$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: RkFjDEpFR0zTAwshHPyvz+k7ffyCQiP2ouAGmH+UCio= Subject key identifier: B9:4A:D9:30:13:2D:0D:31:BA:96:82:57:57:5B:CC:01:AE:08:7A:AF Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: D1 Signing time: Sat 23 Aug 2025 06:07:23 +0000 Manifest this update: Sat 23 Aug 2025 06:07:23 +0000 Manifest next update: Sat 30 Aug 2025 06:07:23 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: huqu53Q4dudtF6K4vslZROuiS6Kp28vhLA9cpi6+EvM=) 2: F0CEC2E2663811F089040A3DC4F9AE02.roa (hash: qKo5GDm+NdH2Wkh9LsU4Ek55hvJRGlW/WsdLjpxnbHU=) 3: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: 8/Hd/HSfsJzaFCQ02un66M2YDgdginFixcaFn5JQidY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Aug 23 06:07:23 2025 GMT Not After : Aug 30 06:07:23 2025 GMT Subject: CN=68a95a9b-d131 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3d:a0:b0:77:37:28:54:ae:fa:bf:eb:12:2f: 13:ca:7d:e7:4a:46:4b:fa:47:40:4d:fe:2d:91:46: 92:10:0a:58:b6:de:c6:0c:a8:46:c6:ae:f1:c6:dd: 61:40:c3:cc:09:c1:a5:1c:43:3e:88:c0:0e:bd:58: 89:47:3a:f9:18:a1:ce:c7:b8:76:00:e2:25:88:07: 94:3b:67:7e:77:3f:8a:98:e3:12:e0:09:06:b4:7b: 8a:51:1e:0f:0a:d8:8b:5a:ed:92:f6:b2:d2:4d:fe: 68:53:06:ea:9d:d5:af:a1:7c:d1:1a:63:2c:8b:a3: 8e:d1:94:a6:09:ab:af:cd:92:77:00:f0:6f:65:55: 4b:31:9c:1f:55:fd:2a:76:1e:24:35:2a:de:fc:25: 51:05:b0:8a:71:4a:28:25:12:71:49:75:f1:e2:ba: b7:ae:30:92:26:84:9a:3f:89:43:b9:d8:b1:e1:ce: 8b:e0:bc:66:32:2b:e1:9b:76:44:15:86:d8:6e:34: e1:60:53:e0:d0:5f:14:dd:c0:c4:63:78:f9:21:17: 27:21:cd:a0:67:b6:ef:30:2a:8e:3b:ec:11:51:4d: 50:20:49:d9:8e:fa:78:3f:58:91:46:a1:57:26:bf: 22:f2:d3:9b:3e:08:ba:b1:b6:86:dc:e4:ef:0f:f6: 7e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:4A:D9:30:13:2D:0D:31:BA:96:82:57:57:5B:CC:01:AE:08:7A:AF X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:7c:82:b2:51:0c:83:f7:d7:a8:0b:49:18:0a:e2:db:b2:88: 03:f1:ad:ba:aa:1c:a9:c3:bf:b2:7b:7a:5c:61:45:bf:ac:16: d3:4b:1c:bf:93:89:52:c9:e9:6a:0e:b4:8c:dc:53:d4:98:db: b7:66:5c:07:1b:7b:0f:e4:19:00:17:72:12:8d:b6:b1:e2:57: 4e:18:d0:28:94:d6:f1:2e:1d:d0:6d:61:d9:71:f1:90:f4:17: ef:46:e5:aa:1d:54:4b:55:b9:0c:08:6b:a1:f4:aa:c2:36:32: 63:32:2a:3a:0e:69:67:bd:db:4f:90:91:e6:4b:87:8a:66:90: ee:1f:b4:35:15:6b:44:90:7a:02:56:ce:be:c6:04:ca:5a:8f: b3:0e:eb:4c:d0:98:b9:2c:67:f5:b3:40:ae:a8:2d:ac:83:f6: 75:2d:82:60:30:26:07:a6:bb:6f:d7:fe:e7:d7:b4:84:0f:6b: 44:dc:15:3f:4f:7f:18:03:26:c4:72:a8:0a:72:4b:d2:6e:84: f7:a7:39:13:e5:b8:67:15:b4:c3:44:05:2c:a1:13:38:68:0f: 1f:2e:6b:35:eb:dc:76:06:3e:d5:0f:3e:b1:8d:24:31:78:ec: b5:0f:d7:76:83:47:bf:35:21:5d:f9:a1:0b:68:32:13:23:9f: e4:a3:69:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUwODIzMDYwNzIzWhcNMjUwODMwMDYwNzIzWjAYMRYwFAYD VQQDEw02OGE5NWE5Yi1kMTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnz2gsHc3KFSu+r/rEi8Tyn3nSkZL+kdATf4tkUaSEApYtt7GDKhGxq7xxt1h QMPMCcGlHEM+iMAOvViJRzr5GKHOx7h2AOIliAeUO2d+dz+KmOMS4AkGtHuKUR4P CtiLWu2S9rLSTf5oUwbqndWvoXzRGmMsi6OO0ZSmCauvzZJ3APBvZVVLMZwfVf0q dh4kNSre/CVRBbCKcUooJRJxSXXx4rq3rjCSJoSaP4lDudix4c6L4LxmMivhm3ZE FYbYbjThYFPg0F8U3cDEY3j5IRcnIc2gZ7bvMCqOO+wRUU1QIEnZjvp4P1iRRqFX Jr8i8tObPgi6sbaG3OTvD/Z+jQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLlK2TAT LQ0xupaCV1dbzAGuCHqvMB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBofIKyUQyD99eoC0kYCuLbsogD8a26qhypw7+ye3pcYUW/rBbTSxy/ k4lSyelqDrSM3FPUmNu3ZlwHG3sP5BkAF3ISjbax4ldOGNAolNbxLh3QbWHZcfGQ 9BfvRuWqHVRLVbkMCGuh9KrCNjJjMio6DmlnvdtPkJHmS4eKZpDuH7Q1FWtEkHoC Vs6+xgTKWo+zDutM0Ji5LGf1s0CuqC2sg/Z1LYJgMCYHprtv1/7n17SED2tE3BU/ T38YAybEcqgKckvSboT3pzkT5bhnFbTDRAUsoRM4aA8fLms169x2Bj7VDz6xjSQx eOy1D9d2g0e/NSFd+aELaDITI5/ko2ko -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:45 2025 by rpki-client