$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft File: iuWu7yqR89-GYD7cVP6ExbtXnBU.mft (raw, json) Hash identifier: GAtinkQHDQVqJTRfuxrdVAViJiLVEPJKYPMMjwqqy0Y= Subject key identifier: F4:FB:8F:C0:92:B1:24:E5:40:AF:BE:1C:87:2A:2E:CB:42:D2:B9:53 Authority key identifier: 8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 Certificate issuer: /CN=A9167CB5/serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft Manifest number: F0 Signing time: Fri 05 Sep 2025 05:43:30 +0000 Manifest this update: Fri 05 Sep 2025 05:43:29 +0000 Manifest next update: Fri 12 Sep 2025 05:43:29 +0000 Files and hashes: 1: iuWu7yqR89-GYD7cVP6ExbtXnBU.crl (hash: H00kK0RjGVhaJcCsFz5bCg3dq2sOxNFVMGRHalVWf2k=) 2: DC857BE8843111F09719836AC4F9AE02.roa (hash: qHV4LLtdLNsakUr43NtlwblQMKyqVyTmPBHeJjQSZeE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=8AE5AEEF2A91F3DF86603EDC54FE84C5BB579C15 Validity Not Before: Sep 5 05:43:29 2025 GMT Not After : Sep 12 05:43:29 2025 GMT Subject: CN=68ba7881-f017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2a:3e:41:9e:29:d6:29:16:ae:62:ba:0a:2d: e0:e8:24:79:eb:0c:4c:a5:fc:58:63:f3:09:b8:d4: 68:dc:e8:9c:16:8c:4d:b8:47:26:e8:df:ab:f8:9b: 3f:b9:ad:52:99:de:1d:c1:3d:4e:e2:d5:43:d3:2e: 9c:03:3c:93:a1:31:5f:51:96:ee:4e:8f:97:ea:bd: e4:a0:4c:07:ab:80:39:6f:a3:c5:d6:3d:19:ce:78: 4b:bb:67:65:c9:2b:cf:2e:58:a1:3f:e5:ab:7b:4f: b1:bd:5e:bb:d8:4e:b4:90:99:15:e0:fc:d2:1f:8a: a3:16:7b:cf:fe:22:0f:ae:07:97:f1:62:1a:59:ff: ee:a2:60:2b:83:1a:55:50:60:1a:8a:68:38:7a:ec: 93:f7:6a:34:d3:58:a5:7f:95:3a:17:37:2c:ef:41: 05:21:65:18:aa:e1:b8:e8:ed:b3:00:67:14:65:84: 7d:fe:23:99:bf:d0:b7:70:23:f1:65:5a:20:54:45: f3:20:b2:ac:da:cd:76:fc:47:c2:d9:4a:b9:c1:df: 55:db:25:59:48:1a:86:82:0b:ae:9b:68:f3:71:05: fd:86:33:fb:34:ac:2a:b3:c8:de:25:01:ab:46:83: a1:e4:ef:11:2a:df:c1:21:d1:fb:4a:4b:5f:7c:ad: e0:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:FB:8F:C0:92:B1:24:E5:40:AF:BE:1C:87:2A:2E:CB:42:D2:B9:53 X509v3 Authority Key Identifier: keyid:8A:E5:AE:EF:2A:91:F3:DF:86:60:3E:DC:54:FE:84:C5:BB:57:9C:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iuWu7yqR89-GYD7cVP6ExbtXnBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/EFD47D54225611EFB7561F46C4F9AE02/iuWu7yqR89-GYD7cVP6ExbtXnBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:02:5f:50:bc:0a:bb:c5:da:b8:1b:f9:d7:dc:a5:2a:e0:d5: f8:fe:20:00:c9:62:87:65:97:35:1a:9f:96:9f:3d:f3:f2:96: 0c:af:e2:57:5c:f9:00:98:7f:6a:85:7a:50:09:4d:d9:d7:15: b0:79:bc:1d:d0:d1:9b:28:82:3d:a8:67:ee:2e:1c:cf:c4:80: ad:77:82:de:d4:ff:03:b7:6d:fc:72:87:22:7f:e3:6c:64:eb: de:cf:5c:42:10:9f:a8:a6:83:c5:b5:1a:49:6a:fd:72:89:93: 4b:44:ab:34:c2:bc:f0:23:ab:ff:ad:a1:54:f2:da:ac:69:93: bc:c7:53:34:ad:5a:ac:21:42:4b:c8:9d:78:c3:c6:8c:da:12: 78:26:a7:0e:2b:91:0e:77:46:fe:56:75:3e:3c:d0:54:f3:9e: 18:24:5f:3c:3d:6c:5e:88:06:39:84:90:02:00:50:bc:6b:13: 03:de:06:45:b6:da:cd:74:22:c3:54:49:27:45:bb:29:77:40: 13:ce:13:e9:0e:87:d1:de:39:e3:34:94:a6:ba:63:25:65:3d: 39:1a:10:71:d0:3d:09:50:85:21:82:50:8a:4f:e4:97:33:57: 7b:f2:24:30:c3:4f:da:cb:f4:49:bd:50:13:77:3f:88:af:14: 97:f7:3f:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKDhBRTVBRUVGMkE5MUYzREY4NjYwM0VEQzU0RkU4NEM1 QkI1NzlDMTUwHhcNMjUwOTA1MDU0MzI5WhcNMjUwOTEyMDU0MzI5WjAYMRYwFAYD VQQDEw02OGJhNzg4MS1mMDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyo+QZ4p1ikWrmK6Ci3g6CR56wxMpfxYY/MJuNRo3OicFoxNuEcm6N+r+Js/ ua1Smd4dwT1O4tVD0y6cAzyToTFfUZbuTo+X6r3koEwHq4A5b6PF1j0ZznhLu2dl ySvPLlihP+Wre0+xvV672E60kJkV4PzSH4qjFnvP/iIPrgeX8WIaWf/uomArgxpV UGAaimg4euyT92o001ilf5U6Fzcs70EFIWUYquG46O2zAGcUZYR9/iOZv9C3cCPx ZVogVEXzILKs2s12/EfC2Uq5wd9V2yVZSBqGgguum2jzcQX9hjP7NKwqs8jeJQGr RoOh5O8RKt/BIdH7SktffK3gRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPT7j8CS sSTlQK++HIcqLstC0rlTMB8GA1UdIwQYMBaAFIrlru8qkfPfhmA+3FT+hMW7V5wV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9FRkQ0N0Q1NDIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5LUdZRDdjVlA2RXhidFhu QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l1V3U3eXFSODktR1lEN2NWUDZFeGJ0WG5CVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9FRkQ0N0Q1NDIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi9pdVd1N3lxUjg5 LUdZRDdjVlA2RXhidFhuQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA4Al9QvAq7xdq4G/nX3KUq4NX4/iAAyWKHZZc1Gp+Wnz3z8pYMr+JX XPkAmH9qhXpQCU3Z1xWwebwd0NGbKII9qGfuLhzPxICtd4Le1P8Dt238cocif+Ns ZOvez1xCEJ+opoPFtRpJav1yiZNLRKs0wrzwI6v/raFU8tqsaZO8x1M0rVqsIUJL yJ14w8aM2hJ4JqcOK5EOd0b+VnU+PNBU854YJF88PWxeiAY5hJACAFC8axMD3gZF ttrNdCLDVEknRbspd0ATzhPpDofR3jnjNJSmumMlZT05GhBx0D0JUIUhglCKT+SX M1d78iQww0/ay/RJvVATdz+IrxSX9z8m -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:10 2025 by rpki-client