$ rpki-client -vvf rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft File: 84ggnKyyxrgUysV4XUv002zElx8.mft (raw, json) Hash identifier: ytdXXY5/QICpJvND3WVRrTMPZxpWcVeyKewkpcDvew0= Subject key identifier: A8:F5:00:15:DB:EB:3A:F8:3F:71:B3:59:79:F9:DC:A1:5B:C2:2D:A5 Authority key identifier: F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F Certificate issuer: /CN=A9138A50/serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Certificate serial: 0476 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft Manifest number: 0471 Signing time: Mon 11 Aug 2025 00:16:36 +0000 Manifest this update: Mon 11 Aug 2025 00:16:36 +0000 Manifest next update: Mon 18 Aug 2025 00:16:36 +0000 Files and hashes: 1: 84ggnKyyxrgUysV4XUv002zElx8.crl (hash: Yz74q9zBzPKDDi18kzHWmA7LqaHI1ekLsdOJt/d1pi0=) 2: 0DA4853256FC11EC8032440FC4F9AE02.roa (hash: qCU/OsBRO4+PMlzfkCWYCpZe9YTKzCH9brvEdyELMJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 00:16:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138A50, serialNumber=F388209CACB2C6B814CAC5785D4BF4D36CC4971F Validity Not Before: Aug 11 00:16:36 2025 GMT Not After : Aug 18 00:16:36 2025 GMT Subject: CN=68993664-5e55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a7:58:0e:10:a6:ff:b0:94:93:ea:dc:d4:32: fd:1a:a4:f9:a0:b3:34:f8:83:12:03:81:4f:7a:bf: 3f:f1:e6:b9:06:3e:bb:72:cc:17:74:a6:1b:ce:ed: 04:c9:04:79:a1:47:87:e6:f0:66:44:f5:dd:55:88: e1:76:6e:47:c7:47:4e:46:b5:7d:86:97:9f:01:76: c5:8b:21:03:b3:c0:56:6b:74:39:94:85:be:88:1f: 9f:5f:dc:1a:67:81:20:60:d3:b3:61:9a:f3:26:60: 21:0f:4a:0d:d4:86:4e:0d:d6:a7:ef:e9:e0:ee:54: 2b:01:b0:e9:20:9a:f9:4b:fe:d9:e2:e1:bc:2b:ab: 6e:6c:95:82:24:10:2e:f9:60:13:c6:ee:c6:bb:8e: 69:42:cb:fa:42:4d:f1:08:7a:2e:7e:f9:9e:0b:5c: fa:93:80:cf:b2:aa:6b:bd:e3:49:00:ac:ce:f1:9a: 96:c3:2f:d3:04:b0:34:d5:c5:63:7c:5d:1d:ba:61: ab:1f:2c:1d:f4:5d:c8:fd:6f:35:80:4a:d6:0d:2d: f4:69:2b:90:83:92:4c:b6:be:fc:c7:b1:90:14:e8: 9f:34:ce:93:52:2a:83:ab:cf:f8:be:6b:f4:51:5b: d4:f8:a4:e7:26:43:e8:eb:98:6d:5d:4f:53:5d:9b: 90:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:F5:00:15:DB:EB:3A:F8:3F:71:B3:59:79:F9:DC:A1:5B:C2:2D:A5 X509v3 Authority Key Identifier: keyid:F3:88:20:9C:AC:B2:C6:B8:14:CA:C5:78:5D:4B:F4:D3:6C:C4:97:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/84ggnKyyxrgUysV4XUv002zElx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138A50/C9A7A43856F911EC836E910DC4F9AE02/84ggnKyyxrgUysV4XUv002zElx8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:f3:4c:6d:b8:9d:4f:d3:d2:7a:bc:9c:7b:ac:02:5c:19:e6: 