$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: 60IwHuGNnJMVJLQjpHGEYHYREoJ0L2QYpEBYvn2tbuU= Subject key identifier: 3F:2F:9F:ED:D8:2E:B7:0E:65:6E:8F:4C:AF:AA:D6:1B:A0:D5:B4:70 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BBE Signing time: Fri 22 Aug 2025 16:20:00 +0000 Manifest this update: Fri 22 Aug 2025 16:19:59 +0000 Manifest next update: Fri 29 Aug 2025 16:19:59 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: OkzMU9Mbi6q2Dh7uOUohfdDPYq213/PkhFHLrtisQOE=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:19:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7120 (0x1bd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Aug 22 16:19:59 2025 GMT Not After : Aug 29 16:19:59 2025 GMT Subject: CN=68a898b0-789c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:4c:2d:55:33:85:cb:4c:5c:03:c9:43:4a:cb: f1:c8:7b:4c:6a:f6:d3:8f:bb:d3:af:59:79:cf:45: 97:f2:94:8e:21:81:3d:5c:7d:67:67:ba:c1:c8:aa: 3c:9f:f6:11:4c:21:f5:f4:97:d1:da:8e:94:e6:d5: bf:5f:13:42:cc:5e:10:5b:14:d8:2a:54:44:c7:75: 88:1e:cc:a7:55:0c:b3:e1:3f:f2:a5:27:a0:9b:a6: 71:fc:55:87:01:f6:15:68:42:50:bd:0c:3f:5f:3e: fc:17:1a:51:47:1c:7d:ca:98:be:32:08:ed:21:80: 05:3b:82:eb:5d:b0:91:be:cd:ce:f0:84:80:40:53: 30:4e:61:e8:ee:de:19:dd:ce:85:dc:8c:23:60:5a: e6:24:d6:74:ab:43:07:63:a6:95:a7:a9:62:9e:58: 4e:e4:7b:0b:90:83:11:58:df:cd:ce:d5:47:58:7b: d4:68:79:11:d9:e9:19:ad:b5:76:4f:98:a5:0c:e3: 86:d6:dd:55:2e:c1:af:12:5c:3b:9c:4c:c7:1d:4e: 43:71:6d:1e:e8:e8:09:85:6a:6e:ac:4f:ef:6e:47: 48:ff:d4:02:e6:3f:d4:0d:06:88:d9:32:16:ea:9c: 84:0f:9d:be:7a:4e:cb:d7:37:43:b4:09:63:65:1c: 87:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2F:9F:ED:D8:2E:B7:0E:65:6E:8F:4C:AF:AA:D6:1B:A0:D5:B4:70 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:22:ca:96:6f:14:4d:e7:09:3a:c3:3a:4b:84:01:30:74:af: 64:cd:26:c0:6b:88:1d:9b:c9:76:f4:3a:95:1a:52:a2:ea:ea: d3:7f:6f:d6:7e:74:af:99:5a:51:53:08:2d:b6:a0:f1:8d:50: 6d:c5:db:1e:d2:64:aa:90:91:52:12:9c:99:d5:cb:f9:ff:d1: 25:f6:64:0d:6a:cf:56:59:ca:66:df:31:76:46:48:06:ba:fa: 6e:38:6b:3a:ea:e0:ae:05:f8:5a:75:87:ce:80:f6:91:7d:9d: 69:3b:cc:28:8b:e2:89:96:f3:6a:3c:21:a8:45:11:4a:49:5a: 66:12:49:54:03:a4:c3:b5:52:76:b8:af:d8:f7:ce:df:ab:9b: e8:fc:21:d8:58:09:d6:1b:db:fb:7b:09:62:3d:07:c8:69:21: ad:1e:b6:8c:a4:8c:53:78:cf:7d:28:19:8f:aa:02:39:1a:c7: 77:3d:1c:82:6f:a5:3f:2b:85:64:39:d7:bf:b8:95:e4:d4:0c: 2e:a8:45:56:75:9b:ad:13:b8:24:81:24:12:8e:19:f0:52:4b: e0:51:59:e9:7d:48:a8:8f:b7:91:d4:a3:09:a0:60:91:bd:53: 47:fa:7a:c3:79:50:1e:b1:7e:8a:7a:9b:d1:bd:94:2d:8c:3a: 1f:8c:48:9a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwODIyMTYxOTU5WhcNMjUwODI5MTYxOTU5WjAYMRYwFAYD VQQDEw02OGE4OThiMC03ODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4UwtVTOFy0xcA8lDSsvxyHtMavbTj7vTr1l5z0WX8pSOIYE9XH1nZ7rByKo8 n/YRTCH19JfR2o6U5tW/XxNCzF4QWxTYKlREx3WIHsynVQyz4T/ypSegm6Zx/FWH AfYVaEJQvQw/Xz78FxpRRxx9ypi+MgjtIYAFO4LrXbCRvs3O8ISAQFMwTmHo7t4Z 3c6F3IwjYFrmJNZ0q0MHY6aVp6linlhO5HsLkIMRWN/NztVHWHvUaHkR2ekZrbV2 T5ilDOOG1t1VLsGvElw7nEzHHU5DcW0e6OgJhWpurE/vbkdI/9QC5j/UDQaI2TIW 6pyED52+ek7L1zdDtAljZRyHhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8vn+3Y LrcOZW6PTK+q1hug1bRwMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYIsqWbxRN5wk6wzpLhAEwdK9kzSbAa4gdm8l29DqVGlKi6urTf2/W fnSvmVpRUwgttqDxjVBtxdse0mSqkJFSEpyZ1cv5/9El9mQNas9WWcpm3zF2RkgG uvpuOGs66uCuBfhadYfOgPaRfZ1pO8woi+KJlvNqPCGoRRFKSVpmEklUA6TDtVJ2 uK/Y987fq5vo/CHYWAnWG9v7ewliPQfIaSGtHraMpIxTeM99KBmPqgI5Gsd3PRyC b6U/K4VkOde/uJXk1AwuqEVWdZutE7gkgSQSjhnwUkvgUVnpfUioj7eR1KMJoGCR vVNH+nrDeVAesX6KepvRvZQtjDofjEia -----END CERTIFICATE-----Generated at Sat Aug 23 21:07:23 2025 by rpki-client