNz3Gfm+wihbxF8a+9n9i4E9isbHNzt4 0Or/srar+Cimo9GetMOUSBdfW0WIJslWd9Jcamn9uH88DXjjDKFyoWTw0yDBJQDN dhVA6cLdX6RiTAibN1QHRnnniLsAv3X7rXQTiDPdRIK0nF7cACRanQfcOxgoGt7Q V2yS1PnxhrAeTg/Oprz97+qF24BwtE8fDaMohSNRDLviJawVtitg3gVoeNXKE/TJ uW7N5fq08NZjKcFzqKvzpVTbknKuxp250/Pv7c9zJzmCGERgOHrY9ogo8JO0qBPz Y1LwbN/HAX/nXoc+8raYVEgJ0HFLK9fm -----END CERTIFICATE-----Generated at Sat Sep 6 20:53:01 2025 by rpki-client