$ rpki-client -vvf rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft File: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft (raw, json) Hash identifier: +7juRqxUKYSMOeWLKvFPC1upBZ4pp225F8D9EdoQEQ0= Subject key identifier: 89:56:C4:61:79:90:49:11:4E:37:07:DE:0C:31:0C:E8:81:BB:F2:8D Authority key identifier: EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 Certificate issuer: /CN=A9164B0A/serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft Manifest number: F5 Signing time: Sat 23 Aug 2025 05:26:22 +0000 Manifest this update: Sat 23 Aug 2025 05:26:22 +0000 Manifest next update: Sat 30 Aug 2025 05:26:22 +0000 Files and hashes: 1: 7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl (hash: 4hMvpfUuEXs2mW7t66YduRnBmyENR6ShTMfRU6Ye6Jg=) 2: 0913CC14A59911EFBA373D1BC4F9AE02.roa (hash: CwXxvQd82DMK841MpqVGbyP5fEoZfjolyFEgUa5vlRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164B0A, serialNumber=EE4B05618437F1948D9299F8A4F929C187D97F33 Validity Not Before: Aug 23 05:26:22 2025 GMT Not After : Aug 30 05:26:22 2025 GMT Subject: CN=68a950fe-7fdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c9:c9:30:3a:d5:33:06:a5:3e:b6:e8:80:e2: 20:f5:db:e6:dd:76:b9:f3:74:40:67:41:2a:b8:65: f0:f0:f1:9b:69:e8:99:f6:f9:3d:db:b0:6b:4f:39: 88:c4:d1:62:bf:11:58:5e:fb:bc:41:71:db:9b:ce: 86:9b:46:4f:6c:f9:17:a5:27:0d:45:b7:49:58:dc: 78:4b:47:04:6b:1e:aa:0f:5e:95:da:94:a6:a8:08: ab:3f:2c:54:4e:81:63:f2:7f:85:74:b2:5a:79:ff: a1:61:f7:82:49:ee:b5:00:5a:88:03:24:bf:46:0b: 59:7d:4b:6d:34:46:93:e9:37:3e:e4:9d:f6:a4:99: ee:ae:f8:e7:35:32:3f:24:c6:ac:60:f8:59:0f:8f: bf:49:53:94:4a:ad:a5:07:e6:c5:96:3e:83:af:0a: f9:7f:22:41:5f:7c:a0:9c:e7:9b:50:57:6e:6d:0a: 17:78:77:e1:67:e7:0d:df:18:49:94:e1:1e:ce:d4: dc:e9:16:d0:1b:ff:0b:6d:12:a7:b9:10:e7:85:d6: a2:82:8e:4e:b0:38:57:08:4c:9d:2f:71:1e:7f:55: 5c:63:d5:10:92:2c:61:c8:b8:4b:bd:37:df:54:45: 8a:a1:aa:7b:c8:c1:71:92:22:ac:1e:9b:4d:3b:dd: 0b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:56:C4:61:79:90:49:11:4E:37:07:DE:0C:31:0C:E8:81:BB:F2:8D X509v3 Authority Key Identifier: keyid:EE:4B:05:61:84:37:F1:94:8D:92:99:F8:A4:F9:29:C1:87:D9:7F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164B0A/4CF0F708129211EFAB106564C4F9AE02/7ksFYYQ38ZSNkpn4pPkpwYfZfzM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:d2:59:e1:d8:b9:9c:cc:8d:7d:da:16:e8:69:39:7f:01:25: 