$ rpki-client -vvf rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft File: 9MxDBOF5Dgj17JKahzciadCPtoE.mft (raw, json) Hash identifier: 9WM9HDCEJhHNZSbJhUDrhcsQqw5c+vm+n7g31uLZQ9w= Subject key identifier: CC:2F:79:54:7C:62:FC:25:28:3D:44:25:67:55:48:46:2B:07:F7:A3 Authority key identifier: F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 Certificate issuer: /CN=A9167BCA/serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Certificate serial: 0420 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft Manifest number: 041B Signing time: Thu 21 Aug 2025 00:30:16 +0000 Manifest this update: Thu 21 Aug 2025 00:30:15 +0000 Manifest next update: Thu 28 Aug 2025 00:30:15 +0000 Files and hashes: 1: 9MxDBOF5Dgj17JKahzciadCPtoE.crl (hash: VPvYcNP0ARRfx3tVHRNnT3qBdTeMfCBqDSQRfHDALY8=) 2: 0E7858548CBB11ECB0842F23C4F9AE02.roa (hash: q3e8py5/C6+zKkUP8OOrbssys+IzckfYmM1B63yGsr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1056 (0x420) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167BCA, serialNumber=F4CC4304E1790E08F5EC929A87372269D08FB681 Validity Not Before: Aug 21 00:30:15 2025 GMT Not After : Aug 28 00:30:15 2025 GMT Subject: CN=68a66897-9267 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:65:89:c2:c3:ff:8e:2c:f3:24:da:d0:70:c1: 1b:85:2d:bf:7d:ba:04:e5:ba:8a:82:02:12:29:64: 49:bb:88:c3:69:e3:fd:e8:ee:5c:40:03:75:b5:c4: 57:6c:a1:a1:93:8b:85:b1:0d:49:73:57:d1:4e:df: 62:73:b4:f8:de:b1:a5:ab:a0:0b:c1:c7:b6:64:a5: 8a:2d:10:20:76:53:61:46:52:99:45:d6:97:68:6f: d6:88:3f:52:bf:ef:e2:ea:b3:37:87:b9:a9:af:1c: e5:c0:92:99:19:4c:d9:14:e8:e8:a6:39:f3:45:b0: 5c:f4:dd:df:19:ea:0a:49:6b:8a:bf:ac:32:3b:02: 4b:44:5f:85:12:b4:4c:66:df:29:79:c1:32:92:5c: 8c:1b:1a:bb:d2:82:81:f6:46:19:6a:cb:e0:88:66: a1:e0:bf:1f:4e:80:c4:0c:81:2b:61:af:66:f5:74: d6:32:42:13:2b:ce:86:27:90:ef:21:8f:59:6d:de: 57:1c:ff:93:04:91:de:f1:85:56:52:bf:c6:8c:44: f1:b2:81:6f:74:10:9f:df:e2:da:52:75:8a:ce:b4: c6:20:b1:4e:3f:94:7f:d0:40:5b:91:91:ad:3e:77: 08:a5:33:b9:07:be:04:d9:24:bc:0f:fd:e4:55:c3: 9e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:2F:79:54:7C:62:FC:25:28:3D:44:25:67:55:48:46:2B:07:F7:A3 X509v3 Authority Key Identifier: keyid:F4:CC:43:04:E1:79:0E:08:F5:EC:92:9A:87:37:22:69:D0:8F:B6:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9MxDBOF5Dgj17JKahzciadCPtoE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167BCA/62BCD5DE7A9B11EC8CC2742BC4F9AE02/9MxDBOF5Dgj17JKahzciadCPtoE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:7b:5f:ad:d6:b5:50:ae:f7:97:12:a3:d3:02:fa:32:8d:7d: