$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft File: dNRNlor0Y--xfAgNX60BDErAl6o.mft (raw, json) Hash identifier: zCEH+gv7vv+fup35MA92737n8mKJOCQpsNkDVcvEQB0= Subject key identifier: 06:86:A0:E6:80:0B:7A:40:50:48:E6:40:CB:B3:71:89:B5:4F:C9:B1 Authority key identifier: 74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA Certificate issuer: /CN=A917E0A8/serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Certificate serial: 0681 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft Manifest number: 0674 Signing time: Thu 04 Sep 2025 19:46:38 +0000 Manifest this update: Thu 04 Sep 2025 19:46:37 +0000 Manifest next update: Thu 11 Sep 2025 19:46:37 +0000 Files and hashes: 1: dNRNlor0Y--xfAgNX60BDErAl6o.crl (hash: R2EP0hdcOHIQq8pO5cwuf9uvr9O3Qlq1ABuFDW5mdfM=) 2: 11C0D5DA9B4011EB9C1BFC4EC4F9AE02.roa (hash: c7+1xl97Qj2WBa7uEaRi3C9ZQy4QYdknXZBQu0sbmag=) 3: F9C23E2A3ACB11EC9FEBB367C4F9AE02.roa (hash: nh7VvVbwlcEI7LPWlEzxHGSM7ZH4CPOm9G5I1MGrFHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1665 (0x681) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=74D44D968AF463EFB17C080D5FAD010C4AC097AA Validity Not Before: Sep 4 19:46:37 2025 GMT Not After : Sep 11 19:46:37 2025 GMT Subject: CN=68b9ec9d-4fbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c3:a5:9b:e1:56:45:53:4d:0d:45:5f:fe:23: 1b:ee:b0:3c:30:2c:8c:67:ad:7c:c4:fd:54:a1:62: b4:bf:a9:1b:c7:d4:01:1d:1c:95:c1:cb:03:38:01: b9:86:bc:55:32:0e:b1:31:22:39:8f:f8:77:2c:e1: 33:88:8d:6f:31:16:ae:4c:02:e3:4b:bc:ca:44:8a: 2d:38:5d:95:6e:c6:19:ca:ae:22:d8:52:d3:5e:10: e6:ac:37:ff:0d:86:d3:15:36:fd:a5:06:8d:81:b0: 1c:af:87:66:50:cd:24:61:9d:40:ef:52:23:c9:88: a0:e3:cb:2f:62:2b:b2:88:cd:49:c0:26:19:2d:25: d3:f5:77:bb:39:2e:3b:a2:56:8c:06:b3:a0:9e:cb: c5:b1:8d:57:a1:57:58:4f:4a:82:4f:35:38:39:12: 85:a8:1a:37:cf:1d:e1:7c:be:07:57:a7:d6:2b:45: 59:ca:30:93:f5:72:45:fd:ef:71:6d:88:20:7d:e0: 5d:1a:b3:3c:11:4a:39:a1:fa:60:ec:89:cc:85:33: 24:9c:93:c6:96:b5:45:7c:2a:6a:e4:65:46:da:fc: ea:9e:f1:04:38:aa:43:fd:f0:36:bd:a9:86:46:6b: de:5d:d0:a1:a1:ec:74:09:0b:7b:3e:f2:15:a5:c1: f3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:86:A0:E6:80:0B:7A:40:50:48:E6:40:CB:B3:71:89:B5:4F:C9:B1 X509v3 Authority Key Identifier: keyid:74:D4:4D:96:8A:F4:63:EF:B1:7C:08:0D:5F:AD:01:0C:4A:C0:97:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dNRNlor0Y--xfAgNX60BDErAl6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/6EFC0BEE984C11EB8A41FA20C4F9AE02/dNRNlor0Y--xfAgNX60BDErAl6o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:9b:db:a1:97:03:69:38:df:6d:37:2a:11:86:59:8b:8c:47: