$ rpki-client -vvf rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft File: S9XCMYZ-JzlRVcAceEizsByGBvI.mft (raw, json) Hash identifier: n2jkVEOMV8489tZQfsJGgUyekdTxa4EOZ42Jr4T/VP4= Subject key identifier: DF:37:56:31:B2:91:10:44:9D:F3:3A:86:0B:6B:D2:D7:8C:07:F3:A7 Authority key identifier: 4B:D5:C2:31:86:7E:27:39:51:55:C0:1C:78:48:B3:B0:1C:86:06:F2 Certificate issuer: /CN=A914BBE1/serialNumber=4BD5C231867E27395155C01C7848B3B01C8606F2 Certificate serial: 0405 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft Manifest number: 0400 Signing time: Sat 23 Aug 2025 00:41:49 +0000 Manifest this update: Sat 23 Aug 2025 00:41:48 +0000 Manifest next update: Sat 30 Aug 2025 00:41:48 +0000 Files and hashes: 1: S9XCMYZ-JzlRVcAceEizsByGBvI.crl (hash: R9NPDWYLI3n5Uu8SMO7GG1SgTEjQZZwQ5nKxEYtfcNA=) 2: 24C0E7A684C911EC8CE1246BC4F9AE02.roa (hash: /ks11M81kp4oGi/uf6+uil4xz+jgg1PhbFjvxN9fgAU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.crl rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1029 (0x405) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BBE1, serialNumber=4BD5C231867E27395155C01C7848B3B01C8606F2 Validity Not Before: Aug 23 00:41:48 2025 GMT Not After : Aug 30 00:41:48 2025 GMT Subject: CN=68a90e4c-f512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4d:cd:0f:b1:56:b0:dd:34:55:cc:84:be:77: d7:56:54:ed:04:c7:15:5c:01:e2:92:cf:e0:55:fb: c4:13:31:ae:19:59:db:28:f7:4b:b6:8e:17:d6:c0: be:bc:a4:0d:4b:4c:49:19:c9:36:9a:87:11:12:59: 8b:41:95:7a:d8:c1:d7:ce:22:44:95:5f:31:54:29: 48:e2:18:62:1d:35:ee:2a:e5:1c:c4:9b:c1:2e:c3: 09:b6:7b:b9:61:b4:04:69:6b:e8:52:97:0e:49:f7: e3:db:26:41:ce:5d:0c:c4:59:19:50:59:9f:da:d8: 38:e0:db:90:07:51:93:4d:db:84:ad:b1:1e:d7:48: f6:a7:1b:5f:34:87:91:73:15:ac:6e:96:9c:d8:b0: 6a:f3:6b:bf:6f:db:02:f5:fd:81:01:9a:cf:2a:6f: 3c:3a:02:f7:27:25:7d:33:63:af:27:80:a1:99:b2: d2:35:bb:92:42:c4:af:96:29:63:f5:c9:e3:f2:20: fe:66:94:e5:8d:30:f0:01:64:ca:dc:32:b6:ff:a8: 6b:b1:06:4b:ec:66:5c:03:9b:17:8e:5f:eb:c9:e6: db:e7:62:96:dd:2d:a0:dd:4e:89:ae:f3:dd:f9:a5: 35:ab:34:b1:f6:ba:f0:b3:ed:13:e1:52:d5:83:2b: 0c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:37:56:31:B2:91:10:44:9D:F3:3A:86:0B:6B:D2:D7:8C:07:F3:A7 X509v3 Authority Key Identifier: keyid:4B:D5:C2:31:86:7E:27:39:51:55:C0:1C:78:48:B3:B0:1C:86:06:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S9XCMYZ-JzlRVcAceEizsByGBvI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BBE1/9E66034C84C511ECA9861564C4F9AE02/S9XCMYZ-JzlRVcAceEizsByGBvI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:58:93:53:d7:0a:3e:59:f1:00:c9:cd:9c:28:73:bb:04:8b: