$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft File: 9ES43awaKuycmNiYFhxzSCwu1Ig.mft (raw, json) Hash identifier: go11Btwj8et/4nV3YrHvoUcNcLqMuT8wuj8Vfd9plUc= Subject key identifier: F9:7B:C2:07:01:B9:1F:05:C0:A3:80:7D:CE:CE:89:90:DC:42:F5:47 Authority key identifier: F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88 Certificate issuer: /CN=A91427E2/serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488 Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft Manifest number: A5 Signing time: Fri 05 Sep 2025 06:42:33 +0000 Manifest this update: Fri 05 Sep 2025 06:42:33 +0000 Manifest next update: Fri 12 Sep 2025 06:42:33 +0000 Files and hashes: 1: 9ES43awaKuycmNiYFhxzSCwu1Ig.crl (hash: X8GMegQUib4pEz6F/wIPranJvYYTmEyPdrMPgSyIWMg=) 2: 52EADE54935111EF98AA8C86C4F9AE02.roa (hash: EP8IMn/Dpz37JzTGpl131u/EdByNY9mypWBz1crTuiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:42:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91427E2, serialNumber=F444B8DDAC1A2AEC9C98D898161C73482C2ED488 Validity Not Before: Sep 5 06:42:33 2025 GMT Not After : Sep 12 06:42:33 2025 GMT Subject: CN=68ba8659-f933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:cc:f0:1b:56:6e:e6:2c:5a:d9:46:0f:ff: 63:c0:e6:49:d3:a2:3e:ed:10:ba:f0:0f:19:69:7b: fe:11:98:8a:9e:57:15:98:c4:f6:d7:48:59:e2:12: 64:29:d6:f8:3a:07:6a:48:d3:e4:11:5c:4a:0e:57: 2e:41:c3:61:36:ac:4a:eb:f7:7f:bf:a1:9e:65:59: 91:dc:ba:b6:24:6f:51:99:ae:70:c4:a4:4f:6a:57: 0c:49:89:aa:c2:1d:53:77:dd:96:2b:f1:32:5b:48: b8:4b:27:fc:b1:24:6b:39:92:e3:b9:af:db:20:b9: 7c:0d:66:9c:5a:98:5d:9e:a8:27:bc:5d:07:02:94: e4:91:f3:77:7e:b1:f3:0b:08:da:af:86:c9:76:db: 6d:76:0f:b5:71:38:db:8a:dc:44:b2:c6:05:ae:ae: cd:5c:f0:8b:ec:a6:8c:b5:bf:e1:f5:d4:86:dc:65: 67:a2:34:a1:8a:d0:29:09:41:a3:90:80:c4:7f:4b: b1:f0:7e:aa:37:49:ad:fa:8e:84:4c:88:d2:64:ee: ac:ea:11:55:4d:46:8f:3f:ac:92:8c:ff:d6:8f:4f: ae:8d:e7:fd:f4:2b:20:de:99:0f:6b:ca:6b:95:5f: 73:36:3b:1f:75:c0:82:ac:8e:b2:3f:b3:6f:9f:fb: cc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:7B:C2:07:01:B9:1F:05:C0:A3:80:7D:CE:CE:89:90:DC:42:F5:47 X509v3 Authority Key Identifier: keyid:F4:44:B8:DD:AC:1A:2A:EC:9C:98:D8:98:16:1C:73:48:2C:2E:D4:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9ES43awaKuycmNiYFhxzSCwu1Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/7031A1EC935011EFBACE004CC4F9AE02/9ES43awaKuycmNiYFhxzSCwu1Ig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:a9:cb:db:d5:02:48:4e:29:30:47:24:34:d0:29:8e:68:74: