$ rpki-client -vvf rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft File: dyPYVuUggiTyvImjgJd39SgzEvw.mft (raw, json) Hash identifier: PJ7hk9A38gsv2R2VooTsnKuZhKg6lrlLK7hUY3gAd60= Subject key identifier: 05:E1:9D:B6:51:14:9A:3E:BE:35:E4:A8:44:F3:95:8A:06:FB:00:B3 Authority key identifier: 77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC Certificate issuer: /CN=A9163EDF/serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft Manifest number: 014C Signing time: Wed 17 Sep 2025 04:49:54 +0000 Manifest this update: Wed 17 Sep 2025 04:49:54 +0000 Manifest next update: Wed 24 Sep 2025 04:49:54 +0000 Files and hashes: 1: dyPYVuUggiTyvImjgJd39SgzEvw.crl (hash: AdU0MrEQeJaLVXKtKZWtbJQl0b2G/5evscIy+kLrkW0=) 2: 7FB5CBF097DB11EE8E67BA41C4F9AE02.roa (hash: ZWPK2ab0Ef3qAN+iabKfnFGe44+77H2KgSLOA0dY0EQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163EDF, serialNumber=7723D856E5208224F2BC89A3809777F5283312FC Validity Not Before: Sep 17 04:49:54 2025 GMT Not After : Sep 24 04:49:54 2025 GMT Subject: CN=68ca3df2-d532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:52:aa:29:58:76:3b:11:c7:87:46:ae:9a:5f: f4:98:ce:51:de:2a:49:ec:29:1a:08:bc:d4:86:9f: 01:0a:5c:11:8f:73:82:d3:46:2f:06:52:94:44:79: 54:9c:09:15:6b:a3:ce:96:03:19:d1:75:8e:2f:ec: ef:9b:c9:4f:3a:e4:a2:13:96:19:06:ca:82:30:43: b8:a1:2e:73:88:76:e4:71:8b:fa:ca:33:89:14:28: f2:d2:6f:be:93:52:86:52:2a:72:53:b8:c3:30:42: 70:e2:73:e5:1f:09:1a:68:81:57:5c:af:ea:05:c8: 0c:cc:9d:69:83:c9:3d:fb:de:91:16:79:eb:9a:8e: 8f:61:24:5c:71:66:72:fb:11:c0:b7:26:74:1c:f5: 81:b0:3d:57:fb:60:0e:96:13:41:26:a4:6c:87:08: 8a:47:c4:85:14:94:f1:07:1a:d1:54:61:a2:50:87: 64:68:4a:bd:ef:b7:cb:38:4a:1b:a5:70:90:f0:9a: 21:25:ba:83:af:1d:39:cc:a0:a9:24:74:ff:77:20: 2c:5f:9e:91:2a:7f:f9:02:a2:81:cb:a3:ef:ff:b6: b3:77:21:c0:c4:7c:05:df:c3:06:fa:6e:33:c4:21: 42:de:56:04:50:af:d6:ff:ff:9d:f4:67:92:bf:e8: 24:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E1:9D:B6:51:14:9A:3E:BE:35:E4:A8:44:F3:95:8A:06:FB:00:B3 X509v3 Authority Key Identifier: keyid:77:23:D8:56:E5:20:82:24:F2:BC:89:A3:80:97:77:F5:28:33:12:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyPYVuUggiTyvImjgJd39SgzEvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163EDF/D8A7C736972211EE99AC337EC4F9AE02/dyPYVuUggiTyvImjgJd39SgzEvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:85:96:f0:a4:96:41:5d:66:17:9b:d3:f6:be:31:df:dc:dd: