$ rpki-client -vvf rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft File: 9ncWp9N92wPcVtA6uQKnIDfqGdk.mft (raw, json) Hash identifier: euZgCUprtFD+OlEzt9joi0vs3tEXUmhHKSQUv28r/GQ= Subject key identifier: 5D:A4:F3:37:FB:3F:B8:D4:ED:2E:45:F2:3A:37:1B:A8:94:5A:FF:44 Authority key identifier: F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 Certificate issuer: /CN=A918F1EE/serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft Manifest number: 5E Signing time: Mon 11 Aug 2025 07:20:31 +0000 Manifest this update: Mon 11 Aug 2025 07:20:31 +0000 Manifest next update: Mon 18 Aug 2025 07:20:31 +0000 Files and hashes: 1: 9ncWp9N92wPcVtA6uQKnIDfqGdk.crl (hash: RbiMGX34zboRZcu0t3oBut6+StN7oihk+9MleEDKl3c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 07:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F1EE, serialNumber=F67716A7D37DDB03DC56D03AB902A72037EA19D9 Validity Not Before: Aug 11 07:20:31 2025 GMT Not After : Aug 18 07:20:31 2025 GMT Subject: CN=689999bf-1ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:13:b3:38:d5:94:2c:eb:6f:8f:93:85:a1:09: 72:f7:e2:c2:7a:20:79:b0:9f:be:72:96:0e:83:9e: 8d:9f:d0:2f:b5:21:fb:07:42:29:46:c1:fb:65:f5: 83:7d:45:09:c1:df:95:5e:f9:d1:60:7c:09:27:14: 4a:b7:67:b2:33:24:6f:3b:21:df:52:2c:82:c3:28: 67:d2:f8:03:7b:a0:d2:c4:cd:51:ec:9e:1d:96:4c: f5:0e:d5:b2:98:1a:ea:5b:02:6d:0a:2f:9a:7a:fe: 2e:5a:a2:40:2d:87:b3:6c:9c:c2:33:b2:b3:d8:95: 2c:b7:cc:55:a3:d5:5f:d2:aa:0e:a7:c3:ef:e6:45: e6:9f:46:1e:80:0c:1a:d7:bb:37:66:fa:74:f9:d3: 12:ae:77:25:a9:3e:40:a5:e6:97:02:bc:46:ee:bf: 46:c5:a4:af:f6:3b:1e:66:3e:4f:8c:ef:6a:7c:f0: 8a:d8:cc:58:49:0f:3b:66:a7:74:aa:fb:d7:ed:82: 2f:18:00:dc:16:e3:d8:d1:08:ed:80:a6:86:85:9f: 56:22:4d:eb:44:cb:52:d2:66:51:9e:ec:08:b6:f3: c2:87:4d:67:4f:23:4c:b3:25:ea:99:e4:86:de:ac: 43:0b:be:6b:a4:93:f5:d0:1e:7a:0a:08:62:1c:d0: 6d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:A4:F3:37:FB:3F:B8:D4:ED:2E:45:F2:3A:37:1B:A8:94:5A:FF:44 X509v3 Authority Key Identifier: keyid:F6:77:16:A7:D3:7D:DB:03:DC:56:D0:3A:B9:02:A7:20:37:EA:19:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ncWp9N92wPcVtA6uQKnIDfqGdk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F1EE/F32CF4E8E75111EFBED81B0EC4F9AE02/9ncWp9N92wPcVtA6uQKnIDfqGdk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:da:4f:1b:95:50:8d:f8:2b:a0:0c:43:6a:6f:e5:65:e7:4f: