$ rpki-client -vvf rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft File: dnhyvdDvgmpkldgSahOfxASTgA8.mft (raw, json) Hash identifier: fzVjR6W4k3NkOEMqeDCUBCJZ7Azr1+RDXYdh+77n4EA= Subject key identifier: BF:15:55:66:25:FF:DD:DD:75:20:42:32:83:0A:3D:82:E2:55:D8:36 Authority key identifier: 76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F Certificate issuer: /CN=A91B67D1/serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Certificate serial: 0FE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft Manifest number: 0FC3 Signing time: Mon 08 Sep 2025 17:32:45 +0000 Manifest this update: Mon 08 Sep 2025 17:32:45 +0000 Manifest next update: Mon 15 Sep 2025 17:32:45 +0000 Files and hashes: 1: dnhyvdDvgmpkldgSahOfxASTgA8.crl (hash: WCVBUODi90eTIkNoD4aetux1H6sGikaLGyR30Osh2CE=) 2: 5B3CBC209BEA11EFBCB36227C4F9AE02.roa (hash: eOv7pTte1ye/67eHb4Pi9oh8uZ/8IpesFY1S9J5aGIE=) 3: 5CCDCD7C9BEA11EFBCB36227C4F9AE02.roa (hash: ms+qR7zeYqI6JEXHK3rNQAxzRQXIEiuzImbKZbjKLOE=) 4: 5C1DBC489BEA11EFBCB36227C4F9AE02.roa (hash: p1wuomi4ih0De5e/76yoAEIXaN4ZewrXgvfIRvH8XLQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 17:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4072 (0xfe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B67D1, serialNumber=767872BDD0EF826A6495D8126A139FC40493800F Validity Not Before: Sep 8 17:32:45 2025 GMT Not After : Sep 15 17:32:45 2025 GMT Subject: CN=68bf133d-4bb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e0:90:86:96:1f:6e:81:70:cd:18:c7:62:da: cc:a0:99:53:0b:57:21:bc:6a:bb:84:eb:89:1d:6e: 65:ff:36:47:ce:e7:90:17:71:20:5c:2d:3a:8e:53: 10:b5:97:4b:9c:b8:e8:74:e7:fb:f1:62:9e:68:08: 4b:61:03:f3:5b:6e:42:4d:6a:4e:37:ed:6a:10:cb: 98:ca:22:24:95:fd:05:9a:15:88:50:97:29:48:bd: 65:34:14:d1:5b:d0:0f:41:67:ee:89:5a:c5:f5:7a: e6:fa:5e:98:bd:e4:df:ea:3b:9c:11:d8:57:92:62: 95:da:35:d4:02:25:57:5b:bf:86:14:9d:38:23:51: ce:56:55:6a:6d:3b:7b:6f:ff:7b:e4:0e:7b:14:fd: 02:54:d5:f4:d8:ed:d1:22:9d:10:7d:b6:7b:ad:2e: c6:c6:93:84:ab:c6:6d:ac:a9:12:61:08:8b:94:1f: 5c:af:6e:22:b1:15:98:8d:a9:d8:ef:47:c2:ef:10: de:1f:b8:82:50:9c:b6:3b:e6:10:3a:9f:48:d6:ed: e9:1a:6b:64:f0:2d:d3:7c:98:ae:65:5d:12:f2:58: b4:c3:f5:59:87:49:48:88:d1:e0:60:e3:37:7e:57: 87:f6:13:7c:9a:14:02:21:48:cf:dd:ff:6c:36:1a: c8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:15:55:66:25:FF:DD:DD:75:20:42:32:83:0A:3D:82:E2:55:D8:36 X509v3 Authority Key Identifier: