$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: 1X4fs9aspCiiQijDYUZKPOgUJMH0zXfdSjh3gWVRCPs= Subject key identifier: A0:D9:C5:83:BB:A7:3A:31:E9:98:9F:99:1F:60:B2:F1:0F:44:D3:2D Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 01F2 Signing time: Sat 23 Aug 2025 02:50:52 +0000 Manifest this update: Sat 23 Aug 2025 02:50:52 +0000 Manifest next update: Sat 30 Aug 2025 02:50:52 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: 4oF2crrEN/4a4NhC2kQxI1jhnQZWRASmoKJnfIJNEX8=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: gio3U9WsxU2OTvZplKV8K5tuXOfWf9W0TdHSTYl7CRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Aug 23 02:50:52 2025 GMT Not After : Aug 30 02:50:52 2025 GMT Subject: CN=68a92c8c-ea78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ff:3d:15:41:c3:24:19:0d:61:cb:76:74:04: 41:2c:87:40:00:48:7a:1b:5a:cc:c8:c4:d4:c0:f4: f4:0c:42:78:f5:8f:39:8c:02:89:b3:6e:be:58:88: f8:3a:08:df:eb:38:21:e9:9b:d2:54:cd:fd:1e:d7: 52:96:b2:e2:0d:22:76:21:ff:be:74:6b:67:df:aa: 7c:ca:32:e2:28:a0:3b:7f:f9:4d:a0:a5:4f:6c:58: b4:c4:ca:8b:0d:12:a4:1a:96:b8:84:c8:4a:f2:5e: 31:92:54:99:ea:73:7b:98:d2:26:68:d6:1f:f0:a1: d2:9c:2a:74:ea:f2:80:16:93:34:ec:11:f0:7b:49: af:9e:f2:ac:49:b3:de:94:bc:55:73:28:99:e2:ed: fe:a9:d3:6d:83:0c:6c:d1:f8:75:7a:37:08:31:15: d4:fd:96:85:44:0e:63:3c:fc:36:7b:4c:ce:6e:8b: bf:0b:f6:78:4f:cd:11:99:97:80:2e:b2:c1:ae:50: 33:d2:a2:e1:78:dd:63:c0:be:58:15:4b:33:18:99: 77:77:56:68:ae:7b:88:15:6f:5f:8a:a8:ec:f9:9a: 07:b9:9f:54:6d:10:8d:bf:2f:15:20:b3:a8:c0:13: fc:64:09:b6:7c:96:29:60:5e:73:33:d9:f1:27:52: b1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D9:C5:83:BB:A7:3A:31:E9:98:9F:99:1F:60:B2:F1:0F:44:D3:2D X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:3e:90:30:7f:79:a0:35:29:4d:3d:67:f1:0f:82:6f:30:62: 57:a5:49:d1:a6:32:e9:13:d1:59:4a:b4:de:8e:8f:46:a3:c5: 8f:35:68:ff:f5:54:54:a8:30:ef:45:10:c4:29:6e:d2:ac:f6: d2:1b:90:86:7e:5e:43:a9:aa:85:10:fe:01:b9:03:b0:0b:70: 2e:c2:b1:77:09:e3:51:bf:23:70:af:50:6a:11:aa:03:59:94: a7:b2:37:b1:cb:0b:1e:7e:c9:b4:08:14:7e:a0:32:59:74:91: c5:2e:ce:91:e3:c4:e1:fc:79:a1:c8:8e:d1:be:b6:e9:45:2a: d5:77:90:f3:00:fe:9b:16:f4:92:2e:00:ee:9d:34:e2:4b:5a: 65:d1:85:d8:6c:d3:b1:a3:ac:de:89:c7:6a:52:a2:d1:76:24: 0e:d8:32:29:9c:7d:af:45:97:5d:f3:a2:c8:c3:a8:3f:83:81: a6:e1:4e:25:9b:42:dc:34:c2:6a:b1:0e:99:1f:7c:ed:cf:cb: 3b:f4:0f:af:a6:32:2d:74:63:ee:cf:e5:f9:dd:70:6b:82:c2: 19:02:c0:ce:4b:76:c4:e6:c5:10:f9:99:98:16:35:18:c5:28: b8:9f:cd:24:3c:d0:65:eb:29:e0:6c:9f:c1:77:bd:af:ba:cc: e1:b1:9d:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUwODIzMDI1MDUyWhcNMjUwODMwMDI1MDUyWjAYMRYwFAYD VQQDEw02OGE5MmM4Yy1lYTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsP89FUHDJBkNYct2dARBLIdAAEh6G1rMyMTUwPT0DEJ49Y85jAKJs26+WIj4 Ogjf6zgh6ZvSVM39HtdSlrLiDSJ2If++dGtn36p8yjLiKKA7f/lNoKVPbFi0xMqL DRKkGpa4hMhK8l4xklSZ6nN7mNImaNYf8KHSnCp06vKAFpM07BHwe0mvnvKsSbPe lLxVcyiZ4u3+qdNtgwxs0fh1ejcIMRXU/ZaFRA5jPPw2e0zObou/C/Z4T80RmZeA LrLBrlAz0qLheN1jwL5YFUszGJl3d1ZornuIFW9fiqjs+ZoHuZ9UbRCNvy8VILOo wBP8ZAm2fJYpYF5zM9nxJ1KxkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKDZxYO7 pzox6ZifmR9gsvEPRNMtMB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcPpAwf3mgNSlNPWfxD4JvMGJXpUnRpjLpE9FZSrTejo9Go8WPNWj/ 9VRUqDDvRRDEKW7SrPbSG5CGfl5DqaqFEP4BuQOwC3AuwrF3CeNRvyNwr1BqEaoD WZSnsjexywsefsm0CBR+oDJZdJHFLs6R48Th/HmhyI7RvrbpRSrVd5DzAP6bFvSS LgDunTTiS1pl0YXYbNOxo6zeicdqUqLRdiQO2DIpnH2vRZdd86LIw6g/g4Gm4U4l m0LcNMJqsQ6ZH3ztz8s79A+vpjItdGPuz+X53XBrgsIZAsDOS3bE5sUQ+ZmYFjUY xSi4n80kPNBl6yngbJ/Bd72vuszhsZ1h -----END CERTIFICATE-----Generated at Sun Aug 24 03:06:49 2025 by rpki-client