$ rpki-client -vvf rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft File: sDQcND_hUl92ySmWEMoOeOk-h8M.mft (raw, json) Hash identifier: 7dmZA8ufmQ7VfSgku3k+X70kE7FaF+hiL3STfMfnw9M= Subject key identifier: 92:2B:5E:4F:44:FF:1A:69:7C:B5:2B:47:ED:F1:4D:4B:D5:30:88:90 Authority key identifier: B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 Certificate issuer: /CN=A9167FBA/serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Certificate serial: 5A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft Manifest number: 59 Signing time: Fri 05 Sep 2025 07:41:12 +0000 Manifest this update: Fri 05 Sep 2025 07:41:12 +0000 Manifest next update: Fri 12 Sep 2025 07:41:12 +0000 Files and hashes: 1: sDQcND_hUl92ySmWEMoOeOk-h8M.crl (hash: yDNLMeo5/SLUFaoGeSOJb/HZksvDWhPJLnCdZ9YA028=) 2: F4B92E1C05A111F082D17325C4F9AE02.roa (hash: kGx1CJpE3cHBsf4M7cgjGHBrxKAD0rzUUv2UM3HRfTY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167FBA, serialNumber=B0341C343FE1525F76C9299610CA0E78E93E87C3 Validity Not Before: Sep 5 07:41:12 2025 GMT Not After : Sep 12 07:41:12 2025 GMT Subject: CN=68ba9418-397f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:49:a3:e1:df:71:a7:25:4e:4a:d0:21:2c:02: 07:90:9a:6d:ad:ad:1d:8f:de:e4:44:00:bf:59:34: 3d:8a:2a:0a:01:83:8b:d4:ec:5d:08:82:fb:ec:35: bd:9b:19:f1:ec:f7:c9:3d:83:0e:72:82:06:2f:8d: f2:e6:4b:7d:79:d5:f4:dd:7e:48:81:e3:31:2d:8a: 17:2d:bf:44:78:cc:c5:80:53:d7:ab:91:e1:19:74: c6:1b:69:bb:3d:e9:35:f7:d0:22:7f:ed:ed:e7:04: 27:90:06:bf:ed:52:f7:48:85:e5:c0:91:f2:13:2f: a9:47:bc:a6:e9:3e:4b:78:69:91:53:6a:ae:cb:eb: a5:2d:7c:60:7c:e5:12:d4:96:e0:09:a4:ff:da:ec: 10:d6:da:4c:a8:96:ed:3c:22:e8:99:a8:dd:fe:ee: 7c:0a:3f:e7:0f:fb:2f:42:b2:ff:72:63:d3:62:73: e7:d3:f2:d1:36:8b:38:85:49:7a:36:29:44:31:f4: 5b:42:7e:97:fa:62:95:18:36:75:52:42:4b:c5:c1: 6a:cc:95:08:cf:14:c4:5a:89:69:da:af:fb:b4:c8: df:3b:5b:76:8a:be:46:7a:84:94:f9:2c:c1:2c:81: 92:ca:39:8f:f5:18:58:83:7f:bd:c3:1a:7c:f9:07: e0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:2B:5E:4F:44:FF:1A:69:7C:B5:2B:47:ED:F1:4D:4B:D5:30:88:90 X509v3 Authority Key Identifier: keyid:B0:34:1C:34:3F:E1:52:5F:76:C9:29:96:10:CA:0E:78:E9:3E:87:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sDQcND_hUl92ySmWEMoOeOk-h8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167FBA/42FC3D8A048F11F0872E8547C4F9AE02/sDQcND_hUl92ySmWEMoOeOk-h8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:48:85:00:66:7c:d6:4e:cb:e9:90:3e:f0:7c:21:44:cf:77: 