$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft File: b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft (raw, json) Hash identifier: vrxVfu9Go0YULAoS+x6AKIfhA2Ct49akFbJBXDB2Fos= Subject key identifier: D3:0D:94:6F:F6:8D:E4:FD:5F:9C:A1:37:30:89:06:66:2A:AB:31:60 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft Manifest number: B5 Signing time: Mon 11 Aug 2025 06:14:14 +0000 Manifest this update: Mon 11 Aug 2025 06:14:14 +0000 Manifest next update: Mon 18 Aug 2025 06:14:14 +0000 Files and hashes: 1: b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl (hash: 4ypIZyyFXDSV9Li015RWWCXx6BIAyTnStGVbs4JXKe0=) 2: 3866993C6A6711EF929E6773C4F9AE02.roa (hash: blrLiUR2o+nqfH3V7oxiwVZEehZHbPAqakKDEvu+zf4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:14:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA, serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Aug 11 06:14:14 2025 GMT Not After : Aug 18 06:14:14 2025 GMT Subject: CN=68998a36-7b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c0:83:90:1e:59:28:3f:84:b7:3a:8f:f9:29: 7d:1f:21:81:ce:f5:c8:30:20:11:62:18:a6:2d:5b: 12:1d:ec:7d:4b:77:f5:b7:dd:5a:99:8f:c6:81:e3: 6e:53:17:05:ee:b0:1a:67:0d:85:56:b3:cd:f6:80: ce:39:2a:51:fb:31:4b:a3:0c:b0:b9:ed:89:9e:6a: 01:ba:ac:e6:ed:8b:0d:1e:be:9a:7e:0c:f5:e1:12: 9e:0f:39:46:38:83:4d:11:00:b4:01:91:00:9b:0f: 04:da:ea:75:52:9c:e8:5f:fc:a2:b8:22:86:5a:08: 3b:6c:13:24:92:be:0c:76:25:be:fb:50:1f:5e:34: b5:15:39:63:15:fa:5e:86:cc:4e:ee:a8:22:9e:99: 67:f4:dc:86:cf:8d:3f:01:3e:2e:56:db:6e:1e:ae: 9e:60:be:c1:ec:11:38:ea:e4:e5:3c:b8:56:27:ac: 3d:ac:5a:fb:c3:4a:9f:92:07:10:8b:d4:6f:ee:1b: 8f:a4:93:bd:6c:35:fd:68:78:db:1c:a8:ac:88:90: 2c:aa:7c:a7:0f:a8:45:3a:17:d2:33:51:93:a3:c8: 09:69:db:dd:11:f7:88:05:c1:b3:42:32:79:48:6a: d1:da:1a:00:b0:f9:d3:7e:95:35:02:4b:ac:b8:9e: 3e:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:0D:94:6F:F6:8D:E4:FD:5F:9C:A1:37:30:89:06:66:2A:AB:31:60 X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:c9:d2:c0:fc:60:84:78:df:23:7c:89:cb:5d:a7:ed:5a:3e: a8:14:cf:c8:fa:84:ab:a6:0f:36:a0:27:57:fd:b3:02:6c:c8: c3:43:1c:20:eb:04:f5:6a:de:c6:2b:49:01:ef:b9:8b:2a:0a: c8:f3:bb:63:ce:4a:78:09:4a:a3:c7:85:ab:1a:4d:0c:42:ff: 7f:cc:c9:1f:7d:27:14:8e:6f:f5:d5:b7:bd:88:9e:56:85:2b: 4f:e2:b8:b2:67:4a:5f:10:19:2d:7b:0e:8e:3b:3a:50:de:4f: 0c:24:64:ad:38:36:06:ae:11:8f:03:5b:81:25:be:49:86:57: 86:db:49:b9:98:7e:00:5b:9a:6e:b9:bb:d8:d1:a5:b1:e3:1a: 55:b3:2a:c8:ed:93:91:90:1f:80:34:5c:36:6e:b6:72:15:ac: bf:3b:7c:13:58:5a:b6:4c:df:c1:d3:ca:ea:dd:34:d5:f6:bb: d5:ee:e4:3b:f9:09:6f:a9:8e:9e:9e:df:e6:46:c2:09:32:33: 30:bf:ff:0a:85:01:e1:09:ef:58:37:3c:03:7a:5e:21:c3:64: 9e:f2:1b:9a:b5:c9:8a:ce:6b:aa:6a:e7:f5:f6:16:7a:53:c5: 4e:56:3b:a7:d6:4d:2d:03:b3:5e:70:45:b9:53:64:d7:1b:f3: c8:05:62:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDQ0ExMTAvBgNVBAUTKDZGRDVCNzQzMUU3MTUwRUQ2NTBGN0YyN0EzRENGOEM1 Q0VBQzc3NjQwHhcNMjUwODExMDYxNDE0WhcNMjUwODE4MDYxNDE0WjAYMRYwFAYD VQQDEw02ODk5OGEzNi03YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4cCDkB5ZKD+EtzqP+Sl9HyGBzvXIMCARYhimLVsSHex9S3f1t91amY/GgeNu UxcF7rAaZw2FVrPN9oDOOSpR+zFLowywue2JnmoBuqzm7YsNHr6afgz14RKeDzlG OINNEQC0AZEAmw8E2up1UpzoX/yiuCKGWgg7bBMkkr4MdiW++1AfXjS1FTljFfpe hsxO7qginpln9NyGz40/AT4uVttuHq6eYL7B7BE46uTlPLhWJ6w9rFr7w0qfkgcQ i9Rv7huPpJO9bDX9aHjbHKisiJAsqnynD6hFOhfSM1GTo8gJadvdEfeIBcGzQjJ5 SGrR2hoAsPnTfpU1AkusuJ4++QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNMNlG/2 jeT9X5yhNzCJBmYqqzFgMB8GA1UdIwQYMBaAFG/Vt0MecVDtZQ9/J6Pc+MXOrHdk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NDQS8xQ0E5QjgyNDY1 NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVPMWxEMzhubzl6NHhjNnNk MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2QyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi9iOVczUXg1eFVP MWxEMzhubzl6NHhjNnNkMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgydLA/GCEeN8jfInLXaftWj6oFM/I+oSrpg82oCdX/bMCbMjDQxwg 6wT1at7GK0kB77mLKgrI87tjzkp4CUqjx4WrGk0MQv9/zMkffScUjm/11be9iJ5W hStP4riyZ0pfEBktew6OOzpQ3k8MJGStODYGrhGPA1uBJb5JhleG20m5mH4AW5pu ubvY0aWx4xpVsyrI7ZORkB+ANFw2brZyFay/O3wTWFq2TN/B08rq3TTV9rvV7uQ7 +QlvqY6ent/mRsIJMjMwv/8KhQHhCe9YNzwDel4hw2Se8huatcmKzmuqauf19hZ6 U8VOVjun1k0tA7NecEW5U2TXG/PIBWLL -----END CERTIFICATE-----Generated at Wed Aug 13 04:29:53 2025 by rpki-client