$ rpki-client -vvf rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft File: DYtx2GteICkzvLAqW210CSpSoXw.mft (raw, json) Hash identifier: GUwXAocaOQsQvbAHvebkswvfjUEho5XmIRDyH9tjoc4= Subject key identifier: 4C:7B:CE:6A:0F:DD:36:34:B8:91:89:7B:C5:02:67:00:2A:C5:16:A7 Authority key identifier: 0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C Certificate issuer: /CN=A91A395C/serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Certificate serial: 3509 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft Manifest number: 34DB Signing time: Sat 06 Sep 2025 14:51:34 +0000 Manifest this update: Sat 06 Sep 2025 14:51:33 +0000 Manifest next update: Sat 13 Sep 2025 14:51:33 +0000 Files and hashes: 1: DYtx2GteICkzvLAqW210CSpSoXw.crl (hash: ThoBS16hIZQDQ+lB2bieXwp7JCH4Rc+XmxEzMhQ+FGY=) 2: 991EB004BE8511EE960E5082C4F9AE02.roa (hash: IR/fxoozFicSxIrUXHGZXGMAUroK6RP4wvdk7z4PV7A=) 3: 9B71FEB0593F11EA9F9FA238C4F9AE02.roa (hash: XQCwNi2PZQw3HwB0S22xbUukUjh1gRPdN0DptoUSl6Q=) 4: D56D9FD87E8711EC9A928B6AC4F9AE02.roa (hash: MzFm0njK9GauK3PVGzL0I/Klqbd6ft5wJ9/podujw/8=) 5: 9A2B0DE4593F11EA9F9FA238C4F9AE02.roa (hash: jv97nGJvaH0WKHe7n31vkT3MMMbNqFjpDhhexD6X6+Q=) 6: 65552C3AE8D411ED8D0FAD45C4F9AE02.roa (hash: ifJGYL5q49BedEWwURROMxMLmQuzo6sd4i9VU7gjPWk=) 7: 3DBC186C5AD611EF85A4557BC4F9AE02.roa (hash: crg/ljxSxvSurizJ6VoDNQFMCKyOAKHsQIWFOorvrvI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13577 (0x3509) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A395C, serialNumber=0D8B71D86B5E202933BCB02A5B6D74092A52A17C Validity Not Before: Sep 6 14:51:33 2025 GMT Not After : Sep 13 14:51:33 2025 GMT Subject: CN=68bc4a75-6ad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bc:a7:ba:31:cc:e2:41:99:c8:4f:c3:6a:e0: cf:31:90:61:fd:ef:f4:2c:1d:ca:60:0c:df:85:5c: 70:65:c0:ff:1a:7d:cc:10:81:2d:1d:4b:26:14:78: a2:15:16:7a:24:ce:05:db:fa:60:5b:12:56:d8:83: b3:4b:8f:7a:aa:55:46:de:38:4c:28:79:51:56:50: 3b:dd:9f:a1:78:0a:79:ef:88:9a:d5:a4:e2:6c:95: 43:02:b0:56:94:23:b4:5f:38:db:dd:c3:8b:4d:db: 33:d5:00:43:08:b7:b5:db:27:5f:fc:53:91:5d:64: 48:ea:06:55:4a:f5:dc:53:6a:da:b9:80:95:7c:b6: 52:1f:bc:d9:3c:b1:39:4f:7d:38:d1:19:6c:60:a6: c8:18:c4:9d:6f:08:f1:ea:5d:7a:a5:53:c5:9a:ba: b0:4e:8d:72:a6:32:ab:63:a6:c9:0c:f4:cf:2a:f4: af:f8:89:b0:ab:81:99:a1:7e:e8:91:15:8a:7f:97: 78:9f:05:3e:40:84:52:3d:ee:6f:f5:c9:41:58:72: be:2a:e1:2c:a0:b4:73:5d:5a:cd:ef:ab:ac:6f:9f: e3:f4:18:37:8a:1c:2d:62:67:0e:65:a3:da:c6:80: 15:6f:c0:0e:b6:78:7c:50:ed:16:2e:8b:11:31:95: 35:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:7B:CE:6A:0F:DD:36:34:B8:91:89:7B:C5:02:67:00:2A:C5:16:A7 X509v3 Authority Key Identifier: