$ rpki-client -vvf rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft File: dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft (raw, json) Hash identifier: su8+/1ifveUFW88AP0J3SV3i8AMQcaxVx665Ks2EFVA= Subject key identifier: 1A:6B:56:79:06:AA:52:F5:F0:6B:FC:65:16:97:66:41:77:38:35:60 Authority key identifier: 74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 Certificate issuer: /CN=A9178424/serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft Manifest number: DE Signing time: Wed 03 Sep 2025 06:01:06 +0000 Manifest this update: Wed 03 Sep 2025 06:01:06 +0000 Manifest next update: Wed 10 Sep 2025 06:01:06 +0000 Files and hashes: 1: dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl (hash: 0K9n89F6x9CmaERRHufaHjb3goH+MIVdmR8XEMzOygM=) 2: D672BC9638E411EF8BF0C15EC4F9AE02.roa (hash: BbrjGfo0UoZCcLf+k7hQstWYPdgNNbc+IXBk8J2BWwE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178424, serialNumber=74A11669C43E53B0F21D4B413F92D9EA91315503 Validity Not Before: Sep 3 06:01:06 2025 GMT Not After : Sep 10 06:01:06 2025 GMT Subject: CN=68b7d9a2-00a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:79:b9:0b:b5:aa:61:b4:57:60:53:f6:37:57: bb:61:98:ba:8f:71:db:b4:15:a7:fd:f0:12:d9:c5: cd:7b:8f:22:ec:00:84:38:75:ea:5f:8d:60:7b:bb: d0:0c:f8:3b:e1:84:29:c3:c3:f3:05:95:ea:d5:49: b8:9a:be:f0:89:65:9d:9f:c1:9f:97:6b:90:9f:d5: 88:ac:57:8d:a3:79:d0:2d:f6:b6:14:0f:0a:d7:f3: 67:40:af:5c:bf:77:95:7c:5f:73:ec:77:00:76:ca: 78:5b:bb:59:3d:6d:b1:2f:9e:7b:62:3a:c2:98:09: 71:a6:c3:6c:91:de:f8:2e:e0:43:5b:b5:24:7a:b8: 28:40:89:c4:8c:9c:30:9a:89:0c:ac:64:81:15:cc: 39:64:8a:07:0f:e4:11:7c:7d:34:74:cc:cc:99:6b: 35:e7:1b:7e:85:2a:c5:69:c4:a5:04:de:ce:f9:38: eb:d7:13:3c:f8:bc:e0:7a:b4:f0:4e:58:e5:33:3f: e4:e3:06:0b:a0:a5:aa:1a:06:fa:1c:af:f6:69:7c: 3e:fe:3a:05:54:10:36:d8:85:d0:87:75:a9:25:5d: a2:7d:c7:0f:b3:54:6f:dc:96:e0:6b:8e:fd:64:d8: 7a:36:45:1e:0f:c5:a7:e6:c2:29:95:fb:2a:cb:db: d6:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:6B:56:79:06:AA:52:F5:F0:6B:FC:65:16:97:66:41:77:38:35:60 X509v3 Authority Key Identifier: keyid:74:A1:16:69:C4:3E:53:B0:F2:1D:4B:41:3F:92:D9:EA:91:31:55:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dKEWacQ-U7DyHUtBP5LZ6pExVQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178424/793EA6DA38E311EF914B2F33C4F9AE02/dKEWacQ-U7DyHUtBP5LZ6pExVQM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:c5:27:f0:03:03:ca:e5:72:91:cb:fd:f6:13:14:8c:24:bf: 