$ rpki-client -vvf rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft File: t9SqT11yMa9OdH93IkWsA3ECEPA.mft (raw, json) Hash identifier: sLzcv5JUyUarR1XGGUFEWVWkbd5aS4uKYpLuOBVrwtQ= Subject key identifier: FC:E8:78:B1:D3:51:68:F7:7C:41:D4:DD:A5:91:55:03:4A:E7:36:EC Authority key identifier: B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 Certificate issuer: /CN=A91175F6/serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft Manifest number: 0239 Signing time: Thu 07 Aug 2025 02:29:27 +0000 Manifest this update: Thu 07 Aug 2025 02:29:27 +0000 Manifest next update: Thu 14 Aug 2025 02:29:27 +0000 Files and hashes: 1: t9SqT11yMa9OdH93IkWsA3ECEPA.crl (hash: 5HCGCovqPToJa/IQ4a0o/a2bQ/N0+dj0sJ2oFvhnl0M=) 2: 5D5B0F7C34CA11EDA301482BC4F9AE02.roa (hash: 90Bhpdbkdnfedi3OPca5alDQUSOpnC2UaqisbVy8klY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:25:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175F6, serialNumber=B7D4AA4F5D7231AF4E747F772245AC03710210F0 Validity Not Before: Aug 7 02:29:27 2025 GMT Not After : Aug 14 02:29:27 2025 GMT Subject: CN=68940f87-e281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:fd:97:73:f0:cd:f5:b3:a6:6a:71:52:72:5a: 24:99:84:a5:e5:8c:fa:06:82:0d:c4:4f:3e:45:41: f4:32:95:9a:19:9c:bc:82:8d:9f:31:ed:be:4a:47: 1c:97:6b:19:12:f0:54:1b:bc:93:a8:2b:97:30:f9: 5e:80:fc:f6:16:2c:8d:3c:a1:94:e6:f8:19:61:ff: 75:c9:01:c9:0a:97:5b:3d:a5:0e:68:2e:a7:4c:a0: eb:13:17:ff:71:8e:84:d4:79:a7:c4:09:b6:d8:59: 6e:46:89:db:2f:31:11:83:63:2e:0e:01:05:20:ec: 6e:90:6f:7a:16:4f:c7:aa:7b:b2:1a:bc:54:b8:11: 1a:f9:a1:62:7f:a8:42:7c:d1:2e:8f:8f:19:a7:61: 56:98:94:98:09:30:00:62:ca:f5:21:e3:08:56:9a: 9c:6f:52:18:cb:c7:9e:dd:b5:87:99:50:5d:ef:6d: c5:29:d2:63:42:cb:36:80:9f:94:9e:ca:0c:7d:1f: 64:4e:60:25:b8:9b:7e:a1:f8:91:e7:56:f8:39:9e: 0e:55:83:a0:19:ea:4d:cc:94:1e:ad:c6:1f:1c:1c: dc:d9:da:ba:cb:90:a6:42:ac:71:7e:5c:52:af:9b: df:fc:ac:a7:22:fd:22:c9:80:23:07:45:d4:ad:42: bd:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E8:78:B1:D3:51:68:F7:7C:41:D4:DD:A5:91:55:03:4A:E7:36:EC X509v3 Authority Key Identifier: keyid:B7:D4:AA:4F:5D:72:31:AF:4E:74:7F:77:22:45:AC:03:71:02:10:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t9SqT11yMa9OdH93IkWsA3ECEPA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175F6/13A420A8342011ED85ECBF33C4F9AE02/t9SqT11yMa9OdH93IkWsA3ECEPA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:9d:c2:b0:67:ae:eb:a9:48:db:ce:2e:32:02:50:d4:1a:11: 