$ rpki-client -vvf rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft File: DvqgEPOwbVMhkO827SAodPggF8k.mft (raw, json) Hash identifier: 9NcZGwPbnD9/fxX3FAQtbYdPtb6Bp7h9EQ++FyywGXw= Subject key identifier: 75:76:14:2C:A6:63:AD:F9:94:A9:1A:DF:8F:65:AC:B3:E3:77:C9:96 Authority key identifier: 0E:FA:A0:10:F3:B0:6D:53:21:90:EF:36:ED:20:28:74:F8:20:17:C9 Certificate issuer: /CN=A9167F0C/serialNumber=0EFAA010F3B06D532190EF36ED202874F82017C9 Certificate serial: 0F65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft Manifest number: 1981 Signing time: Sun 24 Aug 2025 17:33:06 +0000 Manifest this update: Sun 24 Aug 2025 17:33:06 +0000 Manifest next update: Sun 31 Aug 2025 17:33:06 +0000 Files and hashes: 1: DvqgEPOwbVMhkO827SAodPggF8k.crl (hash: yaPyjPcyCqqQoMxqmd+9g1VsQYmQc//IEHWsMR7F3jI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.crl rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:33:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3941 (0xf65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167F0C, serialNumber=0EFAA010F3B06D532190EF36ED202874F82017C9 Validity Not Before: Aug 24 17:33:06 2025 GMT Not After : Aug 31 17:33:06 2025 GMT Subject: CN=68ab4cd2-8d4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2f:b0:d6:48:55:c6:99:61:23:1d:d4:50:15: 4d:99:3b:1f:ad:c1:14:6e:53:16:a2:e0:bb:53:ad: 33:c2:43:d8:a9:cb:3e:b8:40:af:1e:4e:ed:76:e8: f9:d5:82:6c:b3:d7:b8:a7:f4:ca:bf:78:46:2f:8e: 5e:78:41:0f:06:a4:3b:19:6f:0b:1c:73:45:c0:ed: 48:d7:ed:bb:55:f8:4a:56:9b:c3:38:3c:40:93:32: ae:34:0c:e2:6c:ad:21:64:63:14:9d:31:e4:9e:34: 94:9f:8e:b2:9c:0a:9c:68:f9:17:e6:85:bd:26:f6: 23:4d:e9:92:48:81:c3:d9:6a:36:30:c5:01:80:dd: 76:25:f3:d8:50:df:bd:b7:4f:93:0f:8f:73:90:fa: 1c:99:a1:0c:9c:82:54:24:57:f2:a1:ca:9f:5c:1a: 56:33:2c:2e:b6:06:2e:4a:1e:f9:11:5f:5e:a0:31: a5:00:21:60:e0:99:cc:b1:1b:5e:fd:60:10:8f:c4: e5:3b:fe:a6:e3:02:4c:f1:a0:a4:53:56:f2:8e:2b: 57:48:fe:86:72:77:1a:79:74:eb:fc:6a:61:a9:f1: 89:72:27:34:b2:6f:85:75:ec:91:2c:ef:c1:8f:59: 86:2a:5d:6a:eb:ea:c0:03:b9:d1:1f:17:32:b1:05: 9f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:76:14:2C:A6:63:AD:F9:94:A9:1A:DF:8F:65:AC:B3:E3:77:C9:96 X509v3 Authority Key Identifier: keyid:0E:FA:A0:10:F3:B0:6D:53:21:90:EF:36:ED:20:28:74:F8:20:17:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DvqgEPOwbVMhkO827SAodPggF8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167F0C/0A58A19A70AB11E98317A57BC4F9AE02/DvqgEPOwbVMhkO827SAodPggF8k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:38:3f:b2:3c:ef:cf:5d:f9:aa:b1:c8:a1:ff:95:8a:79:76: 