$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: C9XB4zr0RzCZ0h6tGdlHBOX4cC/5aiiL4Vm3Ym0lzq0= Subject key identifier: FA:20:EF:14:7D:1B:27:E8:F7:D6:27:A1:7C:B7:6C:8F:87:61:28:50 Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 01FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 01F8 Signing time: Sat 23 Aug 2025 02:32:45 +0000 Manifest this update: Sat 23 Aug 2025 02:32:44 +0000 Manifest next update: Sat 30 Aug 2025 02:32:44 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: XohEqgKafmPAxe4fYX0B5syjMkTQOO2bG3CfcclqhhM=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:32:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 507 (0x1fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Aug 23 02:32:44 2025 GMT Not After : Aug 30 02:32:44 2025 GMT Subject: CN=68a9284c-401f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:aa:0a:4b:5b:31:59:58:b4:a1:64:2e:83:9e: e3:9a:be:4d:be:bd:49:81:1f:b9:fa:bb:ae:58:b6: 81:0b:c0:67:20:18:03:3b:29:55:d3:92:ff:0b:32: db:51:3d:96:a9:8d:a7:cd:43:59:9b:9d:b0:e3:c8: 00:22:dd:6b:bf:c7:29:f9:25:7b:56:4f:7b:8a:ee: 74:a7:e1:29:a9:52:32:a9:d5:fb:61:10:03:f8:26: 2e:66:e7:ef:13:2b:69:75:a7:88:be:c3:f8:92:c9: fc:ab:e2:92:1d:a9:59:10:28:d1:a4:28:30:f5:0f: d3:f5:ae:10:9b:9b:ea:0b:c3:31:6e:82:16:c7:d0: 71:b3:5c:bc:f4:d2:0a:0d:bf:3f:20:4c:a4:5c:64: fd:e0:81:f0:85:30:3a:ff:92:59:5a:81:68:d3:1f: 44:69:1d:19:a7:b3:91:17:e1:0e:9f:8c:0a:47:20: 50:f5:fd:13:46:11:8f:98:c4:02:39:cf:28:6b:de: 60:1c:e9:93:6f:89:44:82:6c:6d:a7:38:b3:96:55: 4d:20:0c:98:db:18:88:d5:c8:f4:bf:af:35:90:5c: bd:f7:c0:ee:5f:d6:2a:ae:53:5d:9f:54:e3:a8:ad: c2:9d:2c:7c:aa:77:9f:04:cd:8e:4c:0a:bd:02:90: 2b:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:20:EF:14:7D:1B:27:E8:F7:D6:27:A1:7C:B7:6C:8F:87:61:28:50 X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:a5:78:33:14:80:39:91:17:5e:b2:87:99:a0:cb:ce:15:51: 17:0a:85:bd:f8:f5:09:ff:df:7b:24:4a:09:9e:5a:b5:f4:ff: 50:29:3a:dd:d4:4f:9f:d6:22:3a:96:f6:ef:df:9d:3e:87:44: 67:b6:8e:89:7c:10:99:a8:78:26:06:f8:74:43:31:e8:10:d0: 57:a1:ae:bb:93:36:1f:ef:d1:26:0b:af:f1:d3:89:b2:b2:bb: c7:43:f2:99:48:83:7a:8b:fa:9b:1b:1c:f5:52:22:48:33:2e: f8:76:82:27:13:c3:ec:d8:27:7e:86:d7:f8:8a:e5:de:73:34: 03:0e:fa:97:8d:d9:8f:7d:ce:62:ce:c7:f2:0a:03:de:a6:e6: e3:12:2e:25:a0:39:a6:a7:18:3b:8b:2b:09:e0:e4:73:a2:f2: b6:c5:68:74:72:59:7f:75:81:69:64:b5:7b:68:09:07:80:d6: 34:d1:a7:c5:ec:dd:14:b3:46:83:5f:92:b0:c7:be:63:03:a1: 3f:c5:fa:8f:18:d1:8e:2f:52:d8:97:39:6a:e7:37:af:34:8d: f3:15:20:ac:be:72:ab:1e:80:32:01:5b:cb:fb:65:45:2c:bc: 6b:b1:9c:46:e5:2e:d3:2b:67:75:72:39:4e:a6:ac:43:9b:9c: 02:cb:d1:88 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUwODIzMDIzMjQ0WhcNMjUwODMwMDIzMjQ0WjAYMRYwFAYD VQQDEw02OGE5Mjg0Yy00MDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx6oKS1sxWVi0oWQug57jmr5Nvr1JgR+5+ruuWLaBC8BnIBgDOylV05L/CzLb UT2WqY2nzUNZm52w48gAIt1rv8cp+SV7Vk97iu50p+EpqVIyqdX7YRAD+CYuZufv EytpdaeIvsP4ksn8q+KSHalZECjRpCgw9Q/T9a4Qm5vqC8MxboIWx9Bxs1y89NIK Db8/IEykXGT94IHwhTA6/5JZWoFo0x9EaR0Zp7ORF+EOn4wKRyBQ9f0TRhGPmMQC Oc8oa95gHOmTb4lEgmxtpzizllVNIAyY2xiI1cj0v681kFy998DuX9YqrlNdn1Tj qK3CnSx8qnefBM2OTAq9ApArZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPog7xR9 Gyfo99YnoXy3bI+HYShQMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtpXgzFIA5kRdesoeZoMvOFVEXCoW9+PUJ/997JEoJnlq19P9QKTrd 1E+f1iI6lvbv350+h0Rnto6JfBCZqHgmBvh0QzHoENBXoa67kzYf79EmC6/x04my srvHQ/KZSIN6i/qbGxz1UiJIMy74doInE8Ps2Cd+htf4iuXeczQDDvqXjdmPfc5i zsfyCgPepubjEi4loDmmpxg7iysJ4ORzovK2xWh0cll/dYFpZLV7aAkHgNY00afF 7N0Us0aDX5Kwx75jA6E/xfqPGNGOL1LYlzlq5zevNI3zFSCsvnKrHoAyAVvL+2VF LLxrsZxG5S7TK2d1cjlOpqxDm5wCy9GI -----END CERTIFICATE-----Generated at Sat Aug 23 17:20:06 2025 by rpki-client