17:d6:42:7c:40:7d:b0:ca:a3:62:63:7d:86:16:68:8e:01:ec: 86:bd:84:57:51:73:6f:0c:a1:d5:d2:07:bc:79:3e:ab:0c:8a: 19:2d:4b:2e:5b:d9:7b:65:d1:01:67:c6:36:81:03:7d:f5:41: d2:22:97:c6:c4:0a:49:d8:65:56:fd:eb:9d:c5:0b:45:21:49: 91:99:93:bc:c9:6e:4f:d3:e0:a9:a2:6c:f5:29:ab:9c:88:ca: c0:f9:73:dc:53:0b:54:6d:de:19:5f:b2:b5:f1:d1:80:6a:ea: a7:31:6a:4d:15:e3:5c:0b:88:8c:2c:59:c4:1e:12:96:5f:9c: 53:30:94:9d:d9:40:d0:d5:8f:ad:45:3c:c7:1b:02:77:7c:fa: 3c:9f:38:a6:36:25:75:e4:b2:db:c1:ba:6f:2c:42:b4:23:e8: 11:5d:09:7d:da:a0:5b:6c:50:ac:78:04:82:1d:c9:43:e1:ac: 9e:d3:dd:05:67:f0:fa:9a:d4:36:f3:65:ca:f5:ee:94:0a:54: 63:f9:02:fa:c1:ff:66:4b:77:25:93:7c:97:4f:89:48:75:32: 2d:98:e9:83:f5:87:84:0b:f7:f9:61:64:7c:8f:5a:15:34:4b: 6b:9e:f4:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRCMEExMTAvBgNVBAUTKEVFNEIwNTYxODQzN0YxOTQ4RDkyOTlGOEE0RjkyOUMx ODdEOTdGMzMwHhcNMjUwODIzMDUyNjIyWhcNMjUwODMwMDUyNjIyWjAYMRYwFAYD VQQDEw02OGE5NTBmZS03ZmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MnJMDrVMwalPrbogOIg9dvm3Xa583RAZ0EquGXw8PGbaeiZ9vk927BrTzmI xNFivxFYXvu8QXHbm86Gm0ZPbPkXpScNRbdJWNx4S0cEax6qD16V2pSmqAirPyxU ToFj8n+FdLJaef+hYfeCSe61AFqIAyS/RgtZfUttNEaT6Tc+5J32pJnurvjnNTI/ JMasYPhZD4+/SVOUSq2lB+bFlj6Drwr5fyJBX3ygnOebUFdubQoXeHfhZ+cN3xhJ lOEeztTc6RbQG/8LbRKnuRDnhdaigo5OsDhXCEydL3Eef1VcY9UQkixhyLhLvTff VEWKoap7yMFxkiKsHptNO90LAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlWxGF5 kEkRTjcH3gwxDOiBu/KNMB8GA1UdIwQYMBaAFO5LBWGEN/GUjZKZ+KT5KcGH2X8z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEIwQS80Q0YwRjcwODEy OTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzhaU05rcG40cFBrcHdZZlpm ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdrc0ZZWVEzOFpTTmtwbjRwUGtwd1lmWmZ6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEIwQS80Q0YwRjcwODEyOTIxMUVGQUIxMDY1NjRDNEY5QUUwMi83a3NGWVlRMzha U05rcG40cFBrcHdZZlpmek0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc0lnh2LmczI192hboaTl/ASUX1kJ8QH2wyqNiY32GFmiOAeyGvYRX UXNvDKHV0ge8eT6rDIoZLUsuW9l7ZdEBZ8Y2gQN99UHSIpfGxApJ2GVW/eudxQtF IUmRmZO8yW5P0+Cpomz1KauciMrA+XPcUwtUbd4ZX7K18dGAauqnMWpNFeNcC4iM LFnEHhKWX5xTMJSd2UDQ1Y+tRTzHGwJ3fPo8nzimNiV15LLbwbpvLEK0I+gRXQl9 2qBbbFCseASCHclD4aye090FZ/D6mtQ282XK9e6UClRj+QL6wf9mS3clk3yXT4lI dTItmOmD9YeEC/f5YWR8j1oVNEtrnvSH -----END CERTIFICATE-----Generated at Sat Aug 23 20:25:38 2025 by rpki-client