$ rpki-client -vvf rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft File: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft (raw, json) Hash identifier: BFcFvT1ECWey8OVOPDvqgft9UhEX1kksrmWLbVmzBYk= Subject key identifier: 1C:67:61:D4:54:14:DA:90:6A:D7:F8:B6:F2:70:29:6B:D8:A9:97:6E Authority key identifier: 4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 Certificate issuer: /CN=A9176C8F/serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft Manifest number: C5 Signing time: Fri 05 Sep 2025 06:21:19 +0000 Manifest this update: Fri 05 Sep 2025 06:21:19 +0000 Manifest next update: Fri 12 Sep 2025 06:21:19 +0000 Files and hashes: 1: Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl (hash: /KVF2kzXu+gz7XjeuWPBjk+k0krV0ARPrNFCgurHCdk=) 2: 4E9597086B5C11EFABB11F60C4F9AE02.roa (hash: Co6tkDsI5HQErtzjpED6IOpErLBa9412vvEmJqPigVc=) 3: 43749A72824E11F0A1C4B018C4F9AE02.roa (hash: 4DEc0wbLK30W3YSB0WhzIpXuKeWb4EluJvYfPFr8RSQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176C8F, serialNumber=4E7ED951C4F89F11F194468EA81544D7335E4F59 Validity Not Before: Sep 5 06:21:19 2025 GMT Not After : Sep 12 06:21:19 2025 GMT Subject: CN=68ba815f-9a4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ee:96:8a:69:c1:57:86:8d:61:f5:4d:be:ac: 41:65:e4:a9:17:ca:1d:00:fc:66:3e:a5:a4:00:17: 60:54:11:99:e2:3e:42:ea:2b:72:ed:05:6b:cd:e3: 81:13:bd:24:c1:c1:90:e1:ba:dc:55:d6:37:31:b9: 4e:1f:0c:f5:e3:80:02:80:1a:3e:b1:21:75:9d:cf: 7c:78:be:5c:84:ac:22:ec:01:ae:cb:b4:25:09:5d: 15:8a:1e:07:4a:4a:39:d4:87:17:9d:54:4c:07:76: 7a:3b:8c:f8:d9:e7:c5:54:c9:7d:07:22:16:21:58: c5:b8:d9:a0:c4:a9:3e:a2:01:a1:b5:9e:84:df:dd: 21:fb:48:43:39:e4:f4:79:9b:75:3b:58:c2:c8:c0: a2:4a:7f:29:90:cd:fe:83:31:32:8f:a2:6c:73:2e: c3:02:68:47:95:bf:bf:2f:5c:73:a5:2a:a8:f2:96: 6a:e4:74:a2:77:97:7a:86:2d:46:0f:9f:28:78:a0: 21:65:d9:54:51:54:f5:fe:9c:5f:53:28:bc:b7:9c: e9:a6:a6:c4:5c:fd:17:e1:26:51:9a:82:9e:bc:80: 93:10:7b:c9:8e:60:6c:88:fa:e7:84:02:70:64:70: 10:bf:be:d5:77:bb:ed:ff:4d:5e:74:8b:35:5b:d1: 38:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:67:61:D4:54:14:DA:90:6A:D7:F8:B6:F2:70:29:6B:D8:A9:97:6E X509v3 Authority Key Identifier: keyid:4E:7E:D9:51:C4:F8:9F:11:F1:94:46:8E:A8:15:44:D7:33:5E:4F:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176C8F/F14EED986B5A11EFBC99925CC4F9AE02/Tn7ZUcT4nxHxlEaOqBVE1zNeT1k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:2c:ac:83:f3:49:f2:88:a5:f0:d1:e5:ce:9a:15:1d:ca:00: 