$ rpki-client -vvf rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft File: 9-pxtubNBKVdrrDRWOBE3poSIWo.mft (raw, json) Hash identifier: UtUzJKlfkV7IEmIGgm5PKHcyLK6pSsv46tVy53DncMk= Subject key identifier: E9:4A:58:10:44:CC:3A:9A:C3:3A:AD:81:C8:9D:67:75:0D:79:A4:29 Authority key identifier: F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A Certificate issuer: /CN=A914976C/serialNumber=F7EA71B6E6CD04A55DAEB0D158E044DE9A12216A Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft Manifest number: BE Signing time: Sat 09 Aug 2025 06:17:53 +0000 Manifest this update: Sat 09 Aug 2025 06:17:52 +0000 Manifest next update: Sat 16 Aug 2025 06:17:52 +0000 Files and hashes: 1: 9-pxtubNBKVdrrDRWOBE3poSIWo.crl (hash: CRVvD8hIzNR7tGeaLni9z5gX5Ii719HTZOQAXdU4sr4=) 2: D65DAE8A595C11EF8FABE750C4F9AE02.roa (hash: nYA6qJYLssodvPidYdiPlhElm9th4J64wlRbRyUbQK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914976C, serialNumber=F7EA71B6E6CD04A55DAEB0D158E044DE9A12216A Validity Not Before: Aug 9 06:17:52 2025 GMT Not After : Aug 16 06:17:52 2025 GMT Subject: CN=6896e811-db77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f3:1d:e0:71:8d:db:3d:ef:10:58:dd:90:4c: 92:48:6c:2a:c5:da:e1:23:da:a4:50:24:09:94:24: d8:17:c0:78:1f:ff:11:11:05:cd:5a:64:18:77:23: 06:28:9d:22:2c:cb:3d:9c:6b:e1:a5:8b:49:80:09: 45:3a:03:f0:29:63:ca:17:04:31:9d:1f:0b:ce:5b: 3d:2b:bb:77:87:98:aa:c8:a1:69:14:b9:14:61:95: 93:30:32:1f:ef:c6:6c:a6:f8:e8:68:b9:f1:27:f6: 93:78:34:b3:31:86:53:63:cd:30:7c:c6:f4:df:bd: fe:3b:0d:72:4b:19:24:51:5d:d3:11:ed:d3:da:b2: 97:c3:e2:ed:1f:18:b3:ed:5c:d1:d5:ce:a6:42:8e: 7d:17:3e:89:d0:82:0b:bf:1b:34:8e:6e:56:d9:af: a3:b7:81:de:3e:83:18:b0:e8:59:30:aa:0c:1e:5e: 75:ff:f3:0d:42:41:23:83:19:22:25:c9:ba:b0:ea: 5e:08:51:4e:94:bb:88:7d:e8:3f:65:c8:1e:2e:cc: 6a:5e:f7:d4:37:b3:84:3f:3d:81:cf:99:60:a3:11: 14:31:6b:5b:8e:eb:d1:7e:e5:81:8c:03:72:5e:e1: c1:3c:7c:9a:96:61:d6:ce:5b:07:d5:fd:6c:6a:51: 2a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:4A:58:10:44:CC:3A:9A:C3:3A:AD:81:C8:9D:67:75:0D:79:A4:29 X509v3 Authority Key Identifier: keyid:F7:EA:71:B6:E6:CD:04:A5:5D:AE:B0:D1:58:E0:44:DE:9A:12:21:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9-pxtubNBKVdrrDRWOBE3poSIWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914976C/8350D2BC595C11EF91596350C4F9AE02/9-pxtubNBKVdrrDRWOBE3poSIWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:9e:91:74:fe:78:fa:22:dc:5e:99:cc:90:72:4e:2e:a8:81: 