42:d1:0f:d2:e0:87:65:f9:84:36:66:80:15:75:4e:48:b8:b6: 82:e6:57:2c:32:83:64:4f:4b:ae:a8:01:8d:4e:7c:11:9b:20: 18:3f:93:1f:0d:69:62:2b:10:36:f8:d9:cc:de:59:7d:bb:d7: 4f:22:15:83:f0:0a:0b:2a:ba:df:14:4a:00:36:9e:68:71:08: e5:16:d6:7c:7e:34:21:f6:a9:09:5c:11:39:3a:bb:21:ae:e0: 15:c1:9b:a0:8e:89:6b:a8:d0:72:37:05:3a:10:9e:90:b3:99: ed:9c:75:8e:9e:61:0a:b3:95:e7:5e:57:e1:d6:80:c2:f4:ec: 77:7a:c6:b9:3c:de:2f:2e:9a:68:3c:5e:2c:2d:ef:2b:69:62: 90:55:47:f9:a0:0e:c0:07:9e:27:9f:02:22:d3:c5:3e:d0:c5: 1d:f3:e4:0c:5f:26:6a:b4:3b:31:49:7b:c1:6f:d1:6c:5d:24: fa:48:ca:9d:0f:b7:eb:03:04:06:1f:1d:77:4e:f7:69:0b:f0: c9:34:62:50:16:ed:19:a7:65:20:18:2c:84:6b:53:06:8a:bf: cf:24:9f:87:f7:cc:45:a7:51:72:35:43:ef:09:38:54:6e:1f: 59:1c:b5:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdGMEMxMTAvBgNVBAUTKDBFRkFBMDEwRjNCMDZENTMyMTkwRUYzNkVEMjAyODc0 RjgyMDE3QzkwHhcNMjUwODI0MTczMzA2WhcNMjUwODMxMTczMzA2WjAYMRYwFAYD VQQDEw02OGFiNGNkMi04ZDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6C+w1khVxplhIx3UUBVNmTsfrcEUblMWouC7U60zwkPYqcs+uECvHk7tduj5 1YJss9e4p/TKv3hGL45eeEEPBqQ7GW8LHHNFwO1I1+27VfhKVpvDODxAkzKuNAzi bK0hZGMUnTHknjSUn46ynAqcaPkX5oW9JvYjTemSSIHD2Wo2MMUBgN12JfPYUN+9 t0+TD49zkPocmaEMnIJUJFfyocqfXBpWMywutgYuSh75EV9eoDGlACFg4JnMsRte /WAQj8TlO/6m4wJM8aCkU1byjitXSP6GcncaeXTr/GphqfGJcic0sm+FdeyRLO/B j1mGKl1q6+rAA7nRHxcysQWfvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHV2FCym Y635lKka349lrLPjd8mWMB8GA1UdIwQYMBaAFA76oBDzsG1TIZDvNu0gKHT4IBfJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0YwQy8wQTU4QTE5QTcw QUIxMUU5ODMxN0E1N0JDNEY5QUUwMi9EdnFnRVBPd2JWTWhrTzgyN1NBb2RQZ2dG OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0R2cWdFUE93YlZNaGtPODI3U0FvZFBnZ0Y4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0YwQy8wQTU4QTE5QTcwQUIxMUU5ODMxN0E1N0JDNEY5QUUwMi9EdnFnRVBPd2JW TWhrTzgyN1NBb2RQZ2dGOGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkOD+yPO/PXfmqscih/5WKeXZC0Q/S4Idl+YQ2ZoAVdU5IuLaC5lcs MoNkT0uuqAGNTnwRmyAYP5MfDWliKxA2+NnM3ll9u9dPIhWD8AoLKrrfFEoANp5o cQjlFtZ8fjQh9qkJXBE5OrshruAVwZugjolrqNByNwU6EJ6Qs5ntnHWOnmEKs5Xn Xlfh1oDC9Ox3esa5PN4vLppoPF4sLe8raWKQVUf5oA7AB54nnwIi08U+0MUd8+QM XyZqtDsxSXvBb9FsXST6SMqdD7frAwQGHx13TvdpC/DJNGJQFu0Zp2UgGCyEa1MG ir/PJJ+H98xFp1FyNUPvCThUbh9ZHLWW -----END CERTIFICATE-----Generated at Sun Aug 24 21:46:25 2025 by rpki-client