b4:73:5d:5a:b6:bb:e1:51:90:02:6f:cb:a2:43:41:12:77:1b: 11:43:3c:00:d7:13:1d:83:a0:de:e0:03:59:9c:e5:ff:5f:f7: d5:1b:21:71:cb:65:8d:72:18:4c:a9:0b:29:1c:f9:bc:68:64: b6:29:f5:75:2d:27:3b:88:72:f6:9e:02:52:0c:5b:c3:e8:bb: 0f:ca:8c:e5:a5:4e:0e:86:15:4c:cf:d9:19:4c:ac:96:83:c1: fc:de:d1:12:01:06:30:b2:9d:61:95:c2:28:76:3d:95:e4:84: 41:48:e6:11:48:da:f1:39:94:6f:ba:eb:3b:8a:0d:1e:55:27: c1:bd:c3:ba:f2:da:a3:b9:27:f2:58:cb:79:f4:57:0d:e8:e5: a8:8f:42:43:8e:58:a7:1d:3a:e1:a7:51:d9:0c:68:4b:71:93: f2:65:23:25:37:fa:db:4f:8c:bd:c5:f5:fb:8f:25:7a:9b:ff: d6:3e:24:19:76:8a:5b:fa:43:75:e7:63:14:db:9a:44:c7:3f: d0:ed:6b:8f:4c:ab:40:e6:df:05:b1:be:36:c9:ec:c3:ee:93: 91:d3:7f:e9:50:ac:c4:fe:bd:fd:40:98:4a:83:2f:59:c7:64: 43:21:d4:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDc0RDQ0RDk2OEFGNDYzRUZCMTdDMDgwRDVGQUQwMTBD NEFDMDk3QUEwHhcNMjUwOTA0MTk0NjM3WhcNMjUwOTExMTk0NjM3WjAYMRYwFAYD VQQDEw02OGI5ZWM5ZC00ZmJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssOlm+FWRVNNDUVf/iMb7rA8MCyMZ618xP1UoWK0v6kbx9QBHRyVwcsDOAG5 hrxVMg6xMSI5j/h3LOEziI1vMRauTALjS7zKRIotOF2VbsYZyq4i2FLTXhDmrDf/ DYbTFTb9pQaNgbAcr4dmUM0kYZ1A71IjyYig48svYiuyiM1JwCYZLSXT9Xe7OS47 olaMBrOgnsvFsY1XoVdYT0qCTzU4ORKFqBo3zx3hfL4HV6fWK0VZyjCT9XJF/e9x bYggfeBdGrM8EUo5ofpg7InMhTMknJPGlrVFfCpq5GVG2vzqnvEEOKpD/fA2vamG RmveXdChoex0CQt7PvIVpcHzhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAaGoOaA C3pAUEjmQMuzcYm1T8mxMB8GA1UdIwQYMBaAFHTUTZaK9GPvsXwIDV+tAQxKwJeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC82RUZDMEJFRTk4 NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFktLXhmQWdOWDYwQkRFckFs Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ROUk5sb3IwWS0teGZBZ05YNjBCREVyQWw2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBBOC82RUZDMEJFRTk4NEMxMUVCOEE0MUZBMjBDNEY5QUUwMi9kTlJObG9yMFkt LXhmQWdOWDYwQkRFckFsNm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtm9uhlwNpON9tNyoRhlmLjEe0c11atrvhUZACb8uiQ0ESdxsRQzwA 1xMdg6De4ANZnOX/X/fVGyFxy2WNchhMqQspHPm8aGS2KfV1LSc7iHL2ngJSDFvD 6LsPyozlpU4OhhVMz9kZTKyWg8H83tESAQYwsp1hlcIodj2V5IRBSOYRSNrxOZRv uus7ig0eVSfBvcO68tqjuSfyWMt59FcN6OWoj0JDjlinHTrhp1HZDGhLcZPyZSMl N/rbT4y9xfX7jyV6m//WPiQZdopb+kN152MU25pExz/Q7WuPTKtA5t8Fsb42yezD 7pOR03/pUKzE/r39QJhKgy9Zx2RDIdTI -----END CERTIFICATE-----Generated at Sat Sep 6 14:15:53 2025 by rpki-client