$ rpki-client -vvf rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft File: D0a9vHSQTl34KfAVlbUcqqIBuds.mft (raw, json) Hash identifier: d0K6UGZehxzrfRQ0uTDMzJno7zqnze9lOKcLMlFCv2s= Subject key identifier: 75:BD:2E:EC:48:A7:7C:6F:BB:E4:84:C6:5E:DA:A6:0E:DE:6D:6A:B7 Authority key identifier: 0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB Certificate issuer: /CN=A91449E2/serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft Manifest number: 01A6 Signing time: Sat 09 Aug 2025 03:36:45 +0000 Manifest this update: Sat 09 Aug 2025 03:36:44 +0000 Manifest next update: Sat 16 Aug 2025 03:36:44 +0000 Files and hashes: 1: D0a9vHSQTl34KfAVlbUcqqIBuds.crl (hash: 8WN7sfYEjaCOxecytEqsxziOfgXT/bgiXYwuNhPNlBw=) 2: 568D8AACF00511ED9239BC6EC4F9AE02.roa (hash: INPCDc0DcqgC408Ka6XEyt5LGDqlBDYRzaUMMyrzKIM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91449E2, serialNumber=0F46BDBC74904E5DF829F01595B51CAAA201B9DB Validity Not Before: Aug 9 03:36:44 2025 GMT Not After : Aug 16 03:36:44 2025 GMT Subject: CN=6896c24c-bdd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:15:08:8d:57:50:9e:69:72:90:7b:97:c7:58: a0:4a:bf:d7:82:0c:7e:9d:9e:9c:c6:99:1f:18:83: 40:b9:b5:2a:1f:20:69:ff:aa:b1:e7:20:7b:1d:3e: c6:92:a3:83:a8:85:50:87:bd:24:17:9f:fb:2c:18: 6e:a1:05:a6:08:d8:c2:20:df:0f:83:ed:09:30:cc: 94:d0:f3:32:61:57:3f:07:3e:75:11:9a:26:6b:32: 6e:1b:40:27:09:55:54:b8:3d:6d:b7:e2:55:73:64: 13:99:22:59:bb:44:8a:71:d6:3d:fd:f6:8f:c3:8f: 9d:da:2b:be:4d:cd:20:23:c5:ae:9c:99:2d:ee:91: 18:37:96:5f:8c:b4:9d:cb:fd:cd:88:49:e7:2d:9c: ac:90:06:99:f3:c0:45:b1:7f:8c:02:39:b2:9a:11: c3:f4:c7:63:cf:9c:e3:d1:0f:79:cc:87:09:ae:e4: a0:eb:4c:6f:37:ac:04:24:cf:b6:a5:7e:92:2d:fa: c0:91:e0:75:e4:a3:be:6c:89:b7:5d:80:5f:7c:6c: 79:1c:03:d3:60:2d:77:84:db:1f:cd:13:98:60:4f: 90:46:4c:e4:cd:f7:04:2e:79:f9:1d:8a:6e:57:1a: 0e:2a:1e:37:ed:ef:90:e2:89:ee:37:01:53:66:69: 00:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BD:2E:EC:48:A7:7C:6F:BB:E4:84:C6:5E:DA:A6:0E:DE:6D:6A:B7 X509v3 Authority Key Identifier: keyid:0F:46:BD:BC:74:90:4E:5D:F8:29:F0:15:95:B5:1C:AA:A2:01:B9:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D0a9vHSQTl34KfAVlbUcqqIBuds.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91449E2/B6443384EFFF11ED8556EE54C4F9AE02/D0a9vHSQTl34KfAVlbUcqqIBuds.