$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft File: ghhST3oWtYwNm3OUAxk5fuT8pv0.mft (raw, json) Hash identifier: NCzfev1RSblxA+OE6AIsV0qDhBCJjCiZmoekApoeurM= Subject key identifier: F9:85:AF:3F:CB:30:F3:7B:BF:A9:BC:DE:C2:3E:8B:5F:E9:CE:9C:DA Authority key identifier: 82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD Certificate issuer: /CN=A9179EE2/serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Certificate serial: 080F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft Manifest number: 07FD Signing time: Sat 06 Sep 2025 21:11:52 +0000 Manifest this update: Sat 06 Sep 2025 21:11:51 +0000 Manifest next update: Sat 13 Sep 2025 21:11:51 +0000 Files and hashes: 1: ghhST3oWtYwNm3OUAxk5fuT8pv0.crl (hash: Zr2YYs0Wp2/56b3ImsODuJlJBs1B6IMcSzQLRJQ7yVM=) 2: 816A256CF57311EA86849119C4F9AE02.roa (hash: jh/uFXEIZPMO8B1QG/kheiWEegpd+33S7ffLLKrSdB0=) 3: 81E94F18F57311EA86849119C4F9AE02.roa (hash: d2TZXE18Xt38fADyNBS1PVNUEthCJSPtYY97KfIT80k=) 4: FD10505CC75011EFBA3D195BC4F9AE02.roa (hash: 5TA62bj3DT+mJ8Nio1yv4R6VCuB4DLublpXb87Ez56Y=) 5: 431106B2125611ED9FB5292EC4F9AE02.roa (hash: yYe2S/r+iFZmGGM++jOhHqDjwT0Z+vvfLaaWlIwsXLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2063 (0x80f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EE2, serialNumber=8218524F7A16B58C0D9B73940319397EE4FCA6FD Validity Not Before: Sep 6 21:11:51 2025 GMT Not After : Sep 13 21:11:51 2025 GMT Subject: CN=68bca398-822e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ce:27:ac:8a:f9:fd:bb:0e:02:d4:a7:94:73: f0:49:fa:00:6a:94:87:1b:32:a8:82:12:a0:bf:36: c8:00:8e:01:1b:00:9c:9c:94:c5:9c:fc:56:e3:6b: 2b:0e:f1:27:a8:b9:19:24:fd:be:b3:d9:be:af:49: 16:a0:47:9a:e0:c8:1f:89:fc:9c:2f:62:92:4c:0b: 53:f6:f3:85:5d:69:d1:db:85:dd:45:06:a0:0d:66: 21:f3:0e:53:1d:24:02:a6:48:17:7d:99:a5:93:50: a3:99:4f:b4:2b:7e:4b:9b:dc:5c:86:ed:91:9e:2f: f0:c6:6e:9f:e8:ce:c6:0a:7d:e6:d6:6d:32:bc:bf: 93:4d:1b:ba:52:8a:f5:31:00:fa:24:58:a5:44:8a: 03:12:30:13:8c:67:9f:1c:f8:de:e0:41:b9:b9:16: 4b:41:a1:ee:05:e3:52:65:2b:5b:82:9f:b9:fa:0a: 76:87:a3:4e:c9:24:61:a7:53:30:78:85:92:dc:4a: 65:df:6d:bf:c6:5e:10:ae:d8:2d:a4:27:81:11:d9: 99:38:af:c0:7d:77:f3:74:e7:90:77:6c:bb:50:41: 91:3a:dd:b1:bc:97:71:86:41:c7:5d:cf:44:8e:b2: 4f:9d:72:dc:b2:0e:1a:2d:cb:60:34:d7:fb:bd:1f: 34:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:85:AF:3F:CB:30:F3:7B:BF:A9:BC:DE:C2:3E:8B:5F:E9:CE:9C:DA X509v3 Authority Key Identifier: