$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft File: dmH1l-po7_TJKXNjm7Z11_A5CXE.mft (raw, json) Hash identifier: TIwAm3FvX3XlpIkorQGTt4a3hNYZtg24/skx507FYVM= Subject key identifier: 17:CB:1D:D1:82:F5:C4:1B:CA:58:16:33:CC:10:2E:9D:DE:61:6C:C2 Authority key identifier: 76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 Certificate issuer: /CN=A91EA176/serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Certificate serial: 0636 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft Manifest number: 0627 Signing time: Sat 06 Sep 2025 23:06:47 +0000 Manifest this update: Sat 06 Sep 2025 23:06:47 +0000 Manifest next update: Sat 13 Sep 2025 23:06:47 +0000 Files and hashes: 1: dmH1l-po7_TJKXNjm7Z11_A5CXE.crl (hash: 0CaeBNbSyrv+YWJzYSLhoDPH+w7M5BshtcuYp6YRTgY=) 2: 10123D12E34E11ECB9CB283EC4F9AE02.roa (hash: MNI4tMTnWERKtqUoO+1DtINRz6vPCPMkYFmwGLJDwJM=) 3: 6595CE9CB29011EBBBF4F548C4F9AE02.roa (hash: DLHOhN7MxK0HNTrL76H062J5sW6+LyM3CKGkbsKyA38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:06:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1590 (0x636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA176, serialNumber=7661F597EA68EFF4C92973639BB675D7F0390971 Validity Not Before: Sep 6 23:06:47 2025 GMT Not After : Sep 13 23:06:47 2025 GMT Subject: CN=68bcbe87-89ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d9:98:8a:05:a1:a6:c6:c1:ae:10:c2:54:81: 91:49:dd:61:c8:02:de:50:64:30:54:5c:77:f2:b7: 45:d7:4b:71:a0:00:6c:36:28:1e:57:11:23:26:92: da:68:89:17:ef:7f:6c:2c:ac:c7:a7:ee:ff:08:28: d6:ba:d0:60:23:1e:96:66:1b:50:0e:e1:05:7b:b0: 42:49:6f:e5:40:5d:d3:e2:84:eb:1a:97:7d:b7:7b: f3:44:84:c9:dd:7d:f3:1f:a4:38:27:e9:a9:14:d6: ff:74:20:bb:1b:63:2d:97:1b:f4:b0:cb:11:83:41: 63:f5:1f:f9:51:84:76:50:ca:49:83:42:f7:cf:1c: de:a3:9a:b9:e1:20:1b:6b:78:e5:e3:7f:86:af:40: 78:a0:ba:ce:b8:23:3c:f1:86:2b:b2:dd:10:63:5a: cc:0a:25:ac:5d:46:1f:68:fe:4e:8f:ad:10:09:d8: 21:58:4b:36:21:b7:b4:ee:ce:a1:9f:63:5c:e7:96: 5b:42:de:39:02:aa:67:ad:db:17:ce:54:aa:aa:29: f3:27:87:c2:c4:5d:d6:ab:01:5b:3f:ee:63:99:7c: 6b:11:f2:a7:ab:76:0b:57:96:5e:d3:23:e3:2b:71: 7f:37:6a:bd:a5:3c:72:49:75:71:e5:b2:86:39:18: 13:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:CB:1D:D1:82:F5:C4:1B:CA:58:16:33:CC:10:2E:9D:DE:61:6C:C2 X509v3 Authority Key Identifier: keyid:76:61:F5:97:EA:68:EF:F4:C9:29:73:63:9B:B6:75:D7:F0:39:09:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dmH1l-po7_TJKXNjm7Z11_A5CXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA176/ADD3AECEB28E11EB94D21847C4F9AE02/dmH1l-po7_TJKXNjm7Z11_A5CXE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:44:23:1b:f5:24:ca:fe:c5:2b:96:dd:47:e0:50:73:00:06: 