$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: SxbKv0z+coJrC3lsldpved+7V1CFAh+o22HLkKiCBrM= Subject key identifier: 49:D3:32:28:08:F1:3D:CE:FD:73:BD:9E:F3:A4:71:20:EE:07:26:3F Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BD9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BC7 Signing time: Mon 08 Sep 2025 16:15:08 +0000 Manifest this update: Mon 08 Sep 2025 16:15:08 +0000 Manifest next update: Mon 15 Sep 2025 16:15:08 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: tAJCK6LmnWaKPt+eDU8/keD6bjCZb37YJ9mi6dWnDtk=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7129 (0x1bd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Sep 8 16:15:08 2025 GMT Not After : Sep 15 16:15:08 2025 GMT Subject: CN=68bf010c-7854 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a9:47:d5:02:91:93:6a:a3:29:7a:b5:c6:6e: da:be:7d:2b:37:2e:4b:64:83:f3:cd:64:99:7a:d5: 3d:f8:48:14:bc:f9:4f:2f:e8:bb:25:35:a1:6d:92: 28:09:b2:9a:74:82:9f:b3:ba:23:04:0a:66:a1:98: 4f:5e:45:66:be:95:f5:71:87:38:4c:f6:97:32:82: 5a:e8:e7:0b:93:27:98:43:e1:9b:d8:2f:f7:88:9a: fe:e1:08:34:9a:c9:f6:f8:13:33:57:35:bf:af:19: bc:5a:40:6b:21:03:24:06:10:e4:7c:5d:01:7c:fb: d1:aa:70:e6:83:06:65:8b:68:73:7b:22:de:93:a8: 93:7b:69:0c:33:e2:6d:b6:4b:23:59:10:7e:4f:30: 39:d5:ef:23:03:e4:43:5e:28:81:bf:aa:59:6c:e6: 00:92:e3:9f:09:fa:7b:54:e8:c0:ef:d2:fe:ca:20: 93:9a:cc:ac:a7:43:af:9b:55:dc:70:06:fa:51:69: 1a:e3:59:8f:36:8c:83:46:2a:16:b4:75:bd:a0:40: 0e:fc:35:31:54:1e:0c:9d:3b:ec:fc:61:3c:b7:00: f2:e9:8a:41:f6:f4:5a:a4:3f:4d:25:6b:83:9e:8e: b3:09:aa:5c:d2:fe:e7:80:72:ca:b0:64:95:00:76: f4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D3:32:28:08:F1:3D:CE:FD:73:BD:9E:F3:A4:71:20:EE:07:26:3F X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:ce:e0:f5:91:6b:70:77:3f:d0:83:61:75:0d:77:96:1b:78: e5:e9:77:39:89:61:fd:10:9f:ac:01:d8:c3:ee:61:8d:10:99: 2e:77:50:1a:5f:40:e8:13:18:ca:91:d5:81:57:43:4f:9c:d9: ad:bf:1a:e5:d1:cf:18:b2:32:bb:63:90:52:1f:ad:55:13:95: e5:37:ca:5a:ab:30:b5:ae:56:3e:1a:a7:52:4b:b4:6d:1d:24: d0:53:c2:21:7e:a3:77:ec:9f:8f:f7:16:f1:0a:4f:33:a8:09: de:fa:30:37:96:c7:d4:80:14:03:74:90:3f:4c:93:53:28:39: b5:df:c9:f7:f7:e9:d4:1b:ee:9c:f6:6b:c1:bb:96:18:a9:5b: 67:7d:0a:30:d4:75:96:10:33:98:d9:4a:6b:6a:65:bc:d5:c0: 3c:bb:37:b3:98:eb:31:42:2e:54:a1:29:86:eb:20:ec:fb:a5: 48:70:a4:3f:1f:04:45:70:94:bc:fa:ec:6c:f9:2f:ea:75:f3: 68:f4:74:c1:42:b0:f7:96:39:33:1c:f4:45:b7:f2:2c:8f:9d: 49:d4:8a:7c:f6:82:7a:bb:9a:8b:26:99:6d:6f:7b:98:7d:34: a5:11:46:4f:5d:c3:89:ee:0b:01:a7:1c:fc:87:62:77:d5:07: b3:ba:c6:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG9kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwOTA4MTYxNTA4WhcNMjUwOTE1MTYxNTA4WjAYMRYwFAYD VQQDEw02OGJmMDEwYy03ODU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKlH1QKRk2qjKXq1xm7avn0rNy5LZIPzzWSZetU9+EgUvPlPL+i7JTWhbZIo CbKadIKfs7ojBApmoZhPXkVmvpX1cYc4TPaXMoJa6OcLkyeYQ+Gb2C/3iJr+4Qg0 msn2+BMzVzW/rxm8WkBrIQMkBhDkfF0BfPvRqnDmgwZli2hzeyLek6iTe2kMM+Jt tksjWRB+TzA51e8jA+RDXiiBv6pZbOYAkuOfCfp7VOjA79L+yiCTmsysp0Ovm1Xc cAb6UWka41mPNoyDRioWtHW9oEAO/DUxVB4MnTvs/GE8twDy6YpB9vRapD9NJWuD no6zCapc0v7ngHLKsGSVAHb0cwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEnTMigI 8T3O/XO9nvOkcSDuByY/MB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKzuD1kWtwdz/Qg2F1DXeWG3jl6Xc5iWH9EJ+sAdjD7mGNEJkud1Aa X0DoExjKkdWBV0NPnNmtvxrl0c8YsjK7Y5BSH61VE5XlN8paqzC1rlY+GqdSS7Rt HSTQU8IhfqN37J+P9xbxCk8zqAne+jA3lsfUgBQDdJA/TJNTKDm138n39+nUG+6c 9mvBu5YYqVtnfQow1HWWEDOY2UpramW81cA8uzezmOsxQi5UoSmG6yDs+6VIcKQ/ HwRFcJS8+uxs+S/qdfNo9HTBQrD3ljkzHPRFt/Isj51J1Ip89oJ6u5qLJpltb3uY fTSlEUZPXcOJ7gsBpxz8h2J31Qezusba -----END CERTIFICATE-----Generated at Tue Sep 9 05:27:42 2025 by rpki-client