$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: S1Npz+sKcyJo3Ll2HQ8hj/se6hlgwF63AlSWCDTQPPI= Subject key identifier: D1:A6:EF:66:CD:40:DA:97:3E:A3:52:AB:3D:54:BA:47:D8:95:35:BA Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0EF6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0EE0 Signing time: Fri 22 Aug 2025 17:46:29 +0000 Manifest this update: Fri 22 Aug 2025 17:46:29 +0000 Manifest next update: Fri 29 Aug 2025 17:46:29 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: JGjxvPRSlRhRdLh0MYgAuH7Fj87JKgerl8hfrgASKng=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: A7sH5kT/nJtv/IMtWiRgvA6A10KdIHaRx/+kfjus0Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:46:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3830 (0xef6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Aug 22 17:46:29 2025 GMT Not After : Aug 29 17:46:29 2025 GMT Subject: CN=68a8acf5-895b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:c5:a0:0c:6e:be:35:84:4c:b2:27:73:3e:8d: 05:65:18:cf:9a:63:4c:b2:d0:e7:87:6e:c0:04:4c: 2c:f6:34:7a:bd:3e:22:a2:60:62:81:61:cb:c3:9a: 4b:63:96:49:99:58:c7:76:ab:49:32:60:a5:78:39: e5:8b:fe:03:3a:bc:49:9b:88:79:0f:f8:08:bf:74: 75:cc:bb:0f:17:b2:08:14:d2:20:a7:0d:40:4a:51: 06:6b:f5:da:f1:e7:1f:4e:70:77:7e:28:7c:3f:23: b2:37:ec:51:30:61:a9:9c:bb:3e:cf:79:3f:9a:69: 5f:c6:43:e7:86:aa:e6:b0:c5:41:fc:fd:35:73:97: 91:d8:cb:f8:e6:ec:1a:f1:a8:9a:42:91:fd:74:fc: fe:51:6c:af:ba:17:ad:73:de:53:53:ff:85:90:96: d8:c5:42:9d:e4:74:e3:ff:b3:12:40:24:4e:a7:33: 9b:d7:49:70:67:72:e9:d8:65:28:f0:fa:78:3f:43: cd:58:ff:5c:b7:2c:20:36:0a:cf:5f:3c:f6:9a:34: e5:c1:7a:08:c0:6a:90:8e:00:83:35:8b:de:72:f5: bd:c6:a5:11:f3:bd:73:ea:71:d8:f2:55:42:ba:58: 61:0e:84:a8:18:16:4d:01:9e:f6:14:07:7a:6f:a3: 4d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A6:EF:66:CD:40:DA:97:3E:A3:52:AB:3D:54:BA:47:D8:95:35:BA X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:d1:9c:f3:ab:d7:9e:9e:c4:70:0f:19:ef:58:96:06:71:32: f7:01:dd:e3:c7:10:75:c0:9f:03:76:97:fd:3d:fe:f5:08:72: b2:b2:46:a7:24:76:36:59:6c:32:b7:66:dc:81:99:be:c0:2f: 37:c2:bd:ed:fe:c8:6f:a5:04:c3:db:47:3e:dc:af:d9:d3:f0: f9:14:65:37:07:ba:50:a3:d5:75:ac:25:19:cb:df:9e:3f:be: d7:d4:ed:2d:db:2f:1a:59:95:d8:59:fc:84:9e:66:8e:3c:c1: e1:fc:15:e2:31:65:4d:be:a9:3e:54:07:4d:b0:c8:7f:74:57: f9:76:ed:92:e4:af:13:66:cb:58:96:ee:af:c2:1c:2e:45:d8: 12:69:7d:33:d9:e9:31:0c:97:6b:3e:c4:a1:43:f6:5f:0e:95: 63:d9:a3:11:ab:e3:04:79:ad:82:22:cf:d8:bc:16:ec:f7:c6: 89:88:39:aa:90:7d:01:82:53:f6:43:92:78:34:5f:f5:ee:75: 36:8b:26:3f:50:78:3b:b3:a5:13:79:50:6e:90:5a:6b:99:93: 98:87:37:1b:49:f0:4d:d9:dd:78:68:ef:20:0c:76:60:0c:46: 7f:c3:44:8d:b2:ba:b9:d7:aa:df:cb:39:df:4d:0b:a1:df:99: 7b:1a:1d:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwODIyMTc0NjI5WhcNMjUwODI5MTc0NjI5WjAYMRYwFAYD VQQDEw02OGE4YWNmNS04OTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9cWgDG6+NYRMsidzPo0FZRjPmmNMstDnh27ABEws9jR6vT4iomBigWHLw5pL Y5ZJmVjHdqtJMmCleDnli/4DOrxJm4h5D/gIv3R1zLsPF7IIFNIgpw1ASlEGa/Xa 8ecfTnB3fih8PyOyN+xRMGGpnLs+z3k/mmlfxkPnhqrmsMVB/P01c5eR2Mv45uwa 8aiaQpH9dPz+UWyvuhetc95TU/+FkJbYxUKd5HTj/7MSQCROpzOb10lwZ3Lp2GUo 8Pp4P0PNWP9ctywgNgrPXzz2mjTlwXoIwGqQjgCDNYvecvW9xqUR871z6nHY8lVC ulhhDoSoGBZNAZ72FAd6b6NNbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGm72bN QNqXPqNSqz1UukfYlTW6MB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ0Zzzq9eensRwDxnvWJYGcTL3Ad3jxxB1wJ8Ddpf9Pf71CHKyskan JHY2WWwyt2bcgZm+wC83wr3t/shvpQTD20c+3K/Z0/D5FGU3B7pQo9V1rCUZy9+e P77X1O0t2y8aWZXYWfyEnmaOPMHh/BXiMWVNvqk+VAdNsMh/dFf5du2S5K8TZstY lu6vwhwuRdgSaX0z2ekxDJdrPsShQ/ZfDpVj2aMRq+MEea2CIs/YvBbs98aJiDmq kH0BglP2Q5J4NF/17nU2iyY/UHg7s6UTeVBukFprmZOYhzcbSfBN2d14aO8gDHZg DEZ/w0SNsrq516rfyznfTQuh35l7Gh3Z -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:53 2025 by rpki-client