$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft File: dCWq4W3bRko-K0ecekDJkCODa6A.mft (raw, json) Hash identifier: 3bejDPdw4KPBH80DG5kPXXAXTjNIBEpTqn043hRBLNQ= Subject key identifier: 56:94:49:D9:A6:A3:B0:EE:8C:70:84:79:89:8A:66:4F:4F:22:00:7F Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 02E8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft Manifest number: 02D0 Signing time: Thu 21 Aug 2025 01:40:54 +0000 Manifest this update: Thu 21 Aug 2025 01:40:54 +0000 Manifest next update: Thu 28 Aug 2025 01:40:54 +0000 Files and hashes: 1: dCWq4W3bRko-K0ecekDJkCODa6A.crl (hash: nzzgB0MXKdXeR1PBANVvduFQfHfE49Fmhwfj5R4AaQ8=) 2: 9BA94A4A0D8911ED999D4F3BC4F9AE02.roa (hash: oF4weljdyCKoRiSGG2z17wTaQsEcpMts8sv9D62jJPE=) 3: A3C1A64E020811EF900CC60CC4F9AE02.roa (hash: D7GG+9V9VetFTo3WS2746v47jcVH9mGxmAznj65oILQ=) 4: 1EA5984A0BE111ED9E3AA135C4F9AE02.roa (hash: TJ9ECbrNmrbj5mhfI5HTyIvIslW5iwcIqu2ptc1cXhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:40:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 744 (0x2e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998, serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Aug 21 01:40:54 2025 GMT Not After : Aug 28 01:40:54 2025 GMT Subject: CN=68a67926-0247 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ac:eb:e7:2a:d5:f5:57:d9:b2:d3:e5:d4:d6: e6:87:8f:c6:51:b0:58:5f:69:a8:e0:65:a5:64:62: be:5b:e8:8e:35:60:d3:ae:f0:61:67:73:83:eb:3f: 37:c9:8b:a3:16:e2:e2:f0:bb:58:de:06:b3:0d:d1: 52:75:e0:34:67:27:6c:ea:e3:e3:93:7c:6b:a2:75: 04:d0:70:01:6d:d0:56:9d:8d:2c:35:09:9c:d4:38: ac:8d:ed:71:99:0a:96:50:ad:5a:2d:32:e5:75:05: bd:d5:28:2b:29:67:53:e8:8f:81:7b:3a:81:f2:3b: da:d4:29:8c:1d:c5:ab:f5:e7:6d:6f:c1:a8:51:d6: c3:bb:34:84:36:4d:0f:33:1a:4e:8e:e3:20:5b:00: 71:0c:17:e9:b6:50:41:fa:3d:b8:07:82:96:00:62: 4c:34:ca:5f:1a:15:24:9a:f4:79:68:33:55:f6:f2: 14:32:ce:ff:79:06:79:07:3e:25:75:c3:32:ff:58: 3a:fa:d8:c8:5d:95:37:3e:b1:79:81:e5:b4:5c:2d: 28:13:50:f4:9a:35:10:cf:64:c4:08:a7:6f:14:10: c5:6b:33:5e:d1:4a:a9:17:eb:9e:aa:b7:4c:b9:34: 34:35:f3:d9:10:ee:03:bd:da:ae:00:35:e6:50:59: fc:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:94:49:D9:A6:A3:B0:EE:8C:70:84:79:89:8A:66:4F:4F:22:00:7F X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:d2:b6:de:91:19:23:0e:50:d4:2e:e9:6f:ca:e1:73:d2:e4: 29:9b:1c:91:67:04:b3:aa:e8:a2:e1:d1:52:0e:d1:bc:72:65: 27:90:b8:0b:50:bd:8e:e2:b8:91:be:dd:91:ab:b3:6e:63:15: 23:e2:b5:f3:0d:f9:a7:8b:00:39:f5:6b:06:52:57:fb:8a:79: 31:e4:63:53:09:79:fb:42:9a:75:bb:89:ff:60:0e:61:c3:36: b0:ec:b3:f3:49:39:bb:43:63:44:5e:7b:bb:7c:b8:f7:6d:e9: 5f:e1:39:8f:9f:86:c8:06:4d:56:ce:eb:29:07:4a:fc:9f:8b: ef:39:bf:fd:81:4d:45:d2:a9:36:8c:67:81:22:bc:92:e8:82: b7:48:ec:1c:61:35:47:a4:f3:f0:a0:a5:17:d4:5d:5f:b6:cb: 06:e1:02:83:1b:72:06:6e:f3:13:c7:43:ef:ba:25:48:4b:02: 83:73:04:ee:ef:3a:35:40:39:ba:63:d1:32:0b:41:94:9f:f5: 04:0f:e0:d6:30:e0:f1:12:6b:b4:71:f2:5c:52:07:94:ac:4d: be:26:f4:75:bb:b0:90:6b:aa:c7:04:5f:f9:00:39:8d:b5:44: 93:58:06:4f:35:ab:e6:04:cc:3f:af:5a:80:2f:f3:42:23:d4: 65:dd:5d:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjUwODIxMDE0MDU0WhcNMjUwODI4MDE0MDU0WjAYMRYwFAYD VQQDEw02OGE2NzkyNi0wMjQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6zr5yrV9VfZstPl1Nbmh4/GUbBYX2mo4GWlZGK+W+iONWDTrvBhZ3OD6z83 yYujFuLi8LtY3gazDdFSdeA0Zyds6uPjk3xronUE0HABbdBWnY0sNQmc1Disje1x mQqWUK1aLTLldQW91SgrKWdT6I+BezqB8jva1CmMHcWr9edtb8GoUdbDuzSENk0P MxpOjuMgWwBxDBfptlBB+j24B4KWAGJMNMpfGhUkmvR5aDNV9vIUMs7/eQZ5Bz4l dcMy/1g6+tjIXZU3PrF5geW0XC0oE1D0mjUQz2TECKdvFBDFazNe0UqpF+ueqrdM uTQ0NfPZEO4DvdquADXmUFn8jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaUSdmm o7DujHCEeYmKZk9PIgB/MB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Mzk5OC8zMENDMDg0QTA4REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJr by1LMGVjZWtESmtDT0RhNkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu0rbekRkjDlDULulvyuFz0uQpmxyRZwSzquii4dFSDtG8cmUnkLgL UL2O4riRvt2Rq7NuYxUj4rXzDfmniwA59WsGUlf7inkx5GNTCXn7Qpp1u4n/YA5h wzaw7LPzSTm7Q2NEXnu7fLj3belf4TmPn4bIBk1WzuspB0r8n4vvOb/9gU1F0qk2 jGeBIryS6IK3SOwcYTVHpPPwoKUX1F1ftssG4QKDG3IGbvMTx0PvuiVISwKDcwTu 7zo1QDm6Y9EyC0GUn/UED+DWMODxEmu0cfJcUgeUrE2+JvR1u7CQa6rHBF/5ADmN tUSTWAZPNavmBMw/r1qAL/NCI9Rl3V1T -----END CERTIFICATE-----Generated at Thu Aug 21 16:30:53 2025 by rpki-client