6d:af:69:3f:49:4c:e1:c9:90:76:e7:2b:87:33:c2:bd:7f:c2: de:74:3e:27:ca:8a:f3:78:6a:4f:e8:72:09:fe:1a:72:23:29: fc:18:1e:48:74:79:21:ba:0a:26:ef:a1:ff:ce:cc:e4:a8:b9: 72:a7:24:be:6d:3e:cf:8d:63:d3:db:62:80:81:b5:0f:db:84: 54:a8:d6:46:0d:94:62:2f:82:38:7e:c1:17:82:6e:61:14:9c: ad:f0:19:10:51:21:ac:b5:12:12:f4:af:75:ea:27:33:07:23: f2:7a:34:bd:03:7c:05:bd:47:80:0b:7d:68:8a:a2:22:73:cc: 32:db:31:20:5c:4a:91:27:e2:a2:09:d4:29:fe:94:00:2a:d7: 4a:a6:38:29:33:ba:5c:0a:76:93:43:41:35:5b:94:8f:55:cf: 9f:b5:8b:3b:3e:1c:e6:49:09:c3:32:4a:29:92:f5:83:78:72: d8:99:4d:99:5a:ef:8b:38:d0:4c:10:f0:05:2a:7a:7a:01:d8: 3c:f5:7b:df:25:8e:29:bc:69:b3:00:ca:61:0d:9a:11:85:d7: 92:6c:47:83:9f:04:f4:2c:c2:7f:43:33:fd:55:c1:2a:99:dd: 3b:94:fc:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk3NkMxMTAvBgNVBAUTKEY3RUE3MUI2RTZDRDA0QTU1REFFQjBEMTU4RTA0NERF OUExMjIxNkEwHhcNMjUwODA5MDYxNzUyWhcNMjUwODE2MDYxNzUyWjAYMRYwFAYD VQQDEw02ODk2ZTgxMS1kYjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfMd4HGN2z3vEFjdkEySSGwqxdrhI9qkUCQJlCTYF8B4H/8REQXNWmQYdyMG KJ0iLMs9nGvhpYtJgAlFOgPwKWPKFwQxnR8Lzls9K7t3h5iqyKFpFLkUYZWTMDIf 78ZspvjoaLnxJ/aTeDSzMYZTY80wfMb0373+Ow1ySxkkUV3TEe3T2rKXw+LtHxiz 7VzR1c6mQo59Fz6J0IILvxs0jm5W2a+jt4HePoMYsOhZMKoMHl51//MNQkEjgxki Jcm6sOpeCFFOlLuIfeg/ZcgeLsxqXvfUN7OEPz2Bz5lgoxEUMWtbjuvRfuWBjANy XuHBPHyalmHWzlsH1f1salEqHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlKWBBE zDqawzqtgcidZ3UNeaQpMB8GA1UdIwQYMBaAFPfqcbbmzQSlXa6w0VjgRN6aEiFq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTc2Qy84MzUwRDJCQzU5 NUMxMUVGOTE1OTYzNTBDNEY5QUUwMi85LXB4dHViTkJLVmRyckRSV09CRTNwb1NJ V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzktcHh0dWJOQktWZHJyRFJXT0JFM3BvU0lXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTc2Qy84MzUwRDJCQzU5NUMxMUVGOTE1OTYzNTBDNEY5QUUwMi85LXB4dHViTkJL VmRyckRSV09CRTNwb1NJV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsnpF0/nj6ItxemcyQck4uqIFtr2k/SUzhyZB25yuHM8K9f8LedD4n yorzeGpP6HIJ/hpyIyn8GB5IdHkhugom76H/zszkqLlypyS+bT7PjWPT22KAgbUP 24RUqNZGDZRiL4I4fsEXgm5hFJyt8BkQUSGstRIS9K916iczByPyejS9A3wFvUeA C31oiqIic8wy2zEgXEqRJ+KiCdQp/pQAKtdKpjgpM7pcCnaTQ0E1W5SPVc+ftYs7 PhzmSQnDMkopkvWDeHLYmU2ZWu+LONBMEPAFKnp6Adg89XvfJY4pvGmzAMphDZoR hdeSbEeDnwT0LMJ/QzP9VcEqmd07lPwc -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:39 2025 by rpki-client