$ rpki-client -vvf rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft File: lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft (raw, json) Hash identifier: 4V6E/jUNKYHJOr3krrIPBSX8zS2jWfjs2U1NkVOez5Y= Subject key identifier: 56:73:B9:2C:38:93:63:C8:92:31:20:CB:5E:94:86:54:B4:FE:FA:7D Authority key identifier: 95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 Certificate issuer: /CN=A9110F1F/serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Certificate serial: 027B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft Manifest number: 0277 Signing time: Sat 23 Aug 2025 01:57:23 +0000 Manifest this update: Sat 23 Aug 2025 01:57:23 +0000 Manifest next update: Sat 30 Aug 2025 01:57:23 +0000 Files and hashes: 1: lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl (hash: s4tXEAg9f2Re2QAc2wpgiYr4Tqbdy9ta6QMhagCk9OA=) 2: AF6A12881EBB11EDB35A2561C4F9AE02.roa (hash: 27aLcYczZ5MYFXDnhdewNPk3kbRzrioX5es/1Wn4iNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:57:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 635 (0x27b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110F1F, serialNumber=952F712DF11841208A3B4A874620C59FEED770B0 Validity Not Before: Aug 23 01:57:23 2025 GMT Not After : Aug 30 01:57:23 2025 GMT Subject: CN=68a92003-7c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:af:2e:24:94:06:84:1a:cf:b4:d9:bd:51:69: ba:e5:1c:8d:35:4a:d0:19:b6:d8:ac:53:e7:73:4d: bf:fd:74:08:97:0e:bd:0d:ba:d4:00:f1:68:e7:45: db:5e:d9:77:4b:ef:13:bb:36:19:25:c5:dd:6e:66: 92:7d:2a:01:d8:77:20:f1:85:bb:82:b2:f3:c1:c1: 5d:6f:83:2d:4e:f4:63:1d:c8:4a:e9:23:f9:58:35: df:58:68:46:75:49:30:0d:90:1f:b6:67:73:ef:40: 2f:3b:7f:05:68:44:7c:ea:80:55:60:68:73:f9:c6: 8f:63:7e:d1:76:7e:b3:f7:9d:f3:03:6c:3f:08:6b: 8c:db:e1:6f:7a:02:3b:50:21:00:46:28:99:68:6b: d2:70:b5:1a:72:5b:98:6a:d4:15:82:2e:a3:03:ce: 1f:c2:a9:07:2a:c3:9e:16:da:e5:0a:11:a8:ab:b5: 3a:40:c2:fc:84:1a:93:05:2b:a8:2f:63:3e:4f:24: ee:ea:bc:11:31:be:99:92:2a:43:10:6e:c3:88:e1: 4a:6c:27:bf:5b:49:43:92:84:30:2b:bf:92:eb:6c: 32:84:fc:80:1d:db:8d:cf:7b:ed:08:4c:14:52:ae: 93:88:6a:e7:c2:29:23:92:b0:19:e4:34:51:35:5e: d4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:73:B9:2C:38:93:63:C8:92:31:20:CB:5E:94:86:54:B4:FE:FA:7D X509v3 Authority Key Identifier: keyid:95:2F:71:2D:F1:18:41:20:8A:3B:4A:87:46:20:C5:9F:EE:D7:70:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lS9xLfEYQSCKO0qHRiDFn-7XcLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110F1F/6C0FEF5A1EB911ED9FC68760C4F9AE02/lS9xLfEYQSCKO0qHRiDFn-7XcLA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:3b:a5:9f:8c:ac:2b:ca:85:d5:2a:dc:55:af:23:64:62:9f: