$ rpki-client -vvf rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft File: DmxKtne94a1EYD_XN9olwGAcRZw.mft (raw, json) Hash identifier: kYulJEyA0/TmTIf+7p3BwZWCJTah9dUpRSjYxJNS+dc= Subject key identifier: F1:EF:F1:E6:E3:57:8E:26:66:0E:60:19:7B:3B:86:E4:11:D3:4B:33 Authority key identifier: 0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C Certificate issuer: /CN=A91939CF/serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft Manifest number: 64 Signing time: Wed 17 Sep 2025 07:45:52 +0000 Manifest this update: Wed 17 Sep 2025 07:45:51 +0000 Manifest next update: Wed 24 Sep 2025 07:45:51 +0000 Files and hashes: 1: DmxKtne94a1EYD_XN9olwGAcRZw.crl (hash: y2bzV/Lxyyp5hlRhuJFhTHByT4XVTgphA/GYuqyYDYM=) 2: C488A080FB5911EFA827FD17C4F9AE02.roa (hash: JCV9BgemXhUBaAgBPhl6UiNH0ukdvH/wrcQapOQQK+U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:45:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91939CF, serialNumber=0E6C4AB677BDE1AD44603FD737DA25C0601C459C Validity Not Before: Sep 17 07:45:51 2025 GMT Not After : Sep 24 07:45:51 2025 GMT Subject: CN=68ca6730-e4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c6:49:f6:e7:75:12:af:a0:73:91:e5:76:b8: ce:a7:6f:4a:41:bd:a9:97:91:58:8a:45:f2:bd:4d: 71:85:86:65:4f:70:16:a5:68:7d:cd:36:9f:41:9c: 61:0b:9c:91:f5:8e:b1:31:75:22:86:a2:8d:a3:81: 3b:f6:0c:8d:05:c4:ad:b5:ca:b0:6d:54:49:46:d5: 59:82:9f:f9:0f:bf:5b:f2:da:73:6c:b3:26:d9:ff: 9f:05:00:02:0c:0f:bd:46:8b:29:6e:aa:4a:34:56: a5:96:c1:03:34:f8:d8:f7:08:80:a3:32:a8:85:af: 2f:b8:85:48:16:9e:39:65:79:92:ba:ae:3d:a9:12: 36:b6:15:37:fe:7a:93:55:e3:77:4c:d3:4d:f7:0e: 3e:2b:cf:cb:a1:02:4e:6b:ac:85:73:a7:4d:d2:38: 5a:56:6b:25:85:8e:76:cb:f9:01:93:be:6e:5e:26: 7e:5c:4b:b6:e9:ac:06:45:55:6d:00:8c:12:0c:16: 4e:96:20:8f:16:ff:64:2f:5b:7c:31:50:20:43:be: e4:95:85:7b:36:76:c3:4f:fe:13:80:fc:fa:88:8a: 45:1a:28:72:43:70:35:5b:07:c5:ec:c3:c5:62:12: 97:5c:22:69:eb:67:fa:23:ae:93:3f:af:fc:70:66: 7c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:EF:F1:E6:E3:57:8E:26:66:0E:60:19:7B:3B:86:E4:11:D3:4B:33 X509v3 Authority Key Identifier: keyid:0E:6C:4A:B6:77:BD:E1:AD:44:60:3F:D7:37:DA:25:C0:60:1C:45:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmxKtne94a1EYD_XN9olwGAcRZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91939CF/56F31FB4FB5911EF86502717C4F9AE02/DmxKtne94a1EYD_XN9olwGAcRZw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:0f:26:b9:35:7e:28:78:77:9e:4f:7a:52:5c:ce:5d:84:58: