$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft File: dh_-bfalw4-a60XlQCWIzddef9w.mft (raw, json) Hash identifier: Q1OIpBTlZLDQPM0YB2/HxI4S9xtdlU2kjKXWya+D13s= Subject key identifier: FF:66:40:66:AD:3E:76:9B:7D:2A:79:3B:50:07:AE:AF:92:EF:AF:20 Authority key identifier: 76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC Certificate issuer: /CN=A9179CA1/serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft Manifest number: 07DB Signing time: Thu 18 Sep 2025 21:22:38 +0000 Manifest this update: Thu 18 Sep 2025 21:22:38 +0000 Manifest next update: Thu 25 Sep 2025 21:22:38 +0000 Files and hashes: 1: dh_-bfalw4-a60XlQCWIzddef9w.crl (hash: qv8KpD2nODmEg5R0I/REsJQJC3TqRSlSgh5MJ3yI4gg=) 2: 7816A67E045611EB86495B26C4F9AE02.roa (hash: 0vjWeveawuTmOaykXyNfkwKcB3pMOrOiJyr3sxNuhJk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:22:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA1, serialNumber=761FFE6DF6A5C38F9AEB45E5402588CDD75E7FDC Validity Not Before: Sep 18 21:22:38 2025 GMT Not After : Sep 25 21:22:38 2025 GMT Subject: CN=68cc781e-c0f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a8:53:0e:5b:4d:f6:1e:b3:42:6c:56:ca:04: 43:00:55:21:b4:de:52:06:c9:1e:bf:d0:53:f0:a6: 04:9b:3f:2c:f0:af:40:2c:00:8d:aa:cf:b1:a0:24: 6e:07:27:fb:9a:01:58:2b:3e:a8:5e:d3:ab:4d:81: 9a:52:37:24:7a:e2:23:8b:2b:4c:8c:ea:45:6d:24: 46:00:7c:3d:02:52:05:cc:80:6c:9c:08:78:87:05: c6:b2:c8:43:e4:40:46:7e:eb:d6:6d:9f:d7:e8:35: bf:1e:6b:11:fe:85:a0:77:85:13:98:34:08:96:af: 0a:d4:bc:4c:29:f7:64:27:4e:8e:90:3d:b9:8c:79: 1d:08:3f:33:4c:47:53:08:7d:86:37:e3:4f:c7:71: f8:8c:4d:50:15:ec:1a:36:f6:e3:01:c1:6d:48:e4: 05:21:c7:7d:00:56:4b:15:86:ac:1c:1a:e5:a1:a0: 0f:38:28:5a:58:9e:9d:c7:00:25:23:c5:76:36:c6: 7b:8d:15:67:78:2f:89:ff:f2:56:59:56:04:d6:68: f1:cd:02:4c:04:65:c2:08:12:f7:ce:83:be:2e:78: 50:cb:8d:0d:4f:97:82:03:9f:6b:d5:52:9e:14:cd: b3:21:f8:51:32:b6:24:c1:6e:99:98:97:85:05:3d: f6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:66:40:66:AD:3E:76:9B:7D:2A:79:3B:50:07:AE:AF:92:EF:AF:20 X509v3 Authority Key Identifier: keyid:76:1F:FE:6D:F6:A5:C3:8F:9A:EB:45:E5:40:25:88:CD:D7:5E:7F:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dh_-bfalw4-a60XlQCWIzddef9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA1/806354AE045511EB891A8B25C4F9AE02/dh_-bfalw4-a60XlQCWIzddef9w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b4:19:94:80:ff:78:d8:61:86:b8:3c:f2:c4:70:fe:dc:fc: 