$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: OOoOShUDS4UYp0ATBrCxViZxnNesOOlxPbnQmTIjL2I= Subject key identifier: FB:D8:18:19:96:0A:23:06:25:C0:89:ED:6A:B1:9C:01:F7:D8:56:16 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: C2 Signing time: Sat 23 Aug 2025 05:57:55 +0000 Manifest this update: Sat 23 Aug 2025 05:57:53 +0000 Manifest next update: Sat 30 Aug 2025 05:57:53 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: v85BQuWtilJmgFuep10Vc2W5wDwS5l7OcvY3FUFHIWk=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9, serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: Aug 23 05:57:53 2025 GMT Not After : Aug 30 05:57:53 2025 GMT Subject: CN=68a95862-e9a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d8:90:93:3e:70:d4:f4:ee:a5:cc:95:e3:98: e3:26:19:1e:1c:bb:96:70:d1:af:c6:ee:f8:4a:c1: 4b:ff:ba:a9:57:22:cb:c1:e4:0b:cc:af:26:1d:fd: 15:bf:4c:54:20:3b:a7:e9:f4:1b:57:13:bd:ec:bc: cd:b3:31:49:c7:55:4f:7b:d6:c7:ce:13:73:f7:7f: 49:7b:fa:bc:fc:c1:56:55:66:d7:3e:70:a2:2f:8d: 79:cc:9d:23:b9:97:49:66:2e:bd:0d:73:cd:dd:a0: 0f:0a:bc:15:88:2d:08:a3:99:93:38:d6:97:f8:a3: 6a:81:f6:ef:79:a7:f6:0b:5c:ee:88:87:b5:ba:1e: 12:f6:dc:9e:56:8f:47:eb:6a:e7:be:88:f1:4a:f8: 7c:9a:c8:2b:69:32:6c:48:ef:8c:a5:87:04:bb:86: 78:72:e1:1c:ef:c9:95:49:77:ab:2d:e0:af:f8:ce: ad:23:55:c1:e6:da:fe:fd:b9:3c:22:30:c2:1f:9e: 62:76:b9:f1:6e:36:e0:a4:b3:1f:e1:78:d6:aa:32: fa:c9:07:a8:2f:d5:45:e3:00:67:82:e0:e6:e6:c9: 96:67:23:2a:0a:b9:b5:c8:26:15:36:14:b0:30:c5: 38:07:bc:d4:f1:51:72:48:29:14:03:e0:0c:63:09: c7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D8:18:19:96:0A:23:06:25:C0:89:ED:6A:B1:9C:01:F7:D8:56:16 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:ec:db:a1:c4:41:22:a6:dd:02:dc:31:a3:87:c9:e9:d7:e4: 61:61:fc:60:3a:00:29:42:7c:14:ce:3d:f9:7b:d4:9e:10:82: a6:7b:19:1c:a0:2b:e6:d6:43:06:4a:bf:28:40:85:9f:a6:dc: 6a:3c:68:82:5c:b8:e0:ca:70:52:54:99:00:4f:2e:61:53:b4: b9:b4:bc:b6:fa:07:dd:60:bf:c1:48:83:00:00:c7:ca:1e:6b: cc:72:9a:e8:47:05:bc:e7:cd:e1:21:81:3f:fc:5a:54:17:2e: 6e:a9:7c:e6:84:e1:3c:54:d8:4b:fc:ff:9b:c3:c7:0d:ba:4a: 50:c7:02:bd:09:9d:d3:59:b6:52:a4:c6:be:f7:2f:70:38:63: 72:6b:e3:8a:11:6d:ea:26:53:cf:71:53:bc:1a:9c:61:8f:39: 1a:a3:7a:6f:51:10:cb:fc:7b:c4:d3:0c:c0:2f:c6:90:23:67: 2e:bc:7b:d4:35:0a:9e:f8:02:81:5a:61:a9:d1:47:6c:a6:81: 30:69:57:2e:ed:33:47:ca:5e:f0:cf:69:76:68:6a:ba:25:b5: 8e:a9:2e:69:42:a4:d7:a2:c4:ab:21:84:28:7d:4e:f9:a1:ce: bf:29:9d:41:a0:f8:d0:47:5a:19:f9:55:8c:63:a9:19:35:18: 19:20:1c:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTkxMTAvBgNVBAUTKEVGNTM5MUYyQTIyREQ2NUY0ODQzMUEzMjI2RERDQzY1 Qjc2NTk2QTkwHhcNMjUwODIzMDU1NzUzWhcNMjUwODMwMDU1NzUzWjAYMRYwFAYD VQQDEw02OGE5NTg2Mi1lOWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdiQkz5w1PTupcyV45jjJhkeHLuWcNGvxu74SsFL/7qpVyLLweQLzK8mHf0V v0xUIDun6fQbVxO97LzNszFJx1VPe9bHzhNz939Je/q8/MFWVWbXPnCiL415zJ0j uZdJZi69DXPN3aAPCrwViC0Io5mTONaX+KNqgfbveaf2C1zuiIe1uh4S9tyeVo9H 62rnvojxSvh8msgraTJsSO+MpYcEu4Z4cuEc78mVSXerLeCv+M6tI1XB5tr+/bk8 IjDCH55idrnxbjbgpLMf4XjWqjL6yQeoL9VF4wBnguDm5smWZyMqCrm1yCYVNhSw MMU4B7zU8VFySCkUA+AMYwnHgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvYGBmW CiMGJcCJ7WqxnAH32FYWMB8GA1UdIwQYMBaAFO9TkfKiLdZfSEMaMibdzGW3ZZap MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBOS80MjNFMUFENDVB MTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFsOUlReG95SnQzTVpiZGxs cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFs OUlReG95SnQzTVpiZGxscWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc7NuhxEEipt0C3DGjh8np1+RhYfxgOgApQnwUzj35e9SeEIKmexkc oCvm1kMGSr8oQIWfptxqPGiCXLjgynBSVJkATy5hU7S5tLy2+gfdYL/BSIMAAMfK HmvMcproRwW8583hIYE//FpUFy5uqXzmhOE8VNhL/P+bw8cNukpQxwK9CZ3TWbZS pMa+9y9wOGNya+OKEW3qJlPPcVO8Gpxhjzkao3pvURDL/HvE0wzAL8aQI2cuvHvU NQqe+AKBWmGp0UdspoEwaVcu7TNHyl7wz2l2aGq6JbWOqS5pQqTXosSrIYQofU75 oc6/KZ1BoPjQR1oZ+VWMY6kZNRgZIBzA -----END CERTIFICATE-----Generated at Sun Aug 24 00:51:22 2025 by rpki-client