$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft File: W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft (raw, json) Hash identifier: tB2kuFQIRLt3TQsOWcdRwv8xN9ZQZHO0SWcS7j02NFc= Subject key identifier: 3B:75:1D:AF:D8:C7:92:86:D6:1F:65:19:D5:C5:DE:D2:75:5F:C4:34 Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: 010C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft Manifest number: 010A Signing time: Fri 05 Sep 2025 05:21:17 +0000 Manifest this update: Fri 05 Sep 2025 05:21:17 +0000 Manifest next update: Fri 12 Sep 2025 05:21:17 +0000 Files and hashes: 1: W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl (hash: AVjAHvTn8hezCZvegvwsZsr47K09K/B+0alrP0N4wwg=) 2: FD990E7AF0B311EE9923BC84C4F9AE02.roa (hash: XWibtqlVyPdPRt9izLBx3ZYroA9isT1xxkvokh85YPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 268 (0x10c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Sep 5 05:21:17 2025 GMT Not After : Sep 12 05:21:17 2025 GMT Subject: CN=68ba734d-b182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:4d:b9:a5:8c:fb:3a:8e:2e:39:93:ad:b9:b1: f2:48:bc:e2:d0:d1:be:02:29:c4:fc:4b:7b:92:09: ae:a6:79:3a:c9:ec:07:fe:e6:83:0c:09:8e:9b:4e: e2:a7:22:0a:ed:8a:00:f4:9d:c4:9d:14:68:87:16: 23:22:a1:4b:75:1f:9f:58:0d:d0:0d:74:13:9a:f1: ed:98:de:38:cb:b8:32:8d:ff:f0:e3:0d:66:59:b5: 82:49:1c:bb:00:77:91:f8:1e:80:d2:1d:d6:60:97: 10:7c:02:90:0b:c5:6d:28:07:ff:bf:0c:29:79:8b: 32:62:de:43:bd:2e:19:97:2a:23:1b:00:59:46:f6: 14:57:f1:68:f6:74:9b:24:64:f2:42:43:bb:cd:40: 0c:4c:0c:d6:57:ef:cb:f6:9f:7e:90:97:ba:19:8e: 75:b4:99:91:26:b8:29:44:19:61:d4:8e:32:fe:ea: 2d:15:60:68:38:22:b9:19:61:89:77:4f:fe:a2:7c: 66:1e:ad:18:df:81:b2:36:06:0f:5b:dc:f2:60:68: c2:4a:05:63:3c:b7:64:55:22:14:c0:17:7c:19:b5: 7a:c7:e8:d2:0c:37:ac:87:f4:6c:02:e5:0e:87:02: 47:e2:37:bf:c6:08:a5:b9:94:ad:d8:56:ae:fc:65: e4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:75:1D:AF:D8:C7:92:86:D6:1F:65:19:D5:C5:DE:D2:75:5F:C4:34 X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:4c:82:32:6e:6f:6b:1d:1e:c5:47:cb:d6:58:85:a9:a2:f5: 05:97:7b:ae:bc:58:6c:2d:95:60:0f:f5:3d:08:cf:a1:04:68: 6a:59:c3:0e:eb:4d:77:9c:9e:94:a2:c9:45:aa:11:a1:b1:15: 04:d7:7c:3a:17:35:f5:0b:37:04:b0:6d:cc:38:d6:4e:01:86: 7e:af:fe:f7:86:2e:f7:eb:b2:1b:de:78:94:d5:28:65:7d:62: 29:c5:e8:a2:57:63:45:79:b9:89:a0:fb:16:69:cc:35:8f:24: 5e:56:38:ca:48:2a:db:82:8f:bc:4a:f1:5e:ca:f1:ad:72:46: 6d:bf:6c:a9:0a:49:2a:f2:4f:3c:38:5b:12:c4:a7:f4:09:99: 8b:45:e3:26:e0:23:c0:bb:69:1d:2d:f5:31:88:f1:7d:82:7a: 63:c2:cd:35:2d:eb:b8:c5:5d:2f:91:f4:cb:3f:b1:e5:07:d2: 79:c2:f5:96:ab:db:22:d0:c7:b6:81:32:77:24:32:19:68:27: 37:fc:67:f7:a0:a9:6d:b6:3a:7b:f8:82:33:aa:05:84:b4:92: ab:52:a8:f7:51:b6:42:c0:8d:fb:90:7c:04:b4:dd:62:92:56: ef:2f:fe:22:e4:38:2c:5f:d6:4d:d5:31:79:6a:43:2a:d8:58: f4:48:7d:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDVCQzQ5NEU4OUQwQTQxNTVCNTUyNTM2M0QxMjM1QzVF REMwRkRFMkYwHhcNMjUwOTA1MDUyMTE3WhcNMjUwOTEyMDUyMTE3WjAYMRYwFAYD VQQDEw02OGJhNzM0ZC1iMTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9U25pYz7Oo4uOZOtubHySLzi0NG+AinE/Et7kgmupnk6yewH/uaDDAmOm07i pyIK7YoA9J3EnRRohxYjIqFLdR+fWA3QDXQTmvHtmN44y7gyjf/w4w1mWbWCSRy7 AHeR+B6A0h3WYJcQfAKQC8VtKAf/vwwpeYsyYt5DvS4ZlyojGwBZRvYUV/Fo9nSb JGTyQkO7zUAMTAzWV+/L9p9+kJe6GY51tJmRJrgpRBlh1I4y/uotFWBoOCK5GWGJ d0/+onxmHq0Y34GyNgYPW9zyYGjCSgVjPLdkVSIUwBd8GbV6x+jSDDesh/RsAuUO hwJH4je/xgiluZSt2Fau/GXk4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDt1Ha/Y x5KG1h9lGdXF3tJ1X8Q0MB8GA1UdIwQYMBaAFFvElOidCkFVtVJTY9EjXF7cD94v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9BOEMyNTFFQUYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FWVzFVbE5qMFNOY1h0d1Az aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9BOEMyNTFFQUYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FW VzFVbE5qMFNOY1h0d1AzaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKTIIybm9rHR7FR8vWWIWpovUFl3uuvFhsLZVgD/U9CM+hBGhqWcMO 6013nJ6UoslFqhGhsRUE13w6FzX1CzcEsG3MONZOAYZ+r/73hi7367Ib3niU1Shl fWIpxeiiV2NFebmJoPsWacw1jyReVjjKSCrbgo+8SvFeyvGtckZtv2ypCkkq8k88 OFsSxKf0CZmLReMm4CPAu2kdLfUxiPF9gnpjws01Leu4xV0vkfTLP7HlB9J5wvWW q9si0Me2gTJ3JDIZaCc3/Gf3oKlttjp7+IIzqgWEtJKrUqj3UbZCwI37kHwEtN1i klbvL/4i5DgsX9ZN1TF5akMq2Fj0SH0V -----END CERTIFICATE-----Generated at Sat Sep 6 15:34:17 2025 by rpki-client