$ rpki-client -vvf rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft File: Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft (raw, json) Hash identifier: zraTv8RcZ9+dtz21vB+j9Oas8Pai4Ur0Eqs6C9/bB5Y= Subject key identifier: 7B:5F:78:F5:EC:25:C8:6F:2A:3E:B8:61:C7:0A:BD:C8:7D:44:67:BC Authority key identifier: 49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E Certificate issuer: /CN=A9194EF2/serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Certificate serial: 0D79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft Manifest number: 0D71 Signing time: Fri 22 Aug 2025 18:04:22 +0000 Manifest this update: Fri 22 Aug 2025 18:04:22 +0000 Manifest next update: Fri 29 Aug 2025 18:04:22 +0000 Files and hashes: 1: Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl (hash: CQzOdrIPYoiMNQT9vbVDjq3/L6wSJEUSIruPIs+x298=) 2: 1214EE40D2BF11E9A7F4EF1FC4F9AE02.roa (hash: kfnndHzaWyTnp8z7+y1i5jZZ9EYcGBwsAArn1r5+vLU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3449 (0xd79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194EF2, serialNumber=49C9E9E3227CD55AD29A213CBAA174785A165C7E Validity Not Before: Aug 22 18:04:22 2025 GMT Not After : Aug 29 18:04:22 2025 GMT Subject: CN=68a8b126-a3f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5f:ab:af:33:06:98:df:3d:07:ff:c7:f8:3d: b7:46:76:8b:0b:12:d4:91:7c:9f:32:59:79:9c:6f: ac:46:59:97:0e:5a:c9:50:0c:1b:6c:91:54:d6:04: 6c:44:b2:94:e6:89:08:df:c9:2f:40:8b:95:73:6c: 26:41:18:23:58:e3:52:43:00:d5:d6:1b:27:72:48: 2e:69:24:cb:66:ef:97:de:82:96:28:a0:66:44:dd: 0f:89:12:bb:c1:db:c8:40:65:f6:f4:92:01:25:d2: 02:08:98:e4:77:e7:a1:26:df:09:cb:e4:4b:5b:53: b9:ec:45:45:ca:6e:d9:78:6a:ab:7f:fe:af:7e:38: a5:f2:e4:3f:60:28:97:76:af:d6:4f:6f:ef:a2:7f: ff:fd:d5:60:26:6d:69:9d:75:b3:a7:e0:a5:ec:8e: b4:2c:09:b3:18:39:f2:84:6f:e0:69:1f:2a:99:07: 2e:33:76:28:61:b0:84:98:13:b4:f3:1e:1b:c3:8e: 7b:54:7a:c6:bc:d5:32:85:e0:35:55:82:5f:24:71: c1:0c:be:f4:47:19:bd:e1:9c:6c:70:6b:10:20:3b: c7:39:cf:93:2a:6c:c2:a2:ce:c7:9b:93:50:b5:74: 81:02:40:c2:59:3a:02:8c:01:ba:15:98:b2:67:49: 63:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:5F:78:F5:EC:25:C8:6F:2A:3E:B8:61:C7:0A:BD:C8:7D:44:67:BC X509v3 Authority Key Identifier: keyid:49:C9:E9:E3:22:7C:D5:5A:D2:9A:21:3C:BA:A1:74:78:5A:16:5C:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Scnp4yJ81VrSmiE8uqF0eFoWXH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194EF2/B6441EB6D2BD11E99A1D4B1DC4F9AE02/Scnp4yJ81VrSmiE8uqF0eFoWXH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:02:66:06:ae:79:4b:29:31:57:5a:76:1d:18:7e:cb:69:00: 