$ rpki-client -vvf rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft File: NNe9YUOWrkRRcOBY4K7c661JQF8.mft (raw, json) Hash identifier: fWy83DlWuw630KzhAgsifO5qYnh5gCsG+XUvi9WdvFQ= Subject key identifier: 63:56:CA:30:E1:42:8E:F8:B8:44:1B:75:DB:65:4E:8C:5A:D9:25:10 Authority key identifier: 34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F Certificate issuer: /CN=A9133F6B/serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft Manifest number: 9E Signing time: Thu 17 Jul 2025 06:34:08 +0000 Manifest this update: Thu 17 Jul 2025 06:34:07 +0000 Manifest next update: Thu 24 Jul 2025 06:34:07 +0000 Files and hashes: 1: NNe9YUOWrkRRcOBY4K7c661JQF8.crl (hash: oY74esV0bEhS2giARApEaE3YYC1k3t8JhKk93MDDTgo=) 2: CDB922F074AF11EFA0B26646C4F9AE02.roa (hash: Z9wgm3vGJOLLYnMtYAwUdfFZW4JgmPyeFWsMY0AhztU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 06:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133F6B, serialNumber=34D7BD614396AE445170E058E0AEDCEBAD49405F Validity Not Before: Jul 17 06:34:07 2025 GMT Not After : Jul 24 06:34:07 2025 GMT Subject: CN=6878995f-a739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6a:4c:03:1f:9b:b2:62:58:1e:a9:00:fc:e8: d8:b6:3b:77:b6:82:f9:d9:d1:2c:89:28:69:b1:5e: d6:e2:1d:f7:07:8c:a0:3a:76:f1:6f:5a:e7:18:7a: 49:30:af:8b:5c:36:62:fd:01:81:1a:36:37:17:c5: 2e:2a:18:ea:0c:91:96:17:6b:35:85:06:89:a8:3b: 39:86:f5:cf:34:b4:ba:d1:e7:68:e6:21:ff:fc:b4: 84:6f:a7:22:b5:69:18:95:11:41:ed:2b:bb:57:41: 39:c0:3d:36:fc:6f:13:ec:c6:ea:f8:b6:56:00:1f: b0:f3:1d:2d:12:dd:9c:85:df:ac:87:91:75:ed:92: c4:5c:9c:b9:6e:31:eb:ef:68:0d:b7:c3:fc:d6:39: 84:c5:ef:00:40:46:7e:58:38:5a:4c:3c:5b:88:b3: ca:5c:0b:d1:25:b6:e7:ee:7d:f8:c9:6a:7b:a4:9d: 59:5b:e8:99:02:76:38:67:49:22:f7:3a:f1:25:57: b0:46:9e:32:5c:af:f3:f1:f4:db:17:77:3a:2e:53: 0c:8b:19:38:69:9f:1d:9e:90:d4:64:32:d5:a1:3c: 82:61:6a:20:b6:67:eb:2f:6f:56:04:57:d5:23:59: c2:90:7f:ec:39:5b:2f:1c:75:ac:2d:bd:ff:6b:df: b8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:56:CA:30:E1:42:8E:F8:B8:44:1B:75:DB:65:4E:8C:5A:D9:25:10 X509v3 Authority Key Identifier: keyid:34:D7:BD:61:43:96:AE:44:51:70:E0:58:E0:AE:DC:EB:AD:49:40:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NNe9YUOWrkRRcOBY4K7c661JQF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133F6B/9852933E74A611EFAB4B053CC4F9AE02/NNe9YUOWrkRRcOBY4K7c661JQF8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:44:7d:d5:b6:65:8c:74:b8:1a:39:b0:8f:8c:21:98:32:e7: