$ rpki-client -vvf rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft File: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft (raw, json) Hash identifier: pYop6/js/d1JhvGjCXdsuN6BbkkboYm5noz2r3UEEP4= Subject key identifier: FD:95:03:0B:70:D2:4C:FD:A0:91:2B:EF:A5:D1:94:31:C3:C8:49:0E Authority key identifier: AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 Certificate issuer: /CN=A913BA97/serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Certificate serial: 0207 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft Manifest number: 01F1 Signing time: Thu 21 Aug 2025 02:49:37 +0000 Manifest this update: Thu 21 Aug 2025 02:49:36 +0000 Manifest next update: Thu 28 Aug 2025 02:49:36 +0000 Files and hashes: 1: r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl (hash: 1Y491EE6yt5QLGd4TWI+u9uaO9OP/D4kCvvH5Xu2Ots=) 2: 6B4DE806568411EF8FE2C24EC4F9AE02.roa (hash: gio3U9WsxU2OTvZplKV8K5tuXOfWf9W0TdHSTYl7CRI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:49:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913BA97, serialNumber=AFD943E4B142763659E08F8DBF6CE7E6D80CC517 Validity Not Before: Aug 21 02:49:36 2025 GMT Not After : Aug 28 02:49:36 2025 GMT Subject: CN=68a68941-bb45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:29:d9:54:89:51:53:2f:cd:0c:dc:e2:6e:f3: 87:99:61:77:c3:7c:29:26:cd:d8:28:e4:f3:e1:d1: fa:86:9c:f9:01:1d:74:01:bf:a6:0b:68:f9:17:5f: b5:81:5a:91:93:f6:0d:4a:75:1a:4d:af:41:68:30: bb:63:c0:ac:f8:18:c2:24:23:55:3e:10:b9:d6:e0: e7:f7:29:35:5c:3a:2b:36:73:b4:ae:41:43:d8:5f: 50:fe:55:66:c0:5f:65:4c:a4:a2:e6:5a:11:28:60: c5:1f:32:38:84:c7:66:ce:d9:ab:70:df:08:6f:9e: e0:20:03:bc:6d:ec:82:5f:89:34:84:a4:13:40:f2: 23:a9:80:6a:84:76:59:e2:56:5e:f8:0d:0d:cb:99: 21:04:3a:00:ea:c5:f3:8b:25:65:3c:2f:a2:59:fe: 08:b5:02:f3:64:bd:b4:41:52:67:e5:25:4a:5c:18: ba:7e:3f:c5:ab:4b:6b:74:43:93:07:57:ba:a6:e6: b0:14:6a:06:d1:64:25:49:2c:f4:a5:df:67:cf:16: 21:d9:d6:ab:57:f9:56:57:8e:80:bc:26:0a:c5:86: 2b:6c:c4:a3:71:88:48:3e:03:84:e5:f2:40:82:d9: 78:f6:bd:d2:59:66:b6:cd:09:9c:4f:d0:1c:78:66: 55:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:95:03:0B:70:D2:4C:FD:A0:91:2B:EF:A5:D1:94:31:C3:C8:49:0E X509v3 Authority Key Identifier: keyid:AF:D9:43:E4:B1:42:76:36:59:E0:8F:8D:BF:6C:E7:E6:D8:0C:C5:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913BA97/F1FEB1FEAC4A11EDA7F1B044C4F9AE02/r9lD5LFCdjZZ4I-Nv2zn5tgMxRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:4f:56:f1:e8:ac:1e:c2:5a:ef:5f:f2:09:93:5e:31:9a:77: 