$ rpki-client -vvf rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft File: fSf9xw_NGLbdWwQmla_djBc1wTA.mft (raw, json) Hash identifier: W1WR9CX8fgJrnFOGjt3FUKWzTk6GA9DGFvFhRbW1zu0= Subject key identifier: 6D:A5:6B:1C:03:8B:57:89:21:D3:85:71:D6:94:02:99:74:E9:40:57 Authority key identifier: 7D:27:FD:C7:0F:CD:18:B6:DD:5B:04:26:95:AF:DD:8C:17:35:C1:30 Certificate issuer: /CN=A9122041/serialNumber=7D27FDC70FCD18B6DD5B042695AFDD8C1735C130 Certificate serial: 010B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft Manifest number: 0109 Signing time: Sat 09 Aug 2025 05:23:04 +0000 Manifest this update: Sat 09 Aug 2025 05:23:04 +0000 Manifest next update: Sat 16 Aug 2025 05:23:04 +0000 Files and hashes: 1: fSf9xw_NGLbdWwQmla_djBc1wTA.crl (hash: MjPOESEz2Qvmc38mB+TUwb1GKelIoD8HyPQ3VrplPVU=) 2: E46B7DACDC3611EEBE5CDD37C4F9AE02.roa (hash: T4vR48N6YhwHqTHzqOptSkBSTlUWr6Qnyq5t5xi8rho=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.crl rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122041, serialNumber=7D27FDC70FCD18B6DD5B042695AFDD8C1735C130 Validity Not Before: Aug 9 05:23:04 2025 GMT Not After : Aug 16 05:23:04 2025 GMT Subject: CN=6896db38-94b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:2d:d0:1a:4e:11:d0:0a:e9:22:27:62:08:92: 39:2c:08:3b:25:1b:86:88:f3:1e:8d:dc:81:9b:b2: bb:53:fa:23:a7:f2:d1:bf:98:de:7e:32:9b:29:e7: 3b:88:a8:5b:d8:33:86:d6:ac:5a:93:e0:04:4a:8e: d8:16:4a:97:e5:35:dc:0a:9d:c6:2b:83:fa:fd:3f: 9c:a9:3c:23:98:9e:8a:11:00:d4:61:3c:f4:23:32: 7c:8a:eb:97:f6:d1:e1:f6:bf:0f:a9:3a:1b:2e:63: de:09:5c:ee:6f:24:22:11:79:80:f5:22:60:b1:1e: 42:3b:d0:63:5c:40:8b:16:70:4f:b9:1b:78:9e:45: 27:de:99:65:a2:15:07:3f:f2:e3:7c:a4:e4:7e:8a: 4d:e5:ae:f3:0f:e9:34:68:82:d7:f0:47:5e:7f:d8: d3:a4:b3:74:d5:01:70:8c:0e:eb:d9:55:df:86:be: 71:df:d6:44:2b:e8:f1:11:d3:22:01:de:47:68:ea: 06:9e:57:f2:c4:73:f6:77:28:56:46:43:95:68:3e: c0:31:33:77:2a:36:70:7c:31:33:e0:ef:d9:62:8a: 19:88:f3:c6:a1:83:79:81:53:21:9d:ca:63:ce:77: 7d:74:80:2c:7f:47:99:5a:7c:86:c8:06:3d:7e:66: bf:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:A5:6B:1C:03:8B:57:89:21:D3:85:71:D6:94:02:99:74:E9:40:57 X509v3 Authority Key Identifier: keyid:7D:27:FD:C7:0F:CD:18:B6:DD:5B:04:26:95:AF:DD:8C:17:35:C1:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fSf9xw_NGLbdWwQmla_djBc1wTA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122041/2E72E0AEDC3511EE8FF1A433C4F9AE02/fSf9xw_NGLbdWwQmla_djBc1wTA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:f6:a4:9e:3e:6f:7a:83:d3:59:6c:c4:c5:fe:29:71:b3:18: 