$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft File: A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json) Hash identifier: mcOqiQYYM04IdViUJEmmtlPIF+ipsIKjI3SexvW72Sw= Subject key identifier: C2:A8:15:68:19:DF:3A:3D:0E:90:B1:5C:FA:38:9B:7D:AD:E2:4E:04 Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 Certificate issuer: /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Certificate serial: 08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft Manifest number: 07 Signing time: Sat 23 Aug 2025 08:23:09 +0000 Manifest this update: Sat 23 Aug 2025 08:23:09 +0000 Manifest next update: Sat 30 Aug 2025 08:23:08 +0000 Files and hashes: 1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: a6G0+EYbnsFgYiXsP+atJWRfmGzzgzH/uZhwnm/X2oQ=) 2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: Top1RS38Q6RG/Bo0KeriCxYaYwIm8AI46xZdJa/NP8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Validity Not Before: Aug 23 08:23:09 2025 GMT Not After : Aug 30 08:23:08 2025 GMT Subject: CN=68a97a6d-eb03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a4:63:9b:33:6b:b1:26:22:ec:6f:5c:8f:6e: 57:c8:9a:7a:08:31:5b:9c:e3:83:cd:15:88:78:49: b0:61:c7:84:2e:c9:54:5a:47:60:da:a4:21:fd:e3: de:a7:af:06:7a:1b:0f:19:e8:15:f9:22:4e:04:b2: 2d:d1:c3:6b:2b:0c:2d:f7:d7:6f:b1:9d:c2:e0:93: fd:cd:2e:b3:0d:ee:f2:b0:ed:23:44:f7:8a:0a:0e: 65:a0:7b:36:4f:cd:25:eb:f1:41:41:19:c2:48:16: 67:8b:e1:25:f7:7a:3a:82:f9:d0:3c:2e:4e:75:bf: c8:ec:1a:eb:1a:cb:78:7b:a4:be:a3:03:56:1e:3b: 9c:b8:75:15:b6:cd:f7:80:fc:4e:bc:d9:8a:ba:41: e3:d0:d7:2f:da:a4:78:e1:14:c9:3c:0c:84:00:e4: 57:6a:04:05:3a:a1:c8:81:18:1e:cb:1c:f8:6a:48: 65:19:81:a6:30:b0:7b:8b:8f:0c:5f:a9:b2:a3:03: ef:8d:07:95:2a:c7:25:96:7d:db:e6:21:12:11:e1: 9f:3f:39:8d:f0:9b:82:9e:d1:6b:9b:1b:08:e6:18: 21:1c:b3:a3:08:2b:d4:13:1f:18:38:45:89:99:b3: 01:e8:20:3f:9a:9f:de:80:22:50:c0:7d:ed:70:11: b2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A8:15:68:19:DF:3A:3D:0E:90:B1:5C:FA:38:9B:7D:AD:E2:4E:04 X509v3 Authority Key Identifier: keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:87:6b:eb:09:59:54:bb:fc:1c:d7:35:f3:80:af:6c:71:c6: f9:ec:64:b4:f1:98:c3:c4:90:3f:4d:98:ba:a5:5a:90:61:bb: 9a:70:22:59:48:33:f5:e7:9b:a5:4c:fe:c6:59:70:60:36:29: 7d:80:62:02:ec:8f:c3:d7:15:02:69:e0:c7:62:ba:dd:18:21: 49:a1:bb:8d:4a:39:58:8e:ee:a5:67:f5:38:54:7c:15:02:c3: 20:be:21:eb:6f:9c:1d:d8:7a:2b:ae:82:a4:1c:4e:e6:e4:52: ea:99:40:a3:99:64:94:0a:54:75:18:49:ed:31:29:c3:e2:b9: 4f:41:84:87:8c:4f:a4:30:e2:ab:40:f7:50:ff:1f:ff:f1:11: 4d:c1:bc:cc:2d:d2:d3:a9:d6:39:9c:88:72:49:87:66:93:fc: 3a:f0:89:60:89:11:7c:b8:af:08:c4:37:fb:fe:5e:31:8d:f6: 4b:d7:e7:6c:fa:47:a0:3e:39:15:f6:7f:f8:94:4b:d1:a7:d7: e8:71:d4:0d:df:81:e4:f8:14:3d:47:81:a7:8f:5e:fd:d6:c5: 80:03:0e:a1:bd:eb:0d:56:03:ca:29:55:f7:e7:a8:c4:af:a2: 13:e4:72:49:ed:e2:71:af:d8:e3:6c:72:eb:e3:81:42:94:22: fb:ec:6e:fe -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTAxRTExMC8GA1UEBRMoMDNEODc0RkYyRjVEMzIwOEU3RUI2MjVBNzczN0ZDRDQ0 Q0VFMkFDMjAeFw0yNTA4MjMwODIzMDlaFw0yNTA4MzAwODIzMDhaMBgxFjAUBgNV BAMTDTY4YTk3YTZkLWViMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3pGObM2uxJiLsb1yPblfImnoIMVuc44PNFYh4SbBhx4QuyVRaR2DapCH9496n rwZ6Gw8Z6BX5Ik4Esi3Rw2srDC3312+xncLgk/3NLrMN7vKw7SNE94oKDmWgezZP zSXr8UFBGcJIFmeL4SX3ejqC+dA8Lk51v8jsGusay3h7pL6jA1YeO5y4dRW2zfeA /E682Yq6QePQ1y/apHjhFMk8DIQA5FdqBAU6ociBGB7LHPhqSGUZgaYwsHuLjwxf qbKjA++NB5UqxyWWfdvmIRIR4Z8/OY3wm4Ke0WubGwjmGCEcs6MIK9QTHxg4RYmZ swHoID+an96AIlDAfe1wEbLjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwqgVaBnf Oj0OkLFc+jibfa3iTgQwHwYDVR0jBBgwFoAUA9h0/y9dMgjn62Jadzf81EzuKsIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5MDFFL0RFMkQ2NEVBNzhE QTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdqbjYySmFkemY4MUV6dUtz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQTloMF95OWRNZ2puNjJKYWR6ZjgxRXp1S3NJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 MDFFL0RFMkQ2NEVBNzhEQTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdq bjYySmFkemY4MUV6dUtzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ6Ha+sJWVS7/BzXNfOAr2xxxvnsZLTxmMPEkD9NmLqlWpBhu5pwIllI M/Xnm6VM/sZZcGA2KX2AYgLsj8PXFQJp4Mdiut0YIUmhu41KOViO7qVn9ThUfBUC wyC+IetvnB3YeiuugqQcTubkUuqZQKOZZJQKVHUYSe0xKcPiuU9BhIeMT6Qw4qtA 91D/H//xEU3BvMwt0tOp1jmciHJJh2aT/DrwiWCJEXy4rwjEN/v+XjGN9kvX52z6 R6A+ORX2f/iUS9Gn1+hx1A3fgeT4FD1HgaePXv3WxYADDqG96w1WA8opVffnqMSv ohPkcknt4nGv2ONscuvjgUKUIvvsbv4= -----END CERTIFICATE-----Generated at Sat Aug 23 10:43:30 2025 by rpki-client