$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: aeWdg/KBDCtq7YrMIcblnt2W+3YCsjaStXeDSSZH8z4= Subject key identifier: EB:8F:FA:89:56:29:04:4C:7A:1D:AE:AF:1C:B7:2C:68:82:B4:6A:24 Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 01C7 Signing time: Sat 23 Aug 2025 03:03:07 +0000 Manifest this update: Sat 23 Aug 2025 03:03:06 +0000 Manifest next update: Sat 30 Aug 2025 03:03:06 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: HwZ6S0/+qNrs9rUDFHKYcmL0lu/vpK8yzQotjodnNOQ=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Aug 23 03:03:06 2025 GMT Not After : Aug 30 03:03:06 2025 GMT Subject: CN=68a92f6a-e885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:48:d0:73:f7:a6:21:05:b1:e7:38:99:74:a8: 81:77:93:83:55:fa:d8:d3:bc:ae:27:77:c1:31:26: 93:f1:60:3e:05:fe:ee:30:e1:a7:63:f1:45:7d:4b: 10:09:d6:5e:16:79:c8:a8:32:3f:0c:c2:52:cf:da: 2a:2c:3c:07:c2:c8:b3:13:14:47:2b:8d:21:60:a9: bd:90:4b:0d:0b:ca:91:87:ba:bd:15:8c:d4:d5:71: 08:49:d0:fc:63:f4:7a:76:fc:23:c0:a7:de:78:57: 2f:47:64:94:b5:dd:63:b6:b7:24:83:12:5f:ad:22: 79:b6:0d:c7:fb:a0:2d:1e:69:71:a0:e9:6b:6d:a6: 3a:a2:89:0b:14:a8:0a:29:3e:d5:17:65:13:b9:d3: 20:a7:51:5e:5d:ba:31:0d:5b:02:ea:d1:38:68:59: 97:fd:0d:a5:f0:ff:c6:71:42:e5:6a:e2:ab:08:0f: c3:4f:51:e7:c6:30:a6:2c:31:6c:2f:05:1b:3d:e4: 9f:be:88:90:75:c1:6d:18:4e:45:37:c9:83:84:05: fd:ab:b6:e2:38:e1:1d:68:9a:3e:4b:47:af:ce:c1: 12:bc:6d:92:24:47:d0:fb:9f:7a:a2:c6:81:ae:76: cb:24:28:eb:48:e8:fa:a8:8f:02:8d:e1:d9:ad:c3: d7:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8F:FA:89:56:29:04:4C:7A:1D:AE:AF:1C:B7:2C:68:82:B4:6A:24 X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:09:b4:c4:03:e7:c9:38:46:cb:b9:ca:02:2f:43:58:4a:93: 18:f1:1f:1c:64:d4:52:22:da:6f:21:cf:8b:02:6a:3a:7b:27: 05:01:e9:aa:a4:cc:03:34:0a:d8:65:3b:0b:1d:3b:3c:fa:59: d8:43:fb:80:9f:3e:e3:2e:e5:ba:2e:a8:34:cd:28:9f:92:6c: 0f:63:b1:14:24:0a:1e:2b:2b:50:40:98:ce:a1:99:61:53:f4: 96:e8:ac:fa:b8:ba:e2:fb:c0:89:60:a2:7d:d0:d5:0d:4e:9d: bb:75:f6:9c:1f:ce:6f:08:b4:ae:38:04:8e:52:4c:10:15:c9: d2:91:71:8f:94:a5:1e:87:7b:64:20:06:ae:5b:f9:40:f0:dc: 8d:8a:65:bc:7a:c1:e1:24:17:c6:46:d2:e4:84:4b:f9:cb:3e: da:6f:ce:4d:5b:03:6b:e6:43:41:57:d7:a8:9f:e7:f5:f0:00: 0f:19:63:0d:2e:99:45:79:71:51:88:aa:72:e9:9d:fd:1a:5f: a5:9b:3f:02:d2:c6:e6:8e:d6:9e:8a:bb:c4:14:47:68:2e:54: c0:c5:1f:1a:d7:e2:d8:8d:03:83:72:06:d1:79:4e:22:06:fc: 54:b5:04:5e:4d:ac:91:5b:95:c7:f7:b7:5e:86:ed:1a:c1:1b: b1:12:1b:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUwODIzMDMwMzA2WhcNMjUwODMwMDMwMzA2WjAYMRYwFAYD VQQDEw02OGE5MmY2YS1lODg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsEjQc/emIQWx5ziZdKiBd5ODVfrY07yuJ3fBMSaT8WA+Bf7uMOGnY/FFfUsQ CdZeFnnIqDI/DMJSz9oqLDwHwsizExRHK40hYKm9kEsNC8qRh7q9FYzU1XEISdD8 Y/R6dvwjwKfeeFcvR2SUtd1jtrckgxJfrSJ5tg3H+6AtHmlxoOlrbaY6ookLFKgK KT7VF2UTudMgp1FeXboxDVsC6tE4aFmX/Q2l8P/GcULlauKrCA/DT1HnxjCmLDFs LwUbPeSfvoiQdcFtGE5FN8mDhAX9q7biOOEdaJo+S0evzsESvG2SJEfQ+596osaB rnbLJCjrSOj6qI8CjeHZrcPXQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOuP+olW KQRMeh2urxy3LGiCtGokMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLCbTEA+fJOEbLucoCL0NYSpMY8R8cZNRSItpvIc+LAmo6eycFAemq pMwDNArYZTsLHTs8+lnYQ/uAnz7jLuW6Lqg0zSifkmwPY7EUJAoeKytQQJjOoZlh U/SW6Kz6uLri+8CJYKJ90NUNTp27dfacH85vCLSuOASOUkwQFcnSkXGPlKUeh3tk IAauW/lA8NyNimW8esHhJBfGRtLkhEv5yz7ab85NWwNr5kNBV9eon+f18AAPGWMN LplFeXFRiKpy6Z39Gl+lmz8C0sbmjtaeirvEFEdoLlTAxR8a1+LYjQODcgbReU4i BvxUtQReTayRW5XH97dehu0awRuxEhs1 -----END CERTIFICATE-----Generated at Sat Aug 23 22:19:38 2025 by rpki-client