$ rpki-client -vvf rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft File: Ns9cwKYOC31UYSoS61uYkoRobbA.mft (raw, json) Hash identifier: 4/B0wLehRSQ/9pnQcNmtzCKMa0MqDpM8Ok85Jb+SlAw= Subject key identifier: 01:14:9F:8A:B7:EB:48:73:A7:B2:F0:86:82:5F:E9:D7:78:AC:FF:ED Authority key identifier: 36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 Certificate issuer: /CN=A917ECA2/serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Certificate serial: 01BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft Manifest number: 01B6 Signing time: Thu 21 Aug 2025 03:11:56 +0000 Manifest this update: Thu 21 Aug 2025 03:11:55 +0000 Manifest next update: Thu 28 Aug 2025 03:11:55 +0000 Files and hashes: 1: Ns9cwKYOC31UYSoS61uYkoRobbA.crl (hash: V9Obu2E8PfgVC1p6gGbgsrpIWOAfZmukmVIKRN06cRQ=) 2: BE7ACD44FEDF11EDB4C36F29C4F9AE02.roa (hash: TcJPWywxYGP4zNwqCV3RMOeXIr2sCq4he29rvfSHcP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 03:11:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 443 (0x1bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917ECA2, serialNumber=36CF5CC0A60E0B7D54612A12EB5B989284686DB0 Validity Not Before: Aug 21 03:11:55 2025 GMT Not After : Aug 28 03:11:55 2025 GMT Subject: CN=68a68e7c-15f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:83:bc:a6:8a:77:51:8a:cb:a8:26:ce:ce:b4: 1f:8f:ef:9b:a2:5e:ba:9b:6c:2f:e3:f1:4a:bd:e1: f1:07:da:ff:25:2f:44:e1:cc:96:c9:c4:22:0f:76: 25:73:e9:08:76:c0:35:b5:70:c3:38:f8:0a:03:3f: ef:4c:2c:c7:b3:c6:35:f7:d9:6e:f1:f4:7f:f5:fc: 74:87:5d:35:4d:be:c8:d1:0f:f9:95:c1:90:f5:11: ed:d7:17:ba:37:c7:ea:3f:86:bf:5a:9a:e6:22:64: ec:22:4e:a6:2e:b4:c4:cb:a3:e6:a5:fc:a7:85:4f: 8e:8d:f0:c5:17:a8:82:90:4f:e4:a8:4f:1b:92:5c: a1:28:46:80:64:35:a0:a2:4e:1a:6c:a9:fb:5f:4f: d0:91:3b:90:7b:41:6a:1d:f3:30:bd:ee:41:1b:5c: ed:39:aa:57:36:7b:fb:de:07:f0:bf:90:f1:30:16: e0:f4:54:fb:98:d0:1e:24:52:60:75:ad:cf:99:f7: 1b:ec:49:b6:53:a9:e8:5d:8d:1c:7b:5c:17:87:90: 53:e4:43:24:c2:0a:1f:dd:cf:49:a0:6a:93:39:78: 74:17:c0:ac:74:1a:fe:05:f9:26:9f:d7:35:55:9c: dc:5b:4c:4d:43:0f:72:2a:f9:db:06:2d:f3:44:62: 0b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:14:9F:8A:B7:EB:48:73:A7:B2:F0:86:82:5F:E9:D7:78:AC:FF:ED X509v3 Authority Key Identifier: keyid:36:CF:5C:C0:A6:0E:0B:7D:54:61:2A:12:EB:5B:98:92:84:68:6D:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ns9cwKYOC31UYSoS61uYkoRobbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917ECA2/02827CF8E43711EDA865631AC4F9AE02/Ns9cwKYOC31UYSoS61uYkoRobbA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:52:cc:5d:4d:74:df:56:2d:dd:d1:9d:1f:a2:4a:00:a2:f4: