$ rpki-client -vvf rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft File: DNkEx-s5CtGlXbr0_FAFTAhUbis.mft (raw, json) Hash identifier: P6SaLguq7uefbOu10Zv7jfczy2IldHk4Hih3yyKgaZg= Subject key identifier: B8:77:0D:33:CE:92:E6:C5:64:BE:96:4C:4F:2F:33:29:D3:3A:F6:5E Authority key identifier: 0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B Certificate issuer: /CN=A91A47B6/serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Certificate serial: 012B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft Manifest number: 0128 Signing time: Wed 17 Sep 2025 05:15:25 +0000 Manifest this update: Wed 17 Sep 2025 05:15:25 +0000 Manifest next update: Wed 24 Sep 2025 05:15:25 +0000 Files and hashes: 1: DNkEx-s5CtGlXbr0_FAFTAhUbis.crl (hash: PYKC2OBxiRitY8VpIwfqQLb1RFvSuBAYkQgmhemaWfg=) 2: D45022C8CEC211EE80F08B36C4F9AE02.roa (hash: lCLpkvr+Mt+EalvdDtGgIkdudrmtSBSHV/CQh7RNEBw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A47B6, serialNumber=0CD904C7EB390AD1A55DBAF4FC50054C08546E2B Validity Not Before: Sep 17 05:15:25 2025 GMT Not After : Sep 24 05:15:25 2025 GMT Subject: CN=68ca43ed-cf39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bd:55:c3:f1:ec:2e:d1:4c:2a:31:31:e7:1e: 8b:8f:ba:8f:03:a0:57:ea:0e:88:e3:71:63:0c:bf: 02:b8:58:52:81:b4:3b:aa:94:5e:fd:05:fe:9d:e9: c2:f3:8b:5f:1d:a6:da:e5:1c:5b:ea:e3:ad:0d:4b: 58:79:35:b7:32:84:3b:f0:a7:53:7b:b2:f6:c4:ae: c3:46:b1:0d:c4:22:62:b6:76:ed:f5:55:d7:27:81: a8:3c:d8:6c:03:d2:2b:21:58:b8:49:62:ca:52:83: 19:9e:b6:24:75:11:6f:7e:30:cf:e5:db:dd:a9:1d: d8:87:20:72:8f:be:17:51:7a:de:75:50:92:1d:b4: d5:68:18:a5:5a:0f:e0:34:0e:ce:d1:c3:f3:17:c1: 5e:c2:c3:dd:62:cc:2e:38:80:cb:29:de:ee:a4:9c: 34:09:ad:b9:46:14:74:0f:52:7a:1c:0b:89:f2:ab: 0f:f4:d9:ab:d5:b3:ee:7c:20:9f:96:7e:b2:22:a8: 76:65:fe:d3:b5:8d:a4:cc:ea:c1:11:3a:c2:b4:c6: b5:9f:04:c0:29:c1:cd:27:0e:2f:0e:c6:e5:0e:f0: 02:67:6d:9e:f7:d6:29:dd:75:fe:dd:0c:ff:15:7f: b3:d2:01:a2:5d:1a:66:31:ff:d8:8d:b9:36:a2:06: 94:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:77:0D:33:CE:92:E6:C5:64:BE:96:4C:4F:2F:33:29:D3:3A:F6:5E X509v3 Authority Key Identifier: keyid:0C:D9:04:C7:EB:39:0A:D1:A5:5D:BA:F4:FC:50:05:4C:08:54:6E:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DNkEx-s5CtGlXbr0_FAFTAhUbis.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A47B6/905D7FEECEC111EE8CF01740C4F9AE02/DNkEx-s5CtGlXbr0_FAFTAhUbis.