$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft File: DlRiWWwMbnfhibUb4m4lyRU4xVw.mft (raw, json) Hash identifier: jgRecSYjPR9LCm1mk+CiLVZ35wGdUCePDN/dStWoQv8= Subject key identifier: FC:7F:D3:3A:FA:6E:25:73:18:C1:A1:19:74:7F:43:0C:14:B2:1B:3E Authority key identifier: 0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C Certificate issuer: /CN=A91D2CDA/serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft Manifest number: CD Signing time: Tue 09 Sep 2025 05:47:32 +0000 Manifest this update: Tue 09 Sep 2025 05:47:32 +0000 Manifest next update: Tue 16 Sep 2025 05:47:32 +0000 Files and hashes: 1: DlRiWWwMbnfhibUb4m4lyRU4xVw.crl (hash: a6lNJc3LFMtzqRPQGMMxggKe6bHjUi1mjMT5cYbeiL8=) 2: 609701825A1611EF9ED11513C4F9AE02.roa (hash: nOpG+yb8xecZXBJPhij/jRHgVz7gZBn8JFs+m2pE4oQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:47:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2CDA, serialNumber=0E5462596C0C6E77E189B51BE26E25C91538C55C Validity Not Before: Sep 9 05:47:32 2025 GMT Not After : Sep 16 05:47:32 2025 GMT Subject: CN=68bfbf74-dd12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:60:bd:d3:7a:6d:92:63:ee:a1:22:46:58:c9: ec:81:96:e3:3c:14:9b:94:f4:3c:2c:3b:cf:05:86: 8a:c9:89:87:18:f6:80:bb:10:f8:a4:fb:29:09:4e: e3:eb:08:b0:61:91:b6:f8:4f:b6:a5:ca:89:50:79: 6d:1e:f5:2f:ed:80:45:d2:df:68:a8:b3:05:f7:2f: cd:52:96:10:1b:2c:e2:37:98:68:91:90:33:3d:35: f0:e1:b1:1b:8f:86:65:21:6b:4e:ea:15:2c:30:3e: 21:a0:ba:c8:8a:d3:b0:be:7e:71:cf:cb:99:17:02: 15:2d:ee:6d:54:6c:0e:f8:35:71:d3:3f:44:89:01: 0f:83:d3:fc:ee:cc:30:b2:94:fe:ef:1a:69:fd:9a: a1:e1:24:ef:5b:e2:8d:f5:1b:e2:e0:b0:58:79:3b: ac:d2:a7:11:68:b0:48:9e:69:a2:f8:3b:80:42:67: 53:0b:05:e4:ed:8d:69:6b:57:c1:15:78:0f:da:8c: 1d:76:02:da:e9:55:d2:9f:fc:fa:59:f1:95:69:41: 73:0e:da:ce:42:38:1c:5a:fd:e4:cb:af:e4:2b:02: 42:6e:ae:e7:ed:ac:87:00:c8:07:c5:93:ca:9e:0b: 16:71:62:4e:30:63:7c:3d:f7:3e:e9:60:aa:5c:2f: 1f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:7F:D3:3A:FA:6E:25:73:18:C1:A1:19:74:7F:43:0C:14:B2:1B:3E X509v3 Authority Key Identifier: keyid:0E:54:62:59:6C:0C:6E:77:E1:89:B5:1B:E2:6E:25:C9:15:38:C5:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DlRiWWwMbnfhibUb4m4lyRU4xVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2CDA/2C7E72B85A1611EF82B6D912C4F9AE02/DlRiWWwMbnfhibUb4m4lyRU4xVw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:33:d9:4d:af:a7:0c:b9:31:f8:ac:02:9e:16:26:c1:94:13: 