b8:98:28:9c:6d:48:cc:ce:eb:18:ad:ac:e1:5f:07:c1:86:62: c9:ad:8c:86:be:21:39:9f:d7:fd:9c:97:af:6b:7e:c9:15:9d: 4e:f2:dc:81:f8:91:e5:37:78:17:15:35:71:a4:87:82:8e:53: 33:4a:3a:39:5d:c4:a8:9f:00:57:04:65:03:e7:db:fc:5c:d0: 3a:b9:5d:3c:ff:bc:e5:fc:e2:77:3d:e9:82:0f:70:10:30:79: 4a:2d:76:1b:27:5a:9a:62:fb:bc:e5:40:82:ee:dd:72:ed:37: cc:57:76:34:83:b2:92:db:e3:86:27:53:fa:19:a1:af:8d:62: 5f:e7:b4:0f:28:14:cf:3d:33:37:c6:ef:8c:d8:df:b7:7e:5d: 09:cb:4f:a8:1a:e3:10:4d:e2:44:81:8a:94:2a:cd:fe:f7:2a: 54:84:26:6f:81:33:3f:64:a2:26:5f:48:6d:f5:79:73:26:11: 4b:9c:09:c2:0f:f1:83:03:83:66:bc:9c:39:c9:62:a8:39:55: 6e:54:f4:74:b6:b2:7e:5d:ac:ce:92:2f:15:2b:0d:19:40:3b: 1f:90:84:dd:6a:ec:64:64:0d:11:38:35:ad:7f:52:1f:43:b1: 11:9e:b1:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VDQTIxMTAvBgNVBAUTKDM2Q0Y1Q0MwQTYwRTBCN0Q1NDYxMkExMkVCNUI5ODky ODQ2ODZEQjAwHhcNMjUwODIxMDMxMTU1WhcNMjUwODI4MDMxMTU1WjAYMRYwFAYD VQQDEw02OGE2OGU3Yy0xNWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1IO8pop3UYrLqCbOzrQfj++bol66m2wv4/FKveHxB9r/JS9E4cyWycQiD3Yl c+kIdsA1tXDDOPgKAz/vTCzHs8Y199lu8fR/9fx0h101Tb7I0Q/5lcGQ9RHt1xe6 N8fqP4a/WprmImTsIk6mLrTEy6PmpfynhU+OjfDFF6iCkE/kqE8bklyhKEaAZDWg ok4abKn7X0/QkTuQe0FqHfMwve5BG1ztOapXNnv73gfwv5DxMBbg9FT7mNAeJFJg da3Pmfcb7Em2U6noXY0ce1wXh5BT5EMkwgof3c9JoGqTOXh0F8CsdBr+Bfkmn9c1 VZzcW0xNQw9yKvnbBi3zRGIL0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAEUn4q3 60hzp7LwhoJf6dd4rP/tMB8GA1UdIwQYMBaAFDbPXMCmDgt9VGEqEutbmJKEaG2w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUNBMi8wMjgyN0NGOEU0 MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0MzMVVZU29TNjF1WWtvUm9i YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05zOWN3S1lPQzMxVVlTb1M2MXVZa29Sb2JiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RUNBMi8wMjgyN0NGOEU0MzcxMUVEQTg2NTYzMUFDNEY5QUUwMi9Oczljd0tZT0Mz MVVZU29TNjF1WWtvUm9iYkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVUsxdTXTfVi3d0Z0fokoAovS4mCicbUjMzusYrazhXwfBhmLJrYyG viE5n9f9nJeva37JFZ1O8tyB+JHlN3gXFTVxpIeCjlMzSjo5XcSonwBXBGUD59v8 XNA6uV08/7zl/OJ3PemCD3AQMHlKLXYbJ1qaYvu85UCC7t1y7TfMV3Y0g7KS2+OG J1P6GaGvjWJf57QPKBTPPTM3xu+M2N+3fl0Jy0+oGuMQTeJEgYqUKs3+9ypUhCZv gTM/ZKImX0ht9XlzJhFLnAnCD/GDA4NmvJw5yWKoOVVuVPR0trJ+XazOki8VKw0Z QDsfkITdauxkZA0RODWtf1IfQ7ERnrH1 -----END CERTIFICATE-----Generated at Fri Aug 22 16:27:17 2025 by rpki-client