77:ea:92:fe:af:a1:13:b7:cf:f9:58:c1:6d:f9:7b:f7:a2:5e: c2:63:01:67:cf:25:35:06:41:07:47:7c:ad:6f:6d:4e:6d:a5: c6:e2:07:a2:89:7a:d4:11:4c:e3:5c:b6:56:9c:1f:98:fc:72: 76:d2:1f:60:c1:33:d0:39:2b:92:d0:d2:fb:58:02:24:ff:fd: 43:28:c5:f7:36:eb:ab:0f:45:f8:e8:9c:d6:78:8b:4b:c8:78: 60:8e:07:a0:6c:46:c2:fb:8f:ae:5d:59:19:15:48:cc:c6:c0: 6f:7b:e2:8f:b5:9d:77:b7:b2:bc:24:e4:66:74:ec:4d:8f:9f: 91:a8:2d:21:34:db:0a:d2:f5:39:cd:2f:12:42:40:85:16:b4: 5b:a4:81:97:43:73:69:1b:e9:dc:0e:56:b5:56:b1:a2:bc:18: eb:2b:42:12:c8:d4:94:2e:da:a8:fc:e7:76:c5:1a:97:e5:0d: 13:5c:34:82:b6:ad:3c:7b:1e:b4:54:de:21:be:ea:c4:6c:75: d5:8e:eb:f9:01:13:a0:50:63:ef:80:dc:21:37:1e:ca:ec:af: b6:ea:6d:d4:32:18:1b:bc:5f:6b:5f:57:2a:11:5e:fb:15:c4: c0:cc:33:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0ZCQTExMC8GA1UEBRMoQjAzNDFDMzQzRkUxNTI1Rjc2QzkyOTk2MTBDQTBFNzhF OTNFODdDMzAeFw0yNTA5MDUwNzQxMTJaFw0yNTA5MTIwNzQxMTJaMBgxFjAUBgNV BAMTDTY4YmE5NDE4LTM5N2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzSaPh33GnJU5K0CEsAgeQmm2trR2P3uREAL9ZND2KKgoBg4vU7F0IgvvsNb2b GfHs98k9gw5yggYvjfLmS3151fTdfkiB4zEtihctv0R4zMWAU9erkeEZdMYbabs9 6TX30CJ/7e3nBCeQBr/tUvdIheXAkfITL6lHvKbpPkt4aZFTaq7L66UtfGB85RLU luAJpP/a7BDW2kyolu08IuiZqN3+7nwKP+cP+y9Csv9yY9Nic+fT8tE2iziFSXo2 KUQx9FtCfpf6YpUYNnVSQkvFwWrMlQjPFMRaiWnar/u0yN87W3aKvkZ6hJT5LMEs gZLKOY/1GFiDf73DGnz5B+CtAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUkiteT0T/ Gml8tStH7fFNS9UwiJAwHwYDVR0jBBgwFoAUsDQcND/hUl92ySmWEMoOeOk+h8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3RkJBLzQyRkMzRDhBMDQ4 RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5MnlTbVdFTW9PZU9rLWg4 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvc0RRY05EX2hVbDkyeVNtV0VNb09lT2staDhNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3 RkJBLzQyRkMzRDhBMDQ4RjExRjA4NzJFODU0N0M0RjlBRTAyL3NEUWNORF9oVWw5 MnlTbVdFTW9PZU9rLWg4TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKFIhQBmfNZOy+mQPvB8IUTPd3fqkv6voRO3z/lYwW35e/eiXsJjAWfP JTUGQQdHfK1vbU5tpcbiB6KJetQRTONctlacH5j8cnbSH2DBM9A5K5LQ0vtYAiT/ /UMoxfc266sPRfjonNZ4i0vIeGCOB6BsRsL7j65dWRkVSMzGwG974o+1nXe3srwk 5GZ07E2Pn5GoLSE02wrS9TnNLxJCQIUWtFukgZdDc2kb6dwOVrVWsaK8GOsrQhLI 1JQu2qj853bFGpflDRNcNIK2rTx7HrRU3iG+6sRsddWO6/kBE6BQY++A3CE3Hsrs r7bqbdQyGBu8X2tfVyoRXvsVxMDMMyg= -----END CERTIFICATE-----Generated at Sat Sep 6 21:05:10 2025 by rpki-client