$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft File: iH4RB6g_EXT_fj54CIjbVyO3kls.mft (raw, json) Hash identifier: RQMEp1qF7vv2WIv3/vGYbNDdfI/a46XPbvzfHIAuU2I= Subject key identifier: A9:B4:78:3B:6B:26:31:C3:C6:3E:AA:CC:D9:32:76:06:26:97:DA:01 Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft Manifest number: A9 Signing time: Mon 21 Jul 2025 06:24:16 +0000 Manifest this update: Mon 21 Jul 2025 06:24:16 +0000 Manifest next update: Mon 28 Jul 2025 06:24:16 +0000 Files and hashes: 1: iH4RB6g_EXT_fj54CIjbVyO3kls.crl (hash: ykA4mmB2FaRkVzwb6gbRhd8Aq+gDy61f9wEhujkvTN4=) 2: 10435EE8740511EF93658977C4F9AE02.roa (hash: xmMmx42YHDQ1ahK54oeYt43Mx+x7gEXdRkvJnhnT9V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806, serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Jul 21 06:24:16 2025 GMT Not After : Jul 28 06:24:16 2025 GMT Subject: CN=687ddd10-465a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b2:ae:94:f9:f2:e0:db:b9:36:c5:1c:f9:dd: 05:37:30:dc:d5:f5:e9:6a:db:e1:58:c5:b3:9a:da: 45:5c:58:0f:96:27:9e:0f:14:05:ec:62:a0:da:f5: 64:7b:71:3f:ef:f6:10:bf:f5:92:de:0e:b2:c2:af: 5d:6b:74:4d:48:00:ed:46:a6:19:64:28:24:ba:ab: fa:67:bb:60:c4:ac:a4:f0:fe:95:63:ab:7f:e2:e9: e1:27:d6:61:62:09:84:b5:96:85:ae:21:37:cc:5f: fb:3a:3e:dc:4e:c9:d0:49:29:4b:1f:9c:24:04:c2: f2:cb:13:3c:11:a1:80:da:33:14:da:80:a8:cf:15: c8:c7:89:73:0d:eb:b3:df:e8:16:76:30:6b:51:29: 97:51:3a:c3:54:c7:f4:34:51:bf:9f:ce:26:a5:05: 51:0d:42:0f:f4:1a:72:d5:52:90:a5:2f:fd:e3:df: 94:10:21:ae:89:45:99:58:f4:4c:d2:0b:40:f0:86: 9f:7c:c7:1b:36:37:c5:03:90:dd:4e:4b:70:d5:cf: c3:30:71:f6:ca:00:11:43:60:c7:8b:c7:a4:07:ab: 9a:c8:21:ee:91:27:82:9f:15:b4:5a:14:cb:59:a3: bf:b9:95:24:f2:44:2c:1b:b7:da:3d:05:7a:75:9b: 8c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:B4:78:3B:6B:26:31:C3:C6:3E:AA:CC:D9:32:76:06:26:97:DA:01 X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:ed:64:08:12:1b:a7:20:da:ab:29:34:ce:67:1b:94:7b:73: 05:69:fa:ed:d6:1c:49:96:45:a0:d0:2c:9c:0e:b3:a0:a6:41: 42:71:01:e2:fd:f4:c1:2d:06:63:ea:58:df:10:be:51:e6:dd: 39:4d:6c:e5:b2:21:19:77:74:b1:6e:04:35:85:55:a1:36:2e: 7a:1a:1d:a8:f8:2c:a3:47:94:6d:a8:1b:1c:b0:11:19:53:89: 09:f4:52:46:21:dd:dc:b7:ab:6f:8b:8e:0c:7a:d8:73:f5:e5: fa:cf:cd:6f:49:e1:1f:46:47:6d:ee:31:6f:c4:45:f3:fd:7b: dd:59:83:2f:ce:52:9b:26:f0:9c:cf:41:e8:14:fb:20:15:d3: 7a:e3:db:0e:a5:ff:7e:d5:e1:1c:88:3a:ca:27:66:03:c7:92: 72:58:b7:56:74:4c:5b:74:ef:30:f6:c4:4b:73:9f:13:5c:54: ce:7d:a4:02:2f:d8:18:96:7b:91:ea:60:bc:58:43:5f:8b:8a: 14:ca:02:83:fe:9a:c7:5f:b3:4b:51:99:45:51:e5:aa:a0:19: 9b:b8:73:c6:9a:7f:de:2f:f3:fc:3f:a2:8d:02:e9:a5:ad:73: 3d:bb:06:51:24:17:8d:d9:a5:96:24:97:c1:4b:1d:08:1f:ea: 93:16:8e:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU4MDYxMTAvBgNVBAUTKDg4N0UxMTA3QTgzRjExNzRGRjdFM0U3ODA4ODhEQjU3 MjNCNzkyNUIwHhcNMjUwNzIxMDYyNDE2WhcNMjUwNzI4MDYyNDE2WjAYMRYwFAYD VQQDEw02ODdkZGQxMC00NjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA17KulPny4Nu5NsUc+d0FNzDc1fXpatvhWMWzmtpFXFgPlieeDxQF7GKg2vVk e3E/7/YQv/WS3g6ywq9da3RNSADtRqYZZCgkuqv6Z7tgxKyk8P6VY6t/4unhJ9Zh YgmEtZaFriE3zF/7Oj7cTsnQSSlLH5wkBMLyyxM8EaGA2jMU2oCozxXIx4lzDeuz 3+gWdjBrUSmXUTrDVMf0NFG/n84mpQVRDUIP9Bpy1VKQpS/949+UECGuiUWZWPRM 0gtA8IaffMcbNjfFA5DdTktw1c/DMHH2ygARQ2DHi8ekB6uayCHukSeCnxW0WhTL WaO/uZUk8kQsG7faPQV6dZuMKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKm0eDtr JjHDxj6qzNkydgYml9oBMB8GA1UdIwQYMBaAFIh+EQeoPxF0/34+eAiI21cjt5Jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTgwNi9DNzM5QkFFRTZF OTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VYVF9majU0Q0lqYlZ5TzNr bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2tscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTgwNi9DNzM5QkFFRTZFOTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VY VF9majU0Q0lqYlZ5TzNrbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA67WQIEhunINqrKTTOZxuUe3MFafrt1hxJlkWg0CycDrOgpkFCcQHi /fTBLQZj6ljfEL5R5t05TWzlsiEZd3SxbgQ1hVWhNi56Gh2o+CyjR5RtqBscsBEZ U4kJ9FJGId3ct6tvi44Methz9eX6z81vSeEfRkdt7jFvxEXz/XvdWYMvzlKbJvCc z0HoFPsgFdN649sOpf9+1eEciDrKJ2YDx5JyWLdWdExbdO8w9sRLc58TXFTOfaQC L9gYlnuR6mC8WENfi4oUygKD/prHX7NLUZlFUeWqoBmbuHPGmn/eL/P8P6KNAuml rXM9uwZRJBeN2aWWJJfBSx0IH+qTFo6T -----END CERTIFICATE-----Generated at Mon Jul 21 12:45:05 2025 by rpki-client