f9:81:c5:08:8d:ff:4e:50:5c:eb:ac:4e:60:d5:67:0e:c1:f4: 5d:1f:c8:8a:92:8a:c8:bc:e9:5f:65:8c:f5:84:ad:9d:5c:ac: 8b:c0:e6:3f:ef:89:26:65:12:e2:62:37:be:ea:9b:7c:be:56: 40:4e:2f:c1:80:88:8d:67:ac:05:c0:47:b8:22:52:be:bd:db: 03:15:ef:87:3f:9b:21:37:c6:bd:68:14:a6:2c:b5:68:9c:d0: d1:ab:88:2a:f3:d3:d7:0f:bd:a4:44:42:0d:fd:f6:48:8b:f0: ba:72:2f:6b:2f:2e:5a:5a:9c:87:dd:b0:33:ce:dd:23:16:bc: be:00:06:77:ce:d6:f8:d0:d0:ca:6d:55:95:a8:73:9a:b2:65: 77:8f:bf:19:50:b9:0c:fd:45:71:df:d1:3f:ba:c1:31:a3:bd: ab:2d:b3:70:44:ca:0c:36:cc:3b:8e:1b:6d:d4:da:1f:98:6f: 2f:8b:7b:43:22:3d:11:89:d2:a2:6a:56:d3:de:9c:72:af:a1: 24:c1:fe:e4:43:55:8e:9b:00:8f:bc:20:a5:1c:de:2b:2d:90: 33:9b:c9:5b:41:0d:52:d4:0e:5f:ae:f6:cd:89:51:01:64:ba: dd:9f:a9:15 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MzlDRjExMC8GA1UEBRMoMEU2QzRBQjY3N0JERTFBRDQ0NjAzRkQ3MzdEQTI1QzA2 MDFDNDU5QzAeFw0yNTA5MTcwNzQ1NTFaFw0yNTA5MjQwNzQ1NTFaMBgxFjAUBgNV BAMTDTY4Y2E2NzMwLWU0YTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPxkn253USr6BzkeV2uM6nb0pBvamXkViKRfK9TXGFhmVPcBalaH3NNp9BnGEL nJH1jrExdSKGoo2jgTv2DI0FxK21yrBtVElG1VmCn/kPv1vy2nNssybZ/58FAAIM D71Giyluqko0VqWWwQM0+Nj3CICjMqiFry+4hUgWnjlleZK6rj2pEja2FTf+epNV 43dM0033Dj4rz8uhAk5rrIVzp03SOFpWayWFjnbL+QGTvm5eJn5cS7bprAZFVW0A jBIMFk6WII8W/2QvW3wxUCBDvuSVhXs2dsNP/hOA/PqIikUaKHJDcDVbB8Xsw8Vi EpdcImnrZ/ojrpM/r/xwZnxTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8e/x5uNX jiZmDmAZezuG5BHTSzMwHwYDVR0jBBgwFoAUDmxKtne94a1EYD/XN9olwGAcRZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzOUNGLzU2RjMxRkI0RkI1 OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGExRVlEX1hOOW9sd0dBY1Ja dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRG14S3RuZTk0YTFFWURfWE45b2x3R0FjUlp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz OUNGLzU2RjMxRkI0RkI1OTExRUY4NjUwMjcxN0M0RjlBRTAyL0RteEt0bmU5NGEx RVlEX1hOOW9sd0dBY1Jady5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKEPJrk1fih4d55PelJczl2EWPmBxQiN/05QXOusTmDVZw7B9F0fyIqS isi86V9ljPWErZ1crIvA5j/viSZlEuJiN77qm3y+VkBOL8GAiI1nrAXAR7giUr69 2wMV74c/myE3xr1oFKYstWic0NGriCrz09cPvaREQg399kiL8LpyL2svLlpanIfd sDPO3SMWvL4ABnfO1vjQ0MptVZWoc5qyZXePvxlQuQz9RXHf0T+6wTGjvasts3BE ygw2zDuOG23U2h+Yby+Le0MiPRGJ0qJqVtPenHKvoSTB/uRDVY6bAI+8IKUc3ist kDObyVtBDVLUDl+u9s2JUQFkut2fqRU= -----END CERTIFICATE-----Generated at Thu Sep 18 23:51:21 2025 by rpki-client