$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft File: fd08hfmnH2JfzMEMqDHld3CbTz8.mft (raw, json) Hash identifier: mKbR1jqTsn4oakVnUZe3oK8nqsnv8jylBJBWi6zg5xQ= Subject key identifier: E9:FD:3E:25:90:61:E3:B0:3E:C0:BC:B7:C1:A0:56:6C:C4:E9:AB:FA Authority key identifier: 7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F Certificate issuer: /CN=A9167B41/serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Certificate serial: 030C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft Manifest number: 0308 Signing time: Sat 19 Jul 2025 01:38:49 +0000 Manifest this update: Sat 19 Jul 2025 01:38:48 +0000 Manifest next update: Sat 26 Jul 2025 01:38:48 +0000 Files and hashes: 1: fd08hfmnH2JfzMEMqDHld3CbTz8.crl (hash: PyR0LJIQ769WjAojP9gFOwxCfeb9a9R9r5cHdvBkb8g=) 2: D24B4D42DF3E11EC83CCFE1EC4F9AE02.roa (hash: Cq6mdfvGMSMUVVy722vXaVlEzZ5zjpH7LRI1e0MUF1A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B41, serialNumber=7DDD3C85F9A71F625FCCC10CA831E577709B4F3F Validity Not Before: Jul 19 01:38:48 2025 GMT Not After : Jul 26 01:38:48 2025 GMT Subject: CN=687af729-3c4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c8:47:15:50:cc:13:78:22:e3:e1:cb:ba:02: 51:a5:bb:71:9f:c1:ab:14:94:4e:e4:80:7b:e8:02: 65:42:1e:95:4a:61:13:53:32:e4:71:9f:7d:15:a6: fb:de:e3:8f:30:cd:54:63:9c:f5:99:f2:0e:c3:c9: 6a:55:ba:13:f9:71:75:91:4c:c7:ab:88:c8:b0:90: 6c:35:99:7a:ee:e1:9d:e7:be:97:ac:7f:6f:4b:ec: 5c:75:5b:2a:30:9a:39:8a:ea:8b:54:54:5f:8c:74: 0e:22:50:a6:50:42:a0:a6:97:a4:3a:aa:05:9f:1b: b1:95:19:8a:bd:22:61:ff:2e:90:2b:be:a8:4d:67: 91:69:ae:4a:c5:c3:b1:9a:35:59:4a:ca:b9:91:81: e3:4c:dd:f3:86:58:e5:38:17:b7:59:48:ab:06:a8: d7:e8:6c:22:5e:66:47:e5:75:d4:bb:77:ec:1c:aa: 09:ec:7e:b6:6d:4f:60:27:e6:e7:97:ef:55:e8:21: 63:47:9d:b7:0f:74:b2:d8:5e:84:b2:22:b8:c4:1b: 36:9a:38:ef:6f:3e:f6:55:cc:a7:3e:ac:6b:ee:ed: 38:27:7b:a5:fa:81:98:d8:ff:ab:2f:a0:de:33:9b: 3e:78:9e:75:ba:3d:fd:7c:aa:ea:f7:72:71:8a:af: 27:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FD:3E:25:90:61:E3:B0:3E:C0:BC:B7:C1:A0:56:6C:C4:E9:AB:FA X509v3 Authority Key Identifier: keyid:7D:DD:3C:85:F9:A7:1F:62:5F:CC:C1:0C:A8:31:E5:77:70:9B:4F:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fd08hfmnH2JfzMEMqDHld3CbTz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B41/E790F9AADF3811ECBC8C9A7FC4F9AE02/fd08hfmnH2JfzMEMqDHld3CbTz8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:8e:e0:bd:1d:1f:15:26:75:05:c5:f1:03:f2:fa:61:48:93: 