$ rpki-client -vvf rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft File: f83sMfr6flJ9p6lwOTIED4RVgVk.mft (raw, json) Hash identifier: RXdp1zMYL6nbRoBXLxmkV8jtEoJoWT9supASBZuilqI= Subject key identifier: B2:90:91:D4:A8:A4:29:7A:1A:C5:D2:DA:7B:91:B7:CC:33:A6:0C:49 Authority key identifier: 7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59 Certificate issuer: /CN=A9179BF7/serialNumber=7FCDEC31FAFA7E527DA7A9703932040F84558159 Certificate serial: 032C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft Manifest number: 030C Signing time: Sat 09 Aug 2025 01:52:08 +0000 Manifest this update: Sat 09 Aug 2025 01:52:08 +0000 Manifest next update: Sat 16 Aug 2025 01:52:08 +0000 Files and hashes: 1: f83sMfr6flJ9p6lwOTIED4RVgVk.crl (hash: i/ui69pJCrLueyU5byVKFigjAIddwk4OYSkMR0YOM+U=) 2: 81EEF49E801711EF8566D481C4F9AE02.roa (hash: WMqw6puvAMI/KOIEmj7+KVGtQT9V3R2V9xclcYWsYsg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.crl rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179BF7, serialNumber=7FCDEC31FAFA7E527DA7A9703932040F84558159 Validity Not Before: Aug 9 01:52:08 2025 GMT Not After : Aug 16 01:52:08 2025 GMT Subject: CN=6896a9c8-d5e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:db:d2:a4:4d:e2:39:7e:54:7d:01:e8:aa:4c: 34:16:03:e7:2b:ca:d3:9e:7a:64:ab:be:01:aa:96: ad:d6:c9:63:ed:f4:5d:a0:0d:d1:d6:78:d2:40:15: 85:3b:e3:f8:20:45:3a:04:8b:3c:b1:77:8c:8b:1f: f7:90:97:00:12:75:15:da:0e:10:0f:82:cb:ba:ec: 04:b0:f3:c4:8f:c0:88:2b:58:7a:9d:5b:d2:bc:e6: c2:72:fa:2d:0a:84:c5:44:6f:17:d0:b8:86:48:3a: eb:c6:e7:dd:d7:7a:17:fc:16:b6:9d:97:e3:ac:53: 0a:9d:a8:42:32:fa:27:fd:8b:2f:41:b7:ca:49:29: f2:7c:51:38:2f:12:f6:72:16:6c:c4:fc:ed:ab:48: da:e7:a9:da:2a:b7:6e:3b:b2:d7:a4:2a:6b:0b:f5: c7:c7:0c:f9:00:11:bb:33:5a:f1:4d:3c:aa:0a:b8: 48:69:e7:1e:7b:ba:90:9d:b6:3b:25:f4:d9:9d:8b: 0a:1c:cf:db:ff:c7:49:fd:72:37:86:a1:cd:a3:89: 13:b1:05:a1:86:e2:d9:5d:07:6d:8d:e9:79:ad:03: 03:c4:41:b0:70:74:33:ca:88:55:8c:ce:08:32:e0: 89:54:99:9f:fe:58:35:5f:07:7d:19:10:e7:6b:67: 13:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:90:91:D4:A8:A4:29:7A:1A:C5:D2:DA:7B:91:B7:CC:33:A6:0C:49 X509v3 Authority Key Identifier: keyid:7F:CD:EC:31:FA:FA:7E:52:7D:A7:A9:70:39:32:04:0F:84:55:81:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f83sMfr6flJ9p6lwOTIED4RVgVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179BF7/4B66F12CF2C711EC8B819687C4F9AE02/f83sMfr6flJ9p6lwOTIED4RVgVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:53:71:c8:fc:a1:14:e9:4b:f8:6d:a8:2b:a7:a8:78:9c:f5: 