$ rpki-client -vvf rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft File: G9xHZ6bV6-C--lyhI1MI915IiRo.mft (raw, json) Hash identifier: r9wFDgw5iSH5CIjhAnH7VA5k2UbG7Pj0S9UZrIDf5QY= Subject key identifier: 40:43:7B:7A:80:61:09:FE:05:BD:09:56:ED:26:40:AC:1C:34:C9:56 Authority key identifier: 1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A Certificate issuer: /CN=A9149C2D/serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Certificate serial: 1BC8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft Manifest number: 1BB6 Signing time: Wed 06 Aug 2025 16:20:44 +0000 Manifest this update: Wed 06 Aug 2025 16:20:44 +0000 Manifest next update: Wed 13 Aug 2025 16:20:44 +0000 Files and hashes: 1: G9xHZ6bV6-C--lyhI1MI915IiRo.crl (hash: 88fxgowEbtxJsQ14KTTwYE6pQxUxKq5Dy67fxNQJ5yY=) 2: A607F8965F4611EE80BD8D2DC4F9AE02.roa (hash: wynmFUF72+WqOIzeId16MY3qAbLuhLthoUyin6hAIaA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:20:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7112 (0x1bc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149C2D, serialNumber=1BDC4767A6D5EBE0BEFA5CA1235308F75E48891A Validity Not Before: Aug 6 16:20:44 2025 GMT Not After : Aug 13 16:20:44 2025 GMT Subject: CN=689380dc-10ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f5:90:c9:49:68:69:50:e6:c7:e0:c1:0b:4a: 3e:31:44:69:50:f1:2f:33:74:37:06:cd:5f:70:59: 33:0c:8a:fe:8f:3e:8b:94:34:6d:41:88:c4:90:69: a7:11:29:b7:8b:9f:f2:1b:3d:a6:b0:77:0e:61:74: ce:2e:96:cd:11:2b:a3:a0:e0:86:44:50:91:4f:aa: f5:7d:1e:7b:ad:83:4c:0f:10:f0:88:fb:a7:3c:9f: af:ce:bb:a8:99:4a:11:a6:ac:95:77:72:79:3b:09: a2:0f:74:66:cc:db:71:8b:ba:f9:c7:21:79:c4:94: 3f:8b:bf:7f:a2:85:a7:43:b2:fa:21:6b:9a:9c:e0: 12:3c:2c:10:c2:e6:8f:c7:bf:ee:a3:c3:cf:00:74: 5c:fc:92:ee:df:9f:94:44:b9:bc:55:b3:67:09:13: 0b:25:84:5d:47:2c:6b:6e:19:f9:44:97:e8:9a:00: ed:84:05:d5:e1:72:31:1f:66:fc:fb:a0:3d:74:90: de:a0:cc:ea:86:34:00:7f:5c:cf:90:ae:16:5f:7b: 11:db:07:f5:b7:a9:86:af:d1:fa:a2:8e:83:77:4e: 61:99:2c:1b:8a:db:ec:72:85:a4:00:a5:eb:4d:22: 2d:a5:ef:93:2d:a7:5f:5b:b7:df:1d:38:84:ab:ca: 2c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:43:7B:7A:80:61:09:FE:05:BD:09:56:ED:26:40:AC:1C:34:C9:56 X509v3 Authority Key Identifier: keyid:1B:DC:47:67:A6:D5:EB:E0:BE:FA:5C:A1:23:53:08:F7:5E:48:89:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G9xHZ6bV6-C--lyhI1MI915IiRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149C2D/4D5A7880087311E79C839B09C4F9AE02/G9xHZ6bV6-C--lyhI1MI915IiRo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:4b:ad:7e:ab:53:03:09:94:80:28:34:4d:fc:bc:ed:d5:82: 