$ rpki-client -vvf rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft File: D2tHILCjVyLYXzRG79R0C9NBg04.mft (raw, json) Hash identifier: kC2RCkDNX4gH2oNFcwlpmlBMhsH0RWMmR1DAz5Mbb48= Subject key identifier: 68:B3:15:B4:67:16:4A:38:4F:E7:F1:B7:8A:7D:81:CC:6E:AC:BC:23 Authority key identifier: 0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E Certificate issuer: /CN=A91850AD/serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft Manifest number: C0 Signing time: Fri 05 Sep 2025 06:17:02 +0000 Manifest this update: Fri 05 Sep 2025 06:17:01 +0000 Manifest next update: Fri 12 Sep 2025 06:17:01 +0000 Files and hashes: 1: D2tHILCjVyLYXzRG79R0C9NBg04.crl (hash: PIxvTtoggBbSOwQVBBAdn9VzUGext2l5AxQPg/eDXC0=) 2: CD1FB5C2643611EFA2C41948C4F9AE02.roa (hash: 2LzL+Qzx3p8kIBRv0QRWzi2huUwOzt6OF9O+pNxeoDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91850AD, serialNumber=0F6B4720B0A35722D85F3446EFD4740BD341834E Validity Not Before: Sep 5 06:17:01 2025 GMT Not After : Sep 12 06:17:01 2025 GMT Subject: CN=68ba805d-7e60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e8:52:54:e7:3e:49:a5:0d:52:45:76:ff:d1: b2:75:7b:eb:81:ed:6e:05:7a:91:05:74:2d:19:78: d3:b0:3c:5f:de:d3:37:e7:53:2a:21:01:61:cf:9b: 7c:ed:45:1b:f1:f8:ec:78:17:8f:8e:9a:1b:f7:43: 96:7a:85:d1:9a:85:6c:ba:ad:bc:48:ba:52:de:c0: b3:ac:6f:4c:ed:b8:fa:e9:18:fc:4a:0a:3f:1e:0b: cd:ac:5c:ee:86:42:3d:94:8a:79:70:44:81:0f:e4: ad:7a:9a:e0:b4:16:b4:4a:0d:1e:7b:ba:60:fd:ca: 98:f5:92:43:54:ff:0a:23:c6:01:c7:f3:36:98:6a: bf:2e:1a:65:84:86:8d:99:55:54:54:2e:f6:7d:bd: 5e:98:fc:79:34:94:00:dd:45:9f:08:0f:14:4c:12: 70:53:6b:42:68:8a:4b:b5:8d:56:3d:73:52:f5:56: 2e:62:0a:c5:d7:a7:bc:ee:b3:68:49:8b:cf:6f:24: ee:fc:fe:2e:78:c3:27:46:54:1b:53:ad:3a:03:69: 08:26:75:26:39:1d:d5:4b:f0:20:55:de:cf:3c:5a: b2:b8:c2:8b:fa:df:ae:94:f7:24:d4:da:5b:c8:fd: f1:56:95:eb:ea:06:3a:87:ea:e9:ac:f1:21:44:ad: 67:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B3:15:B4:67:16:4A:38:4F:E7:F1:B7:8A:7D:81:CC:6E:AC:BC:23 X509v3 Authority Key Identifier: keyid:0F:6B:47:20:B0:A3:57:22:D8:5F:34:46:EF:D4:74:0B:D3:41:83:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/D2tHILCjVyLYXzRG79R0C9NBg04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91850AD/60EBE1AC643411EF842FC620C4F9AE02/D2tHILCjVyLYXzRG79R0C9NBg04.