59:a1:c8:59:b7:dd:eb:e2:5b:2c:e5:31:ad:5d:e7:59:f1:46: 1e:34:ad:03:b1:a9:b6:26:9d:22:9b:3c:33:d3:c5:10:df:8f: 5c:26:3e:76:f0:6e:ed:06:ac:72:8c:8f:28:21:ec:3d:8e:5a: c8:b2:ce:8b:bd:88:2a:0e:11:c6:f6:21:88:9e:29:86:b5:79: 5a:54:09:15:f7:52:b6:2d:0f:a7:8d:92:c4:97:8f:6a:e4:19: 21:ef:b7:1d:30:8a:13:9d:36:09:9b:42:4d:96:a1:56:30:da: 49:6a:5d:01:d6:82:8c:6c:be:3a:bf:bc:03:bf:1d:02:9a:8b: b7:49:23:a2:42:85:43:f6:a7:3a:0f:f7:6e:5a:a3:c8:2b:d6: 4a:b8:2a:96:84:b1:39:f3:42:c2:9b:27:9e:d9:c4:f8:8b:36: 02:d7:40:c8:88:66:3f:ec:c2:2a:72:64:8d:d5:38:c4:cb:e5: a7:41:90:6c:08:3e:51:3c:ad:aa:19:48:51:b0:4e:da:b0:88: 74:d1:56:4a:a7:51:ea:85:18:34:69:f7:1f:97:40:ae:03:15: f1:ff:eb:a4:7a:27:55:0b:a9:8d:37:72:77:e0:c7:b0:5f:35: 25:ec:bf:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCRjcxMTAvBgNVBAUTKDdGQ0RFQzMxRkFGQTdFNTI3REE3QTk3MDM5MzIwNDBG ODQ1NTgxNTkwHhcNMjUwODA5MDE1MjA4WhcNMjUwODE2MDE1MjA4WjAYMRYwFAYD VQQDEw02ODk2YTljOC1kNWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstvSpE3iOX5UfQHoqkw0FgPnK8rTnnpkq74Bqpat1slj7fRdoA3R1njSQBWF O+P4IEU6BIs8sXeMix/3kJcAEnUV2g4QD4LLuuwEsPPEj8CIK1h6nVvSvObCcvot CoTFRG8X0LiGSDrrxufd13oX/Ba2nZfjrFMKnahCMvon/YsvQbfKSSnyfFE4LxL2 chZsxPztq0ja56naKrduO7LXpCprC/XHxwz5ABG7M1rxTTyqCrhIaecee7qQnbY7 JfTZnYsKHM/b/8dJ/XI3hqHNo4kTsQWhhuLZXQdtjel5rQMDxEGwcHQzyohVjM4I MuCJVJmf/lg1Xwd9GRDna2cTzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKQkdSo pCl6GsXS2nuRt8wzpgxJMB8GA1UdIwQYMBaAFH/N7DH6+n5SfaepcDkyBA+EVYFZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUJGNy80QjY2RjEyQ0Yy QzcxMUVDOEI4MTk2ODdDNEY5QUUwMi9mODNzTWZyNmZsSjlwNmx3T1RJRUQ0UlZn VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y4M3NNZnI2ZmxKOXA2bHdPVElFRDRSVmdWay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUJGNy80QjY2RjEyQ0YyQzcxMUVDOEI4MTk2ODdDNEY5QUUwMi9mODNzTWZyNmZs SjlwNmx3T1RJRUQ0UlZnVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCU3HI/KEU6Uv4bagrp6h4nPVZochZt93r4lss5TGtXedZ8UYeNK0D sam2Jp0imzwz08UQ349cJj528G7tBqxyjI8oIew9jlrIss6LvYgqDhHG9iGInimG tXlaVAkV91K2LQ+njZLEl49q5Bkh77cdMIoTnTYJm0JNlqFWMNpJal0B1oKMbL46 v7wDvx0Cmou3SSOiQoVD9qc6D/duWqPIK9ZKuCqWhLE580LCmyee2cT4izYC10DI iGY/7MIqcmSN1TjEy+WnQZBsCD5RPK2qGUhRsE7asIh00VZKp1HqhRg0afcfl0Cu AxXx/+ukeidVC6mNN3J34MewXzUl7L84 -----END CERTIFICATE-----Generated at Sun Aug 10 18:57:18 2025 by rpki-client