$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft File: 065iZEnDqd0Od5i86Ly7OWYqJ_8.mft (raw, json) Hash identifier: GAuMsgpI9tiqiMU5vJQXVYBrF2+GUK+EL8vNxiRplfs= Subject key identifier: 8C:66:62:13:94:52:2B:24:94:BF:F6:A5:24:B7:F1:F3:82:33:D7:55 Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF Certificate issuer: /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft Manifest number: 01A4 Signing time: Sat 09 Aug 2025 03:41:44 +0000 Manifest this update: Sat 09 Aug 2025 03:41:44 +0000 Manifest next update: Sat 16 Aug 2025 03:41:44 +0000 Files and hashes: 1: 065iZEnDqd0Od5i86Ly7OWYqJ_8.crl (hash: xyySpYVYbFnr7WmHM2dGeHiTIhYfAwjEhInjFMgR42A=) 2: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (hash: hdoIBFcsKBcfu2ieIGwj6SsbqU4NXl1pTKHhFjI1OAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163B62, serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Validity Not Before: Aug 9 03:41:44 2025 GMT Not After : Aug 16 03:41:44 2025 GMT Subject: CN=6896c378-eb51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5f:61:0e:49:28:be:2d:1d:e8:67:59:1d:dc: 17:31:14:e5:61:5f:54:74:23:d8:ad:91:e5:0e:83: d1:78:29:76:80:46:2f:29:89:f3:b0:c3:96:b1:d7: f5:28:bf:80:e2:6a:82:8b:7b:30:4d:db:e1:a0:2d: e0:0f:b1:50:81:fa:a5:d5:b0:6f:3a:47:ec:49:c3: 94:b6:04:2d:a1:de:35:69:e2:9f:2a:ea:a9:a2:52: 44:fe:d6:c0:14:22:23:2b:bb:4c:56:33:93:1f:41: 5f:db:de:8e:82:1c:4e:51:75:49:d4:17:71:ec:ce: 59:67:32:36:db:b6:b2:ae:9e:c9:07:6e:36:13:d5: 5e:ab:17:e4:da:f5:2f:60:5a:3a:fa:bb:f2:d5:de: 47:15:5d:e6:f8:f0:c6:30:70:c0:25:6e:a3:b9:f6: 5d:11:9d:9c:1b:56:8e:6e:cb:c1:55:25:53:c0:03: 9d:76:71:f4:66:d1:05:b7:c4:d8:de:33:d0:03:db: c1:36:3a:b4:e1:c4:49:38:14:c9:d5:e0:a5:9f:b0: fe:ed:68:7d:92:28:7c:bb:1e:9e:8e:77:40:40:01: 15:18:61:b8:82:55:22:2b:a6:98:1e:25:05:e4:8e: 7b:df:08:dc:36:13:87:0b:7c:2b:5e:99:8b:c9:29: c3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:66:62:13:94:52:2B:24:94:BF:F6:A5:24:B7:F1:F3:82:33:D7:55 X509v3 Authority Key Identifier: keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:32:03:ec:8b:bc:7e:18:7f:c9:6c:1f:1c:c1:0f:2a:f4:7d: 45:34:86:15:0a:27:03:98:84:c6:d2:7d:d9:ba:53:b6:9f:ac: 98:20:22:df:4c:80:87:d5:d8:c2:fe:16:bc:6e:3b:66:3d:48: 53:e6:59:51:0e:c5:ed:91:51:27:43:04:39:c8:82:c6:96:52: 24:57:f2:7e:fa:fb:5a:8d:5f:18:d2:72:a1:65:0d:2d:a6:f6: 5a:32:1c:91:75:a2:41:3f:ab:fe:79:9e:03:eb:52:cb:b1:98: aa:a0:6d:3d:a7:4f:34:a0:6a:15:b9:57:af:22:ae:9a:4f:bf: b3:ef:fe:bc:64:e5:d1:f8:1b:7a:33:f9:ef:d3:24:19:3b:a2: 63:7b:5d:dc:f6:66:f1:6c:44:5d:5f:58:7a:d4:af:22:5c:a7: 14:b5:19:78:33:0a:fb:5f:61:2d:ea:da:54:64:60:9b:be:b2: 0d:6d:42:f1:ef:4a:5c:f4:27:ea:38:bf:b2:01:e6:1d:5a:08: f0:0e:f4:cc:df:17:1c:75:ec:3e:b5:30:75:ea:52:a6:54:ae: 6d:82:3c:25:e7:77:38:7d:28:ff:10:38:5d:e2:24:8d:53:e7: ad:ee:9f:94:7b:77:c4:21:9f:cb:aa:93:0a:ec:8d:1d:ff:b8: 8c:ec:65:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCNjIxMTAvBgNVBAUTKEQzQUU2MjY0NDlDM0E5REQwRTc3OThCQ0U4QkNCQjM5 NjYyQTI3RkYwHhcNMjUwODA5MDM0MTQ0WhcNMjUwODE2MDM0MTQ0WjAYMRYwFAYD VQQDEw02ODk2YzM3OC1lYjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwV9hDkkovi0d6GdZHdwXMRTlYV9UdCPYrZHlDoPReCl2gEYvKYnzsMOWsdf1 KL+A4mqCi3swTdvhoC3gD7FQgfql1bBvOkfsScOUtgQtod41aeKfKuqpolJE/tbA FCIjK7tMVjOTH0Ff296OghxOUXVJ1Bdx7M5ZZzI227ayrp7JB242E9Veqxfk2vUv YFo6+rvy1d5HFV3m+PDGMHDAJW6jufZdEZ2cG1aObsvBVSVTwAOddnH0ZtEFt8TY 3jPQA9vBNjq04cRJOBTJ1eCln7D+7Wh9kih8ux6ejndAQAEVGGG4glUiK6aYHiUF 5I573wjcNhOHC3wrXpmLySnDYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxmYhOU UisklL/2pSS38fOCM9dVMB8GA1UdIwQYMBaAFNOuYmRJw6ndDneYvOi8uzlmKif/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0I2Mi80RTlCNzZEMkZC RDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFkME9kNWk4Nkx5N09XWXFK XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi8wNjVpWkVuRHFk ME9kNWk4Nkx5N09XWXFKXzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXMgPsi7x+GH/JbB8cwQ8q9H1FNIYVCicDmITG0n3ZulO2n6yYICLf TICH1djC/ha8bjtmPUhT5llRDsXtkVEnQwQ5yILGllIkV/J++vtajV8Y0nKhZQ0t pvZaMhyRdaJBP6v+eZ4D61LLsZiqoG09p080oGoVuVevIq6aT7+z7/68ZOXR+Bt6 M/nv0yQZO6Jje13c9mbxbERdX1h61K8iXKcUtRl4Mwr7X2Et6tpUZGCbvrINbULx 70pc9CfqOL+yAeYdWgjwDvTM3xccdew+tTB16lKmVK5tgjwl53c4fSj/EDhd4iSN U+et7p+Ue3fEIZ/LqpMK7I0d/7iM7GX7 -----END CERTIFICATE-----Generated at Sun Aug 10 21:10:52 2025 by rpki-client