$ rpki-client -vvf rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.mft File: 9DRcMU1uvt60X-B1X4_-rPNjy4o.mft (raw, json) Hash identifier: EGxVYSnx9yFt0bqDjgZGU/IXyz1wYT/zVoSioD+6JJA= Subject key identifier: AA:35:67:F1:38:09:BB:18:B7:BC:68:5C:3C:46:AD:71:92:DA:44:EE Authority key identifier: F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A Certificate issuer: /CN=A9158D75/serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Certificate serial: 0CD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.mft Manifest number: 0CBD Signing time: Fri 18 Jul 2025 18:18:00 +0000 Manifest this update: Fri 18 Jul 2025 18:17:59 +0000 Manifest next update: Fri 25 Jul 2025 18:17:59 +0000 Files and hashes: 1: 9DRcMU1uvt60X-B1X4_-rPNjy4o.crl (hash: le2A7I0lqGrVlXRcEitelMpIhTh/CgHmaQhWQVvHdKM=) 2: B4B32D509EDD11EC85676D09C4F9AE02.roa (hash: HUKn8TCAiBNnvKqCcCok66Nsu0wRIivvDnUfIyEmyBw=) 3: 2477AFC6D56511EDB2407741C4F9AE02.roa (hash: +UszTokGWITuaKodHVqtXowS/kPpAyLOoDwxxniGhh8=) 4: B36E1C029EDD11EC85676D09C4F9AE02.roa (hash: va4jKyvaWBHSOXW9lhNLFk3dXPhiBg3Z1DqKqXpZves=) 5: B5EA3B509EDD11EC85676D09C4F9AE02.roa (hash: PI+4io6zs54SvjfIWW1YmDzNzGjU5q2yfd6LaVWJgGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3289 (0xcd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158D75, serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Validity Not Before: Jul 18 18:17:59 2025 GMT Not After : Jul 25 18:17:59 2025 GMT Subject: CN=687a8fd8-3f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9b:c7:8b:bf:9b:d5:b7:9d:82:bc:14:aa:23: 1b:55:c9:ab:7e:5a:6c:70:68:8e:01:b1:cc:66:ae: 00:c9:35:b6:02:0e:a3:e9:e2:3f:45:ef:70:77:aa: d2:89:97:63:20:99:47:71:b2:f7:67:54:21:88:b4: 1c:88:d1:5a:a2:38:96:4e:3e:fa:b8:1f:fa:ce:b1: ea:47:33:93:80:23:ad:1e:66:9b:da:2a:c3:d5:55: c8:0e:2d:7e:dc:da:ab:6e:73:a9:4b:69:dc:ee:21: d9:67:f6:56:0b:25:46:6c:01:4e:e4:91:59:72:36: 2a:a8:b7:dc:f4:22:7a:ed:24:ee:51:6b:ed:11:26: ed:46:20:aa:c5:c3:46:17:cd:f6:85:ca:e8:84:c5: 76:6a:24:04:99:00:a8:06:6d:68:a1:4f:e2:18:89: fd:65:59:c3:ff:47:00:5b:75:19:11:c9:f1:6d:8d: 56:ac:20:cc:7e:31:85:91:1e:98:73:3b:c9:ad:c4: e6:cc:42:a1:1e:60:ab:89:6f:aa:4a:dc:84:34:a7: dc:94:f8:69:a6:24:7a:da:9e:37:7a:5b:18:b1:75: a5:af:f0:2a:09:38:7a:71:b7:7a:3d:b1:30:d3:6a: 72:1b:bb:f4:24:29:17:bc:6f:0e:05:e8:27:cd:0a: 66:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:35:67:F1:38:09:BB:18:B7:BC:68:5C:3C:46:AD:71:92:DA:44:EE X509v3 Authority Key Identifier: