$ rpki-client -vvf rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft File: 9HpCypKdg34XkyvKB9ZfgiyWRMs.mft (raw, json) Hash identifier: PU9ivk5a0WadJSK9wKuNZHMKyYVpw2+MtZrQKjAOkGw= Subject key identifier: 1B:4D:45:BD:19:E0:C3:79:78:5E:6B:85:E3:25:A9:F2:D2:4A:0F:F7 Authority key identifier: F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB Certificate issuer: /CN=A9169A9C/serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Certificate serial: 012D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft Manifest number: 012A Signing time: Thu 21 Aug 2025 03:50:32 +0000 Manifest this update: Thu 21 Aug 2025 03:50:32 +0000 Manifest next update: Thu 28 Aug 2025 03:50:32 +0000 Files and hashes: 1: 9HpCypKdg34XkyvKB9ZfgiyWRMs.crl (hash: aWoHHCBg6wd20arth3rdRoWRYmJqj8fUo7SGffT+tq8=) 2: 183B0B384E6A11F08A1BF84DC4F9AE02.roa (hash: Dmmpxo/YJEMbai3LZXF50f2qPKmpjF90qTq1CudRiYE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169A9C, serialNumber=F47A42CA929D837E17932BCA07D65F822C9644CB Validity Not Before: Aug 21 03:50:32 2025 GMT Not After : Aug 28 03:50:32 2025 GMT Subject: CN=68a69788-762f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c4:78:6f:67:3c:68:7d:4d:61:d7:4c:f3:32: 47:b1:39:5e:aa:17:3d:53:9a:d7:5e:44:43:9c:5c: 69:8a:84:99:63:f7:6b:c4:9f:a3:5d:ea:f9:49:ce: f4:30:c7:c0:f1:19:ba:98:51:85:c2:dc:bc:2b:3a: 6b:f8:96:33:44:53:38:46:1f:43:20:29:c0:56:16: 74:2e:b7:53:d0:17:ad:27:03:f6:81:ad:e2:95:8c: 5d:51:1e:41:30:da:c0:03:d1:eb:a1:bf:6d:a7:52: 44:13:ef:18:b0:fd:4a:80:e4:c1:79:fa:06:a9:2b: c0:50:53:7f:5b:90:c3:a0:27:35:7e:47:33:b1:3b: 4d:a3:d4:e4:5b:18:bc:99:8c:85:7a:32:47:8c:18: 6f:62:63:f4:a6:12:38:ca:01:9e:17:47:a1:d9:ee: 26:93:b7:b0:8e:78:0a:2a:92:e1:d4:64:bc:a0:ba: e3:04:82:f6:f0:60:ed:a0:27:ee:39:a3:96:39:01: f4:fa:55:5d:bd:dc:55:1f:52:6b:0f:31:b1:4c:db: 13:75:92:da:2f:2e:f3:f9:02:98:dc:ab:fa:d4:09: 6f:87:8a:b8:5e:8a:fe:f0:db:b7:ce:e2:69:67:c7: f8:35:58:71:30:51:69:04:3a:c6:f6:1c:49:8f:a8: b1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:4D:45:BD:19:E0:C3:79:78:5E:6B:85:E3:25:A9:F2:D2:4A:0F:F7 X509v3 Authority Key Identifier: keyid:F4:7A:42:CA:92:9D:83:7E:17:93:2B:CA:07:D6:5F:82:2C:96:44:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9HpCypKdg34XkyvKB9ZfgiyWRMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169A9C/7114843EBC3811EEA515313BC4F9AE02/9HpCypKdg34XkyvKB9ZfgiyWRMs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:ac:20:80:4c:b9:f1:10:e0:22:b0:a6:d1:63:fb:3f:53:ca: 