$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft File: CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft (raw, json) Hash identifier: 0cC0mNSDhmV7gbuIYZJBiwltvw2GVxOiU4w1m2nkG6w= Subject key identifier: C7:F1:D7:B9:1B:C6:09:54:DC:D8:4A:7E:46:B7:DE:3A:D0:6C:D2:92 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft Manifest number: 01C5 Signing time: Sat 09 Aug 2025 03:19:29 +0000 Manifest this update: Sat 09 Aug 2025 03:19:28 +0000 Manifest next update: Sat 16 Aug 2025 03:19:28 +0000 Files and hashes: 1: CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl (hash: 93MF6W5tgTJhXYJ68Bcijc3WlkTkzbssWm5paQijvAI=) 2: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (hash: 1DI+mqIXwfIJnsuS//oB0VNc4iGbxjDEhe/n7gNnlpo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73, serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: Aug 9 03:19:28 2025 GMT Not After : Aug 16 03:19:28 2025 GMT Subject: CN=6896be41-194b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:e8:13:8c:a2:71:af:e6:1a:61:67:c3:79:1d: 08:86:5d:c6:fd:d2:e9:8e:f3:3b:7c:4e:f1:ba:02: 96:cb:2f:5f:86:c1:e7:1e:18:b5:55:b9:63:72:1b: 4c:d5:90:1c:ee:0e:4f:6e:c8:1b:a0:a4:9f:b6:b4: b7:40:fc:0b:f3:a5:24:65:c8:51:bb:2f:91:ed:40: d5:6f:0c:53:09:c3:7d:ba:9c:e3:51:1e:b4:71:59: 5b:9d:10:1f:f3:ec:21:c7:59:8d:b1:c1:c6:ba:a2: 7e:e1:4e:38:60:93:1f:f9:bd:74:4a:76:5e:13:a8: 63:5a:f0:d3:00:6c:7a:be:fd:2e:b3:dc:52:49:3f: 36:54:65:0f:92:57:90:c2:26:a6:a6:21:30:cf:df: 6b:ef:79:c3:9f:b3:71:8b:02:a5:f7:6b:bb:80:6a: 2d:d4:c3:38:c5:ec:30:70:fd:31:c3:03:69:12:e8: 8b:2a:e0:45:47:0f:29:ad:b3:36:22:d6:9b:a4:18: 37:00:7d:ef:70:e8:28:87:8c:7e:e4:b9:b1:35:a3: 5d:c8:47:77:48:56:b2:2d:28:22:f2:30:ed:12:52: 03:e6:e1:9f:2f:65:ce:13:a4:00:68:49:9a:e0:49: 92:5b:e5:7b:c9:3a:3f:c6:49:66:cf:f0:9d:00:43: 00:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:F1:D7:B9:1B:C6:09:54:DC:D8:4A:7E:46:B7:DE:3A:D0:6C:D2:92 X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b4:97:04:aa:b7:6e:f9:2d:90:9d:60:eb:7f:c6:ab:9b:ea: a4:bd:c8:7b:0c:6f:4a:fb:1d:2f:cf:07:63:35:60:9b:19:d6: d2:9b:08:20:39:7c:80:f8:2e:fb:c7:b9:50:94:a0:73:35:57: 25:fe:e5:df:57:16:04:54:41:a8:4d:5f:7a:0d:e3:af:14:78: 88:ab:51:b4:30:80:71:c2:d8:50:ee:d3:c8:d8:66:c1:be:db: cf:a9:d8:ce:5f:23:9e:aa:30:5e:fd:7a:ac:73:cb:81:64:9d: 57:37:17:bc:5d:cb:ac:5f:bc:03:ed:23:97:3b:83:d5:09:13: a2:fc:6b:86:59:93:23:08:53:ae:19:4d:f1:df:eb:0d:e5:a3: 86:0d:1f:cc:9c:e7:e6:43:8a:3e:c9:38:56:6a:83:60:7d:98: fd:f1:e2:ac:f0:be:f2:d1:24:6d:a4:53:82:e4:b2:3c:af:01: c3:21:ce:98:95:27:0b:af:76:21:89:49:11:61:e5:7f:b8:87: 6b:6c:9d:0e:5c:e9:e0:fd:c5:21:41:c9:73:c2:31:44:6d:3a: 07:b4:c7:8d:4a:3f:cc:bc:91:94:0d:44:e4:7f:0a:8f:72:68: c7:e0:03:ca:af:8f:ae:27:58:a0:c4:15:34:5f:ce:e9:0a:7d: 5d:55:36:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjUwODA5MDMxOTI4WhcNMjUwODE2MDMxOTI4WjAYMRYwFAYD VQQDEw02ODk2YmU0MS0xOTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5+gTjKJxr+YaYWfDeR0Ihl3G/dLpjvM7fE7xugKWyy9fhsHnHhi1VbljchtM 1ZAc7g5PbsgboKSftrS3QPwL86UkZchRuy+R7UDVbwxTCcN9upzjUR60cVlbnRAf 8+whx1mNscHGuqJ+4U44YJMf+b10SnZeE6hjWvDTAGx6vv0us9xSST82VGUPkleQ wiampiEwz99r73nDn7NxiwKl92u7gGot1MM4xewwcP0xwwNpEuiLKuBFRw8prbM2 ItabpBg3AH3vcOgoh4x+5LmxNaNdyEd3SFayLSgi8jDtElID5uGfL2XOE6QAaEma 4EmSW+V7yTo/xklmz/CdAEMAAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfx17kb xglU3NhKfka33jrQbNKSMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEM3My84RTVDOUNDMEMzMTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21j RWM5dUI0WmZkbHNqaGxZNGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6tJcEqrdu+S2QnWDrf8arm+qkvch7DG9K+x0vzwdjNWCbGdbSmwgg OXyA+C77x7lQlKBzNVcl/uXfVxYEVEGoTV96DeOvFHiIq1G0MIBxwthQ7tPI2GbB vtvPqdjOXyOeqjBe/Xqsc8uBZJ1XNxe8XcusX7wD7SOXO4PVCROi/GuGWZMjCFOu GU3x3+sN5aOGDR/MnOfmQ4o+yThWaoNgfZj98eKs8L7y0SRtpFOC5LI8rwHDIc6Y lScLr3YhiUkRYeV/uIdrbJ0OXOng/cUhQclzwjFEbToHtMeNSj/MvJGUDUTkfwqP cmjH4APKr4+uJ1igxBU0X87pCn1dVTZ1 -----END CERTIFICATE-----Generated at Sun Aug 10 05:46:16 2025 by rpki-client