keyid:0D:8B:71:D8:6B:5E:20:29:33:BC:B0:2A:5B:6D:74:09:2A:52:A1:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DYtx2GteICkzvLAqW210CSpSoXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A395C/BB3417C01D9611E2B8BB827F08B02CD2/DYtx2GteICkzvLAqW210CSpSoXw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:57:67:8c:3a:11:6e:79:a4:5c:e4:79:35:04:60:f7:1f:80: 06:d4:1b:48:dd:04:59:6e:b9:e5:00:46:4f:9f:40:7a:2c:0b: 88:08:b1:12:fb:38:fe:e8:1a:f0:1d:5c:e1:0d:52:ed:e1:18: 3f:95:d7:39:9b:18:46:ec:ee:3c:fc:0a:d6:ce:2b:14:ce:d0: c9:31:f4:a0:3f:96:c3:5a:ad:87:f2:f1:8a:d9:c8:e1:8b:60: 74:ea:91:6a:6e:fe:3e:cd:e7:68:2d:85:29:7a:a9:37:bf:f5: f3:19:f4:72:09:08:b2:59:b0:c8:b4:67:e3:b6:6f:30:32:5a: 94:a5:ee:0b:27:2c:35:56:c8:60:cc:46:24:db:3f:11:7b:5b: 51:c7:e8:c3:fb:ee:c3:a4:6b:c1:ca:0d:ab:cf:ea:37:38:e1: 51:e0:21:29:00:5d:9b:1f:be:bc:9e:40:f4:6d:57:37:c9:00: 2d:87:ce:a7:06:60:e4:d6:79:b5:83:2f:73:5a:58:88:97:7c: 07:c4:24:1f:be:89:f5:35:7f:f0:25:63:08:2d:fe:9f:d7:8a: c7:cc:63:18:94:e9:81:27:ff:ef:76:c6:d7:21:c6:a8:ca:aa: 8c:ac:1f:c6:28:e3:eb:58:43:86:17:68:77:25:69:3a:c6:f7: f1:98:6b:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM5NUMxMTAvBgNVBAUTKDBEOEI3MUQ4NkI1RTIwMjkzM0JDQjAyQTVCNkQ3NDA5 MkE1MkExN0MwHhcNMjUwOTA2MTQ1MTMzWhcNMjUwOTEzMTQ1MTMzWjAYMRYwFAYD VQQDEw02OGJjNGE3NS02YWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxrynujHM4kGZyE/DauDPMZBh/e/0LB3KYAzfhVxwZcD/Gn3MEIEtHUsmFHii FRZ6JM4F2/pgWxJW2IOzS496qlVG3jhMKHlRVlA73Z+heAp574ia1aTibJVDArBW lCO0Xzjb3cOLTdsz1QBDCLe12ydf/FORXWRI6gZVSvXcU2rauYCVfLZSH7zZPLE5 T3040RlsYKbIGMSdbwjx6l16pVPFmrqwTo1ypjKrY6bJDPTPKvSv+Imwq4GZoX7o kRWKf5d4nwU+QIRSPe5v9clBWHK+KuEsoLRzXVrN76usb5/j9Bg3ihwtYmcOZaPa xoAVb8AOtnh8UO0WLosRMZU1ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEx7zmoP 3TY0uJGJe8UCZwAqxRanMB8GA1UdIwQYMBaAFA2LcdhrXiApM7ywKlttdAkqUqF8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzk1Qy9CQjM0MTdDMDFE OTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlDa3p2TEFxVzIxMENTcFNv WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RZdHgyR3RlSUNrenZMQXFXMjEwQ1NwU29Ydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Mzk1Qy9CQjM0MTdDMDFEOTYxMUUyQjhCQjgyN0YwOEIwMkNEMi9EWXR4Mkd0ZUlD a3p2TEFxVzIxMENTcFNvWHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+V2eMOhFueaRc5Hk1BGD3H4AG1BtI3QRZbrnlAEZPn0B6LAuICLES +zj+6BrwHVzhDVLt4Rg/ldc5mxhG7O48/ArWzisUztDJMfSgP5bDWq2H8vGK2cjh i2B06pFqbv4+zedoLYUpeqk3v/XzGfRyCQiyWbDItGfjtm8wMlqUpe4LJyw1Vshg zEYk2z8Re1tRx+jD++7DpGvByg2rz+o3OOFR4CEpAF2bH768nkD0bVc3yQAth86n BmDk1nm1gy9zWliIl3wHxCQfvon1NX/wJWMILf6f14rHzGMYlOmBJ//vdsbXIcao yqqMrB/GKOPrWEOGF2h3JWk6xvfxmGt4 -----END CERTIFICATE-----Generated at Sun Sep 7 15:21:22 2025 by rpki-client