$ rpki-client -vvf rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft File: rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft (raw, json) Hash identifier: LVeWgI5DPLKD8l+FF2ohZ1r2u6Q1ynmBBbnAvforyvs= Subject key identifier: CC:56:53:26:CE:83:C3:E8:6D:D8:34:A5:97:3A:31:2C:79:2B:A0:EC Authority key identifier: AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD Certificate issuer: /CN=A9164E50/serialNumber=ADF0F5ABAFFB9845B55CB361A092F56D4E4005DD Certificate serial: 068F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft Manifest number: 068A Signing time: Fri 08 Aug 2025 22:42:13 +0000 Manifest this update: Fri 08 Aug 2025 22:42:13 +0000 Manifest next update: Fri 15 Aug 2025 22:42:13 +0000 Files and hashes: 1: rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl (hash: /tNoQ4tj9npfiBNMdl4ItyCQMmoyoF1lTSpAjcjQUhQ=) 2: D18881E6807A11EBB44A0A58C4F9AE02.roa (hash: 9X7s4Zr8J67+2NJv1oqimpUYFSW3VJpeiZEh6uYKUO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1679 (0x68f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164E50, serialNumber=ADF0F5ABAFFB9845B55CB361A092F56D4E4005DD Validity Not Before: Aug 8 22:42:13 2025 GMT Not After : Aug 15 22:42:13 2025 GMT Subject: CN=68967d45-f346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6c:d8:6f:97:c4:28:5a:9e:b6:42:9b:dd:8b: 36:81:cb:38:24:a7:95:0d:95:00:42:5c:76:f5:5e: 98:22:64:d9:8c:1a:94:be:50:b5:29:73:59:4d:1f: 91:89:41:15:00:10:b5:19:18:e6:d1:33:b5:85:2e: 3d:93:56:7f:4d:ca:ae:0b:f8:0c:47:cb:ad:d5:f5: 17:d2:6c:84:cc:a8:c3:91:7c:80:5e:96:f9:c0:1c: 20:72:56:bc:c0:03:fb:07:cc:6a:79:65:9e:93:cd: be:76:99:49:d3:70:97:dd:0d:fb:da:69:62:85:7e: de:dc:8b:70:cb:65:9e:f3:64:0f:cf:92:ea:e7:bb: 5f:7c:9a:a5:43:ca:0b:33:2a:35:2d:3c:b9:c3:0d: c8:28:b7:b8:4f:c8:a4:0d:50:5e:3a:a3:dd:0e:3d: 3c:8b:3a:ae:02:7a:b3:cd:b2:3e:c5:fd:73:a7:b9: 21:6b:c4:81:13:bd:12:ff:72:d9:ae:e6:33:2a:09: 20:04:b5:95:68:0d:67:8e:2f:30:00:ae:cc:e8:a6: 75:3a:d5:8c:15:ca:98:3d:35:94:ad:c8:9a:53:73: e3:e7:bc:c4:be:e7:00:ca:8b:bc:87:41:f1:bd:28: 2d:ba:30:86:5b:a0:c0:88:30:e8:76:8e:16:d0:e9: ae:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:56:53:26:CE:83:C3:E8:6D:D8:34:A5:97:3A:31:2C:79:2B:A0:EC X509v3 Authority Key Identifier: keyid:AD:F0:F5:AB:AF:FB:98:45:B5:5C:B3:61:A0:92:F5:6D:4E:40:05:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rfD1q6_7mEW1XLNhoJL1bU5ABd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164E50/A40A2420806D11EBA8BF9976C4F9AE02/rfD1q6_7mEW1XLNhoJL1bU5ABd0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:8d:b3:f3:6a:27:17:c5:9a:9f:f5:1a:14:30:81:06:09:26: