$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: 0rJyARcimQSZumqrSUgsAdyTrvwoM6f2+7cP+J9cM1M= Subject key identifier: E5:7E:BB:43:CC:21:C5:5C:83:18:94:63:57:5A:59:3D:62:CE:F4:38 Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 0327 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 0323 Signing time: Sat 23 Aug 2025 01:03:22 +0000 Manifest this update: Sat 23 Aug 2025 01:03:21 +0000 Manifest next update: Sat 30 Aug 2025 01:03:21 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: +6nGwcxBAlhg2AjuaXQ7DKXHLXK0qSfAHLt5rymaEHE=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: X05nJ1j9oFxXKovC7MyWIX4IdW9s4NwJbF0XevapeM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:03:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 807 (0x327) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Aug 23 01:03:21 2025 GMT Not After : Aug 30 01:03:21 2025 GMT Subject: CN=68a9135a-47d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6e:01:b0:2a:68:f2:b1:bc:c7:06:bc:0a:ce: fe:60:37:31:c9:83:76:a1:01:04:c4:f5:dc:c6:11: cd:bd:55:a6:f1:75:1c:3e:dc:f2:de:f8:ca:07:2d: fa:99:8f:b9:d4:6d:a5:b5:40:84:5d:38:90:cb:1a: 9d:b2:83:db:13:60:32:9a:e4:32:fe:23:94:4e:75: 09:ad:f3:d4:f3:28:cb:2d:f8:e0:4a:ab:da:18:d0: c6:db:5f:b9:7f:4f:42:7e:7a:d6:0b:f3:11:94:84: c1:26:9b:52:06:94:09:54:85:62:86:23:00:6c:56: 5e:79:ff:3e:35:05:df:95:d2:56:b0:32:2d:3b:ba: 29:53:52:cd:de:d0:52:de:43:5a:6c:da:5a:99:1e: b8:09:c0:62:60:cf:b6:77:cd:76:8d:95:2f:91:ed: fd:a8:a3:ad:77:6b:f8:20:d3:d4:39:b5:1a:a2:4e: 59:e2:68:da:9f:79:52:d6:57:63:2f:91:40:59:c8: 77:30:e0:d1:31:93:20:2a:ad:1f:56:a0:65:76:c0: d2:0a:d5:fe:6b:00:6e:5f:70:61:96:05:cf:ff:30: 03:82:5f:9a:ab:dc:3e:02:c3:3d:33:6e:3b:8b:d5: c5:be:74:14:24:48:fb:62:0c:d8:7d:12:21:ee:5d: b8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7E:BB:43:CC:21:C5:5C:83:18:94:63:57:5A:59:3D:62:CE:F4:38 X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:91:5f:b4:11:2a:1f:ea:86:6f:be:4e:5d:b4:44:25:e2:70: 3b:c0:73:b7:fb:61:c3:50:b8:9b:7c:a4:f7:19:c9:61:c1:cf: 07:02:76:25:1f:13:b1:84:88:ba:1e:b9:0b:ab:8f:86:a9:72: 4f:92:b4:5b:8a:4b:87:06:00:18:79:2e:bc:81:d6:31:f1:d2: c7:c6:8a:ee:27:f6:09:b6:c5:be:26:62:f6:a7:52:8d:ad:08: f4:6e:4e:e0:10:d7:43:23:7e:28:b5:6e:a5:ea:ca:ab:ca:b0: 67:5b:41:07:22:f6:15:8f:79:a2:3f:82:62:ff:f1:e1:99:76: b6:36:f3:80:c8:27:b7:a4:2b:8c:79:c5:b5:52:42:f6:e8:87: fe:25:35:c6:fc:e8:de:32:9b:c7:07:94:31:7c:9d:4f:f7:47: eb:ff:ae:45:c8:03:ec:e4:43:71:11:79:97:14:9a:13:f4:0e: c4:03:0e:8d:42:4e:5c:e2:56:ab:20:0b:4d:86:4b:62:e4:a8: 79:3b:e2:aa:15:82:48:73:11:16:6b:9f:1e:e8:90:66:68:db: 13:52:dc:de:bd:06:dc:23:a8:f9:38:2a:81:77:94:d3:27:9f: a8:67:94:20:0b:1b:34:3a:82:f0:2c:fc:b5:89:46:5d:22:32: 8f:8d:56:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUwODIzMDEwMzIxWhcNMjUwODMwMDEwMzIxWjAYMRYwFAYD VQQDEw02OGE5MTM1YS00N2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt24BsCpo8rG8xwa8Cs7+YDcxyYN2oQEExPXcxhHNvVWm8XUcPtzy3vjKBy36 mY+51G2ltUCEXTiQyxqdsoPbE2AymuQy/iOUTnUJrfPU8yjLLfjgSqvaGNDG21+5 f09CfnrWC/MRlITBJptSBpQJVIVihiMAbFZeef8+NQXfldJWsDItO7opU1LN3tBS 3kNabNpamR64CcBiYM+2d812jZUvke39qKOtd2v4INPUObUaok5Z4mjan3lS1ldj L5FAWch3MODRMZMgKq0fVqBldsDSCtX+awBuX3BhlgXP/zADgl+aq9w+AsM9M247 i9XFvnQUJEj7YgzYfRIh7l24LwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOV+u0PM IcVcgxiUY1daWT1izvQ4MB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAukV+0ESof6oZvvk5dtEQl4nA7wHO3+2HDULibfKT3Gclhwc8HAnYl HxOxhIi6HrkLq4+GqXJPkrRbikuHBgAYeS68gdYx8dLHxoruJ/YJtsW+JmL2p1KN rQj0bk7gENdDI34otW6l6sqryrBnW0EHIvYVj3miP4Ji//HhmXa2NvOAyCe3pCuM ecW1UkL26If+JTXG/OjeMpvHB5QxfJ1P90fr/65FyAPs5ENxEXmXFJoT9A7EAw6N Qk5c4larIAtNhkti5Kh5O+KqFYJIcxEWa58e6JBmaNsTUtzevQbcI6j5OCqBd5TT J5+oZ5QgCxs0OoLwLPy1iUZdIjKPjVZy -----END CERTIFICATE-----Generated at Sun Aug 24 05:16:05 2025 by rpki-client