0a:0c:30:a7:e7:70:90:df:0f:6e:2a:c6:49:f4:4f:bc:7f:2f: ea:91:4e:9a:78:4c:bf:18:b3:22:c3:56:ba:70:d0:10:a6:dd: 62:06:2a:e4:1f:92:2b:cd:10:97:e0:d0:58:43:94:b4:74:21: 9c:c5:5b:01:34:3f:a1:35:04:a4:df:97:75:d4:e9:cd:3d:9a: 8a:ca:f5:42:a3:8b:dd:64:f2:b1:25:5b:44:14:b1:ee:f5:46: ba:97:24:16:97:77:33:d3:21:2c:14:d6:81:7f:34:15:93:b2: 6a:39:01:23:19:ff:7e:09:59:be:9b:93:ff:2c:33:15:9d:3b: ad:42:f7:cb:55:35:5c:ab:97:f5:71:2c:3a:db:ea:ee:4a:b1: 79:0c:e8:48:10:90:02:ac:48:a6:6b:eb:e4:9d:4f:3c:f3:fa: ee:2e:2e:cb:de:f9:97:42:60:74:ba:55:72:e5:d9:e2:d7:81: f7:e7:50:57:96:85:d4:99:8c:cf:0a:1a:60:1b:59:71:70:2c: e3:4c:5a:b9:ae:45:98:f4:ea:f1:a7:c6:9c:8e:47:54:37:83: f2:b0:14:4a:93:87:5c:2b:72:91:7e:84:cd:47:11:e5:00:4b: f8:38:9a:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJDREExMTAvBgNVBAUTKDBFNTQ2MjU5NkMwQzZFNzdFMTg5QjUxQkUyNkUyNUM5 MTUzOEM1NUMwHhcNMjUwOTA5MDU0NzMyWhcNMjUwOTE2MDU0NzMyWjAYMRYwFAYD VQQDEw02OGJmYmY3NC1kZDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyWC903ptkmPuoSJGWMnsgZbjPBSblPQ8LDvPBYaKyYmHGPaAuxD4pPspCU7j 6wiwYZG2+E+2pcqJUHltHvUv7YBF0t9oqLMF9y/NUpYQGyziN5hokZAzPTXw4bEb j4ZlIWtO6hUsMD4hoLrIitOwvn5xz8uZFwIVLe5tVGwO+DVx0z9EiQEPg9P87sww spT+7xpp/Zqh4STvW+KN9Rvi4LBYeTus0qcRaLBInmmi+DuAQmdTCwXk7Y1pa1fB FXgP2owddgLa6VXSn/z6WfGVaUFzDtrOQjgcWv3ky6/kKwJCbq7n7ayHAMgHxZPK ngsWcWJOMGN8Pfc+6WCqXC8fTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPx/0zr6 biVzGMGhGXR/QwwUshs+MB8GA1UdIwQYMBaAFA5UYllsDG534Ym1G+JuJckVOMVc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkNEQS8yQzdFNzJCODVB MTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJuZmhpYlViNG00bHlSVTR4 VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RsUmlXV3dNYm5maGliVWI0bTRseVJVNHhWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkNEQS8yQzdFNzJCODVBMTYxMUVGODJCNkQ5MTJDNEY5QUUwMi9EbFJpV1d3TWJu ZmhpYlViNG00bHlSVTR4VncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYM9lNr6cMuTH4rAKeFibBlBMKDDCn53CQ3w9uKsZJ9E+8fy/qkU6a eEy/GLMiw1a6cNAQpt1iBirkH5IrzRCX4NBYQ5S0dCGcxVsBND+hNQSk35d11OnN PZqKyvVCo4vdZPKxJVtEFLHu9Ua6lyQWl3cz0yEsFNaBfzQVk7JqOQEjGf9+CVm+ m5P/LDMVnTutQvfLVTVcq5f1cSw62+ruSrF5DOhIEJACrEima+vknU888/ruLi7L 3vmXQmB0ulVy5dni14H351BXloXUmYzPChpgG1lxcCzjTFq5rkWY9Orxp8acjkdU N4PysBRKk4dcK3KRfoTNRxHlAEv4OJr6 -----END CERTIFICATE-----Generated at Tue Sep 9 14:18:17 2025 by rpki-client