$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: rs1cbYMORwzQThddjff77zCXhMsF6yUa9mu+MdtC5n4= Subject key identifier: F9:1C:2E:83:B1:6E:B8:50:6D:B1:84:B4:A4:A7:60:AF:F0:CA:26:D1 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 01CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 01CC Signing time: Sat 23 Aug 2025 03:00:29 +0000 Manifest this update: Sat 23 Aug 2025 03:00:29 +0000 Manifest next update: Sat 30 Aug 2025 03:00:29 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: YoQ0CNRfxvV5wctZIGFewL+kGPnencTrRr/oVndZr3M=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Aug 23 03:00:29 2025 GMT Not After : Aug 30 03:00:29 2025 GMT Subject: CN=68a92ecd-8b60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:86:36:e6:36:f7:75:48:1f:81:b2:40:21:61: ee:fd:38:b1:21:4f:67:d3:65:97:b9:02:6b:17:89: 20:2f:85:90:68:fb:09:c0:77:73:d2:a7:28:2d:eb: f6:dd:f9:90:ea:df:de:b5:c0:2e:ba:19:64:e2:17: 90:af:8c:4f:8f:03:f4:2f:08:f6:77:3e:56:64:69: 8e:76:c3:42:b7:b9:b2:c3:cf:9a:e9:e4:23:e3:1c: 99:c8:1d:45:26:84:ea:e0:43:32:8e:21:c9:f3:06: ef:25:fd:fd:b6:c9:43:4c:c4:74:2f:2d:26:fe:dd: a5:21:36:52:dc:e0:20:44:cc:c9:07:d2:63:a9:09: da:c1:52:6e:80:42:10:7f:6f:d2:e6:a7:eb:c7:e9: 34:0d:34:45:73:d2:c7:ad:a5:7f:4e:f2:d2:0f:29: 74:f3:93:20:2e:c0:78:75:14:bf:a2:21:5c:78:0e: 07:5d:fc:fc:fd:14:b6:b3:cc:ba:ab:07:2e:2d:38: 73:ed:f0:25:83:b0:fe:15:d7:d2:f1:a9:eb:f5:1a: 27:01:19:0d:b4:95:a5:b4:57:b4:84:4f:c5:80:ad: 06:ff:f0:f4:a0:84:d9:f9:d0:ed:c5:0a:07:f9:62: c1:35:a3:bb:b1:ef:41:a0:00:ce:3f:2e:b8:83:2b: cf:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1C:2E:83:B1:6E:B8:50:6D:B1:84:B4:A4:A7:60:AF:F0:CA:26:D1 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:a6:bc:fa:06:a6:ea:97:22:f7:a2:cf:4c:f1:fd:c5:73:6c: f0:b2:f9:11:ad:4d:32:e2:76:c0:85:ee:f4:f5:0a:1b:d0:ac: 82:9a:27:80:7c:2e:5a:de:ef:db:d5:48:cf:a6:e4:3b:28:6c: 5c:e9:91:a9:78:e7:ad:e8:e1:91:a2:2c:81:ff:01:82:5d:04: 60:81:0f:2e:17:2c:e4:6c:22:f4:23:4e:81:62:a1:89:93:65: 1f:d2:35:4c:97:86:4f:50:44:f3:41:33:de:d8:0a:a0:5a:e1: bf:cb:13:ad:d2:47:23:93:49:30:f3:62:35:6f:3c:6f:b8:52: 0e:55:91:df:93:2e:18:0a:ad:fe:a9:52:2d:c1:02:fc:68:74: 6d:e2:94:44:88:b5:65:fd:02:5b:11:3a:8c:6b:3f:b0:3d:2e: a6:b1:bb:ca:08:85:8f:3a:58:26:cc:7c:aa:7c:85:8b:0d:6f: c5:f1:bc:43:24:57:51:ef:e0:cd:07:fd:2c:4b:cf:e3:7c:9d: 27:d1:0f:45:f4:e1:f1:6b:24:58:69:3c:01:2a:d8:6d:e1:58: bd:91:35:9d:19:99:ea:97:f9:e9:11:a7:9c:51:b1:12:e5:82: 22:c9:06:f9:d8:ea:82:0c:0e:c7:d6:00:f3:65:09:0d:86:1c: df:9a:93:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUwODIzMDMwMDI5WhcNMjUwODMwMDMwMDI5WjAYMRYwFAYD VQQDEw02OGE5MmVjZC04YjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4Y25jb3dUgfgbJAIWHu/TixIU9n02WXuQJrF4kgL4WQaPsJwHdz0qcoLev2 3fmQ6t/etcAuuhlk4heQr4xPjwP0Lwj2dz5WZGmOdsNCt7myw8+a6eQj4xyZyB1F JoTq4EMyjiHJ8wbvJf39tslDTMR0Ly0m/t2lITZS3OAgRMzJB9JjqQnawVJugEIQ f2/S5qfrx+k0DTRFc9LHraV/TvLSDyl085MgLsB4dRS/oiFceA4HXfz8/RS2s8y6 qwcuLThz7fAlg7D+FdfS8anr9RonARkNtJWltFe0hE/FgK0G//D0oITZ+dDtxQoH +WLBNaO7se9BoADOPy64gyvPEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkcLoOx brhQbbGEtKSnYK/wyibRMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlprz6BqbqlyL3os9M8f3Fc2zwsvkRrU0y4nbAhe709Qob0KyCmieA fC5a3u/b1UjPpuQ7KGxc6ZGpeOet6OGRoiyB/wGCXQRggQ8uFyzkbCL0I06BYqGJ k2Uf0jVMl4ZPUETzQTPe2AqgWuG/yxOt0kcjk0kw82I1bzxvuFIOVZHfky4YCq3+ qVItwQL8aHRt4pREiLVl/QJbETqMaz+wPS6msbvKCIWPOlgmzHyqfIWLDW/F8bxD JFdR7+DNB/0sS8/jfJ0n0Q9F9OHxayRYaTwBKtht4Vi9kTWdGZnql/npEaecUbES 5YIiyQb52OqCDA7H1gDzZQkNhhzfmpPf -----END CERTIFICATE-----Generated at Sat Aug 23 22:16:55 2025 by rpki-client