$ rpki-client -vvf rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft File: 9cHnH7saQdeYC-JY2XxIc5qvgso.mft (raw, json) Hash identifier: rigFOFQLQtju4LLVQELaZ5SvVLav+NFi2g5FebD6xSQ= Subject key identifier: E9:23:20:3A:D4:34:B7:9D:6F:CF:E0:6C:C4:65:30:0E:13:8E:CF:75 Authority key identifier: F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA Certificate issuer: /CN=A913D16D/serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Certificate serial: 0489 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft Manifest number: 0483 Signing time: Sat 09 Aug 2025 00:32:58 +0000 Manifest this update: Sat 09 Aug 2025 00:32:57 +0000 Manifest next update: Sat 16 Aug 2025 00:32:57 +0000 Files and hashes: 1: 9cHnH7saQdeYC-JY2XxIc5qvgso.crl (hash: z9zjH9TGlbRqPlzdyHttGNStmSmLv/Iv9J9FrBk/6xk=) 2: 3D546FCE4F0711EC960AFD0CC4F9AE02.roa (hash: OH+ilqdv9s3kTRrQEcIweA5ha/9ZRdWs4Wko3puaZH4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D16D, serialNumber=F5C1E71FBB1A41D7980BE258D97C48739AAF82CA Validity Not Before: Aug 9 00:32:57 2025 GMT Not After : Aug 16 00:32:57 2025 GMT Subject: CN=6896973a-2b91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:36:c0:d9:53:7f:6d:7e:93:f2:3a:23:bc:18: 2e:58:19:5f:47:00:d9:a9:06:d7:03:9a:bf:d2:05: c3:b7:a4:c0:a9:20:0a:b6:c3:44:0c:97:48:a2:38: 71:c5:4a:fe:c7:6c:90:de:99:86:6f:17:9c:40:9c: 31:ba:97:ca:a0:63:e4:be:8e:e1:55:10:49:e0:c0: 06:4b:55:12:ce:c6:3f:02:4a:c0:5f:80:dd:54:9b: 08:a6:95:94:22:63:ad:39:2b:30:90:52:5d:ab:55: fb:84:73:a4:85:32:5e:4c:c8:77:b3:6a:80:aa:b5: 62:7f:8c:64:02:1b:05:77:ae:93:1b:d0:35:b5:53: a5:94:dc:c0:1d:1d:76:8f:d2:d3:16:2e:12:7b:ed: 89:84:50:75:71:ac:ab:1b:5c:f0:6e:dd:bf:f3:0f: 2a:ce:d3:00:cb:b5:02:c3:5f:67:d6:8e:32:8f:2b: 3e:36:17:c9:af:f1:94:14:5f:b5:77:58:eb:41:99: 19:42:78:56:84:9c:94:1b:1d:ca:eb:90:f9:be:41: f5:d4:62:92:3e:86:44:86:0b:c4:af:2b:98:26:07: 36:60:96:cf:59:28:b2:d8:10:c2:74:d1:fe:e0:72: f6:42:48:4c:6a:e1:80:b8:ef:a4:fb:86:fd:4d:49: 24:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:23:20:3A:D4:34:B7:9D:6F:CF:E0:6C:C4:65:30:0E:13:8E:CF:75 X509v3 Authority Key Identifier: keyid:F5:C1:E7:1F:BB:1A:41:D7:98:0B:E2:58:D9:7C:48:73:9A:AF:82:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9cHnH7saQdeYC-JY2XxIc5qvgso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D16D/F04207A44F0211EC9D2D1E37C4F9AE02/9cHnH7saQdeYC-JY2XxIc5qvgso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:93:e6:b1:79:0a:e3:1c:aa:fc:52:bf:1b:1f:b5:38:fc:ab: 