$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft File: DGlwyrnfjpvRDhw-kYkaCafojCA.mft (raw, json) Hash identifier: yCeV/3EOxRrErKGEzMY0GDbTjdh3iG+WFVu/q6K7F/o= Subject key identifier: 53:5C:A8:18:1D:CB:E7:DA:D0:12:F6:1C:30:C8:9D:6E:DB:33:44:BC Authority key identifier: 0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 Certificate issuer: /CN=A9179672/serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Certificate serial: 82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft Manifest number: 81 Signing time: Sun 07 Sep 2025 06:15:50 +0000 Manifest this update: Sun 07 Sep 2025 06:15:50 +0000 Manifest next update: Sun 14 Sep 2025 06:15:50 +0000 Files and hashes: 1: DGlwyrnfjpvRDhw-kYkaCafojCA.crl (hash: K2fWLsdOKObUx/Es5mT3XMkTNeYXFQRcs7mE6tnt5MI=) 2: D1C1AFB2135511F0976BA50CC4F9AE02.roa (hash: 4UcuR0Va16pIipTBZBi5kSdFR7fOLDQRz2cgCZTL1W0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:15:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 130 (0x82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=0C6970CAB9DF8E9BD10E1C3E91891A09A7E88C20 Validity Not Before: Sep 7 06:15:50 2025 GMT Not After : Sep 14 06:15:50 2025 GMT Subject: CN=68bd2316-19b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:c8:b0:03:60:60:f9:8b:e0:ff:77:d5:e7:fd: d0:a9:62:62:e8:b3:36:bc:49:5c:9c:03:6c:49:5a: 69:1a:85:2a:72:36:3c:d4:ad:a2:4c:ee:7e:de:c1: a8:0e:a3:ed:8f:61:97:d3:43:f7:fd:c3:d6:f6:71: 15:6c:bf:a0:0c:cc:e9:21:5b:ac:3e:0f:7a:22:ad: 2d:9a:87:49:ed:31:44:a7:8d:9f:3e:40:7e:fc:16: 9a:f5:d6:92:ad:b4:0b:38:ec:e1:04:50:af:46:73: 84:0b:95:64:9d:49:ff:bb:9f:58:a6:9e:48:52:81: 0b:10:60:55:36:2e:36:37:61:e0:84:6a:5f:11:a6: 2c:e8:92:34:3d:fc:90:88:c5:31:88:d1:bc:31:0f: c0:95:d8:45:ef:ee:76:56:a3:8b:73:e1:71:46:82: fe:4b:75:5a:e6:08:6a:7e:bf:90:8d:dd:a7:bc:a4: 1c:45:5c:36:ad:e7:91:ed:4d:5b:e1:d3:09:fc:cd: f2:97:a1:e2:36:f3:0a:0a:bc:53:db:22:24:c7:92: eb:a6:72:46:7f:3e:b8:8c:5f:1f:ba:85:9b:e0:39: 5b:13:03:b7:65:0b:fd:b6:a8:62:9e:24:b2:03:35: b5:b9:20:68:b8:2d:7e:be:f1:44:57:7a:39:19:59: a1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:5C:A8:18:1D:CB:E7:DA:D0:12:F6:1C:30:C8:9D:6E:DB:33:44:BC X509v3 Authority Key Identifier: keyid:0C:69:70:CA:B9:DF:8E:9B:D1:0E:1C:3E:91:89:1A:09:A7:E8:8C:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DGlwyrnfjpvRDhw-kYkaCafojCA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/88ADCA98CBEF11EF9165C246C4F9AE02/DGlwyrnfjpvRDhw-kYkaCafojCA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:2b:5b:30:6e:17:57:db:3c:7b:78:9e:30:5c:65:1e:e8:e7: 