$ rpki-client -vvf rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft File: lFOfgqNeshWO18Ni1boVQz5-0uE.mft (raw, json) Hash identifier: sAQz6LXhfTGZ/9xgmlrw2SowcOAJA3xQQPlUCc/zyiM= Subject key identifier: C7:A3:FD:59:C7:CB:4D:0E:5A:FB:FD:FD:1D:9D:9C:9F:9E:96:BA:1F Authority key identifier: 94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 Certificate issuer: /CN=A9179EAE/serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft Manifest number: 9D Signing time: Mon 11 Aug 2025 06:35:17 +0000 Manifest this update: Mon 11 Aug 2025 06:35:16 +0000 Manifest next update: Mon 18 Aug 2025 06:35:16 +0000 Files and hashes: 1: lFOfgqNeshWO18Ni1boVQz5-0uE.crl (hash: 3cdzYzjVhA9+adQp/lzj4QUA84ZPCN48tphAZm+ZZsg=) 2: B3DA6A52A96511EFB3EB6721C4F9AE02.roa (hash: FFio9OtmebaEzCJyFXTCLhGivXqzWOQVgzKrbso6U2U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179EAE, serialNumber=94539F82A35EB2158ED7C362D5BA15433E7ED2E1 Validity Not Before: Aug 11 06:35:16 2025 GMT Not After : Aug 18 06:35:16 2025 GMT Subject: CN=68998f25-95eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:87:09:a7:96:8a:a0:f5:59:a0:cf:57:3c:7c: 6e:f9:c4:bd:e9:8c:e0:2f:91:ed:d5:8f:3c:8b:0a: 81:32:27:f7:37:14:f2:ff:44:ae:d3:85:03:01:be: ce:cb:a8:e5:ea:4c:07:70:1f:37:c1:b8:8c:df:b3: 74:9b:84:5c:7f:30:3a:ed:aa:b9:5a:f2:77:19:a0: 81:ef:8d:c9:a9:45:9f:ed:ed:79:4e:1d:f5:13:35: 21:75:f4:c2:86:dc:b8:64:8e:8c:9b:ef:df:fe:db: c2:7c:96:8e:da:62:b9:bb:68:e1:57:5c:c0:58:9c: c7:ae:20:58:72:40:ac:f8:6b:d1:7d:fb:9a:15:53: f6:f7:26:df:20:25:6e:82:7a:21:85:75:61:18:4f: e0:2f:1f:c1:9a:ab:06:56:c5:66:44:88:a6:db:ba: 02:b0:7a:69:30:12:47:83:d9:9d:4d:80:5d:b3:94: 34:65:ef:e2:b5:49:4d:2e:e5:94:12:60:60:ec:74: a5:57:41:8b:8a:1b:c1:0f:62:25:7b:b9:f0:37:69: c2:46:83:cd:35:c1:40:a1:4f:ff:8d:09:da:63:20: 0c:7d:25:88:2f:f0:f0:89:58:63:27:d3:62:e0:28: d3:ce:d2:70:39:bc:a9:95:c5:ef:11:0d:84:23:c6: 4e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A3:FD:59:C7:CB:4D:0E:5A:FB:FD:FD:1D:9D:9C:9F:9E:96:BA:1F X509v3 Authority Key Identifier: keyid:94:53:9F:82:A3:5E:B2:15:8E:D7:C3:62:D5:BA:15:43:3E:7E:D2:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lFOfgqNeshWO18Ni1boVQz5-0uE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179EAE/A49CDDB88D0E11EFA8FE9371C4F9AE02/lFOfgqNeshWO18Ni1boVQz5-0uE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:36:98:87:31:19:3d:45:79:10:bd:36:5d:43:64:87:ed:ec: 