$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft File: A9h0_y9dMgjn62Jadzf81EzuKsI.mft (raw, json) Hash identifier: 1Nzqwp1I600JSBjw+wddf07D/G/VpNd6+ttF5MFI4CE= Subject key identifier: 50:2F:43:7E:38:33:0C:1F:AC:83:15:4D:09:A3:0B:89:84:8E:0D:ED Authority key identifier: 03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 Certificate issuer: /CN=A91D901E/serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Certificate serial: 07 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft Manifest number: 06 Signing time: Thu 21 Aug 2025 08:23:09 +0000 Manifest this update: Thu 21 Aug 2025 08:23:09 +0000 Manifest next update: Thu 28 Aug 2025 08:23:09 +0000 Files and hashes: 1: A9h0_y9dMgjn62Jadzf81EzuKsI.crl (hash: Db9DXfpjm3gT9MgKt5Z+byDEdJ0D+oas5TmEUcQidsg=) 2: 58893B2878DC11F084C71D2BC4F9AE02.roa (hash: Top1RS38Q6RG/Bo0KeriCxYaYwIm8AI46xZdJa/NP8M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 08:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D901E, serialNumber=03D874FF2F5D3208E7EB625A7737FCD44CEE2AC2 Validity Not Before: Aug 21 08:23:09 2025 GMT Not After : Aug 28 08:23:09 2025 GMT Subject: CN=68a6d76d-53cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ca:ad:ac:2c:e1:75:48:57:c4:44:d5:40:33: 94:5f:f7:fd:b1:b4:62:01:60:8c:c0:c0:13:3f:af: 69:da:ce:ad:a8:7c:cb:d3:cf:c7:07:58:0a:a0:39: a4:14:c4:58:21:5b:1d:42:1f:e3:9d:bf:8e:51:ce: 08:cd:01:c7:e1:52:9f:bf:6b:fa:da:e8:bb:03:2e: ec:1c:a8:e1:1e:5f:6a:78:74:b3:24:33:5a:fe:32: dc:c5:08:06:a3:19:65:7f:4e:eb:ba:cc:44:ed:9d: 71:26:3f:e1:57:63:85:84:a7:0e:9c:6b:83:28:75: 21:93:9f:57:59:c4:f7:09:c6:d6:dd:10:26:6a:45: 0e:a5:00:f6:50:76:38:d6:e1:e5:e6:e4:16:8b:1b: be:f8:ec:c0:1b:41:75:00:da:68:96:e8:a2:db:20: cf:c7:c8:70:f4:bd:a7:e3:d5:54:0a:60:e8:32:94: df:40:83:e5:3e:f3:41:2a:15:70:36:fe:15:8b:33: 29:4e:e7:2e:ef:96:3c:c0:8e:b2:f6:11:82:29:8b: ce:2d:61:45:ec:d8:76:97:b0:ec:7a:dd:20:34:d0: db:1d:79:d5:ef:4d:94:c9:60:d2:85:50:a2:f1:f3: c2:87:a2:9d:17:2f:a1:e4:af:9c:c5:67:40:98:81: 42:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:2F:43:7E:38:33:0C:1F:AC:83:15:4D:09:A3:0B:89:84:8E:0D:ED X509v3 Authority Key Identifier: keyid:03:D8:74:FF:2F:5D:32:08:E7:EB:62:5A:77:37:FC:D4:4C:EE:2A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/A9h0_y9dMgjn62Jadzf81EzuKsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/DE2D64EA78DA11F0B0FBE216C4F9AE02/A9h0_y9dMgjn62Jadzf81EzuKsI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:8c:60:49:0e:5d:e8:f6:d9:4f:b9:6b:cf:30:bf:e4:15:29: 