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ee:f3:14:42:e4:bc:9e:6a:d8:43:17:5c:e9:27:b5:5d:c3: ab:d5:c5:db:b2:6b:99:07:fc:3e:e0:10:5f:ad:a5:26:4b:7a: db:17:20:b5:14:b2:80:f6:71:cf:02:be:4b:b1:92:b4:ba:23: 92:2b:b9:48:db:3f:54:da:b6:7d:2e:b5:0f:8f:43:0f:45:13: 13:58:16:bc:fd:90:2d:ee:6d:2f:29:f8:c9:b3:2b:c9:d5:46: 64:28:46:00:db:cb:fb:8d:7f:27:53:d9:a2:54:1a:5e:ac:c5: df:bb:43:3d:6b:16:e2:67:b7:cd:68:bf:b2:0a:7a:67:f0:31: c7:c2:27:07:62:83:b3:cb:83:5b:d6:39:49:6c:e6:55:19:f0: 96:8a:17:7e:10:66:40:6a:ae:58:23:f4:f0:5c:bf:e5:73:5a: ad:20:91:c0:a2:28:81:f9:9d:3b:43:1f:06:48:c1:95:1d:e0: 70:ae:0e:58:01:09:bb:18:c9:eb:0c:25:ed:49:54:73:d5:0a: 17:bb:32:a4:a5:1c:6f:49:70:ab:5d:23:cb:c5:cc:c8:be:c5: d2:43:88:d0:28:d0:44:61:5a:bf:8d:07:55:80:b2:de:64:41: 40:33:a6:59:10:b9:48:dd:01:3b:ba:3e:5f:8c:75:d8:37:16: 95:d7:02:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUwQUQxMTAvBgNVBAUTKDBGNkI0NzIwQjBBMzU3MjJEODVGMzQ0NkVGRDQ3NDBC RDM0MTgzNEUwHhcNMjUwOTA1MDYxNzAxWhcNMjUwOTEyMDYxNzAxWjAYMRYwFAYD VQQDEw02OGJhODA1ZC03ZTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+hSVOc+SaUNUkV2/9GydXvrge1uBXqRBXQtGXjTsDxf3tM351MqIQFhz5t8 7UUb8fjseBePjpob90OWeoXRmoVsuq28SLpS3sCzrG9M7bj66Rj8Sgo/HgvNrFzu hkI9lIp5cESBD+SteprgtBa0Sg0ee7pg/cqY9ZJDVP8KI8YBx/M2mGq/LhplhIaN mVVUVC72fb1emPx5NJQA3UWfCA8UTBJwU2tCaIpLtY1WPXNS9VYuYgrF16e87rNo SYvPbyTu/P4ueMMnRlQbU606A2kIJnUmOR3VS/AgVd7PPFqyuMKL+t+ulPck1Npb yP3xVpXr6gY6h+rprPEhRK1n5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGizFbRn Fko4T+fxt4p9gcxurLwjMB8GA1UdIwQYMBaAFA9rRyCwo1ci2F80Ru/UdAvTQYNO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTBBRC82MEVCRTFBQzY0 MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5TFlYelJHNzlSMEM5TkJn MDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0QydEhJTENqVnlMWVh6Ukc3OVIwQzlOQmcwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTBBRC82MEVCRTFBQzY0MzQxMUVGODQyRkM2MjBDNEY5QUUwMi9EMnRISUxDalZ5 TFlYelJHNzlSMEM5TkJnMDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN7vMUQuS8nmrYQxdc6Se1XcOr1cXbsmuZB/w+4BBfraUmS3rbFyC1 FLKA9nHPAr5LsZK0uiOSK7lI2z9U2rZ9LrUPj0MPRRMTWBa8/ZAt7m0vKfjJsyvJ 1UZkKEYA28v7jX8nU9miVBperMXfu0M9axbiZ7fNaL+yCnpn8DHHwicHYoOzy4Nb 1jlJbOZVGfCWihd+EGZAaq5YI/TwXL/lc1qtIJHAoiiB+Z07Qx8GSMGVHeBwrg5Y AQm7GMnrDCXtSVRz1QoXuzKkpRxvSXCrXSPLxczIvsXSQ4jQKNBEYVq/jQdVgLLe ZEFAM6ZZELlI3QE7uj5fjHXYNxaV1wKz -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:31 2025 by rpki-client