e4:62:e3:80:a5:5b:e8:97:9c:ed:81:bd:21:3a:40:b6:a3:ad: 94:d5:30:a6:61:45:68:df:65:4a:d2:3d:5b:8b:a1:24:fd:03: 57:a6:9b:e6:33:b4:e0:c1:2e:f8:3e:19:ac:b7:02:ed:5e:ec: 28:77:ae:1b:80:18:85:bd:9b:b3:7b:75:e9:a1:61:80:74:3a: 37:d3:d2:1a:4a:0e:a4:73:ee:47:50:48:f1:80:3c:50:e0:f7: 47:72:92:f1:bb:a2:df:89:c7:ab:6b:c1:74:8d:ac:21:01:5d: f9:d6:c5:4c:a9:07:07:13:ef:2c:11:78:d2:2a:c9:16:a5:72: 48:57:57:bc:31:2f:18:06:d4:29:d6:75:ca:b4:fc:09:22:94: f7:8e:36:2a:fe:92:bf:84:61:f1:ec:0e:f6:59:88:5e:9c:97: 2e:97:e6:e1:32:f8:9a:2f:73:59:f2:d5:f2:e1:3d:b9:57:4a: 74:d5:48:35:d1:2e:97:0d:84:5c:bd:f2:3b:10:fe:d3:62:ac: 05:f5:45:7c:c6:94:e8:af:4f:1f:f7:84:4e:52:20:43:67:7c: 66:89:cf:2b:1b:ca:3e:39:9d:70:97:30:0e:0f:98:a3:cd:65: 91:70:d7:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzNGNkIxMTAvBgNVBAUTKDM0RDdCRDYxNDM5NkFFNDQ1MTcwRTA1OEUwQUVEQ0VC QUQ0OTQwNUYwHhcNMjUwNzE3MDYzNDA3WhcNMjUwNzI0MDYzNDA3WjAYMRYwFAYD VQQDEw02ODc4OTk1Zi1hNzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmpMAx+bsmJYHqkA/OjYtjt3toL52dEsiShpsV7W4h33B4ygOnbxb1rnGHpJ MK+LXDZi/QGBGjY3F8UuKhjqDJGWF2s1hQaJqDs5hvXPNLS60edo5iH//LSEb6ci tWkYlRFB7Su7V0E5wD02/G8T7Mbq+LZWAB+w8x0tEt2chd+sh5F17ZLEXJy5bjHr 72gNt8P81jmExe8AQEZ+WDhaTDxbiLPKXAvRJbbn7n34yWp7pJ1ZW+iZAnY4Z0ki 9zrxJVewRp4yXK/z8fTbF3c6LlMMixk4aZ8dnpDUZDLVoTyCYWogtmfrL29WBFfV I1nCkH/sOVsvHHWsLb3/a9+4fQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGNWyjDh Qo74uEQbddtlToxa2SUQMB8GA1UdIwQYMBaAFDTXvWFDlq5EUXDgWOCu3OutSUBf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzM0Y2Qi85ODUyOTMzRTc0 QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVPV3JrUlJjT0JZNEs3YzY2MUpR RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05OZTlZVU9XcmtSUmNPQlk0SzdjNjYxSlFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0Y2Qi85ODUyOTMzRTc0QTYxMUVGQUI0QjA1M0NDNEY5QUUwMi9OTmU5WVVPV3Jr UlJjT0JZNEs3YzY2MUpRRjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcRH3VtmWMdLgaObCPjCGYMufkYuOApVvol5ztgb0hOkC2o62U1TCm YUVo32VK0j1bi6Ek/QNXppvmM7TgwS74PhmstwLtXuwod64bgBiFvZuze3XpoWGA dDo309IaSg6kc+5HUEjxgDxQ4PdHcpLxu6Lficera8F0jawhAV351sVMqQcHE+8s EXjSKskWpXJIV1e8MS8YBtQp1nXKtPwJIpT3jjYq/pK/hGHx7A72WYhenJcul+bh MviaL3NZ8tXy4T25V0p01Ug10S6XDYRcvfI7EP7TYqwF9UV8xpTor08f94ROUiBD Z3xmic8rG8o+OZ1wlzAOD5ijzWWRcNfm -----END CERTIFICATE-----Generated at Thu Jul 17 15:25:33 2025 by rpki-client