$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft File: 9JfRcWknbUPFhSFcGYMxwzwiWnU.mft (raw, json) Hash identifier: pLKLN1S6htXzrthPT7WdgewXMLweek542Y2k4iRA50k= Subject key identifier: 3C:27:FC:ED:3B:BE:18:1C:B4:15:E0:F0:DE:27:4C:A2:4E:B6:E7:5E Authority key identifier: F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 Certificate issuer: /CN=A91ECC24/serialNumber=F497D17169276D43C585215C198331C33C225A75 Certificate serial: 021C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft Manifest number: 0210 Signing time: Thu 21 Aug 2025 02:24:00 +0000 Manifest this update: Thu 21 Aug 2025 02:23:59 +0000 Manifest next update: Thu 28 Aug 2025 02:23:59 +0000 Files and hashes: 1: 9JfRcWknbUPFhSFcGYMxwzwiWnU.crl (hash: 7b+RxefFa1r9JbYgn7w/IW84dYGDDG33KTVNHAmQsdg=) 2: AC8A59D689D311EE81F03018C4F9AE02.roa (hash: CgMPU2zKmFQv28rwsx7lyUdY/WjeUcfrzEMiRjZzUr8=) 3: B9D8F9CE89D011EEB603FF75C4F9AE02.roa (hash: l/45mJzVlvrXkvMnYsTOqET7KEWpbH/MA+sFMBUmJ+A=) 4: C82A0778680811EE88B5527CC4F9AE02.roa (hash: FMfFksLuvdDh719tgVb78yQXrHhuawjPdGhDWuzq2VE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 02:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC24, serialNumber=F497D17169276D43C585215C198331C33C225A75 Validity Not Before: Aug 21 02:23:59 2025 GMT Not After : Aug 28 02:23:59 2025 GMT Subject: CN=68a6833f-bc70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:52:65:ba:b0:be:3c:76:3d:72:c4:15:73:14: 65:7a:f4:57:de:9b:e7:d8:f3:40:83:ed:23:df:87: 8e:3a:6a:0b:a7:d4:aa:1d:e0:c9:08:9f:54:91:48: a4:42:64:95:dc:48:ff:88:3b:33:f6:5e:92:b6:6b: e3:36:29:4f:1a:32:97:3d:08:bc:71:b6:d5:39:77: 12:a0:43:a8:2e:78:58:28:e0:c3:7e:5e:0a:33:40: 5f:08:ba:87:58:04:1a:4a:d9:00:c4:a3:ee:c9:61: 5e:9a:e0:af:fa:68:32:52:cc:c2:a7:79:e3:c0:f7: cb:70:e3:ff:9b:8c:a8:27:fb:1f:8e:e0:cd:a1:09: 15:3c:08:9d:07:ae:fe:72:5c:50:57:50:d4:69:4e: fc:e7:b3:3e:5e:7b:4c:bc:b4:18:b2:8e:b6:9e:66: e1:f5:2d:69:e2:e0:d7:bd:95:a5:9c:33:fc:b8:71: 07:d3:eb:90:bf:4d:0e:b2:a8:4e:0e:11:5f:d7:a6: 8e:75:0a:14:76:4a:97:c6:87:41:fd:c7:00:0e:77: 7f:c9:f2:c4:da:40:95:d2:6d:ce:c9:c5:b0:23:2b: ab:09:71:52:85:99:ff:42:2a:d3:e2:01:50:26:fb: be:6c:3a:dd:15:8a:34:24:4b:e7:b4:44:cc:e5:be: d3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:27:FC:ED:3B:BE:18:1C:B4:15:E0:F0:DE:27:4C:A2:4E:B6:E7:5E X509v3 Authority Key Identifier: