$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: XsSzj0WDbY6YHDKKPXACTAbRjYJJz2efwb9m0hd0yNc= Subject key identifier: EE:39:18:A8:F3:C1:F9:D3:6D:31:EB:73:4F:70:5D:AC:0E:50:D1:85 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: BB Signing time: Sat 23 Aug 2025 06:09:13 +0000 Manifest this update: Sat 23 Aug 2025 06:09:13 +0000 Manifest next update: Sat 30 Aug 2025 06:09:13 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: gB+Z3Wgj2HMZoe0EmOzhXroDsiPObNdnI4cy5Yevcnc=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Aug 23 06:09:13 2025 GMT Not After : Aug 30 06:09:13 2025 GMT Subject: CN=68a95b09-950f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4f:08:ca:95:d9:e4:0e:7e:cb:a2:39:c3:1e: d6:6e:3d:71:62:e5:27:5c:10:d2:93:be:d4:d6:7a: 93:b0:f2:3a:f9:91:19:70:4d:6e:70:b9:6d:c0:c0: 50:b1:dc:75:b6:d6:3b:f7:ba:d7:c0:10:23:6c:06: ab:5a:41:01:3f:db:0e:8a:30:27:43:27:e7:a7:13: 40:ca:86:19:6c:92:bc:49:d8:24:7f:a2:35:e1:be: 19:88:da:3a:89:df:38:64:65:91:a3:54:97:b9:24: 41:8e:96:6e:10:8f:cd:cf:b6:88:55:89:b1:9d:b1: 83:f5:be:f6:bb:2c:91:a8:ce:7c:c4:80:34:03:c2: 75:ea:e3:33:1d:b5:2c:2d:cd:53:45:26:69:b3:d6: ea:0c:0d:2e:37:3b:d3:d2:0f:5b:a9:5d:51:10:f5: 8a:37:f7:10:44:84:1c:f6:93:6a:aa:6a:eb:a2:76: fb:bf:47:6b:74:5c:58:86:c1:0b:b6:7c:52:31:c9: 9b:87:ca:8f:e6:26:97:2e:88:44:46:9f:c5:0c:68: 62:ac:a1:1a:71:7c:43:ec:f9:8a:a1:49:be:43:d1: 37:47:3b:18:44:c8:55:a0:5f:3a:12:03:01:2e:04: a2:07:7e:13:ab:e8:29:d5:e2:69:68:58:34:58:d8: b6:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:39:18:A8:F3:C1:F9:D3:6D:31:EB:73:4F:70:5D:AC:0E:50:D1:85 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:85:10:9f:56:20:88:7c:a6:eb:75:2c:3a:ed:12:de:3d:cf: d7:d9:79:6c:19:c1:94:ac:64:9c:e6:43:44:05:8c:9b:a5:6d: 1c:4a:d1:f3:8d:b8:c2:59:68:a9:be:fe:3d:db:75:68:65:7c: d4:79:8a:b5:8a:fd:16:a3:6f:48:a3:60:da:51:b5:d3:b1:6a: cd:68:e3:71:a9:61:28:7c:eb:4e:8b:d3:49:95:cb:fa:e3:d9: b1:fd:ba:3b:52:13:be:59:a1:2e:25:51:a6:c7:9e:4b:78:60: 70:49:40:b8:77:99:aa:b4:57:3a:6b:47:aa:6d:4e:29:5b:7f: ce:27:41:25:07:1b:1f:a8:67:ac:54:9e:d0:99:c3:b8:a4:4f: 51:18:3a:12:7d:78:7c:00:75:dd:6f:ca:f5:0b:e5:a7:b2:76: f0:cc:85:32:81:33:2f:60:65:79:32:57:67:5f:66:63:53:2f: 08:f4:9e:a5:17:cf:4c:60:07:07:20:7f:3c:31:c6:c9:a5:8a: 3b:c1:87:4a:77:60:00:e0:41:2a:c8:4a:43:d3:a5:e4:c4:76: 86:e6:93:31:49:50:3f:b2:c3:78:ac:77:2e:7e:ab:ab:be:43: fa:27:bc:28:35:40:08:da:fd:9d:e4:89:e3:44:4b:d9:64:a2: 06:99:da:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUwODIzMDYwOTEzWhcNMjUwODMwMDYwOTEzWjAYMRYwFAYD VQQDEw02OGE5NWIwOS05NTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyE8IypXZ5A5+y6I5wx7Wbj1xYuUnXBDSk77U1nqTsPI6+ZEZcE1ucLltwMBQ sdx1ttY797rXwBAjbAarWkEBP9sOijAnQyfnpxNAyoYZbJK8Sdgkf6I14b4ZiNo6 id84ZGWRo1SXuSRBjpZuEI/Nz7aIVYmxnbGD9b72uyyRqM58xIA0A8J16uMzHbUs Lc1TRSZps9bqDA0uNzvT0g9bqV1REPWKN/cQRIQc9pNqqmrronb7v0drdFxYhsEL tnxSMcmbh8qP5iaXLohERp/FDGhirKEacXxD7PmKoUm+Q9E3RzsYRMhVoF86EgMB LgSiB34Tq+gp1eJpaFg0WNi2xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO45GKjz wfnTbTHrc09wXawOUNGFMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCThRCfViCIfKbrdSw67RLePc/X2XlsGcGUrGSc5kNEBYybpW0cStHz jbjCWWipvv4923VoZXzUeYq1iv0Wo29Io2DaUbXTsWrNaONxqWEofOtOi9NJlcv6 49mx/bo7UhO+WaEuJVGmx55LeGBwSUC4d5mqtFc6a0eqbU4pW3/OJ0ElBxsfqGes VJ7QmcO4pE9RGDoSfXh8AHXdb8r1C+WnsnbwzIUygTMvYGV5MldnX2ZjUy8I9J6l F89MYAcHIH88McbJpYo7wYdKd2AA4EEqyEpD06XkxHaG5pMxSVA/ssN4rHcufqur vkP6J7woNUAI2v2d5InjREvZZKIGmdrf -----END CERTIFICATE-----Generated at Sun Aug 24 00:51:56 2025 by rpki-client