96:9b:00:7a:ce:3d:d7:6e:ad:03:02:e8:4e:42:01:b7:b1:48: d8:0e:9b:e7:a4:b2:0b:c8:1c:01:24:63:30:a6:56:fd:c3:47: 91:57:11:17:5a:74:92:41:b9:73:0d:37:ad:a2:63:38:76:fc: 95:80:63:d4:f1:9a:e3:9f:f6:ed:92:d9:68:cf:86:7b:3d:3a: e7:25:b6:0e:cc:3e:3c:70:0a:44:c8:e3:e5:2c:5c:1d:98:f8: c6:68:61:f5:dc:a6:0f:89:31:a7:a9:43:2f:6a:fb:95:ed:9e: ca:03:dd:60:06:b8:40:e3:fe:d8:2d:7c:0a:25:0e:65:08:b4: 29:5b:07:42:a1:c2:52:6a:45:5d:37:12:c2:71:76:aa:9e:79: a5:93:f2:5c:34:78:36:1a:53:16:2d:5b:d1:30:da:bf:7c:a8: f0:b2:ea:25:b1:8e:db:38:bc:21:b3:35:b5:3c:5d:c4:45:25: 5e:9b:1f:cf:23:0c:8f:5e:fe:92:ed:66:0c:20:f6:7f:4d:2a: bb:93:8a:d4:bc:30:4f:7d:e7:30:70:fa:a2:8b:bd:c0:6e:7f: 7a:0a:d2:20:3a:d2:e5:bb:d2:e9:86:1a:c5:34:96:dd:51:c3: 36:27:b3:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIwNDExMTAvBgNVBAUTKDdEMjdGREM3MEZDRDE4QjZERDVCMDQyNjk1QUZERDhD MTczNUMxMzAwHhcNMjUwODA5MDUyMzA0WhcNMjUwODE2MDUyMzA0WjAYMRYwFAYD VQQDEw02ODk2ZGIzOC05NGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6y3QGk4R0ArpIidiCJI5LAg7JRuGiPMejdyBm7K7U/ojp/LRv5jefjKbKec7 iKhb2DOG1qxak+AESo7YFkqX5TXcCp3GK4P6/T+cqTwjmJ6KEQDUYTz0IzJ8iuuX 9tHh9r8PqTobLmPeCVzubyQiEXmA9SJgsR5CO9BjXECLFnBPuRt4nkUn3pllohUH P/LjfKTkfopN5a7zD+k0aILX8Edef9jTpLN01QFwjA7r2VXfhr5x39ZEK+jxEdMi Ad5HaOoGnlfyxHP2dyhWRkOVaD7AMTN3KjZwfDEz4O/ZYooZiPPGoYN5gVMhncpj znd9dIAsf0eZWnyGyAY9fma/ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2laxwD i1eJIdOFcdaUApl06UBXMB8GA1UdIwQYMBaAFH0n/ccPzRi23VsEJpWv3YwXNcEw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjA0MS8yRTcyRTBBRURD MzUxMUVFOEZGMUE0MzNDNEY5QUUwMi9mU2Y5eHdfTkdMYmRXd1FtbGFfZGpCYzF3 VEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZTZjl4d19OR0xiZFd3UW1sYV9kakJjMXdUQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjA0MS8yRTcyRTBBRURDMzUxMUVFOEZGMUE0MzNDNEY5QUUwMi9mU2Y5eHdfTkdM YmRXd1FtbGFfZGpCYzF3VEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/9qSePm96g9NZbMTF/ilxsxiWmwB6zj3Xbq0DAuhOQgG3sUjYDpvn pLILyBwBJGMwplb9w0eRVxEXWnSSQblzDTetomM4dvyVgGPU8Zrjn/btktloz4Z7 PTrnJbYOzD48cApEyOPlLFwdmPjGaGH13KYPiTGnqUMvavuV7Z7KA91gBrhA4/7Y LXwKJQ5lCLQpWwdCocJSakVdNxLCcXaqnnmlk/JcNHg2GlMWLVvRMNq/fKjwsuol sY7bOLwhszW1PF3ERSVemx/PIwyPXv6S7WYMIPZ/TSq7k4rUvDBPfecwcPqii73A bn96CtIgOtLlu9LphhrFNJbdUcM2J7Mw -----END CERTIFICATE-----Generated at Sun Aug 10 13:59:49 2025 by rpki-client