$ rpki-client -vvf rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft File: a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft (raw, json) Hash identifier: cwgN/eI0uB3TeeSdYpFkWZE0Uuon4TN6XlWMS3lYAXA= Subject key identifier: E1:E6:03:76:3A:21:84:C6:33:C2:BF:F2:0E:49:8F:9A:F0:12:C0:38 Authority key identifier: 6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D Certificate issuer: /CN=A9164655/serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Certificate serial: 0570 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft Manifest number: 056B Signing time: Fri 22 Aug 2025 23:29:36 +0000 Manifest this update: Fri 22 Aug 2025 23:29:35 +0000 Manifest next update: Fri 29 Aug 2025 23:29:35 +0000 Files and hashes: 1: a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl (hash: qSC9wRIfO7BexulH6uOHsBa4pyI9c/k71mY2HI2fDXw=) 2: B2CB84D4F3E211EB9512E219C4F9AE02.roa (hash: LSj0rBxO9Z29e6JUXgqXeUATalGSgm5CqWXMd5B6WOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:29:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164655, serialNumber=6BD145ECE42AE4FD82AD67CFD1A4059A9EAB3A6D Validity Not Before: Aug 22 23:29:35 2025 GMT Not After : Aug 29 23:29:35 2025 GMT Subject: CN=68a8fd5f-fe94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:5f:e9:bc:68:60:ba:6e:cf:e9:56:e8:76:1f: 22:27:6d:76:7f:56:4b:f6:90:a9:ac:bc:30:09:79: 35:4b:ea:eb:d8:6f:18:9f:5f:bf:7f:6c:d6:79:3c: 77:16:f5:97:b6:bf:cd:2b:24:68:a4:19:bf:8f:da: 2f:33:47:c5:a7:5d:2d:4a:aa:23:15:6f:e3:0f:4b: fb:a1:16:84:ca:93:04:93:6e:77:01:f5:05:11:d8: 7d:34:5a:40:b4:39:8e:75:5f:e7:8f:cb:1d:f8:16: 54:b4:07:f4:b6:ed:5f:a2:23:20:67:ee:47:2d:51: a0:bc:d6:25:5e:03:ad:1e:d9:2b:44:d9:83:05:a3: 53:ab:37:7c:ab:2e:97:fd:b3:b7:05:fa:7f:30:e8: 2f:58:6a:63:2e:b4:5a:1b:39:48:05:4a:e1:70:32: 3a:ea:87:16:ff:4a:c1:4d:d4:a0:0b:5f:50:ad:60: fa:17:ca:3a:d3:29:a6:96:83:71:4a:ed:b1:84:bd: ca:b5:a6:85:fb:e5:a1:65:98:35:45:ec:d4:2c:c8: 8f:82:ec:5b:c2:a1:da:bf:22:2c:ff:5c:5c:c3:35: 7b:10:db:0d:bb:a4:68:6a:11:e2:97:54:29:39:f7: 91:ae:fc:0a:fb:61:a6:7e:cf:34:15:fa:79:84:71: db:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E6:03:76:3A:21:84:C6:33:C2:BF:F2:0E:49:8F:9A:F0:12:C0:38 X509v3 Authority Key Identifier: keyid:6B:D1:45:EC:E4:2A:E4:FD:82:AD:67:CF:D1:A4:05:9A:9E:AB:3A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a9FF7OQq5P2CrWfP0aQFmp6rOm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164655/D8BB849AF3DE11EB9E5EC06EC4F9AE02/a9FF7OQq5P2CrWfP0aQFmp6rOm0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:64:53:7c:2e:cb:06:d8:3d:4f:31:83:80:19:37:4b:23:30: 