ed:7a:70:ec:11:8f:0c:34:b9:c1:f7:81:6c:fd:33:25:93:14: 42:7a:b8:c4:25:db:5a:86:9d:db:c4:5b:d3:5e:d1:fa:22:d1: e6:f2:3f:f4:15:81:f6:fe:a4:8e:f6:ba:f4:38:4c:70:ae:e5: d7:5c:35:7c:4f:ca:74:15:89:2d:d0:c4:21:f4:9e:8d:89:b1: 3a:b7:49:de:62:1c:90:e6:9d:0d:b2:ca:b1:b0:fc:30:71:1c: 1a:19:86:98:9f:6c:76:e7:7d:22:e9:a7:f6:8c:62:9a:63:d6: 8d:2e:96:e6:be:f5:23:61:84:2f:f1:41:78:fd:c3:6a:0a:ac: a3:83:f8:34:56:f3:53:49:3e:18:22:1b:18:ea:1d:80:cc:24: b9:c3:ad:3b:1d:32:af:06:78:a2:d5:24:74:3e:2b:76:0e:f8: ce:74:d5:ab:d3:9e:dc:ea:ee:16:b0:c3:89:f3:fc:42:73:8d: d3:bb:03:43:d4:1c:97:16:37:44:58:f3:70:1b:24:61:f2:d1: 0d:6d:b9:63:5a:8a:65:ae:a1:0c:9d:bd:5e:ac:33:bd:17:52: e3:17:f3:05:da:63:77:8c:61:ef:b8:99:ec:d3:c9:66:dc:33: 7c:dd:2a:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJCRTExMTAvBgNVBAUTKDRCRDVDMjMxODY3RTI3Mzk1MTU1QzAxQzc4NDhCM0Iw MUM4NjA2RjIwHhcNMjUwODIzMDA0MTQ4WhcNMjUwODMwMDA0MTQ4WjAYMRYwFAYD VQQDEw02OGE5MGU0Yy1mNTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6k3ND7FWsN00VcyEvnfXVlTtBMcVXAHiks/gVfvEEzGuGVnbKPdLto4X1sC+ vKQNS0xJGck2mocRElmLQZV62MHXziJElV8xVClI4hhiHTXuKuUcxJvBLsMJtnu5 YbQEaWvoUpcOSffj2yZBzl0MxFkZUFmf2tg44NuQB1GTTduErbEe10j2pxtfNIeR cxWsbpac2LBq82u/b9sC9f2BAZrPKm88OgL3JyV9M2OvJ4ChmbLSNbuSQsSvlilj 9cnj8iD+ZpTljTDwAWTK3DK2/6hrsQZL7GZcA5sXjl/ryebb52KW3S2g3U6JrvPd +aU1qzSx9rrws+0T4VLVgysMcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN83VjGy kRBEnfM6hgtr0teMB/OnMB8GA1UdIwQYMBaAFEvVwjGGfic5UVXAHHhIs7Achgby MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkJFMS85RTY2MDM0Qzg0 QzUxMUVDQTk4NjE1NjRDNEY5QUUwMi9TOVhDTVlaLUp6bFJWY0FjZUVpenNCeUdC dkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M5WENNWVotSnpsUlZjQWNlRWl6c0J5R0J2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkJFMS85RTY2MDM0Qzg0QzUxMUVDQTk4NjE1NjRDNEY5QUUwMi9TOVhDTVlaLUp6 bFJWY0FjZUVpenNCeUdCdkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZWJNT1wo+WfEAyc2cKHO7BIvtenDsEY8MNLnB94Fs/TMlkxRCerjE Jdtahp3bxFvTXtH6ItHm8j/0FYH2/qSO9rr0OExwruXXXDV8T8p0FYkt0MQh9J6N ibE6t0neYhyQ5p0NssqxsPwwcRwaGYaYn2x2530i6af2jGKaY9aNLpbmvvUjYYQv 8UF4/cNqCqyjg/g0VvNTST4YIhsY6h2AzCS5w607HTKvBnii1SR0Pit2DvjOdNWr 057c6u4WsMOJ8/xCc43TuwND1ByXFjdEWPNwGyRh8tENbbljWoplrqEMnb1erDO9 F1LjF/MF2mN3jGHvuJns08lm3DN83Spy -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:50 2025 by rpki-client