17:4b:19:b1:27:3a:ec:5e:5c:4c:96:0f:46:2d:cb:3b:0a:2c: 6e:45:13:1d:c6:53:b3:80:cb:cc:2b:2c:6b:4e:03:0d:c8:c1: 34:bf:6b:2b:89:df:40:18:54:f7:fc:7b:d3:46:2c:57:53:82: 7b:c7:09:b0:de:51:02:03:77:46:66:54:fe:7a:3e:70:51:f4: b2:07:80:ff:a0:2e:0d:d2:e9:78:ec:a3:f9:64:46:b4:4f:49: 46:de:95:ec:f5:c1:aa:db:c0:29:1d:d8:f7:16:87:e9:67:c5: 3e:a5:c0:c9:bc:91:f8:e5:45:42:8d:97:2a:b0:08:df:fe:76: 30:86:1f:4f:6e:79:78:1a:b8:f7:fd:6a:fe:51:25:00:fc:f2: db:c5:f0:19:5f:57:77:a6:fa:c9:36:eb:0a:cb:80:72:7d:25: dc:f0:be:c2:ae:a3:76:f8:5a:4c:00:c7:70:82:48:71:0e:2d: e9:ab:04:ce:38:23:14:81:ce:d8:98:29:50:e2:1b:04:19:8d: 58:97:d4:11:c6:9a:69:5e:a3:8e:34:dd:4f:0b:f2:c6:0f:20: f4:b9:57:76:68:a1:50:e4:c3:aa:20:4d:41:64:f3:6e:3d:9d: 3f:fc:a4:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxNkQxMTAvBgNVBAUTKEY1QzFFNzFGQkIxQTQxRDc5ODBCRTI1OEQ5N0M0ODcz OUFBRjgyQ0EwHhcNMjUwODA5MDAzMjU3WhcNMjUwODE2MDAzMjU3WjAYMRYwFAYD VQQDEw02ODk2OTczYS0yYjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzbA2VN/bX6T8jojvBguWBlfRwDZqQbXA5q/0gXDt6TAqSAKtsNEDJdIojhx xUr+x2yQ3pmGbxecQJwxupfKoGPkvo7hVRBJ4MAGS1USzsY/AkrAX4DdVJsIppWU ImOtOSswkFJdq1X7hHOkhTJeTMh3s2qAqrVif4xkAhsFd66TG9A1tVOllNzAHR12 j9LTFi4Se+2JhFB1cayrG1zwbt2/8w8qztMAy7UCw19n1o4yjys+NhfJr/GUFF+1 d1jrQZkZQnhWhJyUGx3K65D5vkH11GKSPoZEhgvEryuYJgc2YJbPWSiy2BDCdNH+ 4HL2QkhMauGAuO+k+4b9TUkkBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkjIDrU NLedb8/gbMRlMA4Tjs91MB8GA1UdIwQYMBaAFPXB5x+7GkHXmAviWNl8SHOar4LK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDE2RC9GMDQyMDdBNDRG MDIxMUVDOUQyRDFFMzdDNEY5QUUwMi85Y0huSDdzYVFkZVlDLUpZMlh4SWM1cXZn c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzljSG5IN3NhUWRlWUMtSlkyWHhJYzVxdmdzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz RDE2RC9GMDQyMDdBNDRGMDIxMUVDOUQyRDFFMzdDNEY5QUUwMi85Y0huSDdzYVFk ZVlDLUpZMlh4SWM1cXZnc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3k+axeQrjHKr8Ur8bH7U4/KsXSxmxJzrsXlxMlg9GLcs7CixuRRMd xlOzgMvMKyxrTgMNyME0v2srid9AGFT3/HvTRixXU4J7xwmw3lECA3dGZlT+ej5w UfSyB4D/oC4N0ul47KP5ZEa0T0lG3pXs9cGq28ApHdj3FofpZ8U+pcDJvJH45UVC jZcqsAjf/nYwhh9Pbnl4Grj3/Wr+USUA/PLbxfAZX1d3pvrJNusKy4ByfSXc8L7C rqN2+FpMAMdwgkhxDi3pqwTOOCMUgc7YmClQ4hsEGY1Yl9QRxpppXqOONN1PC/LG DyD0uVd2aKFQ5MOqIE1BZPNuPZ0//KQ4 -----END CERTIFICATE-----Generated at Sat Aug 9 10:39:55 2025 by rpki-client