$ rpki-client -vvf rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft File: DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft (raw, json) Hash identifier: 0t9TVRnyiAV1sEhe83Bb9ddILHQjKcZXzdW4duQRnGU= Subject key identifier: B3:39:A1:70:F1:17:E6:CB:32:7F:25:BF:BD:D6:CE:0F:8B:11:CC:94 Authority key identifier: 0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 Certificate issuer: /CN=A917D3A1/serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Certificate serial: 3521 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft Manifest number: 34FA Signing time: Thu 18 Sep 2025 14:27:20 +0000 Manifest this update: Thu 18 Sep 2025 14:27:20 +0000 Manifest next update: Thu 25 Sep 2025 14:27:20 +0000 Files and hashes: 1: DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl (hash: pBNQo50DOGqWH02a48yR3lgn1PPOgmNGRTZlwPXC/Ys=) 2: B3B5B50E117711EEA0E5E040C4F9AE02.roa (hash: 6CSktOcA4MnBe9beO9qKaaWhMjSNipfCRcL+x7I1JgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:27:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13601 (0x3521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D3A1, serialNumber=0DE1679D21D39B61F02650A414EC9D0462C5E418 Validity Not Before: Sep 18 14:27:20 2025 GMT Not After : Sep 25 14:27:20 2025 GMT Subject: CN=68cc16c8-5cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:df:df:75:32:cd:ee:07:a1:52:d7:db:19:6b: ab:7b:14:c8:c2:74:6c:64:3a:f3:dd:50:4a:d2:4e: 71:da:47:93:0e:8e:66:a1:e7:f6:da:c9:b7:8c:92: 2d:6d:a8:87:29:9d:83:5c:d7:4f:2c:b2:58:66:1f: bf:be:1c:da:d5:ac:8a:91:a6:68:9b:3c:8b:36:5a: 04:fc:50:d0:ac:e1:6c:e2:61:77:e2:c9:74:21:37: 62:29:c6:a3:b7:36:2e:ed:4a:68:d3:a6:9e:b6:00: 4b:ea:ed:9a:09:f3:98:8a:0e:20:cc:60:54:c2:72: 51:b8:91:7c:4e:51:d0:65:9d:19:72:c3:be:ed:f0: 2d:a6:81:58:8a:91:b2:1f:0d:07:45:93:df:a7:cd: 02:52:25:77:c4:77:91:30:08:9c:94:f4:dc:3b:95: 16:02:2d:c5:da:72:65:1d:45:f4:50:3b:ac:08:33: e0:f5:f6:8f:da:03:72:64:2b:3c:34:75:b0:ae:68: a8:45:39:81:fe:f4:44:24:08:d7:5d:7a:58:73:4b: 9b:84:76:1b:ed:b4:be:2c:89:9b:4a:4d:70:a6:e8: ed:41:39:f3:3c:82:f5:1e:0b:df:a9:4b:ee:bf:c7: f3:c9:ca:3e:fc:aa:f1:67:72:cf:0d:fc:23:12:c0: 05:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:39:A1:70:F1:17:E6:CB:32:7F:25:BF:BD:D6:CE:0F:8B:11:CC:94 X509v3 Authority Key Identifier: keyid:0D:E1:67:9D:21:D3:9B:61:F0:26:50:A4:14:EC:9D:04:62:C5:E4:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D3A1/607AE9541D8611E299BA94DD08B02CD2/DeFnnSHTm2HwJlCkFOydBGLF5Bg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:5e:35:54:2b:e1:0b:64:55:56:c8:09:d2:d5:c8:fa:4c:3b: 