$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: +LQCtUcsSwyA+eGiJ6hzQlS6brZ0TfiZuLmu7k7+ig8= Subject key identifier: 61:69:74:45:3B:EB:FA:85:F7:30:87:78:AE:99:AC:CA:62:DE:6B:C7 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 07F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 07E0 Signing time: Fri 22 Aug 2025 21:20:20 +0000 Manifest this update: Fri 22 Aug 2025 21:20:19 +0000 Manifest next update: Fri 29 Aug 2025 21:20:19 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: ItlJo9DZfMfu8a0uml7dqop5TqoI+6ZToZ9HFbGrpQI=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2039 (0x7f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Aug 22 21:20:19 2025 GMT Not After : Aug 29 21:20:19 2025 GMT Subject: CN=68a8df13-6c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:82:b9:8a:8c:c7:9f:3f:08:a2:f6:b1:3b:e9: 3e:d9:72:f0:44:a7:c2:b0:28:8c:49:3c:2c:da:23: 44:7e:a5:a9:02:59:ae:04:21:10:fc:f2:5f:73:49: 7d:4c:07:c6:19:24:bf:08:66:3d:6e:ae:ad:40:ff: b4:88:b0:52:be:42:20:49:b9:98:06:85:49:f1:46: da:34:2e:44:04:87:7a:85:3a:90:f7:dd:ee:50:12: f7:16:9b:a9:a9:16:54:13:b9:19:41:c3:8d:f2:6d: 0e:5d:45:69:b7:3a:28:28:78:3c:f9:10:47:0d:a6: fe:54:0f:ca:7b:58:9d:a2:e6:38:ba:98:94:67:16: 6b:b0:45:90:b8:6c:a3:7a:ed:1c:5d:ac:da:34:d8: a9:f5:18:d8:6d:82:6a:9c:17:e7:ee:54:83:6c:20: 17:78:e5:9c:a3:ec:a2:41:38:55:b7:97:b4:e7:53: 9b:7d:63:e9:02:5f:e0:7f:24:99:f0:a4:85:7e:ce: e8:37:93:b3:53:97:c6:4a:a4:c4:90:70:4e:87:46: 4e:55:95:f2:3f:aa:5c:88:69:9c:91:18:aa:75:cf: dd:2f:73:ce:6a:e6:fd:72:ef:b5:95:80:a4:95:ee: c7:64:db:69:d2:ac:74:59:6b:30:95:85:9d:25:a4: cc:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:69:74:45:3B:EB:FA:85:F7:30:87:78:AE:99:AC:CA:62:DE:6B:C7 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:97:b6:70:d5:23:5d:4d:1c:d7:18:f5:c6:f2:01:d8:a9:bb: 66:e5:14:eb:cd:b1:63:d5:05:19:6a:69:01:0f:e7:2e:0a:5e: 72:27:c7:87:d6:6f:2b:fd:1b:56:4a:64:c2:3e:e6:5c:5e:f4: 50:92:32:e3:35:81:da:b8:51:cd:91:e1:26:79:c5:7f:46:c5: 20:62:a4:9b:7e:ef:90:43:75:d4:09:47:f3:ec:75:23:19:da: 29:39:bf:c5:8b:ca:c1:56:96:9f:4b:10:e0:c2:ce:96:71:d9: 12:5c:99:5b:c2:d5:ea:da:72:0d:a4:0f:13:11:c8:de:a7:a5: 0d:16:62:6d:71:a4:a3:96:b0:86:7b:c8:59:db:6a:b7:17:f2: ab:30:e1:9d:0d:cd:9b:d3:da:c7:1a:f6:89:25:0c:68:c1:5d: 1f:29:5e:35:f2:dd:9f:b5:28:e4:e6:a6:b2:7f:11:5d:f1:26: 77:30:0f:6d:08:f8:25:87:4e:be:3e:a8:f1:a2:e6:1b:29:2b: 60:ac:3d:38:54:48:ce:30:8a:bf:17:c0:d4:86:07:e2:b9:3f: cf:e9:e5:ec:f1:a1:28:e2:c3:b9:5f:d9:92:a6:87:5c:03:d6: b6:a6:8e:df:5d:c4:a1:b2:f3:43:23:57:1e:98:a8:9f:10:af: c0:6e:28:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUwODIyMjEyMDE5WhcNMjUwODI5MjEyMDE5WjAYMRYwFAYD VQQDEw02OGE4ZGYxMy02YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIK5iozHnz8IovaxO+k+2XLwRKfCsCiMSTws2iNEfqWpAlmuBCEQ/PJfc0l9 TAfGGSS/CGY9bq6tQP+0iLBSvkIgSbmYBoVJ8UbaNC5EBId6hTqQ993uUBL3Fpup qRZUE7kZQcON8m0OXUVptzooKHg8+RBHDab+VA/Ke1idouY4upiUZxZrsEWQuGyj eu0cXazaNNip9RjYbYJqnBfn7lSDbCAXeOWco+yiQThVt5e051ObfWPpAl/gfySZ 8KSFfs7oN5OzU5fGSqTEkHBOh0ZOVZXyP6pciGmckRiqdc/dL3POaub9cu+1lYCk le7HZNtp0qx0WWswlYWdJaTM9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGFpdEU7 6/qF9zCHeK6ZrMpi3mvHMB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbl7Zw1SNdTRzXGPXG8gHYqbtm5RTrzbFj1QUZamkBD+cuCl5yJ8eH 1m8r/RtWSmTCPuZcXvRQkjLjNYHauFHNkeEmecV/RsUgYqSbfu+QQ3XUCUfz7HUj GdopOb/Fi8rBVpafSxDgws6WcdkSXJlbwtXq2nINpA8TEcjep6UNFmJtcaSjlrCG e8hZ22q3F/KrMOGdDc2b09rHGvaJJQxowV0fKV418t2ftSjk5qayfxFd8SZ3MA9t CPglh06+PqjxouYbKStgrD04VEjOMIq/F8DUhgfiuT/P6eXs8aEo4sO5X9mSpodc A9a2po7fXcShsvNDI1cemKifEK/AbihA -----END CERTIFICATE-----Generated at Sat Aug 23 13:44:31 2025 by rpki-client