0e:a2:2b:01:bc:d4:32:91:27:1e:04:f8:8a:c1:9e:64:f6:d8: 41:d4:c1:a8:61:9f:bf:d7:10:ff:42:65:d8:fd:3e:e6:7c:ab: 78:9c:01:0c:70:f1:b5:7e:87:2f:29:6e:96:3f:ac:5a:3b:21: a7:2e:7f:3e:6b:4e:4e:7c:12:19:63:92:32:db:17:8e:fd:91: 8b:6c:04:29:8b:f4:18:92:b7:a3:fe:41:e6:8a:ac:cf:c3:7f: b1:b9:3f:43:6c:24:cb:c7:8a:fa:7e:36:97:8b:ba:97:fd:cc: 27:18:c7:a5:88:8e:7e:5a:75:f7:0f:24:4b:46:bf:78:78:69: 8d:a5:31:f7:8c:de:72:de:90:91:28:c1:aa:f7:0b:d9:6f:02: 55:e7:29:9e:6c:1c:d4:b6:0b:4e:7d:36:40:bd:d1:ca:01:64: 4e:c4:60:18:55:0d:fa:40:fa:f7:9b:c4:f4:29:59:bb:a1:d1: 5a:34:fb:f2:98:0d:ae:9e:93:39:3f:e0:dc:03:8a:e0:c2:27: d8:dd:3a:cf:d3:e9:36:96:e0:5c:7c:7a:2e:c4:9c:11:38:67: 48:b1:01:d4:d9:a8:e5:5a:90:48:6d:57:f7:cc:33:35:e2:27: c3:32:fb:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlDMkQxMTAvBgNVBAUTKDFCREM0NzY3QTZENUVCRTBCRUZBNUNBMTIzNTMwOEY3 NUU0ODg5MUEwHhcNMjUwODA2MTYyMDQ0WhcNMjUwODEzMTYyMDQ0WjAYMRYwFAYD VQQDEw02ODkzODBkYy0xMGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2fWQyUloaVDmx+DBC0o+MURpUPEvM3Q3Bs1fcFkzDIr+jz6LlDRtQYjEkGmn ESm3i5/yGz2msHcOYXTOLpbNESujoOCGRFCRT6r1fR57rYNMDxDwiPunPJ+vzruo mUoRpqyVd3J5OwmiD3RmzNtxi7r5xyF5xJQ/i79/ooWnQ7L6IWuanOASPCwQwuaP x7/uo8PPAHRc/JLu35+URLm8VbNnCRMLJYRdRyxrbhn5RJfomgDthAXV4XIxH2b8 +6A9dJDeoMzqhjQAf1zPkK4WX3sR2wf1t6mGr9H6oo6Dd05hmSwbitvscoWkAKXr TSItpe+TLadfW7ffHTiEq8osTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEBDe3qA YQn+Bb0JVu0mQKwcNMlWMB8GA1UdIwQYMBaAFBvcR2em1evgvvpcoSNTCPdeSIka MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUMyRC80RDVBNzg4MDA4 NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYtQy0tbHloSTFNSTkxNUlp Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c5eEhaNmJWNi1DLS1seWhJMU1JOTE1SWlSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OUMyRC80RDVBNzg4MDA4NzMxMUU3OUM4MzlCMDlDNEY5QUUwMi9HOXhIWjZiVjYt Qy0tbHloSTFNSTkxNUlpUm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBWS61+q1MDCZSAKDRN/Lzt1YIOoisBvNQykSceBPiKwZ5k9thB1MGo YZ+/1xD/QmXY/T7mfKt4nAEMcPG1focvKW6WP6xaOyGnLn8+a05OfBIZY5Iy2xeO /ZGLbAQpi/QYkrej/kHmiqzPw3+xuT9DbCTLx4r6fjaXi7qX/cwnGMeliI5+WnX3 DyRLRr94eGmNpTH3jN5y3pCRKMGq9wvZbwJV5ymebBzUtgtOfTZAvdHKAWROxGAY VQ36QPr3m8T0KVm7odFaNPvymA2unpM5P+DcA4rgwifY3TrP0+k2luBcfHouxJwR OGdIsQHU2ajlWpBIbVf3zDM14ifDMvsz -----END CERTIFICATE-----Generated at Fri Aug 8 00:38:03 2025 by rpki-client