59:59:2f:76:d1:a8:7c:2b:17:ee:74:1d:07:4d:df:db:7d:df: db:50:c2:92:28:e7:52:1a:11:64:75:1a:6a:6b:65:44:c5:24: 73:db:11:f6:9a:71:8c:1f:97:eb:20:00:9f:ff:64:ac:6c:03: c1:3c:18:55:d2:6f:5d:7e:ae:bc:86:fb:64:6c:3d:18:0b:1a: b4:5a:bf:1a:9e:1e:7f:a1:f9:70:8b:03:ed:dd:4d:ee:99:0e: 2b:18:14:66:ba:ed:56:79:1e:7b:a8:82:6d:36:26:f2:99:26: a5:07:49:a1:26:7c:06:76:46:29:92:3b:67:b6:c8:16:43:1e: e0:1f:8c:d3:dc:d2:4a:1a:e0:8f:33:99:ec:b4:10:6b:6c:d9: 74:1d:2f:24:5f:08:53:4a:fb:90:36:a3:3c:cd:8d:b6:60:97: 54:af:c0:eb:7a:59:ad:df:58:9e:16:f4:46:1a:62:ac:dd:d8: c9:9b:bc:bf:54:99:07:28:47:36:74:23:89:22:4b:79:78:61: c4:34:96:c1:3c:e1:3c:50:3c:c0:b6:15:5c:7b:31:7c:4c:21: b1:16:aa:ea:a7:c9:23:cc:24:0b:87:dc:25:c1:39:f3:11:b8: 55:78:bf:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTAxRTExMC8GA1UEBRMoMDNEODc0RkYyRjVEMzIwOEU3RUI2MjVBNzczN0ZDRDQ0 Q0VFMkFDMjAeFw0yNTA4MjEwODIzMDlaFw0yNTA4MjgwODIzMDlaMBgxFjAUBgNV BAMTDTY4YTZkNzZkLTUzY2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXyq2sLOF1SFfERNVAM5Rf9/2xtGIBYIzAwBM/r2nazq2ofMvTz8cHWAqgOaQU xFghWx1CH+Odv45RzgjNAcfhUp+/a/ra6LsDLuwcqOEeX2p4dLMkM1r+MtzFCAaj GWV/Tuu6zETtnXEmP+FXY4WEpw6ca4ModSGTn1dZxPcJxtbdECZqRQ6lAPZQdjjW 4eXm5BaLG7747MAbQXUA2miW6KLbIM/HyHD0vafj1VQKYOgylN9Ag+U+80EqFXA2 /hWLMylO5y7vljzAjrL2EYIpi84tYUXs2HaXsOx63SA00NsdedXvTZTJYNKFUKLx 88KHop0XL6Hkr5zFZ0CYgULfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUUC9Dfjgz DB+sgxVNCaMLiYSODe0wHwYDVR0jBBgwFoAUA9h0/y9dMgjn62Jadzf81EzuKsIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5MDFFL0RFMkQ2NEVBNzhE QTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdqbjYySmFkemY4MUV6dUtz SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQTloMF95OWRNZ2puNjJKYWR6ZjgxRXp1S3NJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5 MDFFL0RFMkQ2NEVBNzhEQTExRjBCMEZCRTIxNkM0RjlBRTAyL0E5aDBfeTlkTWdq bjYySmFkemY4MUV6dUtzSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGCMYEkOXej22U+5a88wv+QVKVlZL3bRqHwrF+50HQdN39t939tQwpIo 51IaEWR1GmprZUTFJHPbEfaacYwfl+sgAJ//ZKxsA8E8GFXSb11+rryG+2RsPRgL GrRavxqeHn+h+XCLA+3dTe6ZDisYFGa67VZ5Hnuogm02JvKZJqUHSaEmfAZ2RimS O2e2yBZDHuAfjNPc0koa4I8zmey0EGts2XQdLyRfCFNK+5A2ozzNjbZgl1SvwOt6 Wa3fWJ4W9EYaYqzd2MmbvL9UmQcoRzZ0I4kiS3l4YcQ0lsE84TxQPMC2FVx7MXxM IbEWquqnySPMJAuH3CXBOfMRuFV4vyg= -----END CERTIFICATE-----Generated at Sat Aug 23 02:08:16 2025 by rpki-client