$ rpki-client -vvf rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft File: 6VdtMs2hm7hvPBYuyf020_0lucE.mft (raw, json) Hash identifier: TiSWVunK9VgOsIKt4yuTCCFhkG/xUrS1x6BshvTHdRw= Subject key identifier: 28:0C:AD:60:91:2A:8B:FD:C3:17:F5:CC:79:2D:D3:0A:DA:7F:BB:76 Authority key identifier: E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 Certificate issuer: /CN=A9131359/serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft Manifest number: 0204 Signing time: Sat 23 Aug 2025 02:23:33 +0000 Manifest this update: Sat 23 Aug 2025 02:23:32 +0000 Manifest next update: Sat 30 Aug 2025 02:23:32 +0000 Files and hashes: 1: 6VdtMs2hm7hvPBYuyf020_0lucE.crl (hash: yoW4scWATFWZ/lotcAwseP3b0PudOHReU08ksTfaem8=) 2: 01C299E0662611ED94A8DA42C4F9AE02.roa (hash: qDl9A66XUfdxXb2Z9BDWMcaLCM85XHiGpfBrshr3vQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:23:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131359, serialNumber=E9576D32CDA19BB86F3C162EC9FD36D3FD25B9C1 Validity Not Before: Aug 23 02:23:32 2025 GMT Not After : Aug 30 02:23:32 2025 GMT Subject: CN=68a92625-2103 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d9:36:b2:a0:66:7d:7e:6a:6b:6b:f7:4e:d9: bc:71:9a:f0:75:44:bc:c7:88:3b:0b:a3:88:45:f6: 0a:14:0d:9b:20:f5:e1:09:70:87:82:05:0d:51:0c: ce:8f:50:f7:5d:9c:ee:a5:17:58:5b:3e:07:f7:84: bc:4b:44:27:f6:20:19:70:c3:e3:67:bd:c9:32:68: d6:b4:d4:6d:e0:b3:1a:e0:2b:14:df:01:41:e1:9b: ec:1d:7b:29:bf:f2:b6:be:85:59:de:cf:ef:27:c1: fe:59:03:20:73:59:2c:82:04:02:09:3f:09:79:04: eb:de:b4:ab:ba:41:97:f5:1d:bb:aa:af:01:e3:41: 5b:80:fd:3c:51:72:22:42:7e:52:67:f6:ef:e3:eb: dc:11:b9:e4:b9:73:87:86:21:30:d0:24:1f:bd:85: df:c3:67:c8:3f:40:11:42:2d:c1:f3:a8:44:0d:62: 44:11:a4:f5:4e:27:ff:e5:5c:f8:3a:30:d4:1e:a5: 18:0b:e0:c5:0d:5b:42:bf:f9:4f:a1:9b:ab:90:3e: 99:e4:8d:da:f8:cb:dd:69:66:2e:6e:59:9b:65:33: ce:5a:de:f8:a7:2c:cb:8f:c2:de:2a:73:f9:a8:56: 3d:35:86:22:d8:6c:ce:11:a2:91:5a:6c:89:c3:c7: 89:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0C:AD:60:91:2A:8B:FD:C3:17:F5:CC:79:2D:D3:0A:DA:7F:BB:76 X509v3 Authority Key Identifier: keyid:E9:57:6D:32:CD:A1:9B:B8:6F:3C:16:2E:C9:FD:36:D3:FD:25:B9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6VdtMs2hm7hvPBYuyf020_0lucE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131359/CA9A34B6662311ED91855D42C4F9AE02/6VdtMs2hm7hvPBYuyf020_0lucE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:d3:57:56:f6:dc:d9:ba:6d:80:e7:b4:ba:af:63:e3:2d:09: 