$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: Ej6yxpMDSq/ppCD9n2zrkWBD24QUDXJFdjiMA6/96HQ= Subject key identifier: CA:EA:D0:3C:42:CC:49:9E:FE:0F:17:7F:D5:15:88:4F:A8:15:0D:FB Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: 8D Signing time: Sat 23 Aug 2025 06:46:39 +0000 Manifest this update: Sat 23 Aug 2025 06:46:39 +0000 Manifest next update: Sat 30 Aug 2025 06:46:39 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: q9l/DLTM+GBcRx61oWv+G40dVoyGhsVhPo5IgNgdKJg=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Aug 23 06:46:39 2025 GMT Not After : Aug 30 06:46:39 2025 GMT Subject: CN=68a963cf-1c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:d7:30:23:28:a4:f8:5b:05:e9:7b:1e:bb:30: 98:44:60:23:95:3b:7e:58:32:2b:2c:9e:95:d7:34: 52:68:eb:13:cd:94:49:51:35:48:ac:28:f5:81:dd: ce:8a:38:3f:71:8a:f6:ce:f1:a4:9f:55:80:0c:78: 34:19:ef:41:74:dc:c5:b9:1d:fb:a3:39:27:6d:0a: 31:06:9c:7b:72:8e:92:7c:81:77:c7:7e:2e:3a:cb: 41:20:bd:f9:4e:ca:30:ab:da:fb:45:22:1b:31:0c: b7:e6:4c:90:19:5f:6d:a1:e6:39:5f:4f:ab:45:c0: e6:c9:3a:a6:09:6b:97:d1:93:2f:87:40:c1:1a:b5: bb:51:a8:e5:13:dc:a4:d6:d9:ec:1b:4d:0a:3c:72: 12:30:77:3d:0f:e6:1b:11:8b:11:87:40:f6:8e:64: 76:44:76:fd:21:aa:0b:e4:72:66:45:23:92:2c:35: a8:ce:51:13:f8:be:4d:83:55:0f:7a:c5:45:7b:50: 74:8f:60:73:b2:5c:85:d8:cd:92:86:76:8d:8f:81: 92:96:98:21:97:a1:17:85:41:ba:10:87:39:7a:c9: 19:61:03:5b:e2:4f:d8:d4:d4:c9:e4:f5:ee:68:8e: 32:d5:dd:45:92:89:13:e4:d9:a7:01:3b:38:47:1f: 91:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EA:D0:3C:42:CC:49:9E:FE:0F:17:7F:D5:15:88:4F:A8:15:0D:FB X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:eb:03:6a:12:99:f2:c4:dd:23:b3:dd:ce:10:34:a4:06:1c: 6d:ac:98:10:b7:e8:f4:b0:2a:91:46:e4:2e:51:01:4c:99:51: 3d:da:03:e3:a2:43:0c:1f:42:52:f7:de:82:bc:77:66:e5:66: c4:37:4d:f5:28:97:a4:a6:cd:38:7f:73:f8:46:fb:8b:24:75: 98:06:46:80:e2:38:fc:c6:0d:4c:2c:b9:ac:66:1e:3d:04:e1: 93:40:e2:7b:6b:40:59:cd:4d:8a:10:f7:a1:14:96:69:94:3e: 53:ae:7d:85:8a:bf:0c:e1:8d:19:f5:c9:06:57:64:6f:61:4c: da:0c:e3:90:28:15:d2:fe:ef:90:34:eb:47:be:ee:e1:1e:69: bc:a6:34:0b:31:4a:e2:6c:ea:df:f7:30:72:27:46:c9:19:cc: 3f:6b:09:8a:65:dd:05:b6:de:31:51:87:a4:6d:f7:6d:bb:a0: 05:17:4e:b7:af:8e:88:3c:7b:a8:c9:5e:4f:bd:65:0a:d5:28: 5e:55:ce:82:45:d1:3c:1c:68:bf:9f:ae:d5:9c:7b:ed:a7:f8: 27:31:16:35:cf:e7:a1:89:77:7c:57:b8:73:54:8f:0b:3a:a2: a9:e0:34:0e:c3:83:78:32:9d:f3:41:07:e3:7c:6a:01:54:78: 7a:7e:f7:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEFENTQ1RDI1MDRGRTFERTkyQUUxNzY2REY0NjU3NjM3 REI3QTdFNzUwHhcNMjUwODIzMDY0NjM5WhcNMjUwODMwMDY0NjM5WjAYMRYwFAYD VQQDEw02OGE5NjNjZi0xYzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA39cwIyik+FsF6XseuzCYRGAjlTt+WDIrLJ6V1zRSaOsTzZRJUTVIrCj1gd3O ijg/cYr2zvGkn1WADHg0Ge9BdNzFuR37ozknbQoxBpx7co6SfIF3x34uOstBIL35 Tsowq9r7RSIbMQy35kyQGV9toeY5X0+rRcDmyTqmCWuX0ZMvh0DBGrW7UajlE9yk 1tnsG00KPHISMHc9D+YbEYsRh0D2jmR2RHb9IaoL5HJmRSOSLDWozlET+L5Ng1UP esVFe1B0j2BzslyF2M2ShnaNj4GSlpghl6EXhUG6EIc5eskZYQNb4k/Y1NTJ5PXu aI4y1d1FkokT5NmnATs4Rx+RiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrq0DxC zEme/g8Xf9UViE+oFQ37MB8GA1UdIwQYMBaAFK1UXSUE/h3pKuF2bfRldjfben51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FNTM5Q0RBMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhla3E0WFp0OUdWMk45dDZm blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FNTM5Q0RBMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhl a3E0WFp0OUdWMk45dDZmblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc6wNqEpnyxN0js93OEDSkBhxtrJgQt+j0sCqRRuQuUQFMmVE92gPj okMMH0JS996CvHdm5WbEN031KJekps04f3P4RvuLJHWYBkaA4jj8xg1MLLmsZh49 BOGTQOJ7a0BZzU2KEPehFJZplD5Trn2Fir8M4Y0Z9ckGV2RvYUzaDOOQKBXS/u+Q NOtHvu7hHmm8pjQLMUribOrf9zByJ0bJGcw/awmKZd0Ftt4xUYekbfdtu6AFF063 r46IPHuoyV5PvWUK1SheVc6CRdE8HGi/n67VnHvtp/gnMRY1z+ehiXd8V7hzVI8L OqKp4DQOw4N4Mp3zQQfjfGoBVHh6fvdP -----END CERTIFICATE-----Generated at Sat Aug 23 14:06:36 2025 by rpki-client