$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft File: VAR9J873NG9Bde-sc0SUrbsFe1U.mft (raw, json) Hash identifier: Ozyt0tmejs2I31cdZascWPaVWU1dMLwgYeltZxzekZ4= Subject key identifier: 3B:48:BF:82:A7:20:06:7B:28:96:9E:A1:08:3F:A8:4F:5A:DD:01:5C Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 09F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft Manifest number: 09EB Signing time: Fri 22 Aug 2025 20:03:02 +0000 Manifest this update: Fri 22 Aug 2025 20:03:01 +0000 Manifest next update: Fri 29 Aug 2025 20:03:01 +0000 Files and hashes: 1: VAR9J873NG9Bde-sc0SUrbsFe1U.crl (hash: XKl1fENYrJSzqsXrwv82QW6BRbZlTCyNpHvVavc0SHo=) 2: 3492D2F083BA11EA8728F076C4F9AE02.roa (hash: OT+54b9b887njSEqmuExUbEj0TJJUhjKtfKkhce9QUs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2547 (0x9f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1, serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Validity Not Before: Aug 22 20:03:01 2025 GMT Not After : Aug 29 20:03:01 2025 GMT Subject: CN=68a8ccf5-a3ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:29:46:ec:67:f0:9f:e5:66:ce:2b:3c:d2:b7: bc:60:ee:2b:7d:2a:9a:05:6f:a4:f4:34:a7:7a:b7: ea:b5:65:f1:2c:0f:c9:c6:b4:ea:5c:dc:2e:b1:d5: 14:e9:9e:9c:f7:6e:86:5f:c6:ee:1e:5a:a4:3d:91: f8:7a:33:13:3e:81:77:aa:12:55:78:be:3b:a2:5b: e6:e5:9a:6e:0e:b6:db:91:36:d7:98:d5:58:ef:7c: ed:32:a8:a2:23:be:06:2a:57:70:8e:f6:93:25:5a: 82:03:10:be:af:b8:62:67:a6:07:bd:64:28:3b:8b: 3b:67:1c:c3:be:2e:af:d4:18:2f:02:9a:8f:b3:a8: 28:97:66:03:bf:ae:27:fc:42:71:e3:48:93:b1:5c: 9b:af:dd:a1:41:5c:64:9b:84:94:66:cd:ff:98:32: 74:eb:76:0b:d2:b2:0e:eb:db:1e:e6:f8:04:86:34: 21:20:e8:e2:b3:2e:af:40:27:30:51:d5:0b:a8:06: bf:c9:d1:9c:a4:2b:8d:6e:c1:43:4e:aa:35:97:bc: 0c:e4:7e:8e:e5:e7:a8:34:75:e4:77:36:26:a7:c9: 7c:bf:c9:41:24:99:a5:2d:c7:93:d8:9f:89:fa:21: 41:77:e1:90:d7:7a:49:40:44:42:96:79:bd:f5:78: 51:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:48:BF:82:A7:20:06:7B:28:96:9E:A1:08:3F:A8:4F:5A:DD:01:5C X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:ed:57:c0:cc:13:c1:db:fe:4d:42:72:2e:00:36:62:ed:f5: e9:35:2a:41:ac:86:90:87:31:c5:74:42:85:28:e4:33:64:9e: 36:14:26:10:79:80:b7:ef:c5:35:e6:50:d4:34:24:12:65:41: a1:7d:5e:2d:19:68:42:f0:fd:f2:37:96:1d:69:4e:53:ff:af: 4e:c0:cc:de:78:98:fa:71:f2:50:13:e3:44:d6:f4:e4:b8:a4: 76:92:50:d7:2f:5a:8a:63:dc:77:de:96:79:f3:61:a0:e7:8b: c0:bc:d2:1b:eb:5c:13:f2:14:dd:93:1a:e8:e3:68:7c:1a:97: 5f:33:d4:1e:6c:4d:0e:65:ab:53:3b:85:50:f0:26:3b:f7:8b: 69:76:54:50:d3:5a:37:34:a6:ab:0e:10:20:ef:1a:9d:6d:75: c7:8a:45:e2:08:ce:64:61:7a:e8:94:0a:05:ed:53:50:60:5d: 7b:c1:d6:95:44:fa:c6:9e:11:b4:c3:29:53:97:87:61:56:29: 2a:1a:3d:ba:7f:45:d3:ac:16:a2:ee:b8:1a:5f:ae:78:9e:5a: e3:2f:99:6a:18:e6:0c:74:dc:a1:be:b5:74:ed:b7:66:bc:86: 67:32:e5:8a:90:50:5b:82:2b:51:09:c1:9c:01:ba:1e:04:a8: 46:9a:42:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjUwODIyMjAwMzAxWhcNMjUwODI5MjAwMzAxWjAYMRYwFAYD VQQDEw02OGE4Y2NmNS1hM2FkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ylG7Gfwn+Vmzis80re8YO4rfSqaBW+k9DSnerfqtWXxLA/JxrTqXNwusdUU 6Z6c926GX8buHlqkPZH4ejMTPoF3qhJVeL47olvm5ZpuDrbbkTbXmNVY73ztMqii I74GKldwjvaTJVqCAxC+r7hiZ6YHvWQoO4s7ZxzDvi6v1BgvApqPs6gol2YDv64n /EJx40iTsVybr92hQVxkm4SUZs3/mDJ063YL0rIO69se5vgEhjQhIOjisy6vQCcw UdULqAa/ydGcpCuNbsFDTqo1l7wM5H6O5eeoNHXkdzYmp8l8v8lBJJmlLceT2J+J +iFBd+GQ13pJQERClnm99XhR0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDtIv4Kn IAZ7KJaeoQg/qE9a3QFcMB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjdDMS81MzQ0NzJDQzgzQjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05H OUJkZS1zYzBTVXJic0ZlMVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK7VfAzBPB2/5NQnIuADZi7fXpNSpBrIaQhzHFdEKFKOQzZJ42FCYQ eYC378U15lDUNCQSZUGhfV4tGWhC8P3yN5YdaU5T/69OwMzeeJj6cfJQE+NE1vTk uKR2klDXL1qKY9x33pZ582Gg54vAvNIb61wT8hTdkxro42h8GpdfM9QebE0OZatT O4VQ8CY794tpdlRQ01o3NKarDhAg7xqdbXXHikXiCM5kYXrolAoF7VNQYF17wdaV RPrGnhG0wylTl4dhVikqGj26f0XTrBai7rgaX654nlrjL5lqGOYMdNyhvrV07bdm vIZnMuWKkFBbgitRCcGcAboeBKhGmkKD -----END CERTIFICATE-----Generated at Sun Aug 24 09:39:57 2025 by rpki-client