f5:4f:6e:ad:7c:f8:83:f4:db:4e:07:45:34:8f:09:3b:39:f7: 45:9e:0d:c8:e2:95:80:f9:b6:89:1a:98:0e:ee:7d:53:f0:1f: c9:0b:80:7b:79:73:6f:c1:6e:2e:5b:22:a1:bc:ca:7e:19:7b: 1d:b2:ae:07:5b:1b:54:b9:13:59:79:e6:27:f2:20:1d:6e:be: d5:ce:42:60:9c:db:e5:c5:79:77:8e:62:a3:0c:42:18:22:42: 87:77:07:62:f1:10:d5:c7:50:1a:9e:cb:7e:9a:22:c3:97:70: 84:db:09:d2:bd:04:73:41:c8:0b:67:93:b5:e9:de:bd:7c:cb: 39:ff:b8:f7:7f:61:23:52:cc:1e:b0:aa:88:23:ce:37:1d:23: a0:e9:b9:f5:f0:37:0a:83:55:a2:02:7f:0c:78:19:27:af:2f: 70:f5:5d:27:6d:64:8f:f0:72:08:5d:82:19:8d:af:e3:10:3d: 53:90:e4:7e:7d:46:48:5b:99:3f:a3:46:b5:fd:4c:cd:b2:94: 99:d2:d6:8d:51:d1:fd:31:b5:3e:27:ca:67:ce:78:78:f7:e2: 88:23:ce:77:42:bd:25:5d:7f:f3:5a:71:d2:3c:93:1e:b5:2e: e5:6c:3b:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCQ0ExMTAvBgNVBAUTKEY0Q0M0MzA0RTE3OTBFMDhGNUVDOTI5QTg3MzcyMjY5 RDA4RkI2ODEwHhcNMjUwODIxMDAzMDE1WhcNMjUwODI4MDAzMDE1WjAYMRYwFAYD VQQDEw02OGE2Njg5Ny05MjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGWJwsP/jizzJNrQcMEbhS2/fboE5bqKggISKWRJu4jDaeP96O5cQAN1tcRX bKGhk4uFsQ1Jc1fRTt9ic7T43rGlq6ALwce2ZKWKLRAgdlNhRlKZRdaXaG/WiD9S v+/i6rM3h7mprxzlwJKZGUzZFOjopjnzRbBc9N3fGeoKSWuKv6wyOwJLRF+FErRM Zt8pecEyklyMGxq70oKB9kYZasvgiGah4L8fToDEDIErYa9m9XTWMkITK86GJ5Dv IY9Zbd5XHP+TBJHe8YVWUr/GjETxsoFvdBCf3+LaUnWKzrTGILFOP5R/0EBbkZGt PncIpTO5B74E2SS8D/3kVcOeNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMwveVR8 YvwlKD1EJWdVSEYrB/ejMB8GA1UdIwQYMBaAFPTMQwTheQ4I9eySmoc3ImnQj7aB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0JDQS82MkJDRDVERTdB OUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURnajE3SkthaHpjaWFkQ1B0 b0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlNeERCT0Y1RGdqMTdKS2FoemNpYWRDUHRvRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0JDQS82MkJDRDVERTdBOUIxMUVDOENDMjc0MkJDNEY5QUUwMi85TXhEQk9GNURn ajE3SkthaHpjaWFkQ1B0b0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBge1+t1rVQrveXEqPTAvoyjX31T26tfPiD9NtOB0U0jwk7OfdFng3I 4pWA+baJGpgO7n1T8B/JC4B7eXNvwW4uWyKhvMp+GXsdsq4HWxtUuRNZeeYn8iAd br7VzkJgnNvlxXl3jmKjDEIYIkKHdwdi8RDVx1Aanst+miLDl3CE2wnSvQRzQcgL Z5O16d69fMs5/7j3f2EjUswesKqII843HSOg6bn18DcKg1WiAn8MeBknry9w9V0n bWSP8HIIXYIZja/jED1TkOR+fUZIW5k/o0a1/UzNspSZ0taNUdH9MbU+J8pnznh4 9+KII853Qr0lXX/zWnHSPJMetS7lbDuy -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:23 2025 by rpki-client