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:d5:b5:7f:2a:e6:21:af:bc:28:87:5e:f5:1b:e0:11:08:03: 86:aa:2a:3a:da:43:70:11:2e:0b:92:54:55:9b:15:c3:e6:7a: de:02:91:f0:7e:e1:22:1c:f0:aa:7b:6f:50:a3:b1:71:60:5c: 4d:28:87:c6:0a:1e:93:66:04:b1:36:f7:bc:43:97:ea:95:4f: 65:9c:46:8a:ab:c5:56:c5:4a:00:3d:9e:c6:56:73:a7:64:1b: 1c:e7:6d:d5:bf:3d:80:f2:e4:c2:8c:8b:37:ab:d7:c9:ac:f6: da:cc:77:d2:02:83:fd:5f:5d:a8:88:72:b7:a4:b1:4b:0e:6b: b5:1f:57:cc:23:06:85:50:16:b9:08:33:8e:e1:bb:34:4b:a2: c3:05:09:62:fe:4b:52:6b:57:1f:8b:0d:9b:f6:36:36:3f:62: 4e:1a:26:90:85:ec:77:17:0f:c2:f7:16:8c:ee:c0:b6:8b:ec: ee:7e:7b:a8:4e:8d:e2:9b:66:f5:37:e1:80:6f:bc:4f:51:8c: 88:75:ac:69:e1:73:b3:93:c6:14:c8:4a:d3:70:06:1f:09:e7: 5c:56:5f:ae:d9:b0:e2:55:4e:cf:ad:d8:64:a2:e8:ec:63:e8: 56:a5:22:cd:9d:fd:44:2a:53:8a:f3:7b:ab:a3:9c:d2:a0:82: d6:2d:6b:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ5RTIxMTAvBgNVBAUTKDBGNDZCREJDNzQ5MDRFNURGODI5RjAxNTk1QjUxQ0FB QTIwMUI5REIwHhcNMjUwODA5MDMzNjQ0WhcNMjUwODE2MDMzNjQ0WjAYMRYwFAYD VQQDEw02ODk2YzI0Yy1iZGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxUIjVdQnmlykHuXx1igSr/Xggx+nZ6cxpkfGINAubUqHyBp/6qx5yB7HT7G kqODqIVQh70kF5/7LBhuoQWmCNjCIN8Pg+0JMMyU0PMyYVc/Bz51EZomazJuG0An CVVUuD1tt+JVc2QTmSJZu0SKcdY9/faPw4+d2iu+Tc0gI8WunJkt7pEYN5ZfjLSd y/3NiEnnLZyskAaZ88BFsX+MAjmymhHD9Mdjz5zj0Q95zIcJruSg60xvN6wEJM+2 pX6SLfrAkeB15KO+bIm3XYBffGx5HAPTYC13hNsfzROYYE+QRkzkzfcELnn5HYpu VxoOKh437e+Q4onuNwFTZmkA/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHW9LuxI p3xvu+SExl7apg7ebWq3MB8GA1UdIwQYMBaAFA9Gvbx0kE5d+CnwFZW1HKqiAbnb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDlFMi9CNjQ0MzM4NEVG RkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRsMzRLZkFWbGJVY3FxSUJ1 ZHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QwYTl2SFNRVGwzNEtmQVZsYlVjcXFJQnVkcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NDlFMi9CNjQ0MzM4NEVGRkYxMUVEODU1NkVFNTRDNEY5QUUwMi9EMGE5dkhTUVRs MzRLZkFWbGJVY3FxSUJ1ZHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN1bV/KuYhr7woh171G+ARCAOGqio62kNwES4LklRVmxXD5nreApHw fuEiHPCqe29Qo7FxYFxNKIfGCh6TZgSxNve8Q5fqlU9lnEaKq8VWxUoAPZ7GVnOn ZBsc523Vvz2A8uTCjIs3q9fJrPbazHfSAoP9X12oiHK3pLFLDmu1H1fMIwaFUBa5 CDOO4bs0S6LDBQli/ktSa1cfiw2b9jY2P2JOGiaQhex3Fw/C9xaM7sC2i+zufnuo To3im2b1N+GAb7xPUYyIdaxp4XOzk8YUyErTcAYfCedcVl+u2bDiVU7Prdhkoujs Y+hWpSLNnf1EKlOK83uro5zSoILWLWsf -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:00 2025 by rpki-client