4d:5b:38:68:94:48:87:45:ac:5d:13:68:7e:3a:c6:a9:6b:b5: e9:f6:50:8c:de:31:dc:12:75:25:20:61:aa:7c:f9:f2:68:6c: 77:7a:72:e1:83:92:7c:68:db:94:3f:18:4b:a0:38:5b:70:b8: 63:15:75:d8:45:19:2c:7c:97:d2:fb:c1:38:ea:73:ec:f8:27: 53:2b:a7:5c:ee:93:51:cd:0e:77:b3:e2:1f:40:65:fd:0c:17: 0f:52:0e:d9:4c:cb:25:b2:9c:ba:0b:ee:57:0e:78:9a:0d:ac: 02:21:c9:ba:2e:9b:68:cc:cd:2b:e0:65:9e:cf:25:b1:a1:99: e7:fd:c7:54:92:04:20:85:51:13:25:44:55:af:e1:b1:94:37: 12:b7:34:ba:9c:38:ab:35:20:6c:ec:70:d6:ef:9c:d1:ae:ba: 29:16:ac:8a:13:f2:f2:93:8b:13:49:46:4f:03:88:d8:c7:e7: a8:9b:68:dd:be:f8:3f:b8:4a:c4:c2:47:3e:0d:a6:e4:62:81: 9b:74:fc:29:0f:d0:35:35:26:1b:3e:c8:b2:22:f1:ce:44:0b: 9b:10:19:3c:9e:70:8e:3f:59:e3:6e:46:f4:bd:25:ac:a4:95: fe:06:7d:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc1RjYxMTAvBgNVBAUTKEI3RDRBQTRGNUQ3MjMxQUY0RTc0N0Y3NzIyNDVBQzAz NzEwMjEwRjAwHhcNMjUwODA3MDIyOTI3WhcNMjUwODE0MDIyOTI3WjAYMRYwFAYD VQQDEw02ODk0MGY4Ny1lMjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8v2Xc/DN9bOmanFSclokmYSl5Yz6BoINxE8+RUH0MpWaGZy8go2fMe2+Skcc l2sZEvBUG7yTqCuXMPlegPz2FiyNPKGU5vgZYf91yQHJCpdbPaUOaC6nTKDrExf/ cY6E1HmnxAm22FluRonbLzERg2MuDgEFIOxukG96Fk/HqnuyGrxUuBEa+aFif6hC fNEuj48Zp2FWmJSYCTAAYsr1IeMIVpqcb1IYy8ee3bWHmVBd723FKdJjQss2gJ+U nsoMfR9kTmAluJt+ofiR51b4OZ4OVYOgGepNzJQercYfHBzc2dq6y5CmQqxxflxS r5vf/KynIv0iyYAjB0XUrUK9TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPzoeLHT UWj3fEHU3aWRVQNK5zbsMB8GA1UdIwQYMBaAFLfUqk9dcjGvTnR/dyJFrANxAhDw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzVGNi8xM0E0MjBBODM0 MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1hOU9kSDkzSWtXc0EzRUNF UEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q5U3FUMTF5TWE5T2RIOTNJa1dzQTNFQ0VQQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVGNi8xM0E0MjBBODM0MjAxMUVEODVFQ0JGMzNDNEY5QUUwMi90OVNxVDExeU1h OU9kSDkzSWtXc0EzRUNFUEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnncKwZ67rqUjbzi4yAlDUGhFNWzholEiHRaxdE2h+Osapa7Xp9lCM 3jHcEnUlIGGqfPnyaGx3enLhg5J8aNuUPxhLoDhbcLhjFXXYRRksfJfS+8E46nPs +CdTK6dc7pNRzQ53s+IfQGX9DBcPUg7ZTMslspy6C+5XDniaDawCIcm6LptozM0r 4GWezyWxoZnn/cdUkgQghVETJURVr+GxlDcStzS6nDirNSBs7HDW75zRrropFqyK E/Lyk4sTSUZPA4jYx+eom2jdvvg/uErEwkc+DabkYoGbdPwpD9A1NSYbPsiyIvHO RAubEBk8nnCOP1njbkb0vSWspJX+Bn2e -----END CERTIFICATE-----Generated at Thu Aug 7 04:27:08 2025 by rpki-client