keyid:F4:97:D1:71:69:27:6D:43:C5:85:21:5C:19:83:31:C3:3C:22:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9JfRcWknbUPFhSFcGYMxwzwiWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC24/16C613166AFA11EDB706FF3CC4F9AE02/9JfRcWknbUPFhSFcGYMxwzwiWnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:79:f1:76:8a:34:e4:3f:9e:cb:9f:3d:63:7a:5b:b0:f4:fb: 47:c7:1e:ee:ce:4e:c7:66:81:bc:4b:88:b0:c1:6f:d3:21:c3: 3c:ee:62:ed:8c:86:7c:e6:5a:35:ce:de:46:04:0f:d3:18:73: 60:a8:bc:ca:40:31:74:80:98:63:eb:9f:e4:0e:93:f3:4a:fd: e1:84:ec:5c:84:f7:9c:b6:37:04:ba:8f:8c:fc:8a:c5:c0:09: b6:bc:49:15:e1:b3:49:07:67:b3:c4:ed:39:c5:0e:fd:7b:bd: ac:b6:46:7d:f9:76:56:e9:b6:a0:d8:e1:86:e7:03:34:b9:91: 8d:f8:1e:63:33:17:91:e4:ba:29:27:50:14:02:22:9c:ea:1a: da:48:65:5a:54:89:92:e0:53:8d:3f:84:6b:0c:3a:4b:32:a8: ce:0a:60:8b:24:b1:43:5c:b4:21:a2:79:d3:ab:1e:69:d8:a1: 50:a9:2f:7b:c8:7d:b3:02:44:ee:70:aa:fd:04:e6:fc:9d:e4: a3:ad:57:8c:b7:2a:0a:ee:f0:cb:4f:9d:2e:e8:c3:e7:aa:e3: 7e:8e:d4:bf:cb:16:97:01:e0:be:14:e2:16:32:4c:d0:80:76: 79:dc:98:72:36:55:95:8f:53:91:0d:d0:23:01:f7:1d:85:bf: 9b:12:db:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDMjQxMTAvBgNVBAUTKEY0OTdEMTcxNjkyNzZENDNDNTg1MjE1QzE5ODMzMUMz M0MyMjVBNzUwHhcNMjUwODIxMDIyMzU5WhcNMjUwODI4MDIyMzU5WjAYMRYwFAYD VQQDEw02OGE2ODMzZi1iYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FJlurC+PHY9csQVcxRlevRX3pvn2PNAg+0j34eOOmoLp9SqHeDJCJ9UkUik QmSV3Ej/iDsz9l6StmvjNilPGjKXPQi8cbbVOXcSoEOoLnhYKODDfl4KM0BfCLqH WAQaStkAxKPuyWFemuCv+mgyUszCp3njwPfLcOP/m4yoJ/sfjuDNoQkVPAidB67+ clxQV1DUaU7857M+XntMvLQYso62nmbh9S1p4uDXvZWlnDP8uHEH0+uQv00OsqhO DhFf16aOdQoUdkqXxodB/ccADnd/yfLE2kCV0m3OycWwIyurCXFShZn/QirT4gFQ Jvu+bDrdFYo0JEvntETM5b7TBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDwn/O07 vhgctBXg8N4nTKJOtudeMB8GA1UdIwQYMBaAFPSX0XFpJ21DxYUhXBmDMcM8Ilp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0MyNC8xNkM2MTMxNjZB RkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJVUEZoU0ZjR1lNeHd6d2lX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlKZlJjV2tuYlVQRmhTRmNHWU14d3p3aVduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0MyNC8xNkM2MTMxNjZBRkExMUVEQjcwNkZGM0NDNEY5QUUwMi85SmZSY1drbmJV UEZoU0ZjR1lNeHd6d2lXblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgefF2ijTkP57Lnz1jeluw9PtHxx7uzk7HZoG8S4iwwW/TIcM87mLt jIZ85lo1zt5GBA/TGHNgqLzKQDF0gJhj65/kDpPzSv3hhOxchPectjcEuo+M/IrF wAm2vEkV4bNJB2ezxO05xQ79e72stkZ9+XZW6bag2OGG5wM0uZGN+B5jMxeR5Lop J1AUAiKc6hraSGVaVImS4FONP4RrDDpLMqjOCmCLJLFDXLQhonnTqx5p2KFQqS97 yH2zAkTucKr9BOb8neSjrVeMtyoK7vDLT50u6MPnquN+jtS/yxaXAeC+FOIWMkzQ gHZ53JhyNlWVj1ORDdAjAfcdhb+bEtvz -----END CERTIFICATE-----Generated at Fri Aug 22 16:16:44 2025 by rpki-client