$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: B8ZL6bM6O/8IDVluHjI/v8E8bmgNJIoWSPt+uIr3yjE= Subject key identifier: D5:20:CB:E4:75:B6:86:8F:34:96:18:EE:C5:AA:00:96:80:31:47:9C Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0EF0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0EDA Signing time: Sun 10 Aug 2025 17:57:13 +0000 Manifest this update: Sun 10 Aug 2025 17:57:13 +0000 Manifest next update: Sun 17 Aug 2025 17:57:13 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: tHc7VlzNGm8KOSOE0z6svRcIQuEdlhgkoyCMkKPvvdg=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: A7sH5kT/nJtv/IMtWiRgvA6A10KdIHaRx/+kfjus0Io=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3824 (0xef0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Aug 10 17:57:13 2025 GMT Not After : Aug 17 17:57:13 2025 GMT Subject: CN=6898dd79-1a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:c1:23:67:5f:0a:5d:67:50:c3:69:87:71:b5: 7c:34:10:e4:d5:94:87:b3:95:b6:b9:f8:18:33:9e: 98:a4:3f:37:62:f7:b1:ef:84:a7:92:f4:69:01:3d: be:70:e6:bf:4c:49:e7:04:f4:06:c2:de:e0:c3:8b: c8:2b:6d:36:f3:64:04:05:88:bc:b4:23:51:a5:5f: 7e:98:e7:57:f5:ca:1d:c1:72:11:1b:16:fd:12:1a: 74:d4:f4:8a:0d:e5:cc:0c:3e:e3:d9:9c:21:2f:ce: 64:96:99:dc:bb:f3:03:ec:47:49:42:51:3c:23:b0: 35:fb:a1:53:86:a8:f7:9f:03:1d:50:e6:cf:d2:d4: a8:27:49:5a:a1:b5:97:3b:2a:a0:63:6a:87:f3:65: d5:64:40:71:53:18:6b:81:77:aa:5a:3f:64:91:62: 2c:b0:db:f3:f5:25:ee:5e:20:d2:c0:4a:d8:e6:b1: aa:a3:66:44:5e:92:96:4a:af:2b:f3:eb:b3:fe:a5: 52:a7:67:a4:55:2f:3e:94:92:c0:d0:3f:dd:c7:82: 4c:6d:8f:02:2a:ff:f5:9a:e9:2f:0e:8e:97:de:f0: 55:34:7b:d5:79:84:6a:f5:1f:be:15:d4:a3:1c:33: 36:e7:6e:9b:5a:b5:d8:3e:6e:7c:25:ac:71:37:ab: 79:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:20:CB:E4:75:B6:86:8F:34:96:18:EE:C5:AA:00:96:80:31:47:9C X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:13:db:2c:99:65:65:5f:a9:b0:10:db:d3:8e:65:46:25:fe: 43:53:ad:8d:bb:5d:cc:92:54:f4:88:47:4b:ec:6d:be:31:3b: 0a:db:97:61:a8:1f:c2:2f:fd:27:8b:3f:e5:20:d6:7c:f4:d5: d5:18:35:2e:7e:24:ad:a0:be:39:82:0f:46:0e:da:2d:32:de: 4a:6b:55:88:10:b3:d3:9b:bf:4d:ef:3f:02:f5:1d:82:9b:25: ee:52:a1:64:50:04:b4:b7:93:68:8c:4e:c5:54:36:00:fd:ad: e7:51:ae:15:3a:7c:29:a7:c9:0b:a1:87:95:b8:55:19:65:fc: db:ba:71:61:e0:34:c2:17:f2:fc:fe:a3:e2:c3:a9:c8:68:91: 0e:0d:34:f0:4c:67:38:ba:ee:d0:f4:a4:c9:9e:8c:a5:86:34: bf:12:e2:d8:f0:61:1f:1b:6c:7d:72:e8:07:de:68:62:8d:0f: f3:79:07:df:2d:4d:f0:92:ae:2a:6e:dd:43:39:d7:71:a4:30: 0a:37:28:4d:60:f2:21:7f:76:40:21:18:56:b4:01:c3:a7:f9: 83:f1:a1:a9:24:d0:3f:bd:b1:d2:e6:5f:6f:08:21:60:7f:c2: ca:99:ff:f9:dd:e2:eb:81:1f:42:b7:67:69:d5:fe:0d:12:4c: c9:bc:ec:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwODEwMTc1NzEzWhcNMjUwODE3MTc1NzEzWjAYMRYwFAYD VQQDEw02ODk4ZGQ3OS0xYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+cEjZ18KXWdQw2mHcbV8NBDk1ZSHs5W2ufgYM56YpD83Yvex74SnkvRpAT2+ cOa/TEnnBPQGwt7gw4vIK20282QEBYi8tCNRpV9+mOdX9codwXIRGxb9Ehp01PSK DeXMDD7j2ZwhL85klpncu/MD7EdJQlE8I7A1+6FThqj3nwMdUObP0tSoJ0laobWX OyqgY2qH82XVZEBxUxhrgXeqWj9kkWIssNvz9SXuXiDSwErY5rGqo2ZEXpKWSq8r 8+uz/qVSp2ekVS8+lJLA0D/dx4JMbY8CKv/1mukvDo6X3vBVNHvVeYRq9R++FdSj HDM2526bWrXYPm58JaxxN6t5xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUgy+R1 toaPNJYY7sWqAJaAMUecMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0E9ssmWVlX6mwENvTjmVGJf5DU62Nu13MklT0iEdL7G2+MTsK25dh qB/CL/0niz/lINZ89NXVGDUufiStoL45gg9GDtotMt5Ka1WIELPTm79N7z8C9R2C myXuUqFkUAS0t5NojE7FVDYA/a3nUa4VOnwpp8kLoYeVuFUZZfzbunFh4DTCF/L8 /qPiw6nIaJEODTTwTGc4uu7Q9KTJnoylhjS/EuLY8GEfG2x9cugH3mhijQ/zeQff LU3wkq4qbt1DOddxpDAKNyhNYPIhf3ZAIRhWtAHDp/mD8aGpJNA/vbHS5l9vCCFg f8LKmf/53eLrgR9Ct2dp1f4NEkzJvOy5 -----END CERTIFICATE-----Generated at Mon Aug 11 04:16:20 2025 by rpki-client