$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft File: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft (raw, json) Hash identifier: cxJN/cPdN8Odq0MXjg2NIBkl1RqLbbbf6UoQzkLDb0U= Subject key identifier: 59:79:70:12:03:35:16:49:56:FD:0F:DD:20:32:40:4C:6E:BA:66:AE Authority key identifier: F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B Certificate issuer: /CN=A914C4ED/serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Certificate serial: 0320 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft Manifest number: 031C Signing time: Sat 09 Aug 2025 01:21:34 +0000 Manifest this update: Sat 09 Aug 2025 01:21:33 +0000 Manifest next update: Sat 16 Aug 2025 01:21:33 +0000 Files and hashes: 1: 9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl (hash: aquAkzXQGNCtAfDGJujvJq4okU2i1k7bKQFLoqfvLbI=) 2: 9E60AA30DCB511ECAC801F6EC4F9AE02.roa (hash: X05nJ1j9oFxXKovC7MyWIX4IdW9s4NwJbF0XevapeM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 800 (0x320) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=F6553256B297F283319CB989E6B8C7836F87190B Validity Not Before: Aug 9 01:21:33 2025 GMT Not After : Aug 16 01:21:33 2025 GMT Subject: CN=6896a29d-4300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d3:2a:18:71:30:ae:a3:d2:44:6d:e4:39:40: f0:9a:fd:b8:7e:85:8e:2e:9a:30:77:27:bb:58:2b: 2b:82:8c:2f:ef:2e:1a:9b:29:c3:f8:6b:e1:c9:58: d7:60:d3:3c:60:c3:45:5b:67:1c:b3:8b:a6:12:c4: 0d:23:83:90:81:23:c5:c7:34:44:95:45:74:90:dc: 57:69:b0:ee:ed:65:a2:c1:79:6a:c9:7a:3f:f9:19: 78:6e:71:4e:5a:3d:b3:c6:b9:65:31:95:b3:2a:e0: 94:92:6f:7b:fd:e8:c2:1b:9d:de:47:68:35:2d:52: 7d:74:ee:e3:de:2a:d8:02:8a:ad:e9:89:bc:bf:0f: 57:ae:99:98:00:eb:02:a7:0c:d6:3a:d2:3f:ff:c1: a5:4f:cc:fd:34:7c:66:76:01:38:17:6f:a1:84:13: e0:79:4f:4c:e9:ce:6c:82:ca:33:e1:d6:92:69:f0: 5e:0e:1e:64:2a:6d:04:2d:72:83:4c:b4:ef:be:64: 01:1c:09:db:cf:44:a5:90:c5:1a:5f:ca:b4:36:3d: d3:ad:05:4a:6a:ca:3c:5e:5c:1d:b0:96:62:70:bc: bd:bc:44:03:08:e4:97:5a:7c:dd:dd:b8:b9:24:c0: 42:4b:b7:1a:8f:36:d1:e5:b8:94:6a:95:41:fc:8a: 14:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:79:70:12:03:35:16:49:56:FD:0F:DD:20:32:40:4C:6E:BA:66:AE X509v3 Authority Key Identifier: keyid:F6:55:32:56:B2:97:F2:83:31:9C:B9:89:E6:B8:C7:83:6F:87:19:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/3EE947AADCAC11ECA223BF5CC4F9AE02/9lUyVrKX8oMxnLmJ5rjHg2-HGQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:c2:ee:7a:30:94:53:b8:c8:26:05:29:53:07:aa:50:9f:a9: 33:d2:ae:59:6f:9c:42:7e:a6:f2:e1:b6:dc:23:90:d9:bf:f1: 2e:08:4c:aa:d9:e8:35:86:16:b0:08:ce:a0:ac:b8:a8:3b:60: 36:8a:fe:bb:f1:09:ce:91:65:b9:67:2d:45:dc:f5:e0:cf:07: a6:a0:02:ca:51:ad:6e:8a:29:5d:67:0d:ba:31:c8:9f:11:b3: 05:c2:7d:aa:1c:10:51:0e:19:58:cb:55:65:80:64:1d:73:b4: 8a:89:c0:00:08:3f:f6:d9:f6:10:1e:bd:be:9f:28:02:30:c5: c3:48:ce:87:08:dc:4f:58:a4:68:a0:0c:bc:a1:a8:1a:7f:c2: 49:78:ce:aa:0e:34:a9:b1:49:fa:8d:57:12:c6:5c:f9:45:fd: 7a:5c:bf:56:6d:56:a2:bd:2d:ed:3c:7f:ef:26:25:51:c5:00: d8:92:02:6b:90:64:06:97:c6:0a:70:bf:4d:04:d4:b2:74:50: 7f:9b:a9:61:63:8d:71:39:ee:5b:a3:6c:88:c3:50:ce:a4:16: e3:a5:60:78:8d:28:3f:bd:a0:67:b5:c2:41:5c:6c:47:88:8a: 01:c1:29:3f:e4:22:bd:e1:93:fa:f6:11:b9:18:59:32:4b:15: 32:72:ba:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAyAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEY2NTUzMjU2QjI5N0YyODMzMTlDQjk4OUU2QjhDNzgz NkY4NzE5MEIwHhcNMjUwODA5MDEyMTMzWhcNMjUwODE2MDEyMTMzWjAYMRYwFAYD VQQDEw02ODk2YTI5ZC00MzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1NMqGHEwrqPSRG3kOUDwmv24foWOLpowdye7WCsrgowv7y4amynD+GvhyVjX YNM8YMNFW2ccs4umEsQNI4OQgSPFxzRElUV0kNxXabDu7WWiwXlqyXo/+Rl4bnFO Wj2zxrllMZWzKuCUkm97/ejCG53eR2g1LVJ9dO7j3irYAoqt6Ym8vw9XrpmYAOsC pwzWOtI//8GlT8z9NHxmdgE4F2+hhBPgeU9M6c5sgsoz4daSafBeDh5kKm0ELXKD TLTvvmQBHAnbz0SlkMUaX8q0Nj3TrQVKaso8XlwdsJZicLy9vEQDCOSXWnzd3bi5 JMBCS7cajzbR5biUapVB/IoUawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFl5cBID NRZJVv0P3SAyQExuumauMB8GA1UdIwQYMBaAFPZVMlayl/KDMZy5iea4x4NvhxkL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC8zRUU5NDdBQURD QUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhvTXhuTG1KNXJqSGcyLUhH UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsVXlWcktYOG9NeG5MbUo1cmpIZzItSEdRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QzRFRC8zRUU5NDdBQURDQUMxMUVDQTIyM0JGNUNDNEY5QUUwMi85bFV5VnJLWDhv TXhuTG1KNXJqSGcyLUhHUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATwu56MJRTuMgmBSlTB6pQn6kz0q5Zb5xCfqby4bbcI5DZv/EuCEyq 2eg1hhawCM6grLioO2A2iv678QnOkWW5Zy1F3PXgzwemoALKUa1uiildZw26Mcif EbMFwn2qHBBRDhlYy1VlgGQdc7SKicAACD/22fYQHr2+nygCMMXDSM6HCNxPWKRo oAy8oagaf8JJeM6qDjSpsUn6jVcSxlz5Rf16XL9WbVaivS3tPH/vJiVRxQDYkgJr kGQGl8YKcL9NBNSydFB/m6lhY41xOe5bo2yIw1DOpBbjpWB4jSg/vaBntcJBXGxH iIoBwSk/5CK94ZP69hG5GFkySxUycrok -----END CERTIFICATE-----Generated at Sun Aug 10 04:50:48 2025 by rpki-client