$ rpki-client -vvf rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft File: 9fHi3rMlVisihf-LXeJd8srfdwc.mft (raw, json) Hash identifier: Noi8auf1ra1iCsqdXsGqp0GLXWW22uqCq+fJ/mm195Y= Subject key identifier: 07:34:84:B1:04:9D:1D:07:53:6E:0A:EC:EA:B0:85:6E:D1:11:92:A8 Authority key identifier: F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 Certificate issuer: /CN=A915B4B5/serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Certificate serial: FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft Manifest number: F9 Signing time: Tue 05 Aug 2025 05:37:56 +0000 Manifest this update: Tue 05 Aug 2025 05:37:56 +0000 Manifest next update: Tue 12 Aug 2025 05:37:56 +0000 Files and hashes: 1: 9fHi3rMlVisihf-LXeJd8srfdwc.crl (hash: ikj4ltR28IGHDJdCg2hCe8VqNAccF4s4P0d6WBoGIvQ=) 2: E0207030F13611EE869F9E34C4F9AE02.roa (hash: 1cTaBvBAhxFneEeGlAFuRr/tcaFQd3vN8aAkRfuybSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 05:37:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B4B5, serialNumber=F5F1E2DEB325562B2285FF8B5DE25DF2CADF7707 Validity Not Before: Aug 5 05:37:56 2025 GMT Not After : Aug 12 05:37:56 2025 GMT Subject: CN=689198b4-f64a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:42:0d:11:11:66:6d:5d:96:4f:c7:52:e2:42: 3c:ea:86:f4:07:91:53:31:95:8b:c2:13:26:9d:27: bf:50:56:4e:bc:e6:11:02:70:e8:e0:62:d8:77:f4: 68:b7:a4:73:c2:f9:44:4c:8b:13:ae:1e:c3:ec:bf: cd:61:07:75:17:be:a5:4d:62:61:04:a2:a6:2d:f0: 6d:b7:e4:72:77:af:2f:31:d4:fe:ab:42:cc:52:c5: 49:b3:41:eb:9a:1e:a8:a6:46:26:36:a7:f5:9f:cb: cf:3e:c7:17:b0:6a:d0:68:77:07:09:4e:99:98:d8: 58:9f:61:58:d9:96:50:5b:c2:fe:0d:3c:df:0a:39: 6a:e6:4b:e8:93:26:8e:c0:be:af:f7:87:8d:2e:89: b6:93:0c:50:ce:80:77:dd:2f:6f:83:5d:0b:3d:44: 5f:96:db:94:b3:ab:68:c7:c5:c5:cf:59:59:26:ae: 70:f7:c7:e0:8a:5c:41:25:bd:c8:8d:d9:1b:13:29: 31:4d:9b:13:83:eb:9b:10:5e:9a:8d:e3:a3:89:f8: b7:86:39:0d:a8:4b:f9:a6:a7:4f:4c:48:1c:e4:34: d4:0e:be:20:2d:c9:6a:b5:98:bc:5a:b9:f2:38:b8: 83:40:86:9a:a6:db:e0:06:19:c6:d7:85:67:ce:89: a4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:34:84:B1:04:9D:1D:07:53:6E:0A:EC:EA:B0:85:6E:D1:11:92:A8 X509v3 Authority Key Identifier: keyid:F5:F1:E2:DE:B3:25:56:2B:22:85:FF:8B:5D:E2:5D:F2:CA:DF:77:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9fHi3rMlVisihf-LXeJd8srfdwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B4B5/40CE9F2AF13611EE908BF032C4F9AE02/9fHi3rMlVisihf-LXeJd8srfdwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:c1:72:83:56:e1:c1:ff:8e:95:2a:37:a1:35:53:8e:5e:f3: e7:91:8f:93:c7:f2:e1:ec:2c:93:11:b6:6a:6d:d6:ab:11:98: 7a:8c:79:4b:cc:f4:1d:fe:e1:b2:21:6b:a8:d3:32:63:f2:bd: a5:21:40:db:3f:0a:dd:d9:05:fe:a8:ed:b2:7f:cd:46:b0:32: 0d:06:9b:43:28:b7:54:af:69:d3:34:f4:b9:6c:09:0a:5b:d2: aa:c7:68:7d:0d:1d:57:0b:a4:d3:60:c2:10:f3:a9:7f:f1:0c: 20:c5:5f:7b:80:54:91:86:23:c1:3e:7e:5c:3b:b8:45:b1:e2: 1a:65:51:fc:ee:4f:09:9d:4f:4d:df:8d:03:8f:61:1f:dd:fb: ed:dc:8a:33:ca:96:b9:c2:2b:81:fd:86:76:c9:ff:7c:9a:3b: 47:d6:de:58:e9:4a:c3:39:ac:bd:6a:44:48:70:b9:7d:f5:5d: 40:73:d4:98:ef:01:4a:21:a0:04:30:e8:2f:38:83:e9:35:5b: 19:e2:a0:a5:37:a6:2c:2c:f0:30:6a:b7:cb:6f:90:6f:45:05: 14:03:93:a5:13:3d:fb:40:3c:7e:7b:03:e7:c9:d7:7a:1d:87: 73:53:3b:07:da:ae:1a:2b:52:73:ce:ba:92:7a:48:5a:31:d7: 9a:c3:50:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI0QjUxMTAvBgNVBAUTKEY1RjFFMkRFQjMyNTU2MkIyMjg1RkY4QjVERTI1REYy Q0FERjc3MDcwHhcNMjUwODA1MDUzNzU2WhcNMjUwODEyMDUzNzU2WjAYMRYwFAYD VQQDEw02ODkxOThiNC1mNjRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUINERFmbV2WT8dS4kI86ob0B5FTMZWLwhMmnSe/UFZOvOYRAnDo4GLYd/Ro t6RzwvlETIsTrh7D7L/NYQd1F76lTWJhBKKmLfBtt+Ryd68vMdT+q0LMUsVJs0Hr mh6opkYmNqf1n8vPPscXsGrQaHcHCU6ZmNhYn2FY2ZZQW8L+DTzfCjlq5kvokyaO wL6v94eNLom2kwxQzoB33S9vg10LPURfltuUs6tox8XFz1lZJq5w98fgilxBJb3I jdkbEykxTZsTg+ubEF6ajeOjifi3hjkNqEv5pqdPTEgc5DTUDr4gLclqtZi8Wrny OLiDQIaaptvgBhnG14Vnzomk6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAc0hLEE nR0HU24K7OqwhW7REZKoMB8GA1UdIwQYMBaAFPXx4t6zJVYrIoX/i13iXfLK33cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjRCNS80MENFOUYyQUYx MzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZpc2loZi1MWGVKZDhzcmZk d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlmSGkzck1sVmlzaWhmLUxYZUpkOHNyZmR3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjRCNS80MENFOUYyQUYxMzYxMUVFOTA4QkYwMzJDNEY5QUUwMi85ZkhpM3JNbFZp c2loZi1MWGVKZDhzcmZkd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAswXKDVuHB/46VKjehNVOOXvPnkY+Tx/Lh7CyTEbZqbdarEZh6jHlL zPQd/uGyIWuo0zJj8r2lIUDbPwrd2QX+qO2yf81GsDINBptDKLdUr2nTNPS5bAkK W9Kqx2h9DR1XC6TTYMIQ86l/8QwgxV97gFSRhiPBPn5cO7hFseIaZVH87k8JnU9N 340Dj2Ef3fvt3Iozypa5wiuB/YZ2yf98mjtH1t5Y6UrDOay9akRIcLl99V1Ac9SY 7wFKIaAEMOgvOIPpNVsZ4qClN6YsLPAwarfLb5BvRQUUA5OlEz37QDx+ewPnydd6 HYdzUzsH2q4aK1JzzrqSekhaMdeaw1A9 -----END CERTIFICATE-----Generated at Wed Aug 6 05:17:25 2025 by rpki-client