5a:af:e4:ed:17:a4:f7:9c:4d:45:b5:b2:2f:bc:1b:c9:8a:0f: 90:76:81:72:09:e2:1e:de:26:15:5c:75:96:69:cf:d0:ca:20: ac:2c:86:ec:a6:b7:fa:86:56:22:96:cc:a2:ad:81:57:30:73: e5:7a:d9:b0:8e:e2:90:2e:50:1f:f9:d5:31:3b:47:e4:f9:4d: 4d:e8:aa:e6:03:7b:43:2b:5a:1f:0f:fc:4d:b9:ae:ff:21:61: 08:f4:6e:43:a1:ed:05:15:4b:ec:2a:e5:b5:ba:9e:99:5c:c5: c2:99:a3:72:d0:12:5d:4a:63:e8:1d:5d:79:9a:a9:07:eb:ee: 11:5f:32:5e:44:82:e3:84:88:d8:00:12:ca:d1:12:de:38:7a: 90:a3:b0:af:59:20:c5:fd:70:1e:dc:34:ba:f3:c5:14:85:4b: 3c:b3:8c:36:69:6a:6d:8e:68:68:a3:35:97:c2:72:ed:8c:c5: b3:a7:f0:ef:51:89:3f:1b:7e:4f:28:21:24:a9:f7:5f:0d:4c: 1d:56:3e:b1:08:52:9a:c8:5b:d6:29:8e:d6:fa:1f:16:52:0d: f6:f4:fc:99:f4:ee:4c:f1:84:28:0b:4c:9f:99:bc:7d:02:13: 98:6a:0b:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ2NTUxMTAvBgNVBAUTKDZCRDE0NUVDRTQyQUU0RkQ4MkFENjdDRkQxQTQwNTlB OUVBQjNBNkQwHhcNMjUwODIyMjMyOTM1WhcNMjUwODI5MjMyOTM1WjAYMRYwFAYD VQQDEw02OGE4ZmQ1Zi1mZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAol/pvGhgum7P6Vbodh8iJ212f1ZL9pCprLwwCXk1S+rr2G8Yn1+/f2zWeTx3 FvWXtr/NKyRopBm/j9ovM0fFp10tSqojFW/jD0v7oRaEypMEk253AfUFEdh9NFpA tDmOdV/nj8sd+BZUtAf0tu1foiMgZ+5HLVGgvNYlXgOtHtkrRNmDBaNTqzd8qy6X /bO3Bfp/MOgvWGpjLrRaGzlIBUrhcDI66ocW/0rBTdSgC19QrWD6F8o60ymmloNx Su2xhL3KtaaF++WhZZg1RezULMiPguxbwqHavyIs/1xcwzV7ENsNu6RoahHil1Qp OfeRrvwK+2Gmfs80Ffp5hHHbpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOHmA3Y6 IYTGM8K/8g5Jj5rwEsA4MB8GA1UdIwQYMBaAFGvRRezkKuT9gq1nz9GkBZqeqzpt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDY1NS9EOEJCODQ5QUYz REUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQMkNyV2ZQMGFRRm1wNnJP bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E5RkY3T1FxNVAyQ3JXZlAwYVFGbXA2ck9tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDY1NS9EOEJCODQ5QUYzREUxMUVCOUU1RUMwNkVDNEY5QUUwMi9hOUZGN09RcTVQ MkNyV2ZQMGFRRm1wNnJPbTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDLZFN8LssG2D1PMYOAGTdLIzBar+TtF6T3nE1FtbIvvBvJig+QdoFy CeIe3iYVXHWWac/QyiCsLIbsprf6hlYilsyirYFXMHPletmwjuKQLlAf+dUxO0fk +U1N6KrmA3tDK1ofD/xNua7/IWEI9G5Doe0FFUvsKuW1up6ZXMXCmaNy0BJdSmPo HV15mqkH6+4RXzJeRILjhIjYABLK0RLeOHqQo7CvWSDF/XAe3DS688UUhUs8s4w2 aWptjmhoozWXwnLtjMWzp/DvUYk/G35PKCEkqfdfDUwdVj6xCFKayFvWKY7W+h8W Ug329PyZ9O5M8YQoC0yfmbx9AhOYagvO -----END CERTIFICATE-----Generated at Sat Aug 23 14:34:43 2025 by rpki-client