$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: +cFtBtPthtCBtbBCtOwy79Yxt5ZC5a+xi55+tczHJ3s= Subject key identifier: ED:6D:74:4B:E2:1F:92:53:11:75:07:01:FE:CB:11:AD:9C:07:3F:6E Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 0285 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0281 Signing time: Sat 09 Aug 2025 02:15:09 +0000 Manifest this update: Sat 09 Aug 2025 02:15:08 +0000 Manifest next update: Sat 16 Aug 2025 02:15:08 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: 1R/+jShR9kwomXh9qRy1CjOATEATRaTwtwNnsYB32bo=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 645 (0x285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Aug 9 02:15:08 2025 GMT Not After : Aug 16 02:15:08 2025 GMT Subject: CN=6896af2c-eea3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b1:16:c0:8e:99:b6:a4:99:57:42:f8:a1:98: bd:0f:f5:dd:c6:a1:44:3b:c1:84:46:5a:c3:54:fc: fa:17:9a:57:9a:77:f2:da:bf:cc:80:37:64:9b:1b: cf:bc:cd:68:a8:da:bb:20:eb:f6:c3:e2:45:fa:38: dc:ea:0c:64:c1:2f:9a:29:d6:3a:5c:4c:22:db:8f: 0c:b6:5a:70:c9:af:c2:8f:41:df:eb:3b:c5:03:2e: e0:cd:25:a2:ad:76:c6:49:f0:e2:b0:83:93:ef:6f: 96:a0:45:10:c2:c5:49:9b:98:c9:3a:9d:e5:36:b3: f5:e9:03:fe:23:00:be:10:d0:db:0c:b2:3d:6f:4e: c9:2d:f2:fc:50:38:f8:66:56:15:2e:b8:57:3a:01: 05:4e:16:e3:c5:6a:92:00:16:a4:f9:37:9a:16:56: 10:bb:f8:dc:cd:e5:8c:50:6d:2b:f8:31:94:f5:55: a5:84:86:56:5d:c3:c4:a5:af:3f:7b:16:18:bf:58: 67:7f:1b:36:65:20:b3:07:25:64:40:44:54:1f:5f: 26:d7:d4:59:bf:e8:76:6d:04:7a:e8:99:24:6c:3b: 30:fb:64:55:96:51:43:ba:59:02:ec:75:86:f4:28: ce:07:3f:5d:42:c3:26:7e:9d:90:29:16:34:f3:55: e8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6D:74:4B:E2:1F:92:53:11:75:07:01:FE:CB:11:AD:9C:07:3F:6E X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:e8:a4:dc:f1:45:b4:07:82:b7:44:54:79:a3:c3:d4:19:c6: 1e:53:ae:a2:f4:8d:bf:7d:7a:4f:37:eb:d9:c9:eb:15:eb:c6: 33:bf:48:d4:65:92:d3:e1:51:6a:36:13:79:cf:25:73:47:d6: 2a:94:d1:27:69:92:d6:04:66:4d:7e:71:e0:18:22:b6:92:fc: 33:02:40:bc:a0:a0:cd:4d:e4:75:ea:de:97:d4:39:ce:09:7c: 83:4c:8a:fd:03:93:2e:30:f3:46:2d:fd:2f:25:97:2b:55:3a: 4f:03:80:7c:d5:d9:43:38:d3:e8:78:ab:c2:ef:db:36:81:4f: 39:1a:76:79:7e:d1:85:28:07:cf:a2:78:5a:57:55:49:48:59: d1:bf:ee:b2:9e:e5:4a:35:11:9a:b9:5c:e7:c8:17:d8:23:5e: 93:50:20:f3:d5:5a:ea:2a:df:e3:38:4d:b3:f9:d9:98:ce:e4: a6:5c:f6:c7:d3:a4:89:80:f1:f1:a0:3c:d4:82:e5:b5:ba:b6: 0b:0b:e7:b8:99:a4:ee:da:66:c9:02:88:2e:47:71:cf:64:b8: db:37:bf:32:0a:b9:de:62:ae:aa:3a:bf:35:a3:c1:63:08:ee: 46:33:70:7f:d9:d4:39:08:e4:e5:2e:83:a2:f8:a3:84:c9:ff: c3:28:3b:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwODA5MDIxNTA4WhcNMjUwODE2MDIxNTA4WjAYMRYwFAYD VQQDEw02ODk2YWYyYy1lZWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7EWwI6ZtqSZV0L4oZi9D/XdxqFEO8GERlrDVPz6F5pXmnfy2r/MgDdkmxvP vM1oqNq7IOv2w+JF+jjc6gxkwS+aKdY6XEwi248Mtlpwya/Cj0Hf6zvFAy7gzSWi rXbGSfDisIOT72+WoEUQwsVJm5jJOp3lNrP16QP+IwC+ENDbDLI9b07JLfL8UDj4 ZlYVLrhXOgEFThbjxWqSABak+TeaFlYQu/jczeWMUG0r+DGU9VWlhIZWXcPEpa8/ exYYv1hnfxs2ZSCzByVkQERUH18m19RZv+h2bQR66JkkbDsw+2RVllFDulkC7HWG 9CjOBz9dQsMmfp2QKRY081XoiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO1tdEvi H5JTEXUHAf7LEa2cBz9uMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy6KTc8UW0B4K3RFR5o8PUGcYeU66i9I2/fXpPN+vZyesV68Yzv0jU ZZLT4VFqNhN5zyVzR9YqlNEnaZLWBGZNfnHgGCK2kvwzAkC8oKDNTeR16t6X1DnO CXyDTIr9A5MuMPNGLf0vJZcrVTpPA4B81dlDONPoeKvC79s2gU85GnZ5ftGFKAfP onhaV1VJSFnRv+6ynuVKNRGauVznyBfYI16TUCDz1VrqKt/jOE2z+dmYzuSmXPbH 06SJgPHxoDzUguW1urYLC+e4maTu2mbJAoguR3HPZLjbN78yCrneYq6qOr81o8Fj CO5GM3B/2dQ5COTlLoOi+KOEyf/DKDty -----END CERTIFICATE-----Generated at Sun Aug 10 04:59:27 2025 by rpki-client