5f:86:2a:cf:25:c5:01:99:d0:98:57:a4:47:ef:3f:59:c0:8a: e4:74:55:cc:20:63:d5:58:21:2d:a9:66:96:86:93:6c:a6:ef: 85:71:db:36:bb:74:34:87:6c:c6:6a:4e:93:ec:78:f5:25:b2: 00:ec:be:07:f0:ff:60:5f:9e:46:73:b2:48:d4:c7:38:97:4f: 7c:08:06:a5:bb:bc:78:3d:c7:3b:4b:39:6f:34:41:28:53:50: d8:a3:5f:42:51:b9:c4:45:ea:1a:84:46:00:13:3a:11:b9:e9: ab:c0:82:bb:49:db:e9:cd:2c:36:55:54:2c:04:89:3c:2c:ec: ea:90:3f:9e:4f:ad:e7:04:84:42:10:32:7b:26:fb:e4:6f:d5: e0:37:c8:37:a2:f4:c0:76:5e:5a:8c:05:cc:66:bf:b9:79:bf: 8d:5b:a9:18:78:68:0e:0f:69:d9:0a:eb:c1:1a:b7:9c:a6:f2: 19:bf:09:42:cc:4c:50:38:61:2d:b0:1e:a4:5b:75:5c:72:2c: 64:ca:dd:ce:32:96:f6:d8:bf:fb:08:ce:b5:2d:15:c9:17:13: ce:12:04:9c:a4:13:86:24:74:7b:5e:53:73:bb:9d:72:29:ec: 43:cd:2f:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFRjIxMTAvBgNVBAUTKDQ5QzlFOUUzMjI3Q0Q1NUFEMjlBMjEzQ0JBQTE3NDc4 NUExNjVDN0UwHhcNMjUwODIyMTgwNDIyWhcNMjUwODI5MTgwNDIyWjAYMRYwFAYD VQQDEw02OGE4YjEyNi1hM2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF+rrzMGmN89B//H+D23RnaLCxLUkXyfMll5nG+sRlmXDlrJUAwbbJFU1gRs RLKU5okI38kvQIuVc2wmQRgjWONSQwDV1hsnckguaSTLZu+X3oKWKKBmRN0PiRK7 wdvIQGX29JIBJdICCJjkd+ehJt8Jy+RLW1O57EVFym7ZeGqrf/6vfjil8uQ/YCiX dq/WT2/von///dVgJm1pnXWzp+Cl7I60LAmzGDnyhG/gaR8qmQcuM3YoYbCEmBO0 8x4bw457VHrGvNUyheA1VYJfJHHBDL70Rxm94ZxscGsQIDvHOc+TKmzCos7Hm5NQ tXSBAkDCWToCjAG6FZiyZ0ljEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtfePXs JchvKj64YccKvch9RGe8MB8GA1UdIwQYMBaAFEnJ6eMifNVa0pohPLqhdHhaFlx+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEVGMi9CNjQ0MUVCNkQy QkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFWclNtaUU4dXFGMGVGb1dY SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NjbnA0eUo4MVZyU21pRTh1cUYwZUZvV1hINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEVGMi9CNjQ0MUVCNkQyQkQxMUU5OUExRDRCMURDNEY5QUUwMi9TY25wNHlKODFW clNtaUU4dXFGMGVGb1dYSDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5AmYGrnlLKTFXWnYdGH7LaQBfhirPJcUBmdCYV6RH7z9ZwIrkdFXM IGPVWCEtqWaWhpNspu+Fcds2u3Q0h2zGak6T7Hj1JbIA7L4H8P9gX55Gc7JI1Mc4 l098CAalu7x4Pcc7SzlvNEEoU1DYo19CUbnEReoahEYAEzoRuemrwIK7SdvpzSw2 VVQsBIk8LOzqkD+eT63nBIRCEDJ7Jvvkb9XgN8g3ovTAdl5ajAXMZr+5eb+NW6kY eGgOD2nZCuvBGrecpvIZvwlCzExQOGEtsB6kW3Vccixkyt3OMpb22L/7CM61LRXJ FxPOEgScpBOGJHR7XlNzu51yKexDzS8J -----END CERTIFICATE-----Generated at Sun Aug 24 00:10:02 2025 by rpki-client