4f:62:23:4f:6b:08:85:02:42:c4:93:31:65:89:82:1a:1b:39: 31:0b:07:04:33:34:02:5c:36:1f:5f:df:9c:99:e0:01:e2:12: d4:88:a7:f0:dc:63:b9:8c:e7:1f:5f:a7:bd:26:3f:74:67:c1: 40:4b:a7:60:2f:61:e7:ea:0a:c8:57:39:08:cb:04:99:1c:de: 68:34:bf:38:6e:ef:7c:42:38:c1:c5:94:5b:37:3e:cc:bc:23: e0:c2:23:ce:44:a7:05:42:f6:54:23:7b:e6:55:64:dd:71:10: ea:bd:48:64:bb:c4:97:11:4a:a7:31:c4:59:51:cd:e1:df:a0: 68:b5:92:88:5a:65:e4:61:c9:30:74:63:4c:10:2e:ed:fe:45: dc:72:2e:ed:0a:8b:5a:bf:83:b0:b7:d0:46:3a:ce:3b:88:42: f5:73:0d:94:ab:69:2e:f1:08:09:24:99:c4:6d:2c:74:e6:98: c3:2c:4a:74:37:2a:0f:34:01:6d:26:aa:b8:fd:96:bf:1c:49: c6:31:1a:40:89:9d:a0:3c:7f:ba:71:9c:b3:93:8f:0d:99:d6: fd:de:db:f1:e1:85:1c:73:ec:f1:33:ec:0c:ad:89:df:ef:04: fa:de:77:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUExNzYxMTAvBgNVBAUTKDc2NjFGNTk3RUE2OEVGRjRDOTI5NzM2MzlCQjY3NUQ3 RjAzOTA5NzEwHhcNMjUwOTA2MjMwNjQ3WhcNMjUwOTEzMjMwNjQ3WjAYMRYwFAYD VQQDEw02OGJjYmU4Ny04OWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdmYigWhpsbBrhDCVIGRSd1hyALeUGQwVFx38rdF10txoABsNigeVxEjJpLa aIkX739sLKzHp+7/CCjWutBgIx6WZhtQDuEFe7BCSW/lQF3T4oTrGpd9t3vzRITJ 3X3zH6Q4J+mpFNb/dCC7G2Mtlxv0sMsRg0Fj9R/5UYR2UMpJg0L3zxzeo5q54SAb a3jl43+Gr0B4oLrOuCM88YYrst0QY1rMCiWsXUYfaP5Oj60QCdghWEs2Ibe07s6h n2Nc55ZbQt45AqpnrdsXzlSqqinzJ4fCxF3WqwFbP+5jmXxrEfKnq3YLV5Ze0yPj K3F/N2q9pTxySXVx5bKGORgTZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBfLHdGC 9cQbylgWM8wQLp3eYWzCMB8GA1UdIwQYMBaAFHZh9ZfqaO/0ySlzY5u2ddfwOQlx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTE3Ni9BREQzQUVDRUIy OEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdfVEpLWE5qbTdaMTFfQTVD WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RtSDFsLXBvN19USktYTmptN1oxMV9BNUNYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTE3Ni9BREQzQUVDRUIyOEUxMUVCOTREMjE4NDdDNEY5QUUwMi9kbUgxbC1wbzdf VEpLWE5qbTdaMTFfQTVDWEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyRCMb9STK/sUrlt1H4FBzAAZPYiNPawiFAkLEkzFliYIaGzkxCwcE MzQCXDYfX9+cmeAB4hLUiKfw3GO5jOcfX6e9Jj90Z8FAS6dgL2Hn6grIVzkIywSZ HN5oNL84bu98QjjBxZRbNz7MvCPgwiPORKcFQvZUI3vmVWTdcRDqvUhku8SXEUqn McRZUc3h36BotZKIWmXkYckwdGNMEC7t/kXcci7tCotav4Owt9BGOs47iEL1cw2U q2ku8QgJJJnEbSx05pjDLEp0NyoPNAFtJqq4/Za/HEnGMRpAiZ2gPH+6cZyzk48N mdb93tvx4YUcc+zxM+wMrYnf7wT63nft -----END CERTIFICATE-----Generated at Sun Sep 7 10:02:49 2025 by rpki-client