$ rpki-client -vvf rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft File: 9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft (raw, json) Hash identifier: qc7tETxB9MDpUP0cx9ay3lC44WdIp8WL7k8z25yFZrI= Subject key identifier: 9D:B6:3D:3C:0C:FB:4E:AE:BC:6E:B1:52:EB:88:84:0E:8B:0C:1A:9A Authority key identifier: F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74 Certificate issuer: /CN=A9153049/serialNumber=F62D2A685DCEC97E1583902A8EF9EE5170782074 Certificate serial: 0C60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft Manifest number: 0C55 Signing time: Sun 10 Aug 2025 18:31:53 +0000 Manifest this update: Sun 10 Aug 2025 18:31:52 +0000 Manifest next update: Sun 17 Aug 2025 18:31:52 +0000 Files and hashes: 1: 9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl (hash: pVI86+9cxLEPAUz28srJv311po9gPLPEjzqRXdkzMsc=) 2: 4D6224A80C4A11EAABCEF428C4F9AE02.roa (hash: LoUT2MaD5/F/EBumNr9K+cDj9oFe1lrYI+mckDlhBHY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3168 (0xc60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153049, serialNumber=F62D2A685DCEC97E1583902A8EF9EE5170782074 Validity Not Before: Aug 10 18:31:52 2025 GMT Not After : Aug 17 18:31:52 2025 GMT Subject: CN=6898e599-8bdd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c9:05:5b:b6:d0:04:85:d0:08:a4:5d:4c:f7: 32:43:c2:be:75:b0:8b:2e:d3:8e:34:94:48:24:dc: 83:4f:31:4a:8b:6f:97:de:fb:f3:ac:22:af:58:56: d4:e4:f1:f5:93:41:ad:4c:af:2b:a0:36:50:fe:8e: 49:7d:b7:aa:22:e8:1e:91:e5:ab:af:8b:cb:fc:26: 6e:cf:d8:2f:c2:75:e0:5f:ac:f1:b1:7c:25:00:ef: 00:38:91:d2:f6:bc:b1:24:f9:d8:1e:0c:e6:c7:2d: 65:c8:09:8d:46:12:a7:0f:e8:60:57:c9:42:e3:3c: b7:e0:68:62:cc:37:32:30:00:ae:8a:a2:7e:e6:bf: 83:62:e5:7e:bf:00:f5:51:63:ed:12:4e:6d:27:d4: d3:cc:c2:c0:e9:55:a7:90:b0:f2:cd:fb:a7:5c:11: 6e:37:74:e1:a0:86:a0:58:ef:a1:c5:b1:03:11:f9: 38:e5:e1:b4:06:cc:e0:6d:d1:ee:b6:eb:4e:26:e2: 92:13:cb:3e:2c:e8:81:74:a7:74:0a:e7:cc:83:4d: 89:63:99:ed:a0:e8:93:f5:4d:02:b4:db:48:c6:3d: 1d:05:3f:7b:14:6e:b6:a6:1d:92:77:b9:23:e7:3f: 2f:7f:67:39:82:26:36:af:11:5d:57:10:9d:fd:50: a8:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B6:3D:3C:0C:FB:4E:AE:BC:6E:B1:52:EB:88:84:0E:8B:0C:1A:9A X509v3 Authority Key Identifier: keyid:F6:2D:2A:68:5D:CE:C9:7E:15:83:90:2A:8E:F9:EE:51:70:78:20:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153049/ADAC528209D611EA9EB3381CC4F9AE02/9i0qaF3OyX4Vg5AqjvnuUXB4IHQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:05:75:c7:48:b0:8e:03:12:19:73:38:c5:61:72:85:c1:2c: 