6d:bd:9c:93:d1:99:90:7d:aa:59:6c:1b:f7:92:a8:8b:25:f7: 20:26:ee:81:8f:75:1a:1e:44:48:50:97:4e:ba:bd:30:c1:d8: ff:bc:b5:6b:b9:ff:ef:da:0a:b2:09:51:21:ff:fa:2e:a5:4a: 27:39:f0:dd:e2:cb:7e:bf:03:e1:5f:6b:41:8d:e9:c3:50:1f: 54:a0:7f:86:0f:76:7f:b6:ad:62:ad:c4:e6:d4:14:2f:4b:f8: 39:9c:33:27:69:86:62:47:a9:e6:c7:e9:51:3c:9d:f9:12:f2: 3f:7a:04:50:c2:db:5b:bf:cc:e8:e0:85:7f:3b:d9:57:d5:25: 0b:23:9c:78:f7:c5:3b:13:54:86:75:27:29:c6:1b:08:72:d0: 30:c8:fe:9b:cd:04:0e:42:7d:82:1f:73:58:7e:3d:50:50:b8: 18:62:83:a2:e9:47:dc:ee:d2:f1:45:35:17:29:d5:da:0b:19: 02:e0:9e:1c:e0:de:d8:08:ec:fd:a0:85:7d:69:58:96:c6:d1: 98:cc:77:bf:49:c5:cf:70:56:bc:c5:91:d5:7c:c2:cc:b4:3c: 68:3b:3c:bb:cf:07:2e:c9:1b:ea:7f:78:12:2d:f5:54:87:16: 6a:b5:f1:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlBOUMxMTAvBgNVBAUTKEY0N0E0MkNBOTI5RDgzN0UxNzkzMkJDQTA3RDY1Rjgy MkM5NjQ0Q0IwHhcNMjUwODIxMDM1MDMyWhcNMjUwODI4MDM1MDMyWjAYMRYwFAYD VQQDEw02OGE2OTc4OC03NjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8R4b2c8aH1NYddM8zJHsTleqhc9U5rXXkRDnFxpioSZY/drxJ+jXer5Sc70 MMfA8Rm6mFGFwty8Kzpr+JYzRFM4Rh9DICnAVhZ0LrdT0BetJwP2ga3ilYxdUR5B MNrAA9Hrob9tp1JEE+8YsP1KgOTBefoGqSvAUFN/W5DDoCc1fkczsTtNo9TkWxi8 mYyFejJHjBhvYmP0phI4ygGeF0eh2e4mk7ewjngKKpLh1GS8oLrjBIL28GDtoCfu OaOWOQH0+lVdvdxVH1JrDzGxTNsTdZLaLy7z+QKY3Kv61Alvh4q4Xor+8Nu3zuJp Z8f4NVhxMFFpBDrG9hxJj6ixmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBtNRb0Z 4MN5eF5rheMlqfLSSg/3MB8GA1UdIwQYMBaAFPR6QsqSnYN+F5MrygfWX4IslkTL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUE5Qy83MTE0ODQzRUJD MzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGczNFhreXZLQjlaZmdpeVdS TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlIcEN5cEtkZzM0WGt5dktCOVpmZ2l5V1JNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUE5Qy83MTE0ODQzRUJDMzgxMUVFQTUxNTMxM0JDNEY5QUUwMi85SHBDeXBLZGcz NFhreXZLQjlaZmdpeVdSTXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2rCCATLnxEOAisKbRY/s/U8ptvZyT0ZmQfapZbBv3kqiLJfcgJu6B j3UaHkRIUJdOur0wwdj/vLVruf/v2gqyCVEh//oupUonOfDd4st+vwPhX2tBjenD UB9UoH+GD3Z/tq1ircTm1BQvS/g5nDMnaYZiR6nmx+lRPJ35EvI/egRQwttbv8zo 4IV/O9lX1SULI5x498U7E1SGdScpxhsIctAwyP6bzQQOQn2CH3NYfj1QULgYYoOi 6Ufc7tLxRTUXKdXaCxkC4J4c4N7YCOz9oIV9aViWxtGYzHe/ScXPcFa8xZHVfMLM tDxoOzy7zwcuyRvqf3gSLfVUhxZqtfGr -----END CERTIFICATE-----Generated at Thu Aug 21 16:36:36 2025 by rpki-client