$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft File: fd08hfmnH2JfzMEMqDHld3CbTz8.mft (raw, json) Hash identifier: OHMVr4xn4Uch9WVDWi0rR3GPhInrBRO/ScNKdVuYuuc= Subject key identifier: CE:1E:C8:3B:46:46:00:17:9D:1C:AE:42:FA:0E:46:7E:C2:31:15:DD Authority key identifier: 7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F Certificate issuer: /CN=A9167B41/serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Certificate serial: 031E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft Manifest number: 031A Signing time: Sat 23 Aug 2025 01:25:11 +0000 Manifest this update: Sat 23 Aug 2025 01:25:11 +0000 Manifest next update: Sat 30 Aug 2025 01:25:11 +0000 Files and hashes: 1: fd08hfmnH2JfzMEMqDHld3CbTz8.crl (hash: /Za74YgSoUEh3UJrCjD5VmHLJIE/K2If1df56Rnyg4Y=) 2: D24B4D42DF3E11EC83CCFE1EC4F9AE02.roa (hash: Cq6mdfvGMSMUVVy722vXaVlEzZ5zjpH7LRI1e0MUF1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 798 (0x31e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B41, serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Validity Not Before: Aug 23 01:25:11 2025 GMT Not After : Aug 30 01:25:11 2025 GMT Subject: CN=68a91877-7be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c5:1c:d7:22:8b:fd:94:78:02:2d:51:0f:2e: ae:fa:33:19:20:a8:6e:e9:b9:d9:bf:02:30:b8:6b: cd:4b:a6:bb:cd:4c:fb:3f:cf:0f:7f:ca:be:8e:ce: d7:e9:76:69:39:39:eb:69:33:be:8b:ee:63:cd:e7: 97:15:cf:6b:45:c4:a7:61:62:fa:ae:0b:13:75:2d: bf:7e:35:72:8b:8d:88:b3:8e:6e:d6:05:c6:61:05: 44:54:ab:13:ee:a4:c0:fb:99:14:1f:cf:6d:10:ae: 54:2c:08:f9:db:2d:40:f5:4b:4b:cb:29:1e:33:4f: 13:36:73:2f:d2:8a:64:7d:09:cd:b8:ae:e9:44:fd: df:05:1e:b8:9b:a6:c5:b7:c6:61:fd:c6:87:1a:6b: 61:7c:d9:bf:f1:74:56:55:ba:4d:13:65:c8:ff:32: 7c:35:37:72:4b:60:aa:65:26:cb:c8:6f:f4:17:14: ff:95:62:56:51:54:97:6e:1f:b0:55:da:83:b4:df: c5:db:0a:da:fc:bd:1c:bf:e4:ae:0d:33:29:a5:55: f4:f6:c7:d0:d7:d7:75:33:49:f6:af:d0:6d:0c:37: 10:0f:f7:13:7f:69:10:9a:58:58:76:47:fc:66:98: 59:22:e1:c1:53:03:52:95:45:b2:51:a4:0e:da:31: 6b:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:1E:C8:3B:46:46:00:17:9D:1C:AE:42:FA:0E:46:7E:C2:31:15:DD X509v3 Authority Key Identifier: keyid:7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:cd:41:21:6c:c6:d9:6c:89:ad:f4:ac:d8:ab:e5:ad:b1:95: d7:30:e1:99:39:83:14:8c:20:ab:13:2e:5c:77:ea:e1:8e:3f: 32:10:7e:90:ba:0e:16:70:6e:ac:49:d7:1d:86:91:d8:ff:f9: 1b:81:39:58:f3:40:1d:1d:18:87:74:f2:3f:c6:d3:91:57:35: dc:ea:e2:9d:96:ca:ad:37:f6:f1:97:03:d2:9c:15:46:31:55: 41:40:0b:5b:54:10:d5:c3:37:24:4c:07:39:eb:18:e7:9d:e7: b9:6c:65:25:b1:ee:9e:b9:b0:2b:8e:4e:54:c4:5a:3a:24:5a: c1:98:d3:ac:0d:a1:b3:11:e0:14:7e:06:b0:ee:49:91:13:73: fe:13:a3:79:87:83:dc:33:8c:3b:2a:5c:4f:77:5a:27:b5:70: 18:c3:11:f4:2e:9d:20:4b:0f:ab:40:df:fd:c2:f0:20:36:b9: b6:56:6b:01:3d:57:52:eb:74:78:fd:b8:68:af:8a:2b:4e:b1: 32:5e:90:20:2c:f1:d1:87:03:fd:f8:fc:93:86:d8:a5:58:0c: 92:61:78:48:53:c7:60:d4:39:2c:5d:51:67:f6:e2:2a:a9:a1: 44:d5:f8:f4:f1:63:d5:27:17:c5:9a:63:d8:98:2f:ea:a6:8c: 50:98:fc:a3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNDExMTAvBgNVBAUTKDdEREQzQzg1RjlBNzFGNjI1RkNDQzEwQ0E4MzFFNTc3 NzA5QjRGM0YwHhcNMjUwODIzMDEyNTExWhcNMjUwODMwMDEyNTExWjAYMRYwFAYD VQQDEw02OGE5MTg3Ny03YmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMUc1yKL/ZR4Ai1RDy6u+jMZIKhu6bnZvwIwuGvNS6a7zUz7P88Pf8q+js7X 6XZpOTnraTO+i+5jzeeXFc9rRcSnYWL6rgsTdS2/fjVyi42Is45u1gXGYQVEVKsT 7qTA+5kUH89tEK5ULAj52y1A9UtLyykeM08TNnMv0opkfQnNuK7pRP3fBR64m6bF t8Zh/caHGmthfNm/8XRWVbpNE2XI/zJ8NTdyS2CqZSbLyG/0FxT/lWJWUVSXbh+w VdqDtN/F2wra/L0cv+SuDTMppVX09sfQ19d1M0n2r9BtDDcQD/cTf2kQmlhYdkf8 ZphZIuHBUwNSlUWyUaQO2jFrEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM4eyDtG RgAXnRyuQvoORn7CMRXdMB8GA1UdIwQYMBaAFH3dPIX5px9iX8zBDKgx5Xdwm08/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I0MS9FNzkwRjlBQURG MzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgySmZ6TUVNcURIbGQzQ2JU ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkMDhoZm1uSDJKZnpNRU1xREhsZDNDYlR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0I0MS9FNzkwRjlBQURGMzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgy SmZ6TUVNcURIbGQzQ2JUejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJzUEhbMbZbImt9KzYq+WtsZXXMOGZOYMUjCCrEy5cd+rhjj8yEH6Q ug4WcG6sSdcdhpHY//kbgTlY80AdHRiHdPI/xtORVzXc6uKdlsqtN/bxlwPSnBVG MVVBQAtbVBDVwzckTAc56xjnnee5bGUlse6eubArjk5UxFo6JFrBmNOsDaGzEeAU fgaw7kmRE3P+E6N5h4PcM4w7KlxPd1ontXAYwxH0Lp0gSw+rQN/9wvAgNrm2VmsB PVdS63R4/bhor4orTrEyXpAgLPHRhwP9+PyThtilWAySYXhIU8dg1DksXVFn9uIq qaFE1fj08WPVJxfFmmPYmC/qpoxQmPyj -----END CERTIFICATE-----Generated at Sat Aug 23 17:23:39 2025 by rpki-client