$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft File: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft (raw, json) Hash identifier: M5nH5tWzfcRVWaPBiCO9fegQIgchcxoovrLo4nQtDLg= Subject key identifier: 69:F2:DC:1D:16:81:EB:4E:7E:F5:11:5C:66:EF:C7:93:D2:E1:A4:7E Authority key identifier: F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 Certificate issuer: /CN=A9121D73/serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Certificate serial: 0BD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft Manifest number: 0BCA Signing time: Fri 22 Aug 2025 19:03:28 +0000 Manifest this update: Fri 22 Aug 2025 19:03:28 +0000 Manifest next update: Fri 29 Aug 2025 19:03:28 +0000 Files and hashes: 1: -bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl (hash: eRfIY7t+a2Cd9YdQ3X/4prLj3c9JmumYZDpRH4I9LaE=) 2: 01A8B084262811EA8269E33EC4F9AE02.roa (hash: 3edR8k68PlyDLwSNioDrZi097Di1Z0qsLBIpivE7sS8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:03:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3028 (0xbd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D73, serialNumber=F9B975161FE2EA37E0E462AD5F5B8A74280134E6 Validity Not Before: Aug 22 19:03:28 2025 GMT Not After : Aug 29 19:03:28 2025 GMT Subject: CN=68a8bf00-05e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:0d:43:a4:44:43:63:fd:87:31:c2:a0:59: e1:a7:9c:02:bd:dc:bb:cc:98:dd:c5:40:5b:3c:37: 9a:be:2c:7e:1c:de:12:8f:eb:62:be:9b:9c:aa:58: c5:23:d5:a9:90:cc:96:ca:ce:de:4a:ab:80:e2:0a: 2c:b7:76:b1:c4:61:aa:03:d9:dc:40:69:f4:68:51: 3c:3a:82:2c:52:fc:fd:00:a5:08:2f:9d:9b:d3:aa: 47:77:c1:c3:49:d5:51:fa:f5:7b:4f:1c:57:6b:ce: 51:ef:8b:4f:c4:23:16:93:79:73:06:f9:30:9b:7d: 2b:51:0c:c4:d8:ee:95:d5:11:29:4f:b9:05:d6:d9: 1e:16:f8:ce:86:f6:db:39:b6:9d:4b:0e:78:60:fe: a5:0d:53:21:bc:a2:de:72:05:e3:16:3f:2a:0a:7e: ec:25:8a:e8:1e:df:b2:e6:f7:ec:91:c2:6d:45:14: 30:96:0a:0e:b8:07:67:55:ec:13:a4:75:50:ba:49: 21:57:3a:28:cd:23:94:62:3c:d9:06:53:03:aa:fb: 1d:68:f3:26:f0:cc:2e:7a:14:1a:1e:0b:03:2c:80: 9a:9a:24:bc:75:c3:51:93:81:1a:2c:b0:37:f5:10: 8f:10:0e:e2:2a:91:ab:e6:6e:68:9e:da:f0:2a:69: 09:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F2:DC:1D:16:81:EB:4E:7E:F5:11:5C:66:EF:C7:93:D2:E1:A4:7E X509v3 Authority Key Identifier: keyid:F9:B9:75:16:1F:E2:EA:37:E0:E4:62:AD:5F:5B:8A:74:28:01:34:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D73/5CC66BD4262611EA8524E83BC4F9AE02/-bl1Fh_i6jfg5GKtX1uKdCgBNOY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:12:d0:30:74:4c:d1:1e:50:c2:38:44:9c:7e:32:1e:c4:22: 