$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft File: af9o05rBdz4oqFeFx5G0qNmzhIY.mft (raw, json) Hash identifier: SqnxEJhQ8iv0Pey9FLNFEfO2pA2t3NXx0PSGrlncHLM= Subject key identifier: 13:88:7C:BF:9E:8D:66:D4:38:73:FD:9C:A8:4C:FB:44:FF:81:EB:BB Authority key identifier: 69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 Certificate issuer: /CN=A9148D61/serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Certificate serial: 0213 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft Manifest number: 020B Signing time: Thu 21 Aug 2025 02:19:07 +0000 Manifest this update: Thu 21 Aug 2025 02:19:07 +0000 Manifest next update: Thu 28 Aug 2025 02:19:07 +0000 Files and hashes: 1: af9o05rBdz4oqFeFx5G0qNmzhIY.crl (hash: VIDRm/O5dDUCEqMZSgnB7NkGa/hqXDGoDX8/L6Ts17A=) 2: 349D4A7AB90A11EF97D24653C4F9AE02.roa (hash: BISS5CmxNxvmt9rFH6DiKF6LgvgQpzJ1qyGwOCZsmrY=) 3: 34386BAAB90A11EF97D24653C4F9AE02.roa (hash: gXomgC3UWF4hRBWpPOIJ1KbjovqaJl+GP7rjTy7IiYk=) 4: 35ADE898B90A11EF97D24653C4F9AE02.roa (hash: /sVqx8q3knVsrGKYvA1MUovYNq+EQPYvWXQlJdzVZFw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:19:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D61, serialNumber=69FF68D39AC1773E28A85785C791B4A8D9B38486 Validity Not Before: Aug 21 02:19:07 2025 GMT Not After : Aug 28 02:19:07 2025 GMT Subject: CN=68a6821b-338b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e5:ca:4c:7b:70:50:7e:a8:e7:a9:c3:d5:b2: 4c:d5:06:e1:89:da:89:75:c7:49:ae:a2:0c:ee:18: 92:8d:27:94:7f:a6:c3:54:cd:60:6d:f2:e7:33:4e: 67:d1:73:23:41:a3:27:5f:5f:aa:81:e5:af:e9:a5: be:9a:44:37:89:0c:ca:cb:b0:b4:7d:95:d7:5b:1f: c5:4b:0a:7b:7e:80:83:55:35:84:43:a2:ca:61:74: 97:33:cd:3d:53:6f:cd:9d:90:80:28:f1:42:b6:70: f9:5d:3c:22:32:cd:9c:06:ae:b2:5b:3d:88:94:c7: 26:2d:45:1d:f8:3d:b3:58:51:42:61:a1:78:83:46: 9e:45:19:c6:76:4e:9c:30:76:40:a8:81:8a:3d:ba: bc:e1:38:85:77:94:17:7a:58:f7:2e:e3:8f:6a:a4: be:3c:68:b8:2f:47:84:ff:22:27:0d:dd:ec:6a:2a: cd:62:28:25:e1:93:5d:e7:d6:44:38:b6:4c:88:ec: 85:a5:01:85:dc:57:95:fc:ec:c7:b1:a7:c9:00:48: 7d:d6:52:a0:24:b4:2d:fe:94:32:6f:82:a5:60:ca: f0:a0:1f:e7:d3:c6:e3:c6:34:52:38:40:47:54:0c: 7a:34:96:d4:6f:d3:3a:e6:eb:6d:72:a4:ab:d7:0c: ab:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:88:7C:BF:9E:8D:66:D4:38:73:FD:9C:A8:4C:FB:44:FF:81:EB:BB X509v3 Authority Key Identifier: