$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft File: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft (raw, json) Hash identifier: xXyDXkkVjoDl5Wa/NfGaOtZvWIN2Ln89Sw3V7lbtWwM= Subject key identifier: CC:10:60:DA:D9:0D:93:B9:78:DC:0A:1E:15:2F:8A:A7:9D:21:6E:D1 Authority key identifier: 9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 Certificate issuer: /CN=A9147CBE/serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft Manifest number: 68 Signing time: Sat 09 Aug 2025 07:28:57 +0000 Manifest this update: Sat 09 Aug 2025 07:28:57 +0000 Manifest next update: Sat 16 Aug 2025 07:28:57 +0000 Files and hashes: 1: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl (hash: 4izJgX2+p31W7rNgkVgS358vCPxXoKG35bputORGGiw=) 2: 6D66CE8017BA11F094861F7DC4F9AE02.roa (hash: +D4BVGFKWyg9Pr75Q40/ty5hMk4DuavCG4i3TGDDyg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CBE, serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Validity Not Before: Aug 9 07:28:57 2025 GMT Not After : Aug 16 07:28:57 2025 GMT Subject: CN=6896f8b9-7987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:67:d2:dd:c1:16:49:31:7b:b4:4e:7c:50:cd: 71:d8:71:f0:cd:48:07:2b:45:a3:a5:ec:30:6f:bf: c3:86:1e:07:2a:f0:14:a4:02:99:e7:11:9c:fc:db: 90:04:48:f6:82:58:56:11:fd:56:00:a7:03:ec:48: 2b:01:03:46:cf:d1:8b:52:73:70:3b:5c:2d:d3:4f: 72:56:8c:0b:bc:f5:12:91:7a:78:3e:41:49:0f:96: 12:a7:a1:22:d5:d6:57:a1:50:5b:4d:6c:c7:d3:a1: ac:05:2f:67:51:e7:5a:cf:fa:e3:43:fd:b6:2f:4c: 20:7f:7e:0a:71:88:c1:b6:9e:00:8b:66:41:b7:fc: b5:80:9a:c0:bb:b8:11:95:d3:68:24:d6:ed:f1:b3: 46:94:2d:5f:d9:72:bc:75:a8:84:0e:a4:42:37:7c: bc:48:c1:43:f2:23:45:e3:2e:19:59:51:a5:90:fd: b7:35:b3:dc:3c:07:a0:45:e5:b6:85:a1:81:03:9d: be:9e:70:13:8c:43:a7:f0:ab:d8:fa:77:86:4b:de: 09:99:65:91:34:a2:89:a8:a0:4c:98:81:2d:b2:7b: 57:40:9d:e4:56:73:24:93:c7:f0:96:40:5d:fe:f6: dd:58:77:8e:b9:7e:60:1d:81:7f:d4:fc:da:3d:71: a0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:10:60:DA:D9:0D:93:B9:78:DC:0A:1E:15:2F:8A:A7:9D:21:6E:D1 X509v3 Authority Key Identifier: keyid:9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:cb:fc:79:75:95:3c:d0:c5:5e:f1:8b:14:42:ee:4a:47:28: 6f:3f:57:22:9f:12:54:6a:2e:fa:57:bb:5f:c3:2b:ec:12:24: 30:2c:33:a9:70:27:cf:56:21:c5:6b:a5:b9:59:a4:3a:6c:0d: fd:8a:9a:3a:c9:43:db:bc:25:52:0a:ac:b0:ef:fa:d1:fb:9c: dd:bc:a1:4e:c9:04:e5:69:19:1a:fc:e4:75:7d:7c:77:22:5a: f8:7a:0b:52:0e:93:ec:b7:eb:8b:11:90:0c:4a:97:1f:7e:ba: 05:7b:f1:44:a4:d3:18:c8:a0:e1:b7:ff:33:15:8c:cb:24:b4: 9a:aa:9c:31:1d:64:e0:ef:6f:a5:83:6d:60:b8:72:c5:c7:04: c8:d0:db:80:42:72:bb:ab:fd:66:cd:51:b2:9c:3d:e9:78:a9: 8c:18:d3:aa:6a:69:20:90:eb:8d:ae:5e:66:36:90:a7:ce:00: 9c:13:af:69:dc:f8:ba:cd:d4:55:85:2e:27:ec:b6:5c:8c:8e: ae:d1:a1:cd:4e:26:1a:e8:cb:20:69:3f:71:36:74:10:b8:54: 5a:44:20:0d:e0:0c:da:c7:00:f8:d3:1e:e6:8d:0c:45:bd:2b: d5:cd:e7:c8:82:1b:24:32:fb:0f:5b:db:e7:98:cc:bd:d1:de: 3e:9b:d5:ac -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NCRTExMC8GA1UEBRMoOUExNjI0RjQ2MDgyRjU0QUM1Nzc4ODU5RTIyNkJEM0JB NjkwMjNGNDAeFw0yNTA4MDkwNzI4NTdaFw0yNTA4MTYwNzI4NTdaMBgxFjAUBgNV BAMTDTY4OTZmOGI5LTc5ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHZ9LdwRZJMXu0TnxQzXHYcfDNSAcrRaOl7DBvv8OGHgcq8BSkApnnEZz825AE SPaCWFYR/VYApwPsSCsBA0bP0YtSc3A7XC3TT3JWjAu89RKReng+QUkPlhKnoSLV 1lehUFtNbMfToawFL2dR51rP+uND/bYvTCB/fgpxiMG2ngCLZkG3/LWAmsC7uBGV 02gk1u3xs0aULV/Zcrx1qIQOpEI3fLxIwUPyI0XjLhlZUaWQ/bc1s9w8B6BF5baF oYEDnb6ecBOMQ6fwq9j6d4ZL3gmZZZE0oomooEyYgS2ye1dAneRWcySTx/CWQF3+ 9t1Yd465fmAdgX/U/No9caBJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzBBg2tkN k7l43AoeFS+Kp50hbtEwHwYDVR0jBBgwFoAUmhYk9GCC9UrFd4hZ4ia9O6aQI/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0JFLzgzQkE4N0FFRDdD MjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVyRmQ0aFo0aWE5TzZhUUlf US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWhZazlHQ0M5VXJGZDRoWjRpYTlPNmFRSV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0JFLzgzQkE4N0FFRDdDMjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVy RmQ0aFo0aWE5TzZhUUlfUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGnL/Hl1lTzQxV7xixRC7kpHKG8/VyKfElRqLvpXu1/DK+wSJDAsM6lw J89WIcVrpblZpDpsDf2KmjrJQ9u8JVIKrLDv+tH7nN28oU7JBOVpGRr85HV9fHci Wvh6C1IOk+y364sRkAxKlx9+ugV78USk0xjIoOG3/zMVjMsktJqqnDEdZODvb6WD bWC4csXHBMjQ24BCcrur/WbNUbKcPel4qYwY06pqaSCQ642uXmY2kKfOAJwTr2nc +LrN1FWFLifstlyMjq7Roc1OJhroyyBpP3E2dBC4VFpEIA3gDNrHAPjTHuaNDEW9 K9XN58iCGyQy+w9b2+eYzL3R3j6b1aw= -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:55 2025 by rpki-client