cc:18:39:73:18:9d:62:fb:84:13:d7:1b:67:71:d1:e8:89:9c: 45:73:bf:2a:04:37:42:1c:50:39:ea:40:8d:81:2c:0c:a8:2a: 0d:83:0e:b6:1b:87:68:15:4d:b6:86:07:94:9c:5a:24:65:f2: 12:80:39:f4:b3:76:55:b9:0d:44:76:9a:08:43:3a:8b:ec:3c: f3:18:f4:3c:cf:2a:92:25:76:75:cf:37:51:a3:02:6e:5c:3d: 9a:a3:e4:d8:71:7c:44:9b:5d:cf:26:92:07:28:40:2a:ba:37: f2:38:46:9e:41:38:c9:1b:c4:60:c1:1a:4a:f4:f8:8c:4d:93: d6:67:db:59:04:d4:30:9b:f6:d7:8b:63:f4:51:29:1d:7f:46: dc:ef:e0:40:21:a3:54:11:dd:b7:eb:87:d3:32:1e:54:05:32: 81:8d:e4:5a:85:c0:6f:a9:3c:de:09:99:06:4c:8f:c4:b6:1e: 0e:38:78:e5:55:67:36:30:e3:80:fa:a4:17:c1:a0:b1:5f:da: 50:ef:ea:ad:25:0e:72:53:72:cd:97:0f:57:06:a0:d5:3b:f4: 1c:70:d3:7e:d7:85:b1:64:89:4f:86:10:39:3b:d2:ad:23:aa: 1b:a6:5d:87 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RjFFRTExMC8GA1UEBRMoRjY3NzE2QTdEMzdEREIwM0RDNTZEMDNBQjkwMkE3MjAz N0VBMTlEOTAeFw0yNTA4MTEwNzIwMzFaFw0yNTA4MTgwNzIwMzFaMBgxFjAUBgNV BAMTDTY4OTk5OWJmLTFiYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEE7M41ZQs62+Pk4WhCXL34sJ6IHmwn75ylg6Dno2f0C+1IfsHQilGwftl9YN9 RQnB35Ve+dFgfAknFEq3Z7IzJG87Id9SLILDKGfS+AN7oNLEzVHsnh2WTPUO1bKY GupbAm0KL5p6/i5aokAth7NsnMIzsrPYlSy3zFWj1V/Sqg6nw+/mReafRh6ADBrX uzdm+nT50xKudyWpPkCl5pcCvEbuv0bFpK/2Ox5mPk+M72p88IrYzFhJDztmp3Sq +9ftgi8YANwW49jRCO2ApoaFn1YiTetEy1LSZlGe7Ai288KHTWdPI0yzJeqZ5Ibe rEMLvmukk/XQHnoKCGIc0G0lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXaTzN/s/ uNTtLkXyOjcbqJRa/0QwHwYDVR0jBBgwFoAU9ncWp9N92wPcVtA6uQKnIDfqGdkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThGMUVFL0YzMkNGNEU4RTc1 MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQY1Z0QTZ1UUtuSURmcUdk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOW5jV3A5Tjkyd1BjVnRBNnVRS25JRGZxR2RrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThG MUVFL0YzMkNGNEU4RTc1MTExRUZCRUQ4MUIwRUM0RjlBRTAyLzluY1dwOU45MndQ Y1Z0QTZ1UUtuSURmcUdkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGDaTxuVUI34K6AMQ2pv5WXnT8wYOXMYnWL7hBPXG2dx0eiJnEVzvyoE N0IcUDnqQI2BLAyoKg2DDrYbh2gVTbaGB5ScWiRl8hKAOfSzdlW5DUR2mghDOovs PPMY9DzPKpIldnXPN1GjAm5cPZqj5NhxfESbXc8mkgcoQCq6N/I4Rp5BOMkbxGDB Gkr0+IxNk9Zn21kE1DCb9teLY/RRKR1/Rtzv4EAho1QR3bfrh9MyHlQFMoGN5FqF wG+pPN4JmQZMj8S2Hg44eOVVZzYw44D6pBfBoLFf2lDv6q0lDnJTcs2XD1cGoNU7 9Bxw037XhbFkiU+GEDk70q0jqhumXYc= -----END CERTIFICATE-----Generated at Wed Aug 13 00:32:10 2025 by rpki-client