$ rpki-client -vvf rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft File: 9ZvGR-kMztyU6oWmLrjrGL0DUms.mft (raw, json) Hash identifier: TujTAZ3NwVJ86fXapCXXwsD1MD2nH7PEg1lj/qVrO1w= Subject key identifier: 75:56:DD:48:37:42:7B:39:FC:22:8D:63:7E:B5:17:EE:7A:F0:55:64 Authority key identifier: F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B Certificate issuer: /CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Certificate serial: 0832 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft Manifest number: 0824 Signing time: Wed 20 Aug 2025 20:54:35 +0000 Manifest this update: Wed 20 Aug 2025 20:54:35 +0000 Manifest next update: Wed 27 Aug 2025 20:54:35 +0000 Files and hashes: 1: 9ZvGR-kMztyU6oWmLrjrGL0DUms.crl (hash: 9yUMpFodDTeUhOJgq5Xjn0td4J12SnCtPaZ+lQ8OGAM=) 2: EED16B2CEC4211EABC227339C4F9AE02.roa (hash: L4B2evBW9dTHQXVqbxeQ4CNrkuNZaT5qA9O5a+LAGeg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 20:54:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CFD2, serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Validity Not Before: Aug 20 20:54:35 2025 GMT Not After : Aug 27 20:54:35 2025 GMT Subject: CN=68a6360b-b461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:8e:14:6e:c4:3f:98:d6:31:9a:73:33:48:f0: 68:ce:7b:7a:30:95:3c:95:d3:e1:bd:63:b3:bd:bf: 16:bd:09:b0:d8:ba:5f:8e:c2:a1:6c:71:9e:9d:49: 35:3d:9d:8d:31:d2:24:d5:9f:df:89:ad:61:92:b7: b9:1f:99:6b:3a:e9:cc:ec:b1:da:bd:dd:81:82:a1: c4:62:bc:60:d3:fe:5a:a2:b4:3d:2e:c8:c0:fb:ee: 4d:72:8b:e0:97:3a:63:ce:32:a2:c5:72:00:9f:29: f2:e0:f7:65:c9:ee:4e:5c:a5:3f:f9:3d:a1:c6:59: ab:ff:56:ec:9c:bf:7a:00:bd:dc:70:06:e4:4b:ec: 27:cd:e8:51:41:c9:fe:eb:41:f4:d8:fb:8e:5a:91: 06:8c:45:54:1f:f0:0d:3c:8d:62:6a:59:9c:65:28: 5f:80:dc:ed:74:71:06:b4:86:fb:ec:02:92:7e:ba: af:ae:96:16:91:56:63:74:53:f0:79:b9:dc:39:83: fb:13:31:10:47:2f:bd:df:56:ca:56:90:ce:32:12: 99:8b:08:f6:96:14:cb:ba:d3:8e:96:4a:23:d3:5e: 4a:57:42:93:04:f7:d1:56:3e:ee:74:08:db:57:2d: c9:66:bf:02:5c:29:64:65:6a:2f:10:f2:a6:66:02: a1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:56:DD:48:37:42:7B:39:FC:22:8D:63:7E:B5:17:EE:7A:F0:55:64 X509v3 Authority Key Identifier: keyid:F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:36:3d:c6:e9:ad:82:46:e2:72:e8:f1:59:4a:94:96:12:96: 8b:b2:79:82:eb:cf:68:60:f3:f2:c1:66:92:ab:55:6e:97:bc: d9:9d:dc:21:f3:93:58:22:8f:05:d3:ed:75:32:a1:74:64:17: 7f:f2:af:d5:85:6a:77:9f:a0:8a:b8:c9:5f:e9:bc:9d:a8:4f: 10:da:33:08:e9:29:97:cd:02:7d:6f:7b:67:b9:06:88:fc:cd: 9f:d7:04:98:8f:fd:6c:63:f0:7e:23:48:ce:a1:c0:78:4e:7a: 49:06:37:cd:94:60:17:13:91:32:0b:2a:36:4c:6a:76:c1:c8: 18:2f:a6:53:22:72:ca:dd:58:f7:fb:eb:1f:2e:82:6c:52:c0: 10:42:2d:9a:62:68:fe:0c:de:1a:bf:e9:d0:01:e2:b3:75:34: 04:fe:71:45:34:e4:c1:cf:db:29:89:1e:5b:f0:1c:fc:1d:53: e2:ea:67:c4:ad:d2:46:ba:d0:95:87:4a:59:af:ef:98:cc:b3: e7:77:3f:bc:06:73:fa:84:49:b3:a1:14:87:3c:cb:bd:5e:5e: 6d:92:85:5b:b1:cb:44:c6:c8:0d:65:3b:ba:bd:39:df:fc:a2: 77:a0:64:50:ed:bd:d5:fd:c2:17:ef:ab:fb:21:0a:61:dd:09: 41:9a:a9:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NGRDIxMTAvBgNVBAUTKEY1OUJDNjQ3RTkwQ0NFREM5NEVBODVBNjJFQjhFQjE4 QkQwMzUyNkIwHhcNMjUwODIwMjA1NDM1WhcNMjUwODI3MjA1NDM1WjAYMRYwFAYD VQQDEw02OGE2MzYwYi1iNDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtY4UbsQ/mNYxmnMzSPBoznt6MJU8ldPhvWOzvb8WvQmw2LpfjsKhbHGenUk1 PZ2NMdIk1Z/fia1hkre5H5lrOunM7LHavd2BgqHEYrxg0/5aorQ9LsjA++5Ncovg lzpjzjKixXIAnyny4Pdlye5OXKU/+T2hxlmr/1bsnL96AL3ccAbkS+wnzehRQcn+ 60H02PuOWpEGjEVUH/ANPI1ialmcZShfgNztdHEGtIb77AKSfrqvrpYWkVZjdFPw ebncOYP7EzEQRy+931bKVpDOMhKZiwj2lhTLutOOlkoj015KV0KTBPfRVj7udAjb Vy3JZr8CXClkZWovEPKmZgKhJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVW3Ug3 Qns5/CKNY361F+568FVkMB8GA1UdIwQYMBaAFPWbxkfpDM7clOqFpi646xi9A1Jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0ZEMi8xRDJBODk0MkU2 RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0eVU2b1dtTHJqckdMMERV bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzladkdSLWtNenR5VTZvV21McmpyR0wwRFVtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Q0ZEMi8xRDJBODk0MkU2RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0 eVU2b1dtTHJqckdMMERVbXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtNj3G6a2CRuJy6PFZSpSWEpaLsnmC689oYPPywWaSq1Vul7zZndwh 85NYIo8F0+11MqF0ZBd/8q/VhWp3n6CKuMlf6bydqE8Q2jMI6SmXzQJ9b3tnuQaI /M2f1wSYj/1sY/B+I0jOocB4TnpJBjfNlGAXE5EyCyo2TGp2wcgYL6ZTInLK3Vj3 ++sfLoJsUsAQQi2aYmj+DN4av+nQAeKzdTQE/nFFNOTBz9spiR5b8Bz8HVPi6mfE rdJGutCVh0pZr++YzLPndz+8BnP6hEmzoRSHPMu9Xl5tkoVbsctExsgNZTu6vTnf /KJ3oGRQ7b3V/cIX76v7IQph3QlBmqkP -----END CERTIFICATE-----Generated at Fri Aug 22 16:30:39 2025 by rpki-client