$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft File: aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft (raw, json) Hash identifier: 3dS0vlsIXrjpMo/B+vS9vvYTN4Vo6YTYFSWYt/VQVzc= Subject key identifier: 90:4C:E3:37:3C:B6:1C:80:3E:48:56:DB:7B:84:32:62:4B:E3:8E:AD Authority key identifier: 68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F Certificate issuer: /CN=A911CA82/serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft Manifest number: 82 Signing time: Thu 04 Sep 2025 23:10:29 +0000 Manifest this update: Thu 04 Sep 2025 23:10:29 +0000 Manifest next update: Thu 11 Sep 2025 23:10:29 +0000 Files and hashes: 1: aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl (hash: 950TJHmGzb8qaGQ/vhHrq2l+A9YY3/vWvcAqfwHzvTI=) 2: AF4301D4CF8511EF94856A41C4F9AE02.roa (hash: eqsW8B/nzh24Js41J8yQQdlaY75NMXqpYi5U4uiBwdI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:10:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA82, serialNumber=68413D41F6005E0316E0E2576F226C2188AA156F Validity Not Before: Sep 4 23:10:29 2025 GMT Not After : Sep 11 23:10:29 2025 GMT Subject: CN=68ba1c65-d61c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:17:4e:cf:7a:03:cc:2b:c3:38:71:cf:63:76: 41:a3:3e:65:a7:c0:23:66:d4:9e:50:2e:70:ec:51: 2e:ee:15:5d:ad:49:d1:73:48:17:76:a4:65:2b:27: e3:3e:b6:d3:cf:5b:55:e0:26:25:d5:1a:94:b1:8e: 96:ae:1f:a5:85:a7:46:e1:14:bf:86:ff:56:95:40: b4:b9:9c:59:65:15:ec:0c:43:6a:ff:41:51:58:b8: 1d:10:c6:58:b9:f3:06:a7:3c:d0:00:f4:c1:44:a8: 82:99:0e:c8:06:ef:f6:ae:06:97:4e:bf:2f:88:60: c7:ab:31:fc:2c:61:d9:b8:3f:16:f5:a4:85:ca:8b: 77:a3:aa:92:55:f4:01:6a:b1:57:49:3a:7e:a3:d7: 4d:04:83:03:e9:10:92:5d:16:cd:4d:e3:9d:b4:92: 7c:c1:93:7b:ad:0a:23:86:be:84:00:db:96:eb:2c: 64:22:d0:88:99:d4:c8:71:d6:f2:5c:97:15:1d:c1: 4d:db:0a:59:b4:3b:66:cb:1f:f8:80:94:9d:89:38: 0a:f8:86:60:e5:7c:f0:91:a4:5e:3d:06:4d:32:1a: 6e:5e:60:d2:e9:e9:b8:1f:4d:49:0c:7a:27:ea:52: 87:0f:1a:83:12:3a:a7:ee:24:3d:32:58:79:44:42: 58:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:4C:E3:37:3C:B6:1C:80:3E:48:56:DB:7B:84:32:62:4B:E3:8E:AD X509v3 Authority Key Identifier: keyid:68:41:3D:41:F6:00:5E:03:16:E0:E2:57:6F:22:6C:21:88:AA:15:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aEE9QfYAXgMW4OJXbyJsIYiqFW8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA82/F699E354CF1211EF8F1D205BC4F9AE02/aEE9QfYAXgMW4OJXbyJsIYiqFW8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:d1:ce:37:af:b9:aa:8a:a5:b4:b6:0e:dd:d5:09:28:ee:e6: bf:96:3c:6c:12:cc:e8:fc:3b:ca:f8:9e:1f:62:e7:9c:e0:ed: 38:ae:f5:9f:e1:cc:4f:fc:1a:0a:ba:cf:3d:b0:46:c8:04:ad: 99:e8:03:d1:8e:f1:6d:53:4f:1a:b2:b0:11:97:06:4a:65:c9: 6a:47:9f:db:eb:b7:68:8c:79:cc:dc:1b:ad:2d:b2:20:68:13: f1:f9:f1:9b:c2:41:63:6e:25:60:97:ac:3e:53:a8:18:d6:4b: 37:df:34:4c:99:5f:2c:a3:1b:53:2b:a1:ab:83:fb:95:b0:9d: 79:3a:ba:cf:f5:11:9f:7f:95:af:ca:f6:27:e0:35:ef:dc:72: 44:cd:ad:23:99:f2:46:24:6e:46:31:ff:40:2a:62:a9:69:5c: cb:27:06:ae:b3:ec:9a:85:56:1a:8e:e9:5d:54:2d:48:d2:33: e9:d5:a6:64:2b:9f:18:5e:a2:45:d1:a7:be:0b:0c:75:79:85: f4:52:ca:1c:74:2d:c7:50:b6:25:91:70:73:c6:b9:44:9b:80: c5:ce:33:6f:90:3c:95:93:8b:f1:b7:06:31:00:7a:94:34:f9: 8b:22:7c:07:a1:94:a1:1d:8d:a8:20:4d:31:e4:13:23:76:25: 2e:fd:ab:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBODIxMTAvBgNVBAUTKDY4NDEzRDQxRjYwMDVFMDMxNkUwRTI1NzZGMjI2QzIx ODhBQTE1NkYwHhcNMjUwOTA0MjMxMDI5WhcNMjUwOTExMjMxMDI5WjAYMRYwFAYD VQQDEw02OGJhMWM2NS1kNjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmRdOz3oDzCvDOHHPY3ZBoz5lp8AjZtSeUC5w7FEu7hVdrUnRc0gXdqRlKyfj PrbTz1tV4CYl1RqUsY6Wrh+lhadG4RS/hv9WlUC0uZxZZRXsDENq/0FRWLgdEMZY ufMGpzzQAPTBRKiCmQ7IBu/2rgaXTr8viGDHqzH8LGHZuD8W9aSFyot3o6qSVfQB arFXSTp+o9dNBIMD6RCSXRbNTeOdtJJ8wZN7rQojhr6EANuW6yxkItCImdTIcdby XJcVHcFN2wpZtDtmyx/4gJSdiTgK+IZg5XzwkaRePQZNMhpuXmDS6em4H01JDHon 6lKHDxqDEjqn7iQ9Mlh5REJYrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBM4zc8 thyAPkhW23uEMmJL446tMB8GA1UdIwQYMBaAFGhBPUH2AF4DFuDiV28ibCGIqhVv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E4Mi9GNjk5RTM1NENG MTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhnTVc0T0pYYnlKc0lZaXFG VzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FFRTlRZllBWGdNVzRPSlhieUpzSVlpcUZXOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Q0E4Mi9GNjk5RTM1NENGMTIxMUVGOEYxRDIwNUJDNEY5QUUwMi9hRUU5UWZZQVhn TVc0T0pYYnlKc0lZaXFGVzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ0c43r7mqiqW0tg7d1Qko7ua/ljxsEszo/DvK+J4fYuec4O04rvWf 4cxP/BoKus89sEbIBK2Z6APRjvFtU08asrARlwZKZclqR5/b67dojHnM3ButLbIg aBPx+fGbwkFjbiVgl6w+U6gY1ks33zRMmV8soxtTK6Grg/uVsJ15OrrP9RGff5Wv yvYn4DXv3HJEza0jmfJGJG5GMf9AKmKpaVzLJwaus+yahVYajuldVC1I0jPp1aZk K58YXqJF0ae+Cwx1eYX0UsocdC3HULYlkXBzxrlEm4DFzjNvkDyVk4vxtwYxAHqU NPmLInwHoZShHY2oIE0x5BMjdiUu/atb -----END CERTIFICATE-----Generated at Sat Sep 6 21:12:17 2025 by rpki-client