keyid:76:78:72:BD:D0:EF:82:6A:64:95:D8:12:6A:13:9F:C4:04:93:80:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dnhyvdDvgmpkldgSahOfxASTgA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B67D1/6CBC9B40611D11E9B012DB37C4F9AE02/dnhyvdDvgmpkldgSahOfxASTgA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:a0:3b:c9:86:20:9f:52:18:13:55:4d:37:f5:15:8e:3f:d1: f7:65:8e:60:05:e7:95:ca:bd:95:d8:83:6c:de:6f:e2:d2:1d: cf:9c:1c:e4:86:1f:94:96:ac:01:b9:4f:82:f6:c3:f6:3a:66: 50:07:27:69:cc:62:f8:70:be:9a:30:be:5f:22:65:17:26:d0: 25:81:10:db:7d:8a:be:94:fc:25:15:1c:d7:e3:45:b9:f3:a8: b0:9b:1f:4d:a6:37:48:32:97:41:79:24:4b:41:c5:45:23:9e: 3b:76:f6:e7:4f:81:98:0a:db:f0:73:b6:61:e9:82:1d:3e:e5: c3:e2:a5:d5:1a:1a:4b:89:d1:b1:1f:38:94:be:c7:9b:ef:b9: 13:da:d6:98:52:8b:8f:d5:35:6c:05:54:4b:4f:87:c4:57:64: 74:2e:f9:73:c7:c5:1f:00:55:55:25:94:3e:11:18:50:b6:ad: ef:c2:9c:0b:34:0b:8b:07:9f:38:8b:be:74:98:6f:38:a6:14: 2a:82:2e:ef:b8:bc:da:21:97:bb:33:df:f6:0f:dc:83:d8:18: 87:cd:cd:b8:57:80:b3:b7:47:44:c6:4d:4e:af:35:04:d6:46: 48:42:14:24:66:7e:03:42:9c:40:c9:fd:f8:ac:d9:c1:b8:4c: 40:55:44:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3RDExMTAvBgNVBAUTKDc2Nzg3MkJERDBFRjgyNkE2NDk1RDgxMjZBMTM5RkM0 MDQ5MzgwMEYwHhcNMjUwOTA4MTczMjQ1WhcNMjUwOTE1MTczMjQ1WjAYMRYwFAYD VQQDEw02OGJmMTMzZC00YmI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+CQhpYfboFwzRjHYtrMoJlTC1chvGq7hOuJHW5l/zZHzueQF3EgXC06jlMQ tZdLnLjodOf78WKeaAhLYQPzW25CTWpON+1qEMuYyiIklf0FmhWIUJcpSL1lNBTR W9APQWfuiVrF9Xrm+l6YveTf6jucEdhXkmKV2jXUAiVXW7+GFJ04I1HOVlVqbTt7 b/975A57FP0CVNX02O3RIp0QfbZ7rS7GxpOEq8ZtrKkSYQiLlB9cr24isRWYjanY 70fC7xDeH7iCUJy2O+YQOp9I1u3pGmtk8C3TfJiuZV0S8li0w/VZh0lIiNHgYOM3 fleH9hN8mhQCIUjP3f9sNhrINQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL8VVWYl /93ddSBCMoMKPYLiVdg2MB8GA1UdIwQYMBaAFHZ4cr3Q74JqZJXYEmoTn8QEk4AP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjdEMS82Q0JDOUI0MDYx MUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdtcGtsZGdTYWhPZnhBU1Rn QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RuaHl2ZER2Z21wa2xkZ1NhaE9meEFTVGdBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjdEMS82Q0JDOUI0MDYxMUQxMUU5QjAxMkRCMzdDNEY5QUUwMi9kbmh5dmREdmdt cGtsZGdTYWhPZnhBU1RnQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGoDvJhiCfUhgTVU039RWOP9H3ZY5gBeeVyr2V2INs3m/i0h3PnBzk hh+UlqwBuU+C9sP2OmZQBydpzGL4cL6aML5fImUXJtAlgRDbfYq+lPwlFRzX40W5 86iwmx9NpjdIMpdBeSRLQcVFI547dvbnT4GYCtvwc7Zh6YIdPuXD4qXVGhpLidGx HziUvseb77kT2taYUouP1TVsBVRLT4fEV2R0Lvlzx8UfAFVVJZQ+ERhQtq3vwpwL NAuLB584i750mG84phQqgi7vuLzaIZe7M9/2D9yD2BiHzc24V4Czt0dExk1OrzUE 1kZIQhQkZn4DQpxAyf34rNnBuExAVUQi -----END CERTIFICATE-----Generated at Tue Sep 9 15:18:15 2025 by rpki-client