$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft File: Ddq78x7saHZu9mmvlzUkDDiZNFk.mft (raw, json) Hash identifier: iXHxUFZDFYjyBfWP/mIj+mtKyPWB2QZJvSi+5N44slw= Subject key identifier: 94:25:62:12:76:B8:8C:27:A2:D4:68:4A:30:B6:13:BD:17:AA:BF:6B Authority key identifier: 0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 Certificate issuer: /CN=A91B3247/serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Certificate serial: 13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft Manifest number: 10 Signing time: Thu 21 Aug 2025 08:45:53 +0000 Manifest this update: Thu 21 Aug 2025 08:45:52 +0000 Manifest next update: Thu 28 Aug 2025 08:45:52 +0000 Files and hashes: 1: Ddq78x7saHZu9mmvlzUkDDiZNFk.crl (hash: +N5sjShfmntRC0iGVPSWuhnC0jBr9YBnGh7X+qvqlNU=) 2: 78E109F471EE11F090B2AB18C4F9AE02.roa (hash: ysFQliYbv2mMjNpbLYcTPzRzF6e5HrJI3THvWyXjDxw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 08:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3247, serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Validity Not Before: Aug 21 08:45:52 2025 GMT Not After : Aug 28 08:45:52 2025 GMT Subject: CN=68a6dcc0-3123 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:5f:60:9f:5f:99:35:c8:86:de:06:2e:16: 40:ca:b8:74:3e:14:e6:5f:99:b2:61:dd:cc:31:62: f6:cf:75:5c:28:97:02:ee:52:69:70:25:68:3b:44: bb:4c:92:c1:11:85:11:3e:53:d4:34:d5:71:bb:10: 08:4e:d7:4f:70:3a:65:df:6c:07:5b:a0:a9:ff:20: 49:5b:57:74:0d:0b:8d:62:bb:c6:c5:eb:ce:84:43: b3:1a:f4:09:58:81:4f:4f:d2:f3:7b:be:8a:21:69: 93:01:2c:3e:d0:a8:ef:69:9a:92:21:89:0b:6f:4c: 8e:3c:86:00:06:53:29:dd:6e:6e:1e:d0:60:78:ac: 27:63:06:66:4c:84:cc:90:70:9b:c1:38:ef:ce:4f: e9:48:47:34:bf:b6:32:00:f8:c5:16:de:ee:c1:99: 0b:d5:16:ee:9f:6f:de:59:39:51:7e:66:0f:f8:07: 61:67:7b:54:a5:0e:5a:28:fe:83:45:1f:da:b9:3f: 2e:ac:18:91:11:8c:cc:16:72:25:a6:5d:b3:fa:b2: 30:e5:2b:22:a0:bc:dc:1e:fd:c1:9e:6a:a4:34:21: ef:6c:0f:80:41:6a:4e:f9:3a:47:d0:a1:92:8c:30: ca:b9:5e:0c:c5:2d:2f:df:0f:ad:3a:39:7c:84:c4: 37:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:25:62:12:76:B8:8C:27:A2:D4:68:4A:30:B6:13:BD:17:AA:BF:6B X509v3 Authority Key Identifier: keyid:0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:f3:2e:6c:6a:c3:3f:80:8b:41:97:11:97:c7:86:8b:55:ee: 77:de:f5:c1:0a:3f:8f:a2:bf:83:c7:22:98:eb:d0:c0:77:0e: 22:11:fb:91:5e:83:ca:1c:3f:9e:d8:85:76:00:c1:50:2e:a0: e8:52:35:bb:66:13:eb:65:17:16:8c:04:ba:96:c2:0c:e3:e5: 7f:53:b4:3e:f3:39:88:d7:30:14:74:1d:66:d0:5a:eb:fc:06: 35:ba:95:bb:ee:5d:15:16:34:f1:8b:8a:c4:c4:de:22:8a:89: c3:d4:20:a2:1b:97:db:34:3f:40:35:6a:53:2c:78:90:20:a6: b1:55:e7:e8:a7:f6:5b:c3:cb:fc:15:8f:cc:3b:9c:41:04:6a: c1:49:62:42:0e:ab:54:7f:62:bc:27:a9:a3:74:91:e1:aa:9a: 74:16:56:f4:39:6a:cc:a9:e6:38:fc:d7:16:2b:6c:2a:21:40: d0:6f:39:ee:c1:1d:5e:68:47:dd:53:f7:1d:ff:85:e2:52:d3: 25:17:2d:56:d6:ec:78:2a:25:ed:49:bd:e8:a7:95:6a:a6:bb: 49:49:c6:b6:2c:b2:31:71:dd:c7:3c:3e:01:c8:ec:cb:d5:0e: 90:67:54:16:d3:70:8f:9c:33:12:fa:e6:f3:1b:e5:94:72:81: e9:e1:9f:3f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzI0NzExMC8GA1UEBRMoMEREQUJCRjMxRUVDNjg3NjZFRjY2OUFGOTczNTI0MEMz ODk5MzQ1OTAeFw0yNTA4MjEwODQ1NTJaFw0yNTA4MjgwODQ1NTJaMBgxFjAUBgNV BAMTDTY4YTZkY2MwLTMxMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJa19gn1+ZNciG3gYuFkDKuHQ+FOZfmbJh3cwxYvbPdVwolwLuUmlwJWg7RLtM ksERhRE+U9Q01XG7EAhO109wOmXfbAdboKn/IElbV3QNC41iu8bF686EQ7Ma9AlY gU9P0vN7voohaZMBLD7QqO9pmpIhiQtvTI48hgAGUyndbm4e0GB4rCdjBmZMhMyQ cJvBOO/OT+lIRzS/tjIA+MUW3u7BmQvVFu6fb95ZOVF+Zg/4B2Fne1SlDloo/oNF H9q5Py6sGJERjMwWciWmXbP6sjDlKyKgvNwe/cGeaqQ0Ie9sD4BBak75OkfQoZKM MMq5XgzFLS/fD606OXyExDfvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUlCViEna4 jCei1GhKMLYTvReqv2swHwYDVR0jBBgwFoAUDdq78x7saHZu9mmvlzUkDDiZNFkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMjQ3LzMyMDQ0QkZFNzFF RTExRjA5M0MyMkUxOEM0RjlBRTAyL0RkcTc4eDdzYUhadTltbXZselVrRERpWk5G ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRGRxNzh4N3NhSFp1OW1tdmx6VWtERGlaTkZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIz MjQ3LzMyMDQ0QkZFNzFFRTExRjA5M0MyMkUxOEM0RjlBRTAyL0RkcTc4eDdzYUha dTltbXZselVrRERpWk5Gay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACTzLmxqwz+Ai0GXEZfHhotV7nfe9cEKP4+iv4PHIpjr0MB3DiIR+5Fe g8ocP57YhXYAwVAuoOhSNbtmE+tlFxaMBLqWwgzj5X9TtD7zOYjXMBR0HWbQWuv8 BjW6lbvuXRUWNPGLisTE3iKKicPUIKIbl9s0P0A1alMseJAgprFV5+in9lvDy/wV j8w7nEEEasFJYkIOq1R/YrwnqaN0keGqmnQWVvQ5asyp5jj81xYrbCohQNBvOe7B HV5oR91T9x3/heJS0yUXLVbW7HgqJe1JveinlWqmu0lJxrYssjFx3cc8PgHI7MvV DpBnVBbTcI+cMxL65vMb5ZRygenhnz8= -----END CERTIFICATE-----Generated at Fri Aug 22 16:32:12 2025 by rpki-client