$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft File: 9lz9HPOxxajqYIcfo8NAYdtM84M.mft (raw, json) Hash identifier: 26GPMV2z7CVa40thvwfHjagUQaZ5VH2MGsqUdhspxiI= Subject key identifier: 31:3A:D8:21:54:4C:54:8C:AE:DB:38:8A:DB:43:D1:70:79:F0:25:72 Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Certificate serial: 0173 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft Manifest number: 0170 Signing time: Fri 18 Jul 2025 20:10:58 +0000 Manifest this update: Fri 18 Jul 2025 20:10:58 +0000 Manifest next update: Fri 25 Jul 2025 20:10:58 +0000 Files and hashes: 1: 9lz9HPOxxajqYIcfo8NAYdtM84M.crl (hash: oDK6S4T91MVnmFchEv2F0aPfDy4TB3JVANiHZbx+He4=) 2: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (hash: iTrEAAlkJw9OclXVQcOsLhF2OGcA/o+GNahTLZ1PRQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 371 (0x173) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Validity Not Before: Jul 18 20:10:58 2025 GMT Not After : Jul 25 20:10:58 2025 GMT Subject: CN=687aaa52-6db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:32:e7:ed:99:01:3c:2d:37:d8:9c:3a:2e:57: 49:d6:43:8a:a3:04:e4:4d:4e:b4:f5:e3:26:9a:d6: 8e:1e:74:9a:ed:fa:61:40:10:d6:9c:2c:3b:09:1e: 52:82:78:9d:97:2e:d9:8e:94:be:64:da:8e:d3:0f: 0f:a3:d2:4a:78:34:7c:99:1f:34:7c:b8:9f:1b:53: a5:cc:49:62:82:07:72:d6:55:53:bb:b1:fd:51:b1: 98:58:0c:54:0d:58:09:ba:55:65:eb:03:41:22:a6: 07:eb:16:a2:68:9a:69:6b:64:dd:9f:1c:19:df:2d: c5:a2:9d:19:53:61:b1:2b:c3:55:63:b3:d5:4d:91: 97:c1:3a:3b:f1:8b:0d:62:88:ff:64:6e:e4:1f:48: ff:e4:2f:b2:13:ab:69:d8:d3:bf:bc:9c:ee:de:7b: c2:3a:8a:6a:ec:fe:54:fc:23:cb:cf:36:35:21:ad: 7e:e7:39:10:44:cf:d6:67:a1:bf:86:8f:b0:f0:30: 65:eb:38:f5:24:1e:56:3b:7f:e1:13:c0:9d:39:55: a0:14:46:28:e2:48:2a:ff:78:9e:23:69:10:5c:76: 65:ff:73:08:4c:4f:ff:48:78:f7:b4:1a:91:d2:bf: 1c:aa:4d:6d:b9:36:23:3e:bb:e0:49:47:7c:7f:08: 23:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:3A:D8:21:54:4C:54:8C:AE:DB:38:8A:DB:43:D1:70:79:F0:25:72 X509v3 Authority Key Identifier: keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:05:5e:e7:1c:67:cd:f8:5f:10:2b:d7:1a:21:13:da:4d:84: 2c:de:03:98:8a:0c:21:c5:a8:d7:a7:22:9e:a6:ce:55:b6:8b: f6:d3:48:78:5e:c3:18:06:40:49:6f:46:0f:e3:d0:0f:c1:92: 30:14:21:8d:5a:f3:50:84:58:6c:43:f3:5c:e1:a9:2e:d3:54: f8:3f:e4:47:b1:62:35:9d:88:cd:1c:d6:8c:59:b9:89:9a:fd: 5d:ba:f2:97:72:38:2b:a6:e2:f5:fe:2e:c2:d0:63:05:84:ab: 89:dd:0f:89:31:4c:fc:84:a6:b1:3f:a6:30:ec:51:d6:c9:f9: 58:8e:5d:31:31:38:23:65:69:a5:0e:80:7f:84:8b:fc:be:a7: 76:27:a4:2b:b0:b0:d4:50:39:56:87:40:f8:08:e3:ea:10:a5: 75:b4:b4:11:30:de:37:dd:bc:ab:7e:b3:d7:e8:21:3e:b2:68: 09:f5:b2:a5:ec:7b:f1:a8:56:13:14:3f:13:b9:27:10:b4:2a: 26:8d:12:49:7a:f0:dd:09:3d:83:72:b9:23:07:6b:39:56:e5: 8d:e2:43:f6:bc:07:ec:08:5f:05:cb:36:ab:a1:14:c4:26:65: 02:ef:50:0f:dd:ea:f2:a7:aa:c2:b8:57:0f:f2:c2:d6:6e:99: c4:e0:8e:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKEY2NUNGRDFDRjNCMUM1QThFQTYwODcxRkEzQzM0MDYx REI0Q0YzODMwHhcNMjUwNzE4MjAxMDU4WhcNMjUwNzI1MjAxMDU4WjAYMRYwFAYD VQQDEw02ODdhYWE1Mi02ZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzLn7ZkBPC032Jw6LldJ1kOKowTkTU609eMmmtaOHnSa7fphQBDWnCw7CR5S gnidly7ZjpS+ZNqO0w8Po9JKeDR8mR80fLifG1OlzEliggdy1lVTu7H9UbGYWAxU DVgJulVl6wNBIqYH6xaiaJppa2TdnxwZ3y3Fop0ZU2GxK8NVY7PVTZGXwTo78YsN Yoj/ZG7kH0j/5C+yE6tp2NO/vJzu3nvCOopq7P5U/CPLzzY1Ia1+5zkQRM/WZ6G/ ho+w8DBl6zj1JB5WO3/hE8CdOVWgFEYo4kgq/3ieI2kQXHZl/3MITE//SHj3tBqR 0r8cqk1tuTYjPrvgSUd8fwgj8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDE62CFU TFSMrts4ittD0XB58CVyMB8GA1UdIwQYMBaAFPZc/RzzscWo6mCHH6PDQGHbTPOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9DRUU2ODgyMjM3 QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhhanFZSWNmbzhOQVlkdE04 NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsejlIUE94eGFqcVlJY2ZvOE5BWWR0TTg0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9DRUU2ODgyMjM3QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhh anFZSWNmbzhOQVlkdE04NE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeBV7nHGfN+F8QK9caIRPaTYQs3gOYigwhxajXpyKeps5Vtov200h4 XsMYBkBJb0YP49APwZIwFCGNWvNQhFhsQ/Nc4aku01T4P+RHsWI1nYjNHNaMWbmJ mv1duvKXcjgrpuL1/i7C0GMFhKuJ3Q+JMUz8hKaxP6Yw7FHWyflYjl0xMTgjZWml DoB/hIv8vqd2J6QrsLDUUDlWh0D4COPqEKV1tLQRMN433byrfrPX6CE+smgJ9bKl 7HvxqFYTFD8TuScQtComjRJJevDdCT2DcrkjB2s5VuWN4kP2vAfsCF8FyzaroRTE JmUC71AP3eryp6rCuFcP8sLWbpnE4I7M -----END CERTIFICATE-----Generated at Sun Jul 20 15:17:04 2025 by rpki-client