67:2e:f0:93:aa:4c:41:6f:37:55:6a:c8:aa:b5:ed:39:c7:48: b7:33:44:3f:1e:f8:db:69:34:5b:46:6e:71:5f:67:04:03:40: 7b:de:12:2c:cb:fa:9e:20:e1:19:68:da:10:45:f5:bc:7c:8e: 66:e4:43:e0:0c:14:a4:42:5c:e3:d4:b1:f2:c4:76:22:ed:23: 60:e0:2c:6e:75:dd:1c:a7:ec:7a:fe:66:68:71:8c:2b:7b:6d: 8a:a2:4d:81:a9:0e:9b:d9:78:b9:de:73:2f:ff:9f:26:9c:b1: b0:83:b6:45:58:f6:76:45:b6:60:77:a6:29:31:7e:9a:08:56: 26:86:df:37:d3:cd:cf:8c:43:8e:af:35:e1:5f:16:de:80:3f: 27:26:74:05:29:1c:df:0b:18:3c:26:cd:fc:7b:1b:8b:b9:25: 50:3d:d0:00:6c:a1:2a:42:39:3e:63:cc:a3:46:40:75:0f:0d: 49:97:7a:ae:f0:49:36:2e:e9:63:1b:df:88:18:75:a0:37:0b: db:e7:f0:1c:4b:7a:dd:63:d5:c0:b0:81:35:1c:71:08:c4:22: cc:f8:c1:a2:0d:84:83:33:ef:dd:ba:96:77:dd:93:69:5d:ba: 5d:0c:2c:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlFQUUxMTAvBgNVBAUTKDk0NTM5RjgyQTM1RUIyMTU4RUQ3QzM2MkQ1QkExNTQz M0U3RUQyRTEwHhcNMjUwODExMDYzNTE2WhcNMjUwODE4MDYzNTE2WjAYMRYwFAYD VQQDEw02ODk5OGYyNS05NWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YcJp5aKoPVZoM9XPHxu+cS96YzgL5Ht1Y88iwqBMif3NxTy/0Su04UDAb7O y6jl6kwHcB83wbiM37N0m4RcfzA67aq5WvJ3GaCB743JqUWf7e15Th31EzUhdfTC hty4ZI6Mm+/f/tvCfJaO2mK5u2jhV1zAWJzHriBYckCs+GvRffuaFVP29ybfICVu gnohhXVhGE/gLx/BmqsGVsVmRIim27oCsHppMBJHg9mdTYBds5Q0Ze/itUlNLuWU EmBg7HSlV0GLihvBD2Ile7nwN2nCRoPNNcFAoU//jQnaYyAMfSWIL/DwiVhjJ9Ni 4CjTztJwObyplcXvEQ2EI8ZO6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMej/VnH y00OWvv9/R2dnJ+elrofMB8GA1UdIwQYMBaAFJRTn4KjXrIVjtfDYtW6FUM+ftLh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUVBRS9BNDlDRERCODhE MEUxMUVGQThGRTkzNzFDNEY5QUUwMi9sRk9mZ3FOZXNoV08xOE5pMWJvVlF6NS0w dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xGT2ZncU5lc2hXTzE4TmkxYm9WUXo1LTB1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUVBRS9BNDlDRERCODhEMEUxMUVGQThGRTkzNzFDNEY5QUUwMi9sRk9mZ3FOZXNo V08xOE5pMWJvVlF6NS0wdUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxNpiHMRk9RXkQvTZdQ2SH7exnLvCTqkxBbzdVasiqte05x0i3M0Q/ HvjbaTRbRm5xX2cEA0B73hIsy/qeIOEZaNoQRfW8fI5m5EPgDBSkQlzj1LHyxHYi 7SNg4Cxudd0cp+x6/mZocYwre22Kok2BqQ6b2Xi53nMv/58mnLGwg7ZFWPZ2RbZg d6YpMX6aCFYmht83083PjEOOrzXhXxbegD8nJnQFKRzfCxg8Js38exuLuSVQPdAA bKEqQjk+Y8yjRkB1Dw1Jl3qu8Ek2LuljG9+IGHWgNwvb5/AcS3rdY9XAsIE1HHEI xCLM+MGiDYSDM+/dupZ33ZNpXbpdDCz7 -----END CERTIFICATE-----Generated at Wed Aug 13 00:33:00 2025 by rpki-client