$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: 10gUaYoJyBZ/rTiENsRvqgPRts/Jkx21J2ob1zYmLjk= Subject key identifier: 30:65:74:25:ED:C6:D5:C0:D1:5A:F5:37:23:6A:8A:56:10:26:E3:84 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: EE Signing time: Tue 09 Sep 2025 05:23:25 +0000 Manifest this update: Tue 09 Sep 2025 05:23:24 +0000 Manifest next update: Tue 16 Sep 2025 05:23:24 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: mEa4Dlqo7GeV563bArIZn2gugn63WiiTml1dcN8fsis=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:23:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Sep 9 05:23:24 2025 GMT Not After : Sep 16 05:23:24 2025 GMT Subject: CN=68bfb9cc-b85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:a9:fa:aa:cc:03:f1:33:c8:ee:87:ba:ed:f0: 2c:31:0a:52:96:13:58:a0:4e:fc:38:7d:fc:f9:2a: 3f:49:64:f1:d4:f5:1f:ae:43:9f:a5:58:86:92:b0: 9b:c4:b5:4b:5c:95:0a:63:97:26:66:87:1a:68:8e: cb:fa:ae:4d:47:d8:b1:8d:59:c1:27:98:78:f6:d4: 5e:53:23:23:d3:8c:42:a4:45:a9:1e:e4:e7:18:7e: 9b:24:ea:a9:be:f9:fc:88:5a:f5:8b:a1:4a:dd:e3: bd:48:5a:4f:5f:48:86:24:ff:3f:2c:58:f5:bf:41: 2d:ec:8d:ce:da:b1:2b:b8:5f:ff:13:d5:c7:e0:1f: b9:c0:8f:aa:b3:29:34:49:26:48:d8:a3:3d:e9:3c: 97:0d:fd:c8:0a:94:e2:c8:97:b9:fc:b7:69:96:94: 29:fd:24:6c:13:fd:43:3d:c2:12:11:9b:fa:62:62: a6:f1:d5:f5:ac:fc:5d:a6:67:2d:08:7d:fe:7a:63: d8:70:40:9f:c3:7b:fd:e1:71:c6:c8:3e:12:61:88: 3b:c8:d5:c0:dc:2f:0b:9f:f8:e6:63:80:7b:fd:d2: 50:49:18:18:8a:57:fc:19:f7:bb:51:9f:2f:e7:98: 71:6a:17:8f:5c:9f:85:3b:46:5f:08:2b:27:6f:5b: 89:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:65:74:25:ED:C6:D5:C0:D1:5A:F5:37:23:6A:8A:56:10:26:E3:84 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:8c:20:bf:8a:fc:f6:aa:bf:52:a2:70:42:6e:34:76:36:43: aa:5d:ef:d6:21:15:35:27:0f:6a:6a:ed:cf:8b:1f:8f:c6:78: a8:d3:3e:e6:46:b3:17:0b:2c:5b:70:6d:8c:69:47:11:a2:a7: d3:a8:0b:97:20:cd:28:f4:08:7d:ba:a2:c8:11:96:38:9e:6f: 46:72:5e:f7:cc:ab:16:2f:f5:ac:2b:7a:b6:f0:c6:b3:7d:21: f2:32:f1:17:0e:af:9b:a8:3a:a7:77:8e:cd:c2:5a:da:13:78: ff:fb:e0:f5:b6:de:36:5e:43:1d:28:b3:f1:12:c0:19:8a:c5: 19:96:98:52:3e:2d:49:30:78:5b:55:36:55:48:b2:d9:0e:24: b1:0c:59:04:16:f8:bd:9b:49:bd:c3:e0:bb:87:dc:88:8e:31: 65:af:fd:92:a4:aa:68:f1:fd:e5:7a:0b:38:48:9b:fb:d2:b9: c1:8f:51:bb:29:0a:46:13:84:95:ae:bc:37:25:58:43:60:7a: 6f:00:4a:53:77:97:48:15:cd:fd:5b:a7:c3:50:b8:3e:ba:c7: c0:85:66:52:85:c8:68:c6:c8:13:3b:09:bb:8a:e0:a4:06:f6: 67:7d:26:2b:3e:92:9f:e5:d4:3e:a2:18:b2:38:dc:0b:29:41: fc:01:90:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUwOTA5MDUyMzI0WhcNMjUwOTE2MDUyMzI0WjAYMRYwFAYD VQQDEw02OGJmYjljYy1iODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA66n6qswD8TPI7oe67fAsMQpSlhNYoE78OH38+So/SWTx1PUfrkOfpViGkrCb xLVLXJUKY5cmZocaaI7L+q5NR9ixjVnBJ5h49tReUyMj04xCpEWpHuTnGH6bJOqp vvn8iFr1i6FK3eO9SFpPX0iGJP8/LFj1v0Et7I3O2rEruF//E9XH4B+5wI+qsyk0 SSZI2KM96TyXDf3ICpTiyJe5/LdplpQp/SRsE/1DPcISEZv6YmKm8dX1rPxdpmct CH3+emPYcECfw3v94XHGyD4SYYg7yNXA3C8Ln/jmY4B7/dJQSRgYilf8Gfe7UZ8v 55hxahePXJ+FO0ZfCCsnb1uJrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDBldCXt xtXA0Vr1NyNqilYQJuOEMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAjCC/ivz2qr9SonBCbjR2NkOqXe/WIRU1Jw9qau3Pix+Pxnio0z7m RrMXCyxbcG2MaUcRoqfTqAuXIM0o9Ah9uqLIEZY4nm9Gcl73zKsWL/WsK3q28Maz fSHyMvEXDq+bqDqnd47NwlraE3j/++D1tt42XkMdKLPxEsAZisUZlphSPi1JMHhb VTZVSLLZDiSxDFkEFvi9m0m9w+C7h9yIjjFlr/2SpKpo8f3legs4SJv70rnBj1G7 KQpGE4SVrrw3JVhDYHpvAEpTd5dIFc39W6fDULg+usfAhWZShchoxsgTOwm7iuCk BvZnfSYrPpKf5dQ+ohiyONwLKUH8AZAl -----END CERTIFICATE-----Generated at Tue Sep 9 13:24:32 2025 by rpki-client