6e:f8:a8:a3:44:61:63:07:9f:ff:95:12:20:41:01:bb:72:3a: 6b:a4:be:71:bb:2b:48:f5:27:cb:1b:26:c7:4e:65:13:cf:5f: a6:a9:30:37:c3:78:bf:ac:66:78:6d:8d:1e:b2:a4:25:54:19: 63:dc:39:2f:ea:5d:08:e5:bc:f3:5c:6d:8f:69:94:cc:6c:2b: 27:21:5e:8e:29:c1:b7:f8:5e:40:ce:64:7d:9e:1e:1e:9b:a3: a7:12:e4:8d:d2:15:6a:fc:12:d4:5d:63:1b:1a:d6:36:c8:18: 0e:c9:58:90:50:94:1b:cc:dc:00:49:7e:37:09:99:99:a2:78: 3c:33:da:98:63:da:05:7f:f1:0b:ca:17:34:ae:d3:65:ef:33: ac:f7:0a:fb:14:85:c8:39:cf:62:c3:40:e0:a1:4f:a3:4d:14: c9:7c:fc:e2:50:a8:19:c7:86:f4:b5:e9:d1:c4:3b:a7:a5:3e: 66:db:42:4e:3b:ad:14:bd:25:02:43:32:ca:17:5d:79:cc:9e: 20:bd:c2:74:ac:cd:e5:69:55:15:8f:dd:61:ec:1e:b7:f4:42: 5d:f4:bd:55:83:d0:45:b1:23:bd:4f:56:89:54:50:64:bf:5a: 07:dd:3d:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTMwNDkxMTAvBgNVBAUTKEY2MkQyQTY4NURDRUM5N0UxNTgzOTAyQThFRjlFRTUx NzA3ODIwNzQwHhcNMjUwODEwMTgzMTUyWhcNMjUwODE3MTgzMTUyWjAYMRYwFAYD VQQDEw02ODk4ZTU5OS04YmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ckFW7bQBIXQCKRdTPcyQ8K+dbCLLtOONJRIJNyDTzFKi2+X3vvzrCKvWFbU 5PH1k0GtTK8roDZQ/o5JfbeqIugekeWrr4vL/CZuz9gvwnXgX6zxsXwlAO8AOJHS 9ryxJPnYHgzmxy1lyAmNRhKnD+hgV8lC4zy34GhizDcyMACuiqJ+5r+DYuV+vwD1 UWPtEk5tJ9TTzMLA6VWnkLDyzfunXBFuN3ThoIagWO+hxbEDEfk45eG0BszgbdHu tutOJuKSE8s+LOiBdKd0CufMg02JY5ntoOiT9U0CtNtIxj0dBT97FG62ph2Sd7kj 5z8vf2c5giY2rxFdVxCd/VCoRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ22PTwM +06uvG6xUuuIhA6LDBqaMB8GA1UdIwQYMBaAFPYtKmhdzsl+FYOQKo757lFweCB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzA0OS9BREFDNTI4MjA5 RDYxMUVBOUVCMzM4MUNDNEY5QUUwMi85aTBxYUYzT3lYNFZnNUFxanZudVVYQjRJ SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlpMHFhRjNPeVg0Vmc1QXFqdm51VVhCNElIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzA0OS9BREFDNTI4MjA5RDYxMUVBOUVCMzM4MUNDNEY5QUUwMi85aTBxYUYzT3lY NFZnNUFxanZudVVYQjRJSFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6BXXHSLCOAxIZczjFYXKFwSxu+KijRGFjB5//lRIgQQG7cjprpL5x uytI9SfLGybHTmUTz1+mqTA3w3i/rGZ4bY0esqQlVBlj3Dkv6l0I5bzzXG2PaZTM bCsnIV6OKcG3+F5AzmR9nh4em6OnEuSN0hVq/BLUXWMbGtY2yBgOyViQUJQbzNwA SX43CZmZong8M9qYY9oFf/ELyhc0rtNl7zOs9wr7FIXIOc9iw0DgoU+jTRTJfPzi UKgZx4b0tenRxDunpT5m20JOO60UvSUCQzLKF115zJ4gvcJ0rM3laVUVj91h7B63 9EJd9L1Vg9BFsSO9T1aJVFBkv1oH3T3K -----END CERTIFICATE-----Generated at Mon Aug 11 07:29:38 2025 by rpki-client