9a:8e:8e:47:b5:b6:3e:0a:ab:d8:7e:35:24:85:e4:0b:00:2a: 56:57:ce:f0:4c:f5:ee:74:12:37:f9:64:49:55:dd:37:ef:1c: d3:2c:88:80:44:06:eb:53:7f:01:d5:b8:b1:09:b0:ec:83:5c: 82:50:92:24:ed:da:cd:41:12:7c:ad:36:76:86:a6:ce:5e:01: e1:3b:38:ea:ad:12:6b:84:33:88:2d:2f:99:3c:30:56:fc:68: 4b:9c:4b:72:31:af:a1:d2:47:42:3e:3d:75:9a:7c:66:a6:ca: 38:86:dd:10:d2:ee:67:26:52:c5:96:ba:7d:cd:da:8d:ba:d5: db:da:ff:08:06:9c:c2:91:2a:b8:8d:ec:26:86:1b:2c:c2:86: e3:5e:8f:84:c1:0a:f7:a7:eb:32:92:cd:d4:b7:e1:be:f8:fb: f7:2a:ef:2e:1c:2c:c6:99:0c:4d:72:b8:c1:25:11:d1:8f:d9: d3:5b:fc:5e:e6:d5:bd:b0:2e:0a:9c:ff:ba:e5:90:49:dd:b1: 37:77:a2:c5:f3:83:7f:fa:a9:7c:c8:61:5e:50:1e:e1:29:b9: 85:b1:37:ec:ae:26:74:54:81:d3:da:d9:27:9f:e9:63:35:ee: 0d:27:cf:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0JBOTcxMTAvBgNVBAUTKEFGRDk0M0U0QjE0Mjc2MzY1OUUwOEY4REJGNkNFN0U2 RDgwQ0M1MTcwHhcNMjUwODIxMDI0OTM2WhcNMjUwODI4MDI0OTM2WjAYMRYwFAYD VQQDEw02OGE2ODk0MS1iYjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqynZVIlRUy/NDNzibvOHmWF3w3wpJs3YKOTz4dH6hpz5AR10Ab+mC2j5F1+1 gVqRk/YNSnUaTa9BaDC7Y8Cs+BjCJCNVPhC51uDn9yk1XDorNnO0rkFD2F9Q/lVm wF9lTKSi5loRKGDFHzI4hMdmztmrcN8Ib57gIAO8beyCX4k0hKQTQPIjqYBqhHZZ 4lZe+A0Ny5khBDoA6sXziyVlPC+iWf4ItQLzZL20QVJn5SVKXBi6fj/Fq0trdEOT B1e6puawFGoG0WQlSSz0pd9nzxYh2darV/lWV46AvCYKxYYrbMSjcYhIPgOE5fJA gtl49r3SWWa2zQmcT9AceGZVVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2VAwtw 0kz9oJEr76XRlDHDyEkOMB8GA1UdIwQYMBaAFK/ZQ+SxQnY2WeCPjb9s5+bYDMUX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQkE5Ny9GMUZFQjFGRUFD NEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2RqWlo0SS1OdjJ6bjV0Z014 UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I5bEQ1TEZDZGpaWjRJLU52MnpuNXRnTXhSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QkE5Ny9GMUZFQjFGRUFDNEExMUVEQTdGMUIwNDRDNEY5QUUwMi9yOWxENUxGQ2Rq Wlo0SS1OdjJ6bjV0Z014UmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMT1bx6KwewlrvX/IJk14xmneajo5HtbY+CqvYfjUkheQLACpWV87w TPXudBI3+WRJVd037xzTLIiARAbrU38B1bixCbDsg1yCUJIk7drNQRJ8rTZ2hqbO XgHhOzjqrRJrhDOILS+ZPDBW/GhLnEtyMa+h0kdCPj11mnxmpso4ht0Q0u5nJlLF lrp9zdqNutXb2v8IBpzCkSq4jewmhhsswobjXo+EwQr3p+syks3Ut+G++Pv3Ku8u HCzGmQxNcrjBJRHRj9nTW/xe5tW9sC4KnP+65ZBJ3bE3d6LF84N/+ql8yGFeUB7h KbmFsTfsriZ0VIHT2tknn+ljNe4NJ8+T -----END CERTIFICATE-----Generated at Fri Aug 22 16:18:18 2025 by rpki-client