53:6c:01:a7:4f:ff:16:4b:9a:fe:9d:37:9d:f7:7d:53:8c:c0: d3:7b:88:77:9a:f0:c3:c2:4f:b3:08:ce:70:a8:01:21:4e:05: 04:51:fb:55:4f:c6:14:a7:58:d4:e4:c6:ef:7b:c2:3a:ca:5f: cc:8d:94:8f:63:0b:c1:fa:9d:ff:a2:4c:69:9f:06:0a:15:28: ab:2c:53:5c:dd:45:b1:1f:5e:98:2d:c7:18:11:44:18:91:a7: 81:54:95:5f:4c:96:f4:af:a0:8e:6b:b3:71:4f:5d:a3:77:ca: b0:d8:0e:fa:03:9d:97:50:8b:32:3b:24:97:80:90:2e:22:10: 90:a1:95:66:d6:6e:06:a6:ae:68:2b:8b:57:a6:24:72:09:f3: 1e:38:2d:3c:9e:17:77:0e:9e:70:f9:55:6c:45:38:6d:5b:f0: 24:61:2e:fe:49:d6:05:8a:57:e9:46:6f:8e:fb:8d:ec:ee:4e: fd:ce:92:8f:a0:16:8b:a0:63:13:be:29:51:56:c1:44:9e:a9: 6b:aa:0a:7d:bf:a1:d5:c5:4d:08:cf:c2:65:85:d6:13:87:61: 5e:58:50:2a:0d:5a:a8:da:6c:c2:8e:1c:d1:ac:72:fb:c6:11: ae:3b:a5:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzEzNTkxMTAvBgNVBAUTKEU5NTc2RDMyQ0RBMTlCQjg2RjNDMTYyRUM5RkQzNkQz RkQyNUI5QzEwHhcNMjUwODIzMDIyMzMyWhcNMjUwODMwMDIyMzMyWjAYMRYwFAYD VQQDEw02OGE5MjYyNS0yMTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdk2sqBmfX5qa2v3Ttm8cZrwdUS8x4g7C6OIRfYKFA2bIPXhCXCHggUNUQzO j1D3XZzupRdYWz4H94S8S0Qn9iAZcMPjZ73JMmjWtNRt4LMa4CsU3wFB4ZvsHXsp v/K2voVZ3s/vJ8H+WQMgc1ksggQCCT8JeQTr3rSrukGX9R27qq8B40FbgP08UXIi Qn5SZ/bv4+vcEbnkuXOHhiEw0CQfvYXfw2fIP0ARQi3B86hEDWJEEaT1Tif/5Vz4 OjDUHqUYC+DFDVtCv/lPoZurkD6Z5I3a+MvdaWYublmbZTPOWt74pyzLj8LeKnP5 qFY9NYYi2GzOEaKRWmyJw8eJXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCgMrWCR Kov9wxf1zHkt0wraf7t2MB8GA1UdIwQYMBaAFOlXbTLNoZu4bzwWLsn9NtP9JbnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTM1OS9DQTlBMzRCNjY2 MjMxMUVEOTE4NTVENDJDNEY5QUUwMi82VmR0TXMyaG03aHZQQll1eWYwMjBfMGx1 Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZWZHRNczJobTdodlBCWXV5ZjAyMF8wbHVjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MTM1OS9DQTlBMzRCNjY2MjMxMUVEOTE4NTVENDJDNEY5QUUwMi82VmR0TXMyaG03 aHZQQll1eWYwMjBfMGx1Y0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj01dW9tzZum2A57S6r2PjLQlTbAGnT/8WS5r+nTed931TjMDTe4h3 mvDDwk+zCM5wqAEhTgUEUftVT8YUp1jU5Mbve8I6yl/MjZSPYwvB+p3/okxpnwYK FSirLFNc3UWxH16YLccYEUQYkaeBVJVfTJb0r6COa7NxT12jd8qw2A76A52XUIsy OySXgJAuIhCQoZVm1m4Gpq5oK4tXpiRyCfMeOC08nhd3Dp5w+VVsRThtW/AkYS7+ SdYFilfpRm+O+43s7k79zpKPoBaLoGMTvilRVsFEnqlrqgp9v6HVxU0Iz8JlhdYT h2FeWFAqDVqo2mzCjhzRrHL7xhGuO6Xw -----END CERTIFICATE-----Generated at Sat Aug 23 10:45:19 2025 by rpki-client