75:81:18:99:80:d0:fd:c1:22:bf:20:d6:ce:fe:75:d9:bc:a2: 0c:2a:60:1c:85:74:51:f7:a9:4d:16:ce:23:d2:5a:9b:c2:49: a5:fc:a8:0b:70:b8:06:ad:ea:bb:81:92:03:4f:51:62:dc:a4: 5f:ac:a2:cc:84:89:9b:3d:dc:43:ff:d7:a4:e1:e8:d7:32:f2: 12:31:38:dc:27:45:9b:19:b6:72:3a:42:8b:0e:be:71:55:68: 6d:d6:cd:d5:64:15:bc:8d:4c:46:d5:8e:c1:81:d5:66:88:17: bc:36:60:21:1c:55:fe:f7:ff:0a:6e:b5:33:5c:a5:78:a1:8f: 1e:33:cf:8f:be:7c:e1:b2:15:7f:96:11:28:e1:16:89:b2:09: 08:00:c6:68:fb:77:ef:74:61:ec:d7:41:0c:76:f7:3d:4c:37: 1e:cd:8e:d1:d9:95:5a:c4:3f:5d:21:f0:fd:68:84:14:b4:c2: a9:68:80:1b:f5:fc:41:6d:2a:b5:16:c1:e2:84:85:38:fb:a4: 74:51:ce:64:b7:71:ca:e0:a8:bc:5a:03:68:df:63:47:bf:d6: 15:b8:66:52:d5:ec:20:e2:18:6d:21:fb:65:55:94:9a:f4:d7: 69:c4:34:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QzQTExMTAvBgNVBAUTKDBERTE2NzlEMjFEMzlCNjFGMDI2NTBBNDE0RUM5RDA0 NjJDNUU0MTgwHhcNMjUwOTE4MTQyNzIwWhcNMjUwOTI1MTQyNzIwWjAYMRYwFAYD VQQDEw02OGNjMTZjOC01Y2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5d/fdTLN7gehUtfbGWurexTIwnRsZDrz3VBK0k5x2keTDo5moef22sm3jJIt baiHKZ2DXNdPLLJYZh+/vhza1ayKkaZomzyLNloE/FDQrOFs4mF34sl0ITdiKcaj tzYu7Upo06aetgBL6u2aCfOYig4gzGBUwnJRuJF8TlHQZZ0ZcsO+7fAtpoFYipGy Hw0HRZPfp80CUiV3xHeRMAiclPTcO5UWAi3F2nJlHUX0UDusCDPg9faP2gNyZCs8 NHWwrmioRTmB/vREJAjXXXpYc0ubhHYb7bS+LImbSk1wpujtQTnzPIL1HgvfqUvu v8fzyco+/KrxZ3LPDfwjEsAF9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLM5oXDx F+bLMn8lv73Wzg+LEcyUMB8GA1UdIwQYMBaAFA3hZ50h05th8CZQpBTsnQRixeQY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDNBMS82MDdBRTk1NDFE ODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0ySHdKbENrRk95ZEJHTEY1 QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlRm5uU0hUbTJId0psQ2tGT3lkQkdMRjVCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDNBMS82MDdBRTk1NDFEODYxMUUyOTlCQTk0REQwOEIwMkNEMi9EZUZublNIVG0y SHdKbENrRk95ZEJHTEY1QmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnXjVUK+ELZFVWyAnS1cj6TDt1gRiZgND9wSK/INbO/nXZvKIMKmAc hXRR96lNFs4j0lqbwkml/KgLcLgGreq7gZIDT1Fi3KRfrKLMhImbPdxD/9ek4ejX MvISMTjcJ0WbGbZyOkKLDr5xVWht1s3VZBW8jUxG1Y7BgdVmiBe8NmAhHFX+9/8K brUzXKV4oY8eM8+PvnzhshV/lhEo4RaJsgkIAMZo+3fvdGHs10EMdvc9TDcezY7R 2ZVaxD9dIfD9aIQUtMKpaIAb9fxBbSq1FsHihIU4+6R0Uc5kt3HK4Ki8WgNo32NH v9YVuGZS1ewg4hhtIftlVZSa9NdpxDTs -----END CERTIFICATE-----Generated at Fri Sep 19 05:47:43 2025 by rpki-client