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:19:d8:94:40:f0:72:3e:52:b8:9e:ba:3f:15:85:93:4a:46: 47:91:6c:21:b7:b4:6b:42:a3:44:92:b9:6a:5b:f5:79:67:30: 3d:05:7d:83:18:6f:68:e3:d8:00:c6:7f:f0:df:b5:bd:fb:8c: f2:c4:fe:a0:f7:38:e4:02:96:66:e0:12:66:74:47:39:aa:98: c5:f9:2e:65:c9:47:9e:1f:f1:87:a4:15:15:be:fd:01:25:88: 52:8f:7d:a4:ac:11:cf:c2:fb:42:94:8e:e2:47:54:ae:73:10: 51:4a:8f:b3:a1:b7:59:ef:da:e2:4e:17:cc:15:50:87:c7:3e: 44:e5:e9:1d:70:83:c2:26:ff:0f:2d:0c:56:67:cb:14:25:99: 9b:9d:21:7a:a8:6c:a2:ce:fe:31:e0:21:e3:5e:2e:7f:55:d3: d5:6f:08:7e:37:66:d2:08:8b:11:a3:40:e2:e2:f2:8c:fb:2f: 77:f8:15:b9:92:d0:b2:00:f3:8e:00:71:ea:fd:e7:9a:9d:fc: 24:ea:bd:0e:72:50:60:f9:9d:f4:a0:69:16:13:ff:0d:1b:99: 8e:d0:18:c7:d0:08:a5:8f:e2:53:e8:73:c3:f9:ed:a4:16:18: d8:62:32:43:38:33:05:3c:c0:0a:db:45:61:67:20:5c:58:4d: 11:f4:6c:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ3QjYxMTAvBgNVBAUTKDBDRDkwNEM3RUIzOTBBRDFBNTVEQkFGNEZDNTAwNTRD MDg1NDZFMkIwHhcNMjUwOTE3MDUxNTI1WhcNMjUwOTI0MDUxNTI1WjAYMRYwFAYD VQQDEw02OGNhNDNlZC1jZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw71Vw/HsLtFMKjEx5x6Lj7qPA6BX6g6I43FjDL8CuFhSgbQ7qpRe/QX+nenC 84tfHaba5Rxb6uOtDUtYeTW3MoQ78KdTe7L2xK7DRrENxCJitnbt9VXXJ4GoPNhs A9IrIVi4SWLKUoMZnrYkdRFvfjDP5dvdqR3YhyByj74XUXredVCSHbTVaBilWg/g NA7O0cPzF8FewsPdYswuOIDLKd7upJw0Ca25RhR0D1J6HAuJ8qsP9Nmr1bPufCCf ln6yIqh2Zf7TtY2kzOrBETrCtMa1nwTAKcHNJw4vDsblDvACZ22e99Yp3XX+3Qz/ FX+z0gGiXRpmMf/Yjbk2ogaUUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLh3DTPO kubFZL6WTE8vMynTOvZeMB8GA1UdIwQYMBaAFAzZBMfrOQrRpV269PxQBUwIVG4r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDdCNi85MDVEN0ZFRUNF QzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0R2xYYnIwX0ZBRlRBaFVi aXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ROa0V4LXM1Q3RHbFhicjBfRkFGVEFoVWJpcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDdCNi85MDVEN0ZFRUNFQzExMUVFOENGMDE3NDBDNEY5QUUwMi9ETmtFeC1zNUN0 R2xYYnIwX0ZBRlRBaFViaXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoGdiUQPByPlK4nro/FYWTSkZHkWwht7RrQqNEkrlqW/V5ZzA9BX2D GG9o49gAxn/w37W9+4zyxP6g9zjkApZm4BJmdEc5qpjF+S5lyUeeH/GHpBUVvv0B JYhSj32krBHPwvtClI7iR1SucxBRSo+zobdZ79riThfMFVCHxz5E5ekdcIPCJv8P LQxWZ8sUJZmbnSF6qGyizv4x4CHjXi5/VdPVbwh+N2bSCIsRo0Di4vKM+y93+BW5 ktCyAPOOAHHq/eeanfwk6r0OclBg+Z30oGkWE/8NG5mO0BjH0Ailj+JT6HPD+e2k FhjYYjJDODMFPMAK20VhZyBcWE0R9Gx7 -----END CERTIFICATE-----Generated at Fri Sep 19 06:50:30 2025 by rpki-client