$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: OfWTV9Xtr35blII4LZEPMp3oalI2z8QKDZoBkquvlCQ= Subject key identifier: 01:87:CE:1A:04:8F:15:8F:71:09:3E:51:D9:C1:21:12:8E:24:40:E7 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 077F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 0778 Signing time: Sat 06 Sep 2025 21:49:47 +0000 Manifest this update: Sat 06 Sep 2025 21:49:47 +0000 Manifest next update: Sat 13 Sep 2025 21:49:47 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: r9t8gDRwrUkSLGGXWqIXv+FmFM0C1A6jB5lbtq83uf0=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:49:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1919 (0x77f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Sep 6 21:49:47 2025 GMT Not After : Sep 13 21:49:47 2025 GMT Subject: CN=68bcac7b-730e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:62:40:b1:d3:09:79:75:aa:b3:d8:80:53:85: 5a:80:ac:9b:96:00:26:39:7d:60:dd:39:df:2d:83: bb:78:ad:d9:de:c6:2f:dd:22:26:c0:5b:e6:d3:8d: a2:9a:9d:bc:1a:cd:96:85:42:0f:4e:59:41:c6:2d: fc:d3:eb:56:01:09:48:8d:69:d3:82:aa:78:67:b8: 19:97:9b:a8:b9:81:4a:f9:2a:f7:3b:f3:47:b6:fc: 5c:52:5f:a5:9e:77:c4:e8:6b:48:e4:40:81:c0:17: 98:45:30:26:f6:6b:a4:7e:d3:bd:86:ff:5c:53:86: 91:84:b6:84:f1:dc:12:d4:04:98:ba:f5:c5:76:8e: 0f:e9:d6:e0:7b:ea:fd:21:58:46:7b:2a:1b:8d:4f: d8:97:42:c3:f1:64:36:b9:61:06:0a:b3:81:d7:31: c2:0c:ce:e0:3c:15:09:5d:4a:41:c1:12:89:10:eb: 7c:64:24:2f:a0:15:a9:35:7e:c0:a6:3d:f3:41:b1: e5:a3:48:5c:ae:20:9f:2a:6c:14:35:d4:9c:c4:dd: ea:43:72:2a:38:15:ac:d1:d3:6a:b9:f2:d9:c5:49: a7:9d:24:ca:83:9d:e4:b6:30:12:30:1e:45:ae:f4: f0:b5:85:95:c9:91:ce:e0:da:21:9d:69:48:3d:4e: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:87:CE:1A:04:8F:15:8F:71:09:3E:51:D9:C1:21:12:8E:24:40:E7 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:ac:4b:0f:f1:ae:a1:3c:30:51:29:9e:de:3f:06:cf:d4:a5: 7d:10:3b:35:72:8f:2c:d6:ac:2a:07:c1:8c:24:f7:cd:de:df: bc:83:00:9c:68:a2:2b:3e:e2:0c:f4:bf:3a:10:0e:c8:07:c9: e4:7c:49:9c:d5:ca:19:00:b7:f4:b0:9f:ef:86:9b:9a:90:60: 79:65:7d:06:a4:3b:ce:b5:45:7b:bf:61:33:77:29:a1:39:02: 92:b5:1b:eb:ab:50:54:da:fb:fd:30:e7:d3:b7:37:78:83:93: 93:13:4e:10:b9:9e:32:9e:23:34:82:0d:8b:56:79:30:b4:f7: 4e:0c:83:13:66:97:01:c8:a1:1f:7c:61:b4:2e:a4:f8:6a:33: f9:b1:2d:20:2a:c6:4e:d5:63:9b:b7:e4:a0:f7:99:10:da:d6: 50:54:27:6a:fe:2b:25:2f:d5:a1:ca:a6:93:35:9f:3d:19:45: 51:49:89:d8:c4:11:8a:e2:05:a0:ad:59:0d:d7:b0:52:5c:83: 54:59:b6:48:57:45:f1:fe:60:d3:ad:22:22:34:35:6b:e8:0d: b4:da:d5:13:dc:34:9a:86:1c:78:2d:71:69:2b:2c:0b:66:35: 80:a2:a6:47:85:27:32:d1:d9:ab:3a:07:08:4b:c4:4f:ac:50: b3:1c:15:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUwOTA2MjE0OTQ3WhcNMjUwOTEzMjE0OTQ3WjAYMRYwFAYD VQQDEw02OGJjYWM3Yi03MzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1mJAsdMJeXWqs9iAU4VagKyblgAmOX1g3TnfLYO7eK3Z3sYv3SImwFvm042i mp28Gs2WhUIPTllBxi380+tWAQlIjWnTgqp4Z7gZl5uouYFK+Sr3O/NHtvxcUl+l nnfE6GtI5ECBwBeYRTAm9mukftO9hv9cU4aRhLaE8dwS1ASYuvXFdo4P6dbge+r9 IVhGeyobjU/Yl0LD8WQ2uWEGCrOB1zHCDM7gPBUJXUpBwRKJEOt8ZCQvoBWpNX7A pj3zQbHlo0hcriCfKmwUNdScxN3qQ3IqOBWs0dNqufLZxUmnnSTKg53ktjASMB5F rvTwtYWVyZHO4NohnWlIPU6nwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGHzhoE jxWPcQk+UdnBIRKOJEDnMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCzrEsP8a6hPDBRKZ7ePwbP1KV9EDs1co8s1qwqB8GMJPfN3t+8gwCc aKIrPuIM9L86EA7IB8nkfEmc1coZALf0sJ/vhpuakGB5ZX0GpDvOtUV7v2Ezdymh OQKStRvrq1BU2vv9MOfTtzd4g5OTE04QuZ4yniM0gg2LVnkwtPdODIMTZpcByKEf fGG0LqT4ajP5sS0gKsZO1WObt+Sg95kQ2tZQVCdq/islL9WhyqaTNZ89GUVRSYnY xBGK4gWgrVkN17BSXINUWbZIV0Xx/mDTrSIiNDVr6A202tUT3DSahhx4LXFpKywL ZjWAoqZHhScy0dmrOgcIS8RPrFCzHBXJ -----END CERTIFICATE-----Generated at Sun Sep 7 15:23:10 2025 by rpki-client