42:59:2e:17:d4:15:e7:94:1a:21:42:21:34:68:1a:dc:b4:40: d1:b7:d0:b0:d4:ba:4c:2b:1e:60:41:26:3d:e0:0d:c9:2a:1a: 1d:0f:4b:7c:cf:41:0c:21:3b:58:3d:28:1c:8a:09:f5:53:d7: 86:d0:b6:17:1d:e5:1f:57:17:7c:54:22:4a:31:4a:7b:5a:54: 79:72:1a:cb:dc:cb:7b:ff:03:df:dd:f5:84:2e:37:4b:c5:b6: e3:d0:06:68:bf:22:6c:37:61:18:88:8a:a3:a5:5d:69:23:93: fd:89:10:1b:d4:88:1e:93:4a:bd:26:e7:30:3f:50:81:d3:ac: cc:47:c3:57:13:b3:cf:47:af:c0:28:b2:9a:84:80:0e:51:a9: 4f:d1:25:29:0e:65:47:19:c4:f5:57:d4:0e:9a:98:df:0a:02: 2a:a5:eb:c3:30:61:3c:49:5c:fe:24:16:11:fb:59:2f:d2:f4: 61:4c:02:5c:01:c4:f5:7e:bd:3e:18:a1:df:22:e2:b9:77:82: af:4f:93:bb:bf:9d:01:b5:03:38:69:be:01:35:3c:9c:78:45: f9:46:a5:be:ba:56:61:3a:ec:94:6c:aa:fe:98:0a:5f:48:2a: 44:d5:19:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhBNTAxMTAvBgNVBAUTKEYzODgyMDlDQUNCMkM2QjgxNENBQzU3ODVENEJGNEQz NkNDNDk3MUYwHhcNMjUwODExMDAxNjM2WhcNMjUwODE4MDAxNjM2WjAYMRYwFAYD VQQDEw02ODk5MzY2NC01ZTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qdYDhCm/7CUk+rc1DL9GqT5oLM0+IMSA4FPer8/8ea5Bj67cswXdKYbzu0E yQR5oUeH5vBmRPXdVYjhdm5Hx0dORrV9hpefAXbFiyEDs8BWa3Q5lIW+iB+fX9wa Z4EgYNOzYZrzJmAhD0oN1IZODdan7+ng7lQrAbDpIJr5S/7Z4uG8K6tubJWCJBAu +WATxu7Gu45pQsv6Qk3xCHoufvmeC1z6k4DPsqprveNJAKzO8ZqWwy/TBLA01cVj fF0dumGrHywd9F3I/W81gErWDS30aSuQg5JMtr78x7GQFOifNM6TUiqDq8/4vmv0 UVvU+KTnJkPo65htXU9TXZuQfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKj1ABXb 6zr4P3GzWXn53KFbwi2lMB8GA1UdIwQYMBaAFPOIIJysssa4FMrFeF1L9NNsxJcf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEE1MC9DOUE3QTQzODU2 RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhyZ1V5c1Y0WFV2MDAyekVs eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg0Z2duS3l5eHJnVXlzVjRYVXYwMDJ6RWx4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEE1MC9DOUE3QTQzODU2RjkxMUVDODM2RTkxMERDNEY5QUUwMi84NGdnbkt5eXhy Z1V5c1Y0WFV2MDAyekVseDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA180xtuJ1P09J6vJx7rAJcGeZCWS4X1BXnlBohQiE0aBrctEDRt9Cw 1LpMKx5gQSY94A3JKhodD0t8z0EMITtYPSgcign1U9eG0LYXHeUfVxd8VCJKMUp7 WlR5chrL3Mt7/wPf3fWELjdLxbbj0AZovyJsN2EYiIqjpV1pI5P9iRAb1Igek0q9 JucwP1CB06zMR8NXE7PPR6/AKLKahIAOUalP0SUpDmVHGcT1V9QOmpjfCgIqpevD MGE8SVz+JBYR+1kv0vRhTAJcAcT1fr0+GKHfIuK5d4KvT5O7v50BtQM4ab4BNTyc eEX5RqW+ulZhOuyUbKr+mApfSCpE1Rlf -----END CERTIFICATE-----Generated at Tue Aug 12 13:35:34 2025 by rpki-client