keyid:F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:26:b1:58:e5:63:9f:80:66:f9:37:59:8d:cb:89:a6:69:7a: 0f:a9:03:9f:97:77:03:f3:f1:34:43:0f:72:74:49:c6:72:fb: 9a:b0:0e:03:5e:72:ad:f9:43:01:34:d5:28:56:e2:51:8d:19: 20:51:79:05:23:fe:ad:aa:03:09:88:ad:5e:cb:67:5f:1a:07: e0:f1:31:e4:3e:82:e1:0a:65:f0:93:57:79:05:82:12:dd:64: 69:32:62:1a:43:6b:59:98:3d:3f:e3:04:1c:09:17:05:66:26: b0:22:81:22:91:5f:0b:7d:d4:77:ec:4f:cb:8e:59:50:64:04: 5b:e4:de:e9:4f:71:59:49:a3:0c:46:64:60:90:2e:05:f4:aa: 50:30:14:df:c5:69:0e:75:12:b4:69:dd:3a:eb:e1:55:04:27: 03:a2:b0:35:b1:7a:02:27:cc:4f:8f:6b:a2:64:f9:06:2e:e6: c2:0c:4b:c2:4c:7a:60:57:d8:dd:f9:43:79:7c:17:29:1a:f8: e4:df:64:cb:b2:26:a4:fc:5a:8b:fb:b1:61:c3:f6:40:79:9f: d0:a9:dd:34:7c:dc:3d:c7:ac:a1:a9:0d:d0:c0:f0:34:04:7a: 12:6a:44:46:98:b9:61:86:ea:83:af:e3:4c:f9:ca:c2:3d:fb: fc:2e:ad:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDNkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThENzUxMTAvBgNVBAUTKEY0MzQ1QzMxNEQ2RUJFREVCNDVGRTA3NTVGOEZGRUFD RjM2M0NCOEEwHhcNMjUwNzE4MTgxNzU5WhcNMjUwNzI1MTgxNzU5WjAYMRYwFAYD VQQDEw02ODdhOGZkOC0zZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJvHi7+b1bedgrwUqiMbVcmrflpscGiOAbHMZq4AyTW2Ag6j6eI/Re9wd6rS iZdjIJlHcbL3Z1QhiLQciNFaojiWTj76uB/6zrHqRzOTgCOtHmab2irD1VXIDi1+ 3NqrbnOpS2nc7iHZZ/ZWCyVGbAFO5JFZcjYqqLfc9CJ67STuUWvtESbtRiCqxcNG F832hcrohMV2aiQEmQCoBm1ooU/iGIn9ZVnD/0cAW3UZEcnxbY1WrCDMfjGFkR6Y czvJrcTmzEKhHmCriW+qStyENKfclPhppiR62p43elsYsXWlr/AqCTh6cbd6PbEw 02pyG7v0JCkXvG8OBegnzQpmpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKo1Z/E4 CbsYt7xoXDxGrXGS2kTuMB8GA1UdIwQYMBaAFPQ0XDFNbr7etF/gdV+P/qzzY8uK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEQ3NS83NDM0OTQwRUYy NUUxMUU5OTEzMEIxODFDNEY5QUUwMi85RFJjTVUxdXZ0NjBYLUIxWDRfLXJQTmp5 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlEUmNNVTF1dnQ2MFgtQjFYNF8tclBOank0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEQ3NS83NDM0OTQwRUYyNUUxMUU5OTEzMEIxODFDNEY5QUUwMi85RFJjTVUxdXZ0 NjBYLUIxWDRfLXJQTmp5NG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXJrFY5WOfgGb5N1mNy4mmaXoPqQOfl3cD8/E0Qw9ydEnGcvuasA4D XnKt+UMBNNUoVuJRjRkgUXkFI/6tqgMJiK1ey2dfGgfg8THkPoLhCmXwk1d5BYIS 3WRpMmIaQ2tZmD0/4wQcCRcFZiawIoEikV8LfdR37E/LjllQZARb5N7pT3FZSaMM RmRgkC4F9KpQMBTfxWkOdRK0ad066+FVBCcDorA1sXoCJ8xPj2uiZPkGLubCDEvC THpgV9jd+UN5fBcpGvjk32TLsiak/FqL+7Fhw/ZAeZ/Qqd00fNw9x6yhqQ3QwPA0 BHoSakRGmLlhhuqDr+NM+crCPfv8Lq3I -----END CERTIFICATE-----Generated at Sun Jul 20 15:18:39 2025 by rpki-client