92:50:9b:aa:58:63:f1:3c:bc:ff:ab:c1:e3:1a:0f:8a:1a:f3: 8b:d8:ec:d1:3e:3f:35:e6:b4:64:99:22:37:74:23:4f:a8:ca: 40:1a:ee:7b:a9:5f:ab:1b:13:cd:22:a2:13:1b:93:3a:fd:35: 9a:4e:73:88:89:31:c0:c5:e5:44:c1:05:4b:74:ea:5b:9b:78: f1:0b:c7:3a:44:c9:c6:49:67:57:e0:b9:a7:7a:f6:66:d7:9f: 50:76:54:df:ea:28:96:be:a8:3f:6e:e7:3b:27:de:4f:50:0a: e1:72:c2:44:c1:47:ae:24:01:25:3e:4e:9b:9e:88:d4:00:d6: fb:64:1f:79:b6:11:c7:72:18:f8:4a:d3:d2:bb:0d:9a:67:c6: 83:59:f3:cd:fb:77:90:9a:c2:47:04:32:f2:39:41:b4:ed:36: 5b:f2:37:be:85:ff:d3:1c:38:7e:8a:43:9d:b1:42:fe:f3:ba: 33:d2:ce:d9:79:dd:0e:61:b0:3a:91:c6:7b:67:d9:d4:4d:f2: 60:54:85:ca:58:d0:35:4b:f0:21:37:e8:d3:d9:ef:6f:b4:4c: 4a:c4:2e:2b:be:13:9e:8c:ff:26:af:ba:e6:2d:9c:a1:ff:7e: 82:ff:01:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZDOEYxMTAvBgNVBAUTKDRFN0VEOTUxQzRGODlGMTFGMTk0NDY4RUE4MTU0NEQ3 MzM1RTRGNTkwHhcNMjUwOTA1MDYyMTE5WhcNMjUwOTEyMDYyMTE5WjAYMRYwFAYD VQQDEw02OGJhODE1Zi05YTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2O6WimnBV4aNYfVNvqxBZeSpF8odAPxmPqWkABdgVBGZ4j5C6ity7QVrzeOB E70kwcGQ4brcVdY3MblOHwz144ACgBo+sSF1nc98eL5chKwi7AGuy7QlCV0Vih4H Sko51IcXnVRMB3Z6O4z42efFVMl9ByIWIVjFuNmgxKk+ogGhtZ6E390h+0hDOeT0 eZt1O1jCyMCiSn8pkM3+gzEyj6Jscy7DAmhHlb+/L1xzpSqo8pZq5HSid5d6hi1G D58oeKAhZdlUUVT1/pxfUyi8t5zppqbEXP0X4SZRmoKevICTEHvJjmBsiPrnhAJw ZHAQv77Vd7vt/01edIs1W9E4owIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBxnYdRU FNqQatf4tvJwKWvYqZduMB8GA1UdIwQYMBaAFE5+2VHE+J8R8ZRGjqgVRNczXk9Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkM4Ri9GMTRFRUQ5ODZC NUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54SHhsRWFPcUJWRTF6TmVU MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RuN1pVY1Q0bnhIeGxFYU9xQlZFMXpOZVQxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkM4Ri9GMTRFRUQ5ODZCNUExMUVGQkM5OTkyNUNDNEY5QUUwMi9UbjdaVWNUNG54 SHhsRWFPcUJWRTF6TmVUMWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7LKyD80nyiKXw0eXOmhUdygCSUJuqWGPxPLz/q8HjGg+KGvOL2OzR Pj815rRkmSI3dCNPqMpAGu57qV+rGxPNIqITG5M6/TWaTnOIiTHAxeVEwQVLdOpb m3jxC8c6RMnGSWdX4LmnevZm159QdlTf6iiWvqg/buc7J95PUArhcsJEwUeuJAEl Pk6bnojUANb7ZB95thHHchj4StPSuw2aZ8aDWfPN+3eQmsJHBDLyOUG07TZb8je+ hf/THDh+ikOdsUL+87oz0s7Zed0OYbA6kcZ7Z9nUTfJgVIXKWNA1S/AhN+jT2e9v tExKxC4rvhOejP8mr7rmLZyh/36C/wFV -----END CERTIFICATE-----Generated at Sat Sep 6 14:23:19 2025 by rpki-client