b9:d1:3d:8c:94:fe:4e:b8:b0:c9:5c:c7:10:17:d1:bc:5d:da: be:05:fd:80:e7:10:ba:d8:2a:34:0e:41:54:31:cd:3e:64:27: 99:31:d7:1a:bd:46:7d:82:b3:d1:56:cb:85:37:ee:d5:e2:dd: 65:ce:f1:16:b5:0e:a1:ea:51:7b:03:a8:1d:4a:f5:ee:36:07: 4f:59:0f:74:db:79:ae:8f:38:83:c8:9d:87:78:1f:96:29:27: db:6a:cc:9c:9b:08:a1:47:bb:dc:7e:96:36:ae:8e:2d:83:bd: ef:c6:ec:38:02:38:c3:f6:a0:ca:dd:03:ec:1a:c7:c5:64:80: cd:c4:0c:9e:e9:87:1d:19:ee:52:67:01:e2:6a:2d:fb:c2:18: 36:4c:44:6d:04:4c:35:a4:d3:39:e0:26:f7:e1:83:39:1b:ad: c0:92:ab:38:ee:0b:9a:d3:5a:97:50:16:84:a8:8a:af:08:0d: 3a:9e:f0:26:cf:2d:17:20:98:93:9c:5a:90:f6:04:b6:43:79: d1:4b:b4:7a:58:f5:68:5d:c9:39:cd:4a:07:5a:ff:5d:0e:5e: dd:9c:75:13:33:f2:d7:de:52:d9:cc:00:94:69:87:6b:61:05: cf:3e:f3:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRFNTAxMTAvBgNVBAUTKEFERjBGNUFCQUZGQjk4NDVCNTVDQjM2MUEwOTJGNTZE NEU0MDA1REQwHhcNMjUwODA4MjI0MjEzWhcNMjUwODE1MjI0MjEzWjAYMRYwFAYD VQQDEw02ODk2N2Q0NS1mMzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGzYb5fEKFqetkKb3Ys2gcs4JKeVDZUAQlx29V6YImTZjBqUvlC1KXNZTR+R iUEVABC1GRjm0TO1hS49k1Z/TcquC/gMR8ut1fUX0myEzKjDkXyAXpb5wBwgcla8 wAP7B8xqeWWek82+dplJ03CX3Q372mlihX7e3Itwy2We82QPz5Lq57tffJqlQ8oL Myo1LTy5ww3IKLe4T8ikDVBeOqPdDj08izquAnqzzbI+xf1zp7kha8SBE70S/3LZ ruYzKgkgBLWVaA1nji8wAK7M6KZ1OtWMFcqYPTWUrciaU3Pj57zEvucAyou8h0Hx vSgtujCGW6DAiDDodo4W0Omu3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMxWUybO g8Pobdg0pZc6MSx5K6DsMB8GA1UdIwQYMBaAFK3w9auv+5hFtVyzYaCS9W1OQAXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEU1MC9BNDBBMjQyMDgw NkQxMUVCQThCRjk5NzZDNEY5QUUwMi9yZkQxcTZfN21FVzFYTE5ob0pMMWJVNUFC ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JmRDFxNl83bUVXMVhMTmhvSkwxYlU1QUJkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NEU1MC9BNDBBMjQyMDgwNkQxMUVCQThCRjk5NzZDNEY5QUUwMi9yZkQxcTZfN21F VzFYTE5ob0pMMWJVNUFCZDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3jbPzaicXxZqf9RoUMIEGCSa50T2MlP5OuLDJXMcQF9G8Xdq+Bf2A 5xC62Co0DkFUMc0+ZCeZMdcavUZ9grPRVsuFN+7V4t1lzvEWtQ6h6lF7A6gdSvXu NgdPWQ9023mujziDyJ2HeB+WKSfbasycmwihR7vcfpY2ro4tg73vxuw4AjjD9qDK 3QPsGsfFZIDNxAye6YcdGe5SZwHiai37whg2TERtBEw1pNM54Cb34YM5G63Akqs4 7gua01qXUBaEqIqvCA06nvAmzy0XIJiTnFqQ9gS2Q3nRS7R6WPVoXck5zUoHWv9d Dl7dnHUTM/LX3lLZzACUaYdrYQXPPvMC -----END CERTIFICATE-----Generated at Sun Aug 10 03:56:39 2025 by rpki-client