ee:ae:75:fb:53:30:5c:e4:58:ab:03:fc:00:84:61:02:16:fe: cc:e5:54:ea:17:35:a0:9b:76:37:bc:aa:ae:1d:96:8d:d0:ba: e5:71:68:8c:bd:85:8e:09:ff:53:cd:3f:61:2f:be:ac:dc:b5: a0:1f:69:99:40:a3:a9:0b:cf:92:47:52:84:07:9c:bd:d2:9f: 19:b2:bd:4a:82:ec:99:32:50:d4:f2:51:4f:2c:db:97:26:a1: 04:7d:c5:cb:f5:bd:62:0b:b1:db:97:3d:68:3e:6f:eb:d2:47: bb:28:68:94:02:bc:99:51:53:97:ae:36:08:9b:a6:58:bb:0f: e6:9e:52:ad:75:7b:b4:e3:44:7f:f0:89:13:82:a0:c9:3c:11: 34:db:74:da:27:00:99:82:14:0c:03:5a:67:94:b2:b2:74:e0: 7e:3c:94:b2:f9:8c:4e:ad:75:75:dc:5a:0a:b9:83:8b:ce:93: ff:0c:08:f0:e9:0d:6c:ee:94:9e:3b:ee:43:07:8a:ce:e9:c8: db:89:11:fc:0c:f3:07:3f:31:67:f4:59:cc:f0:19:9d:75:44: eb:e4:e9:c1:29:58:da:d4:8e:8e:87:a6:8b:52:62:0f:95:73: 77:7d:0a:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBGMUYxMTAvBgNVBAUTKDk1MkY3MTJERjExODQxMjA4QTNCNEE4NzQ2MjBDNTlG RUVENzcwQjAwHhcNMjUwODIzMDE1NzIzWhcNMjUwODMwMDE1NzIzWjAYMRYwFAYD VQQDEw02OGE5MjAwMy03YzRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoK8uJJQGhBrPtNm9UWm65RyNNUrQGbbYrFPnc02//XQIlw69DbrUAPFo50Xb Xtl3S+8TuzYZJcXdbmaSfSoB2Hcg8YW7grLzwcFdb4MtTvRjHchK6SP5WDXfWGhG dUkwDZAftmdz70AvO38FaER86oBVYGhz+caPY37Rdn6z953zA2w/CGuM2+FvegI7 UCEARiiZaGvScLUacluYatQVgi6jA84fwqkHKsOeFtrlChGoq7U6QML8hBqTBSuo L2M+TyTu6rwRMb6ZkipDEG7DiOFKbCe/W0lDkoQwK7+S62wyhPyAHduNz3vtCEwU Uq6TiGrnwikjkrAZ5DRRNV7UqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFZzuSw4 k2PIkjEgy16UhlS0/vp9MB8GA1UdIwQYMBaAFJUvcS3xGEEgijtKh0YgxZ/u13Cw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEYxRi82QzBGRUY1QTFF QjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFTQ0tPMHFIUmlERm4tN1hj TEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTOXhMZkVZUVNDS08wcUhSaURGbi03WGNMQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MEYxRi82QzBGRUY1QTFFQjkxMUVEOUZDNjg3NjBDNEY5QUUwMi9sUzl4TGZFWVFT Q0tPMHFIUmlERm4tN1hjTEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZO6WfjKwryoXVKtxVryNkYp/urnX7UzBc5FirA/wAhGECFv7M5VTq FzWgm3Y3vKquHZaN0LrlcWiMvYWOCf9TzT9hL76s3LWgH2mZQKOpC8+SR1KEB5y9 0p8Zsr1KguyZMlDU8lFPLNuXJqEEfcXL9b1iC7Hblz1oPm/r0ke7KGiUAryZUVOX rjYIm6ZYuw/mnlKtdXu040R/8IkTgqDJPBE023TaJwCZghQMA1pnlLKydOB+PJSy +YxOrXV13FoKuYOLzpP/DAjw6Q1s7pSeO+5DB4rO6cjbiRH8DPMHPzFn9FnM8Bmd dUTr5OnBKVja1I6Oh6aLUmIPlXN3fQqw -----END CERTIFICATE-----Generated at Sat Aug 23 14:31:41 2025 by rpki-client