$ rpki-client -vvf rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft File: racwBjpGGMJtFVQ1gZU7AYX9nIU.mft (raw, json) Hash identifier: spPbLOWm8SEOTE5BSZyLTFb3hmeZ9pe3ImBxD02DU6E= Subject key identifier: 00:66:F4:FA:1C:45:DB:2F:31:67:C6:81:D4:55:F1:62:A9:5A:4A:B2 Authority key identifier: AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 Certificate issuer: /CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Certificate serial: 0769 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft Manifest number: 12AD Signing time: Fri 22 Aug 2025 19:15:19 +0000 Manifest this update: Fri 22 Aug 2025 19:15:19 +0000 Manifest next update: Fri 29 Aug 2025 19:15:19 +0000 Files and hashes: 1: racwBjpGGMJtFVQ1gZU7AYX9nIU.crl (hash: OMXXrN5+cmdLsNOm4gdeazW5ZNzWNJbMnEU7zCW2JzE=) 2: 84DF7DDE361211EBACEF8647C4F9AE02.roa (hash: 3j6fcjarkwTsrFF+jI5l1fkUVOMv+A+fXywGLnEk9ME=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:15:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1897 (0x769) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199231, serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Validity Not Before: Aug 22 19:15:19 2025 GMT Not After : Aug 29 19:15:19 2025 GMT Subject: CN=68a8c1c7-a133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d6:01:b3:8e:bc:31:8e:ec:d1:8f:99:93:9b: 12:9c:2d:bd:89:ba:d6:c1:c1:32:ea:f4:b7:b1:a3: f7:f3:b9:2e:02:59:02:fb:b3:8d:56:4e:1f:00:7d: 0f:90:e4:59:a2:0a:7b:6c:f0:12:70:db:03:44:57: 66:07:2e:ad:ca:8a:37:5b:56:4e:d4:70:24:3c:b4: 7f:6f:40:d1:c2:70:70:d2:01:64:70:34:b4:4a:a8: ea:4a:fd:a3:28:69:76:96:8c:d9:44:e5:9c:18:c7: 28:cb:80:f3:5a:0c:ea:7f:56:06:54:1a:91:ff:c0: 82:43:bc:17:a2:c0:65:6f:75:67:ca:25:2d:73:24: 95:60:b3:b5:bc:2f:15:cd:05:e9:bd:cd:a1:c8:ec: 3f:16:f7:5b:3a:90:f1:f5:eb:c6:a8:db:cc:51:07: c2:72:7a:9c:93:20:78:90:d4:d2:f9:94:dd:05:f1: 8a:82:3d:3f:62:ee:b8:4d:32:b1:82:bc:88:68:88: e8:5b:4a:7e:b4:43:6a:2e:58:e5:1a:e6:ac:2d:4d: 77:d6:a0:60:78:40:3b:d2:f5:5f:91:b3:39:d2:1b: c6:b1:4e:b9:a3:02:51:b6:3b:f2:ce:49:5f:12:2c: 2e:b2:9d:c9:0c:ef:a1:bf:34:a2:f9:7d:54:f9:c9: 09:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:66:F4:FA:1C:45:DB:2F:31:67:C6:81:D4:55:F1:62:A9:5A:4A:B2 X509v3 Authority Key Identifier: keyid:AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f6:4b:84:b6:0a:09:d3:a6:de:00:64:47:7d:97:6d:47:92: 81:1c:ec:26:80:aa:1e:9c:a3:62:9d:33:a9:32:53:00:7c:81: 0d:9a:79:c3:07:60:09:c7:58:e6:f4:01:ef:a9:4b:52:e5:50: 7b:4b:74:12:79:42:a9:c3:3e:cf:3d:79:59:d2:82:ab:56:61: 0d:a4:86:5e:0f:7a:f2:08:b6:38:06:2e:9f:ca:2f:e3:3e:65: 82:5b:26:f9:eb:b7:ff:6d:08:c5:58:0d:0d:7e:d9:99:95:38: b5:a3:fb:d3:ba:d1:1f:a7:d7:bd:55:2d:47:41:61:d0:bb:09: 12:c2:2a:65:68:34:5d:7c:40:d9:37:4f:1d:b5:5a:78:d0:7e: b6:77:51:e7:f4:7d:b2:b9:72:4c:5d:f3:89:3e:86:28:f0:96: 8a:ef:b9:ed:d7:82:7c:9d:f6:96:31:49:ab:a8:4c:9a:bc:ac: 46:44:13:ad:11:74:a8:27:73:7c:59:78:36:d4:e3:c6:15:05: 58:fa:5e:6e:81:50:76:d6:f9:f7:39:90:1a:1a:41:4e:12:2f: f3:ca:51:e1:a1:e1:4a:9f:3c:c3:26:38:8f:82:22:95:0b:3a: 8b:8d:9b:b3:90:d5:b8:0f:d6:91:e8:ec:e1:ee:c2:63:b2:3d: ac:ea:4d:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyMzExMTAvBgNVBAUTKEFEQTczMDA2M0E0NjE4QzI2RDE1NTQzNTgxOTUzQjAx ODVGRDlDODUwHhcNMjUwODIyMTkxNTE5WhcNMjUwODI5MTkxNTE5WjAYMRYwFAYD VQQDEw02OGE4YzFjNy1hMTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tYBs468MY7s0Y+Zk5sSnC29ibrWwcEy6vS3saP387kuAlkC+7ONVk4fAH0P kORZogp7bPAScNsDRFdmBy6tyoo3W1ZO1HAkPLR/b0DRwnBw0gFkcDS0SqjqSv2j KGl2lozZROWcGMcoy4DzWgzqf1YGVBqR/8CCQ7wXosBlb3VnyiUtcySVYLO1vC8V zQXpvc2hyOw/FvdbOpDx9evGqNvMUQfCcnqckyB4kNTS+ZTdBfGKgj0/Yu64TTKx gryIaIjoW0p+tENqLljlGuasLU131qBgeEA70vVfkbM50hvGsU65owJRtjvyzklf Eiwusp3JDO+hvzSi+X1U+ckJmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABm9Poc RdsvMWfGgdRV8WKpWkqyMB8GA1UdIwQYMBaAFK2nMAY6RhjCbRVUNYGVOwGF/ZyF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTIzMS8wOEZEQ0Q1MDND ODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dNSnRGVlExZ1pVN0FZWDlu SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhY3dCanBHR01KdEZWUTFnWlU3QVlYOW5JVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTIzMS8wOEZEQ0Q1MDNDODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dN SnRGVlExZ1pVN0FZWDluSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB79kuEtgoJ06beAGRHfZdtR5KBHOwmgKoenKNinTOpMlMAfIENmnnD B2AJx1jm9AHvqUtS5VB7S3QSeUKpwz7PPXlZ0oKrVmENpIZeD3ryCLY4Bi6fyi/j PmWCWyb567f/bQjFWA0NftmZlTi1o/vTutEfp9e9VS1HQWHQuwkSwiplaDRdfEDZ N08dtVp40H62d1Hn9H2yuXJMXfOJPoYo8JaK77nt14J8nfaWMUmrqEyavKxGRBOt EXSoJ3N8WXg21OPGFQVY+l5ugVB21vn3OZAaGkFOEi/zylHhoeFKnzzDJjiPgiKV CzqLjZuzkNW4D9aR6Ozh7sJjsj2s6k3o -----END CERTIFICATE-----Generated at Sun Aug 24 06:35:09 2025 by rpki-client