cb:98:69:fb:c9:e7:52:dd:51:de:68:40:77:9c:ba:f6:b2:27: fc:81:6a:c8:f8:c3:26:65:67:a2:32:ab:c0:18:d6:00:2a:32: f6:c4:3c:b2:dd:df:b5:b0:65:ca:30:43:fd:13:85:99:a1:5c: 52:65:a8:2e:8c:b1:26:26:0e:42:26:d9:64:39:cb:14:85:8e: b9:5b:8f:e4:2a:60:87:68:93:6a:fb:98:43:b9:74:98:5b:a3: cc:16:a1:a1:53:6a:88:6c:12:03:70:c0:73:ae:40:ef:a6:88: 82:5c:74:29:b3:92:48:99:16:fa:41:56:33:37:ca:eb:95:4f: 8c:76:fc:b4:e7:68:5c:ce:79:91:5c:a2:14:2d:67:13:be:0c: 28:ee:f7:55:e6:1a:f9:a4:a4:58:85:85:f5:1a:3b:79:a3:bb: da:e2:c7:e2:05:57:7c:50:ad:31:0f:ec:7a:6f:9f:51:f9:2b: 1e:05:3a:b0:13:57:ea:62:a6:74:da:da:d3:d9:c5:f5:75:c7: 66:c2:90:b2:91:ec:9a:b0:3e:50:49:c9:f6:a3:08:c3:d7:ae: ba:e3:6b:98:48:4b:62:ed:06:19:3c:01:c4:df:e4:15:bf:25: bc:1a:e1:c5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNFREYxMTAvBgNVBAUTKDc3MjNEODU2RTUyMDgyMjRGMkJDODlBMzgwOTc3N0Y1 MjgzMzEyRkMwHhcNMjUwOTE3MDQ0OTU0WhcNMjUwOTI0MDQ0OTU0WjAYMRYwFAYD VQQDEw02OGNhM2RmMi1kNTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lKqKVh2OxHHh0auml/0mM5R3ipJ7CkaCLzUhp8BClwRj3OC00YvBlKURHlU nAkVa6POlgMZ0XWOL+zvm8lPOuSiE5YZBsqCMEO4oS5ziHbkcYv6yjOJFCjy0m++ k1KGUipyU7jDMEJw4nPlHwkaaIFXXK/qBcgMzJ1pg8k9+96RFnnrmo6PYSRccWZy +xHAtyZ0HPWBsD1X+2AOlhNBJqRshwiKR8SFFJTxBxrRVGGiUIdkaEq977fLOEob pXCQ8JohJbqDrx05zKCpJHT/dyAsX56RKn/5AqKBy6Pv/7azdyHAxHwF38MG+m4z xCFC3lYEUK/W//+d9GeSv+gkDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAXhnbZR FJo+vjXkqETzlYoG+wCzMB8GA1UdIwQYMBaAFHcj2FblIIIk8ryJo4CXd/UoMxL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0VERi9EOEE3QzczNjk3 MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi9keVBZVnVVZ2dpVHl2SW1qZ0pkMzlTZ3pF dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R5UFlWdVVnZ2lUeXZJbWpnSmQzOVNnekV2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0VERi9EOEE3QzczNjk3MjIxMUVFOTlBQzMzN0VDNEY5QUUwMi9keVBZVnVVZ2dp VHl2SW1qZ0pkMzlTZ3pFdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjhZbwpJZBXWYXm9P2vjHf3N3LmGn7yedS3VHeaEB3nLr2sif8gWrI +MMmZWeiMqvAGNYAKjL2xDyy3d+1sGXKMEP9E4WZoVxSZagujLEmJg5CJtlkOcsU hY65W4/kKmCHaJNq+5hDuXSYW6PMFqGhU2qIbBIDcMBzrkDvpoiCXHQps5JImRb6 QVYzN8rrlU+Mdvy052hcznmRXKIULWcTvgwo7vdV5hr5pKRYhYX1Gjt5o7va4sfi BVd8UK0xD+x6b59R+SseBTqwE1fqYqZ02trT2cX1dcdmwpCykeyasD5QScn2owjD 166642uYSEti7QYZPAHE3+QVvyW8GuHF -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:13 2025 by rpki-client