keyid:82:18:52:4F:7A:16:B5:8C:0D:9B:73:94:03:19:39:7E:E4:FC:A6:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ghhST3oWtYwNm3OUAxk5fuT8pv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EE2/02B27388F57211EA9A247917C4F9AE02/ghhST3oWtYwNm3OUAxk5fuT8pv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:dc:9a:29:92:b1:10:69:ec:4b:e1:b8:4b:20:c9:2a:16:87: ce:5b:c9:d4:64:3d:e7:d9:e7:c0:23:94:93:85:5e:15:d0:01: 61:58:8e:16:48:a6:b5:42:55:63:12:f6:d8:39:6f:47:6d:2c: 57:d9:ba:25:c4:3c:87:2b:2b:c1:2c:73:e6:ed:01:57:70:67: ef:84:82:5d:35:1c:cd:04:76:84:45:73:61:cf:a7:5f:60:9a: 2f:a0:98:7a:03:05:7b:77:07:27:f5:72:93:ad:26:07:5f:6c: 72:44:64:41:d2:7e:e8:20:a1:17:dd:11:6d:18:e4:71:97:ac: 78:be:2f:50:cc:49:49:47:de:12:66:7e:cb:28:c5:c4:a0:9b: b4:a6:a5:25:77:9f:32:0e:d0:7a:5e:e4:b5:27:be:db:73:8b: 05:85:99:d8:be:94:5b:cc:10:12:e0:28:77:69:c2:df:86:a6: a8:bb:59:8b:f0:4a:3f:dd:4a:f9:70:1d:2e:26:e9:65:86:78: c6:e9:16:9d:55:93:91:f8:b5:b9:88:35:f5:0f:a2:68:41:bc: 50:30:7c:68:a0:6b:c0:c0:23:ca:b3:2d:0b:b5:51:1d:83:d5: db:af:99:03:5e:2c:6e:12:33:7c:bc:b6:5c:ea:6c:7a:a9:25: 2a:bf:6c:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFRTIxMTAvBgNVBAUTKDgyMTg1MjRGN0ExNkI1OEMwRDlCNzM5NDAzMTkzOTdF RTRGQ0E2RkQwHhcNMjUwOTA2MjExMTUxWhcNMjUwOTEzMjExMTUxWjAYMRYwFAYD VQQDEw02OGJjYTM5OC04MjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0s4nrIr5/bsOAtSnlHPwSfoAapSHGzKoghKgvzbIAI4BGwCcnJTFnPxW42sr DvEnqLkZJP2+s9m+r0kWoEea4MgfifycL2KSTAtT9vOFXWnR24XdRQagDWYh8w5T HSQCpkgXfZmlk1CjmU+0K35Lm9xchu2Rni/wxm6f6M7GCn3m1m0yvL+TTRu6Uor1 MQD6JFilRIoDEjATjGefHPje4EG5uRZLQaHuBeNSZStbgp+5+gp2h6NOySRhp1Mw eIWS3Epl322/xl4QrtgtpCeBEdmZOK/AfXfzdOeQd2y7UEGROt2xvJdxhkHHXc9E jrJPnXLcsg4aLctgNNf7vR80IwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPmFrz/L MPN7v6m83sI+i1/pzpzaMB8GA1UdIwQYMBaAFIIYUk96FrWMDZtzlAMZOX7k/Kb9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVFMi8wMkIyNzM4OEY1 NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZd05tM09VQXhrNWZ1VDhw djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2doaFNUM29XdFl3Tm0zT1VBeGs1ZnVUOHB2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVFMi8wMkIyNzM4OEY1NzIxMUVBOUEyNDc5MTdDNEY5QUUwMi9naGhTVDNvV3RZ d05tM09VQXhrNWZ1VDhwdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCp3JopkrEQaexL4bhLIMkqFofOW8nUZD3n2efAI5SThV4V0AFhWI4W SKa1QlVjEvbYOW9HbSxX2bolxDyHKyvBLHPm7QFXcGfvhIJdNRzNBHaERXNhz6df YJovoJh6AwV7dwcn9XKTrSYHX2xyRGRB0n7oIKEX3RFtGORxl6x4vi9QzElJR94S Zn7LKMXEoJu0pqUld58yDtB6XuS1J77bc4sFhZnYvpRbzBAS4Ch3acLfhqaou1mL 8Eo/3Ur5cB0uJullhnjG6RadVZOR+LW5iDX1D6JoQbxQMHxooGvAwCPKsy0LtVEd g9Xbr5kDXixuEjN8vLZc6mx6qSUqv2yd -----END CERTIFICATE-----Generated at Sun Sep 7 14:18:34 2025 by rpki-client