52:80:81:66:7e:a8:34:14:96:3f:c3:93:8d:21:64:94:e4:f3: ba:7b:11:ab:01:03:d7:52:23:91:ce:01:e1:75:8c:ae:a3:26: 6a:4b:d2:96:18:23:52:19:ac:df:38:08:f1:dc:2c:8e:c2:7d: 11:ca:56:75:27:5e:2e:ef:9a:d6:cc:a8:dc:b7:79:98:7d:33: 88:56:3d:e6:e6:8a:cf:17:16:01:cf:64:88:1a:db:38:64:76: d1:5d:fd:76:3e:c6:10:98:f2:d5:8c:81:61:47:f0:47:15:47: c6:13:2f:25:bd:8d:fb:85:da:f5:ae:ec:6e:a8:c3:a6:aa:02: 08:62:7a:26:7b:57:97:97:b7:50:c6:f5:53:42:0c:87:27:dc: 90:fe:12:14:c3:b2:a3:41:dd:4c:c5:0d:64:0e:e8:c0:db:ef: c9:2b:a5:d5:6a:11:f0:27:14:9a:1e:2f:72:9a:01:55:fa:0e: 72:e1:60:b7:0a:68:9f:12:1f:4b:45:b2:d8:9c:d2:f2:89:ef: b7:2b:85:cf:67:34:5b:0d:42:77:99:7e:5d:0c:ab:47:7d:6b: 3f:3d:3c:28:6f:db:9b:0e:36:39:52:99:96:f6:96:7a:be:ab: 10:9b:87:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNDExMTAvBgNVBAUTKDdEREQzQzg1RjlBNzFGNjI1RkNDQzEwQ0E4MzFFNTc3 NzA5QjRGM0YwHhcNMjUwNzE5MDEzODQ4WhcNMjUwNzI2MDEzODQ4WjAYMRYwFAYD VQQDEw02ODdhZjcyOS0zYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq8hHFVDME3gi4+HLugJRpbtxn8GrFJRO5IB76AJlQh6VSmETUzLkcZ99Fab7 3uOPMM1UY5z1mfIOw8lqVboT+XF1kUzHq4jIsJBsNZl67uGd576XrH9vS+xcdVsq MJo5iuqLVFRfjHQOIlCmUEKgppekOqoFnxuxlRmKvSJh/y6QK76oTWeRaa5KxcOx mjVZSsq5kYHjTN3zhljlOBe3WUirBqjX6GwiXmZH5XXUu3fsHKoJ7H62bU9gJ+bn l+9V6CFjR523D3Sy2F6EsiK4xBs2mjjvbz72VcynPqxr7u04J3ul+oGY2P+rL6De M5s+eJ51uj39fKrq93Jxiq8nUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOn9PiWQ YeOwPsC8t8GgVmzE6av6MB8GA1UdIwQYMBaAFH3dPIX5px9iX8zBDKgx5Xdwm08/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I0MS9FNzkwRjlBQURG MzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgySmZ6TUVNcURIbGQzQ2JU ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZkMDhoZm1uSDJKZnpNRU1xREhsZDNDYlR6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0I0MS9FNzkwRjlBQURGMzgxMUVDQkM4QzlBN0ZDNEY5QUUwMi9mZDA4aGZtbkgy SmZ6TUVNcURIbGQzQ2JUejgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFjuC9HR8VJnUFxfED8vphSJNSgIFmfqg0FJY/w5ONIWSU5PO6exGr AQPXUiORzgHhdYyuoyZqS9KWGCNSGazfOAjx3CyOwn0RylZ1J14u75rWzKjct3mY fTOIVj3m5orPFxYBz2SIGts4ZHbRXf12PsYQmPLVjIFhR/BHFUfGEy8lvY37hdr1 ruxuqMOmqgIIYnome1eXl7dQxvVTQgyHJ9yQ/hIUw7KjQd1MxQ1kDujA2+/JK6XV ahHwJxSaHi9ymgFV+g5y4WC3CmifEh9LRbLYnNLyie+3K4XPZzRbDUJ3mX5dDKtH fWs/PTwob9ubDjY5UpmW9pZ6vqsQm4cI -----END CERTIFICATE-----Generated at Sun Jul 20 11:06:45 2025 by rpki-client