89:6f:2e:01:f7:c5:00:fc:76:8c:24:e1:e1:1e:87:dd:72:a1: 20:21:76:c2:62:26:f1:0d:7e:bd:d0:70:dd:96:ba:16:15:8c: b1:40:17:69:cc:12:2e:7b:b2:08:2a:c8:1b:da:25:5c:ce:a7: 05:f5:a1:1a:be:de:d1:ad:26:d7:75:4c:a5:53:ee:dc:65:20: c2:58:e6:3a:8e:1c:9c:26:f3:c0:a0:00:5d:58:72:57:98:a6: 36:0c:5e:a5:06:26:df:96:9c:28:7e:d6:19:1c:f5:04:69:cb: 9e:32:ab:69:65:31:e6:e7:2b:6b:1d:e4:b6:fc:e1:0c:3d:ea: c1:49:6b:e4:6d:c1:56:c9:97:f9:68:01:7c:c6:21:22:a9:b4: ee:f6:89:b4:30:dd:1e:36:e7:33:bc:9a:d4:14:25:89:bc:94: c0:d3:12:69:39:f0:00:c5:65:28:35:50:89:71:14:c5:3b:1d: f4:40:a0:af:f3:56:c9:0c:ec:f7:2c:7c:f1:75:c6:54:d8:2d: 79:b6:77:a9:37:63:c2:67:ec:b6:9f:1d:7c:65:12:35:22:6c: cf:c9:1d:5a:6b:61:41:6d:00:3d:e9:22:b7:6d:f4:41:e6:ce: 1f:7b:bf:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk2NzIxMTAvBgNVBAUTKDBDNjk3MENBQjlERjhFOUJEMTBFMUMzRTkxODkxQTA5 QTdFODhDMjAwHhcNMjUwOTA3MDYxNTUwWhcNMjUwOTE0MDYxNTUwWjAYMRYwFAYD VQQDEw02OGJkMjMxNi0xOWI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68iwA2Bg+Yvg/3fV5/3QqWJi6LM2vElcnANsSVppGoUqcjY81K2iTO5+3sGo DqPtj2GX00P3/cPW9nEVbL+gDMzpIVusPg96Iq0tmodJ7TFEp42fPkB+/Baa9daS rbQLOOzhBFCvRnOEC5VknUn/u59Ypp5IUoELEGBVNi42N2HghGpfEaYs6JI0PfyQ iMUxiNG8MQ/AldhF7+52VqOLc+FxRoL+S3Va5ghqfr+Qjd2nvKQcRVw2reeR7U1b 4dMJ/M3yl6HiNvMKCrxT2yIkx5LrpnJGfz64jF8fuoWb4DlbEwO3ZQv9tqhiniSy AzW1uSBouC1+vvFEV3o5GVmhQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFNcqBgd y+fa0BL2HDDInW7bM0S8MB8GA1UdIwQYMBaAFAxpcMq5346b0Q4cPpGJGgmn6Iwg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTY3Mi84OEFEQ0E5OENC RUYxMUVGOTE2NUMyNDZDNEY5QUUwMi9ER2x3eXJuZmpwdlJEaHcta1lrYUNhZm9q Q0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RHbHd5cm5manB2UkRody1rWWthQ2Fmb2pDQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTY3Mi84OEFEQ0E5OENCRUYxMUVGOTE2NUMyNDZDNEY5QUUwMi9ER2x3eXJuZmpw dlJEaHcta1lrYUNhZm9qQ0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYK1swbhdX2zx7eJ4wXGUe6OeJby4B98UA/HaMJOHhHofdcqEgIXbC YibxDX690HDdlroWFYyxQBdpzBIue7IIKsgb2iVczqcF9aEavt7RrSbXdUylU+7c ZSDCWOY6jhycJvPAoABdWHJXmKY2DF6lBibflpwoftYZHPUEacueMqtpZTHm5ytr HeS2/OEMPerBSWvkbcFWyZf5aAF8xiEiqbTu9om0MN0eNuczvJrUFCWJvJTA0xJp OfAAxWUoNVCJcRTFOx30QKCv81bJDOz3LHzxdcZU2C15tnepN2PCZ+y2nx18ZRI1 ImzPyR1aa2FBbQA96SK3bfRB5s4fe7+y -----END CERTIFICATE-----Generated at Mon Sep 8 17:49:34 2025 by rpki-client