9a:33:c0:f3:f0:02:bc:d9:42:f0:4f:12:2c:74:36:00:32:44: 4f:d6:de:c1:02:d2:74:88:22:1c:5d:6f:df:17:74:8d:1c:52: 81:e9:86:ac:18:fe:1f:ea:32:40:61:14:42:3c:83:8a:88:cd: 0e:69:70:60:ac:35:a6:ea:bf:1b:88:ad:aa:8c:92:54:8c:cd: 02:11:a7:b3:98:41:20:f4:34:cc:d0:4c:15:27:db:40:04:9f: 4b:9a:e5:b8:96:75:10:80:ad:09:68:2d:bc:57:c9:7d:6b:28: 1a:dd:19:27:c3:2e:b7:57:1b:d7:59:c5:10:b0:c1:6a:3b:75: 2c:e2:31:7d:48:e6:bb:b2:bf:c1:9e:d6:02:e9:93:e3:f6:de: 8b:7c:a1:cc:7d:ad:64:8a:c6:63:0f:7a:54:2e:26:0a:1b:af: d9:e1:4c:e8:6a:59:c3:e5:35:a0:24:37:53:47:f3:44:9d:77: c2:26:b9:7c:94:b0:51:9a:c4:c5:94:0d:a9:c3:61:16:33:1c: 84:a3:ce:9f:2c:e9:dd:e7:ba:f6:91:ba:dd:94:80:d7:48:71: d0:9d:bf:ec:a2:4f:e2:eb:b1:ed:d9:16:17:74:f8:39:84:d9: 47:e8:d0:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFENzMxMTAvBgNVBAUTKEY5Qjk3NTE2MUZFMkVBMzdFMEU0NjJBRDVGNUI4QTc0 MjgwMTM0RTYwHhcNMjUwODIyMTkwMzI4WhcNMjUwODI5MTkwMzI4WjAYMRYwFAYD VQQDEw02OGE4YmYwMC0wNWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArskNQ6REQ2P9hzHCoFnhp5wCvdy7zJjdxUBbPDeavix+HN4Sj+tivpucqljF I9WpkMyWys7eSquA4gost3axxGGqA9ncQGn0aFE8OoIsUvz9AKUIL52b06pHd8HD SdVR+vV7TxxXa85R74tPxCMWk3lzBvkwm30rUQzE2O6V1REpT7kF1tkeFvjOhvbb ObadSw54YP6lDVMhvKLecgXjFj8qCn7sJYroHt+y5vfskcJtRRQwlgoOuAdnVewT pHVQukkhVzoozSOUYjzZBlMDqvsdaPMm8MwuehQaHgsDLICamiS8dcNRk4EaLLA3 9RCPEA7iKpGr5m5ontrwKmkJVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGny3B0W getOfvURXGbvx5PS4aR+MB8GA1UdIwQYMBaAFPm5dRYf4uo34ORirV9binQoATTm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQ3My81Q0M2NkJENDI2 MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZqZmc1R0t0WDF1S2RDZ0JO T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1ibDFGaF9pNmpmZzVHS3RYMXVLZENnQk5PWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MUQ3My81Q0M2NkJENDI2MjYxMUVBODUyNEU4M0JDNEY5QUUwMi8tYmwxRmhfaTZq Zmc1R0t0WDF1S2RDZ0JOT1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgEtAwdEzRHlDCOEScfjIexCKaM8Dz8AK82ULwTxIsdDYAMkRP1t7B AtJ0iCIcXW/fF3SNHFKB6YasGP4f6jJAYRRCPIOKiM0OaXBgrDWm6r8biK2qjJJU jM0CEaezmEEg9DTM0EwVJ9tABJ9LmuW4lnUQgK0JaC28V8l9ayga3Rknwy63VxvX WcUQsMFqO3Us4jF9SOa7sr/BntYC6ZPj9t6LfKHMfa1kisZjD3pULiYKG6/Z4Uzo alnD5TWgJDdTR/NEnXfCJrl8lLBRmsTFlA2pw2EWMxyEo86fLOnd57r2kbrdlIDX SHHQnb/sok/i67Ht2RYXdPg5hNlH6NBh -----END CERTIFICATE-----Generated at Sat Aug 23 20:43:44 2025 by rpki-client