ef:4c:e5:97:eb:02:78:bf:e2:bd:a7:f7:aa:10:6f:0b:0f:62: 35:95:3e:da:48:b2:b3:b2:e8:49:16:cf:f8:4e:ca:9d:37:28: ec:ec:41:e8:d5:3f:5f:85:48:ae:c5:29:29:b1:30:a7:06:96: 60:93:81:88:7a:a0:f9:5e:0a:5a:aa:c9:a0:c5:d9:9b:30:7a: 72:b4:22:98:c5:28:d3:d9:42:3b:bf:93:0b:88:77:ca:b3:69: d7:35:7c:b2:0a:e3:87:7e:a5:8a:88:7c:e6:7a:50:75:61:dc: dd:c6:dc:a8:14:22:5c:00:61:0a:ee:0d:0f:b8:97:fc:6f:62: d1:a3:67:05:0e:dd:49:7d:91:da:a3:65:2a:98:63:92:1a:2f: ba:63:93:55:90:a8:2c:42:67:db:b0:61:dc:9a:5c:1b:8c:c1: 5d:1d:04:b5:50:06:3a:3f:80:52:08:57:31:29:42:b8:0b:95: 16:bd:c2:75:d3:58:8c:ec:10:a3:bb:7c:7c:a8:4c:1f:2c:e6: 74:37:3e:d6:88:ae:40:c7:49:59:ee:d6:35:b1:22:e1:9d:84: 71:e6:8d:33:ed:14:d7:29:9f:d5:c6:72:86:f1:83:33:50:98: 4c:f0:27:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3RTIxMTAvBgNVBAUTKEY0NDRCOEREQUMxQTJBRUM5Qzk4RDg5ODE2MUM3MzQ4 MkMyRUQ0ODgwHhcNMjUwOTA1MDY0MjMzWhcNMjUwOTEyMDY0MjMzWjAYMRYwFAYD VQQDEw02OGJhODY1OS1mOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+zM8BtWbuYsWtlGD/9jwOZJ06I+7RC68A8ZaXv+EZiKnlcVmMT210hZ4hJk Kdb4OgdqSNPkEVxKDlcuQcNhNqxK6/d/v6GeZVmR3Lq2JG9Rma5wxKRPalcMSYmq wh1Td92WK/EyW0i4Syf8sSRrOZLjua/bILl8DWacWphdnqgnvF0HApTkkfN3frHz Cwjar4bJdtttdg+1cTjbitxEssYFrq7NXPCL7KaMtb/h9dSG3GVnojShitApCUGj kIDEf0ux8H6qN0mt+o6ETIjSZO6s6hFVTUaPP6ySjP/Wj0+ujef99Csg3pkPa8pr lV9zNjsfdcCCrI6yP7Nvn/vMwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPl7wgcB uR8FwKOAfc7OiZDcQvVHMB8GA1UdIwQYMBaAFPREuN2sGirsnJjYmBYcc0gsLtSI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjdFMi83MDMxQTFFQzkz NTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1eWNtTmlZRmh4elNDd3Ux SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlFUzQzYXdhS3V5Y21OaVlGaHh6U0N3dTFJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjdFMi83MDMxQTFFQzkzNTAxMUVGQkFDRTAwNENDNEY5QUUwMi85RVM0M2F3YUt1 eWNtTmlZRmh4elNDd3UxSWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBfqcvb1QJITikwRyQ00CmOaHTvTOWX6wJ4v+K9p/eqEG8LD2I1lT7a SLKzsuhJFs/4TsqdNyjs7EHo1T9fhUiuxSkpsTCnBpZgk4GIeqD5Xgpaqsmgxdmb MHpytCKYxSjT2UI7v5MLiHfKs2nXNXyyCuOHfqWKiHzmelB1YdzdxtyoFCJcAGEK 7g0PuJf8b2LRo2cFDt1JfZHao2UqmGOSGi+6Y5NVkKgsQmfbsGHcmlwbjMFdHQS1 UAY6P4BSCFcxKUK4C5UWvcJ101iM7BCju3x8qEwfLOZ0Nz7WiK5Ax0lZ7tY1sSLh nYRx5o0z7RTXKZ/VxnKG8YMzUJhM8Ce0 -----END CERTIFICATE-----Generated at Sat Sep 6 15:22:47 2025 by rpki-client