87:18:47:c7:e0:05:42:fd:c9:03:07:43:34:9b:0c:94:fa:36: a3:02:0a:58:58:31:e6:80:73:8d:0b:a1:c5:cc:3e:1c:87:99: 78:d0:fc:97:fa:b7:ef:a5:f3:44:4c:4f:90:2b:e1:9b:1f:9c: 4f:cc:f5:61:e4:7b:fe:ab:3f:f7:50:2f:4b:25:f2:6e:0c:26: 73:03:1d:5a:25:95:1f:92:49:e4:c9:b6:f0:57:d0:3e:c0:3d: d4:12:93:0d:0b:d1:b3:ff:41:71:92:aa:ee:35:05:72:9e:99: f1:2a:51:95:84:48:b2:9b:48:87:3a:f5:6b:db:2a:b0:04:43: 72:e4:87:03:d7:5b:b2:37:4c:fc:1d:ef:4d:e4:76:4e:67:46: 44:19:da:bb:3f:7b:84:09:f3:5d:14:36:ed:67:3d:cc:30:a6: 55:2d:33:ea:f7:31:37:73:42:b3:3f:a8:79:de:2a:fd:40:7a: 96:cc:4d:4a:8d:65:11:cd:bc:d1:79:7d:ff:a0:6d:cf:75:3b: 10:93:61:28:17:d6:d2:df:e0:79:c2:bf:b0:f8:47:2b:33:e2: 1e:06:e8:67:aa:0d:ec:77:71:4e:0c:54:5f:f1:60:c5:61:6f: 75:cf:64:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTExMTAvBgNVBAUTKDc2MUZGRTZERjZBNUMzOEY5QUVCNDVFNTQwMjU4OENE RDc1RTdGREMwHhcNMjUwOTE4MjEyMjM4WhcNMjUwOTI1MjEyMjM4WjAYMRYwFAYD VQQDEw02OGNjNzgxZS1jMGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ahTDltN9h6zQmxWygRDAFUhtN5SBskev9BT8KYEmz8s8K9ALACNqs+xoCRu Byf7mgFYKz6oXtOrTYGaUjckeuIjiytMjOpFbSRGAHw9AlIFzIBsnAh4hwXGsshD 5EBGfuvWbZ/X6DW/HmsR/oWgd4UTmDQIlq8K1LxMKfdkJ06OkD25jHkdCD8zTEdT CH2GN+NPx3H4jE1QFewaNvbjAcFtSOQFIcd9AFZLFYasHBrloaAPOChaWJ6dxwAl I8V2NsZ7jRVneC+J//JWWVYE1mjxzQJMBGXCCBL3zoO+LnhQy40NT5eCA59r1VKe FM2zIfhRMrYkwW6ZmJeFBT32fwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9mQGat PnabfSp5O1AHrq+S768gMB8GA1UdIwQYMBaAFHYf/m32pcOPmutF5UAliM3XXn/c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBMS84MDYzNTRBRTA0 NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0LWE2MFhsUUNXSXpkZGVm OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoXy1iZmFsdzQtYTYwWGxRQ1dJemRkZWY5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUNBMS84MDYzNTRBRTA0NTUxMUVCODkxQThCMjVDNEY5QUUwMi9kaF8tYmZhbHc0 LWE2MFhsUUNXSXpkZGVmOXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBltBmUgP942GGGuDzyxHD+3PyHGEfH4AVC/ckDB0M0mwyU+jajAgpY WDHmgHONC6HFzD4ch5l40PyX+rfvpfNETE+QK+GbH5xPzPVh5Hv+qz/3UC9LJfJu DCZzAx1aJZUfkknkybbwV9A+wD3UEpMNC9Gz/0FxkqruNQVynpnxKlGVhEiym0iH OvVr2yqwBENy5IcD11uyN0z8He9N5HZOZ0ZEGdq7P3uECfNdFDbtZz3MMKZVLTPq 9zE3c0KzP6h53ir9QHqWzE1KjWURzbzReX3/oG3PdTsQk2EoF9bS3+B5wr+w+Ecr M+IeBuhnqg3sd3FODFRf8WDFYW91z2Q/ -----END CERTIFICATE-----Generated at Fri Sep 19 05:51:34 2025 by rpki-client