$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft File: ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json) Hash identifier: R73z3z15Gc5tRBRR64YBEKsYt38XWAZL37UhV+Y319I= Subject key identifier: 4E:62:17:11:02:53:42:69:81:9B:60:01:DC:95:80:20:E1:48:68:3A Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 0829 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft Manifest number: 0822 Signing time: Thu 04 Sep 2025 21:05:23 +0000 Manifest this update: Thu 04 Sep 2025 21:05:23 +0000 Manifest next update: Thu 11 Sep 2025 21:05:23 +0000 Files and hashes: 1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: LGK4XOPK06dOj92tb55yXn+DhAjX7ASDAZepyV7MNMU=) 2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: fA68vPB23i/OAo2Tlmrq8T3cX2gqQgOTyj+Ul9pJg/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 21:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2089 (0x829) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812, serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: Sep 4 21:05:23 2025 GMT Not After : Sep 11 21:05:23 2025 GMT Subject: CN=68b9ff13-3c38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:62:e0:10:3f:3e:a9:ae:1f:8d:b1:df:79:3f: 04:b5:33:17:3a:10:51:ea:be:2d:30:7a:a5:0c:2d: f2:c3:b4:29:17:e5:3a:e8:ca:8d:e3:c6:38:1b:db: fd:90:3a:65:1e:e9:d4:ab:4f:e6:09:dd:ec:c4:3f: c2:42:80:4f:7a:12:18:41:66:16:14:db:9a:f1:ad: 9c:9c:20:9f:c5:27:66:e6:01:d0:d0:98:71:93:2d: d5:a7:27:0b:12:cc:21:eb:49:76:d5:85:06:b8:5d: 41:06:56:77:5f:86:69:e0:a0:b8:41:3d:ff:98:57: 8d:1b:00:d2:af:3e:69:d8:d6:42:bf:13:87:36:4b: 3b:46:d2:9b:a3:67:26:90:17:9a:6b:d4:38:f1:ef: 6c:89:4f:e7:a4:9d:90:ec:af:26:82:12:25:c3:d7: 26:4b:a9:54:a8:80:50:59:e6:e9:fd:3a:f4:e6:8e: 0d:0c:c6:83:9d:23:fe:36:43:85:13:4c:a2:0a:19: 4b:4a:64:22:ef:7f:23:6a:99:22:da:1f:08:57:15: 4b:71:53:29:87:c2:f0:18:c7:33:59:f3:eb:44:b4: 94:56:d9:a7:1a:3e:90:29:27:84:6b:a7:f1:61:06: 30:4f:0e:72:9b:0b:ba:bb:7f:ce:c2:a9:38:d0:ad: 0a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:62:17:11:02:53:42:69:81:9B:60:01:DC:95:80:20:E1:48:68:3A X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:4b:57:65:28:af:4a:11:ff:2b:2f:0d:25:57:a4:55:b5:1f: 04:f6:88:d8:f6:5b:8c:5a:50:95:c3:e0:66:bf:e4:31:ac:9c: 2f:54:b8:12:c7:e0:f5:79:9a:75:09:5b:70:71:1e:f5:7d:3e: fc:c3:45:11:cf:b0:36:3b:46:89:4a:3f:21:e7:f0:47:08:61: 9b:3e:80:94:0b:8b:6d:b8:9e:21:c9:d2:92:2e:05:53:c2:2c: cf:55:e9:16:44:ed:14:a1:2d:aa:81:b9:62:b7:ab:99:4f:4d: a6:c3:a9:9a:60:7d:79:cb:af:cb:f7:9b:d6:2c:a3:fd:ee:90: 2f:22:a2:19:83:65:5c:5f:1c:90:af:b1:4e:4d:2a:70:e1:ed: 96:61:25:30:99:66:b9:49:b2:78:b7:71:86:90:b5:fe:c4:a4: d8:8e:01:8f:6b:a6:d8:d4:a9:b4:8d:e7:85:4d:4d:12:72:db: 7b:e3:4b:59:27:78:3e:2b:73:5c:0f:2f:1f:39:19:6e:2c:82: 27:f3:5f:59:60:3b:ff:dd:37:f1:9e:c3:87:5d:0b:ef:81:6c: 80:7e:68:b9:05:08:3e:14:db:66:f2:64:10:67:3c:75:ba:f2: d0:a8:a5:eb:b6:e0:ec:a0:0f:f1:d5:9d:ad:13:4b:f8:16:fa: b1:02:04:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjUwOTA0MjEwNTIzWhcNMjUwOTExMjEwNTIzWjAYMRYwFAYD VQQDEw02OGI5ZmYxMy0zYzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymLgED8+qa4fjbHfeT8EtTMXOhBR6r4tMHqlDC3yw7QpF+U66MqN48Y4G9v9 kDplHunUq0/mCd3sxD/CQoBPehIYQWYWFNua8a2cnCCfxSdm5gHQ0Jhxky3VpycL Eswh60l21YUGuF1BBlZ3X4Zp4KC4QT3/mFeNGwDSrz5p2NZCvxOHNks7RtKbo2cm kBeaa9Q48e9siU/npJ2Q7K8mghIlw9cmS6lUqIBQWebp/Tr05o4NDMaDnSP+NkOF E0yiChlLSmQi738japki2h8IVxVLcVMph8LwGMczWfPrRLSUVtmnGj6QKSeEa6fx YQYwTw5ymwu6u3/Owqk40K0KnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE5iFxEC U0JpgZtgAdyVgCDhSGg6MB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi9CMjVFRjk5MEU5MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQt OGJYQVVyNDI3WW10SVNjTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLS1dlKK9KEf8rLw0lV6RVtR8E9ojY9luMWlCVw+Bmv+QxrJwvVLgS x+D1eZp1CVtwcR71fT78w0URz7A2O0aJSj8h5/BHCGGbPoCUC4ttuJ4hydKSLgVT wizPVekWRO0UoS2qgblit6uZT02mw6maYH15y6/L95vWLKP97pAvIqIZg2VcXxyQ r7FOTSpw4e2WYSUwmWa5SbJ4t3GGkLX+xKTYjgGPa6bY1Km0jeeFTU0Sctt740tZ J3g+K3NcDy8fORluLIIn819ZYDv/3TfxnsOHXQvvgWyAfmi5BQg+FNtm8mQQZzx1 uvLQqKXrtuDsoA/x1Z2tE0v4FvqxAgRW -----END CERTIFICATE-----Generated at Sat Sep 6 12:06:27 2025 by rpki-client