keyid:69:FF:68:D3:9A:C1:77:3E:28:A8:57:85:C7:91:B4:A8:D9:B3:84:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/af9o05rBdz4oqFeFx5G0qNmzhIY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D61/295E4C76601B11EDA5C7276EC4F9AE02/af9o05rBdz4oqFeFx5G0qNmzhIY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:df:29:9d:a5:ad:0b:44:76:f7:03:15:48:36:51:81:a4:f7: a0:11:8b:8c:32:97:07:38:e2:e7:27:0f:47:79:b4:ed:d5:a3: 87:3c:d5:d7:bc:eb:1f:00:84:ad:0c:e6:f6:92:6c:fa:af:ac: 68:76:96:d6:84:02:f9:93:7a:c1:24:f0:75:00:3c:be:d9:d0: 42:09:5e:74:43:6b:ad:1d:32:0b:0f:c7:bc:8b:af:74:c6:a6: 75:e5:17:21:a4:ae:30:d3:f7:72:c7:63:dc:0e:97:72:12:7a: 5c:b5:1d:f3:82:d0:22:c0:50:51:28:b6:38:20:43:c4:64:f7: ba:b9:56:39:f6:f1:d1:b1:68:e5:4a:fe:6a:8c:d9:49:ef:9d: b2:a4:69:2b:05:a9:55:49:18:f0:0d:12:df:e7:96:6e:b4:37: 45:62:bc:12:40:69:2d:88:cd:84:13:b5:02:8c:76:5f:46:b1: 95:12:fd:8a:58:4b:94:b9:c4:be:75:16:96:cc:e2:8b:17:c1: 12:30:0e:43:71:19:94:04:a6:93:97:17:e5:00:36:5e:e1:7a: 22:c6:7c:3b:45:c8:fe:62:67:3c:31:01:20:f7:aa:3c:14:45: 98:19:94:5f:8d:73:36:fe:c7:13:e9:ac:43:9f:a4:7f:f6:5b: 2e:3f:68:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENjExMTAvBgNVBAUTKDY5RkY2OEQzOUFDMTc3M0UyOEE4NTc4NUM3OTFCNEE4 RDlCMzg0ODYwHhcNMjUwODIxMDIxOTA3WhcNMjUwODI4MDIxOTA3WjAYMRYwFAYD VQQDEw02OGE2ODIxYi0zMzhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOXKTHtwUH6o56nD1bJM1QbhidqJdcdJrqIM7hiSjSeUf6bDVM1gbfLnM05n 0XMjQaMnX1+qgeWv6aW+mkQ3iQzKy7C0fZXXWx/FSwp7foCDVTWEQ6LKYXSXM809 U2/NnZCAKPFCtnD5XTwiMs2cBq6yWz2IlMcmLUUd+D2zWFFCYaF4g0aeRRnGdk6c MHZAqIGKPbq84TiFd5QXelj3LuOPaqS+PGi4L0eE/yInDd3sairNYigl4ZNd59ZE OLZMiOyFpQGF3FeV/OzHsafJAEh91lKgJLQt/pQyb4KlYMrwoB/n08bjxjRSOEBH VAx6NJbUb9M65uttcqSr1wyrSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBOIfL+e jWbUOHP9nKhM+0T/geu7MB8GA1UdIwQYMBaAFGn/aNOawXc+KKhXhceRtKjZs4SG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ2MS8yOTVFNEM3NjYw MUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6NG9xRmVGeDVHMHFObXpo SVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FmOW8wNXJCZHo0b3FGZUZ4NUcwcU5temhJWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEQ2MS8yOTVFNEM3NjYwMUIxMUVEQTVDNzI3NkVDNEY5QUUwMi9hZjlvMDVyQmR6 NG9xRmVGeDVHMHFObXpoSVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm3ymdpa0LRHb3AxVINlGBpPegEYuMMpcHOOLnJw9HebTt1aOHPNXX vOsfAIStDOb2kmz6r6xodpbWhAL5k3rBJPB1ADy+2dBCCV50Q2utHTILD8e8i690 xqZ15RchpK4w0/dyx2PcDpdyEnpctR3zgtAiwFBRKLY4IEPEZPe6uVY59vHRsWjl Sv5qjNlJ752ypGkrBalVSRjwDRLf55ZutDdFYrwSQGktiM2EE7UCjHZfRrGVEv2K WEuUucS+dRaWzOKLF8ESMA5DcRmUBKaTlxflADZe4Xoixnw7Rcj+Ymc8MQEg96o8 FEWYGZRfjXM2/scT6axDn6R/9lsuP2i8 -----END CERTIFICATE-----Generated at Fri Aug 22 16:34:38 2025 by rpki-client