88:3b:a4:25:9d:c5:ed:28:b0:27:84:41:a0:2b:5f:c1:a8:54: d3:25:1d:37:47:aa:f7:f9:48:40:3f:da:ac:92:25:52:40:85: 9c:ea:63:b3:4b:28:3e:ef:03:f9:b6:c2:ea:77:8d:fe:63:f2: a1:89:e8:fc:d4:1d:b2:0e:dc:23:f0:df:98:d5:29:a2:44:dc: 4a:b8:c7:c8:0a:20:89:1c:46:ac:e0:cc:a8:12:63:33:d0:9e: de:5a:6b:5a:e2:de:60:d4:e3:9b:cd:28:7f:e3:25:ee:89:d3: b4:40:45:2e:4d:ce:8a:80:60:a1:dc:d3:49:e5:40:4f:0c:cc: da:6a:0a:e7:97:8c:0d:f2:f6:82:e6:81:ae:a3:ae:3d:c0:ba: dd:51:36:7f:45:48:60:c5:ed:0e:82:a6:58:9a:46:ed:e2:d9: 0c:eb:f8:b4:41:70:bf:11:49:da:ff:f2:46:02:fc:d6:2e:2e: fa:d0:3c:65:73:78:83:ce:09:53:91:5f:82:a4:33:27:12:d6: a8:ce:2a:bc:c6:8a:f9:0f:de:14:15:ee:fc:51:43:c5:53:e1: 91:69:41:09:7a:32:e6:aa:e4:c7:7d:2c:4c:c3:0f:c5:23:bb: 9d:ba:79:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg0MjQxMTAvBgNVBAUTKDc0QTExNjY5QzQzRTUzQjBGMjFENEI0MTNGOTJEOUVB OTEzMTU1MDMwHhcNMjUwOTAzMDYwMTA2WhcNMjUwOTEwMDYwMTA2WjAYMRYwFAYD VQQDEw02OGI3ZDlhMi0wMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Xm5C7WqYbRXYFP2N1e7YZi6j3HbtBWn/fAS2cXNe48i7ACEOHXqX41ge7vQ DPg74YQpw8PzBZXq1Um4mr7wiWWdn8Gfl2uQn9WIrFeNo3nQLfa2FA8K1/NnQK9c v3eVfF9z7HcAdsp4W7tZPW2xL557YjrCmAlxpsNskd74LuBDW7UkergoQInEjJww mokMrGSBFcw5ZIoHD+QRfH00dMzMmWs15xt+hSrFacSlBN7O+Tjr1xM8+LzgerTw TljlMz/k4wYLoKWqGgb6HK/2aXw+/joFVBA22IXQh3WpJV2ifccPs1Rv3Jbga479 ZNh6NkUeD8Wn5sIplfsqy9vWbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBprVnkG qlL18Gv8ZRaXZkF3ODVgMB8GA1UdIwQYMBaAFHShFmnEPlOw8h1LQT+S2eqRMVUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODQyNC83OTNFQTZEQTM4 RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3RHlIVXRCUDVMWjZwRXhW UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RLRVdhY1EtVTdEeUhVdEJQNUxaNnBFeFZRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODQyNC83OTNFQTZEQTM4RTMxMUVGOTE0QjJGMzNDNEY5QUUwMi9kS0VXYWNRLVU3 RHlIVXRCUDVMWjZwRXhWUU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxxSfwAwPK5XKRy/32ExSMJL+IO6QlncXtKLAnhEGgK1/BqFTTJR03 R6r3+UhAP9qskiVSQIWc6mOzSyg+7wP5tsLqd43+Y/Khiej81B2yDtwj8N+Y1Smi RNxKuMfICiCJHEas4MyoEmMz0J7eWmta4t5g1OObzSh/4yXuidO0QEUuTc6KgGCh 3NNJ5UBPDMzaagrnl4wN8vaC5oGuo649wLrdUTZ/RUhgxe0OgqZYmkbt4tkM6/i0 QXC/EUna//JGAvzWLi760Dxlc3iDzglTkV+CpDMnEtaoziq8xor5D94UFe78UUPF U+GRaUEJejLmquTHfSxMww/FI7udunm2 -----END CERTIFICATE-----Generated at Thu Sep 4 14:23:37 2025 by rpki-client