$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft File: 9lz9HPOxxajqYIcfo8NAYdtM84M.mft (raw, json) Hash identifier: huHAv05QBYKCtjyrI3d3wronIhezD+HLoYdow/EUKTM= Subject key identifier: 07:73:38:CC:BB:77:3E:1D:87:5E:5C:E5:11:87:DB:7F:0E:05:33:03 Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Certificate serial: 017F Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft Manifest number: 017C Signing time: Sun 10 Aug 2025 19:56:09 +0000 Manifest this update: Sun 10 Aug 2025 19:56:08 +0000 Manifest next update: Sun 17 Aug 2025 19:56:08 +0000 Files and hashes: 1: 9lz9HPOxxajqYIcfo8NAYdtM84M.crl (hash: yQwBpI+wEC6iC+Mllg/1pr1KeOZiC8gg7Ifh+ouHaNo=) 2: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (hash: iTrEAAlkJw9OclXVQcOsLhF2OGcA/o+GNahTLZ1PRQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 383 (0x17f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9, serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Validity Not Before: Aug 10 19:56:08 2025 GMT Not After : Aug 17 19:56:08 2025 GMT Subject: CN=6898f959-5d58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:bf:9d:4b:1b:cb:b0:ec:2b:dd:1e:0f:cd:3d: 06:6e:8d:2e:90:fe:9b:c6:fa:ea:43:54:a6:b2:5c: 15:22:9d:43:23:bf:b3:cd:d3:7d:64:0c:5c:5a:9a: 6a:3c:34:86:d6:50:84:f3:c5:64:4b:57:6c:bd:e1: 91:a3:85:1c:d9:de:3a:20:75:8a:f8:f4:42:e5:f4: 14:90:ea:df:38:ee:3c:b2:5b:ec:1e:7d:0b:50:c6: 82:93:99:7c:95:0e:c4:c7:52:93:28:58:59:64:6e: 02:33:bd:8e:35:99:ed:c7:25:b5:c5:20:4b:ad:70: c0:84:c0:84:84:d1:8a:44:fa:19:ad:39:77:4d:b7: 5c:10:b5:e4:f2:d3:da:ed:47:1f:fd:eb:bb:28:95: 05:82:5c:1f:80:7d:87:e1:00:dd:79:f4:8f:64:31: 39:c9:75:48:9a:90:30:1c:ec:bd:56:d6:61:af:0f: b8:e4:9b:5f:d3:8d:07:1d:2f:7e:2e:0b:ef:0a:be: 6b:20:59:bb:c1:9b:ee:24:56:1f:a6:dd:7c:04:63: d8:aa:62:98:99:47:c4:f2:8a:23:25:c5:40:7e:91: 14:01:d5:b8:16:7d:53:22:df:a0:46:10:e7:42:23: 74:bc:fd:a6:ac:be:fa:b8:68:3d:2a:94:be:3d:5f: eb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:73:38:CC:BB:77:3E:1D:87:5E:5C:E5:11:87:DB:7F:0E:05:33:03 X509v3 Authority Key Identifier: keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:ed:d4:82:5c:ca:fd:bd:42:da:cb:1d:72:92:57:3a:b7:e9: 63:73:19:14:dd:50:86:3a:a8:23:fd:48:03:f9:ea:62:5c:6a: 85:a7:72:cf:1a:6a:cb:b6:e6:64:28:f8:bc:0b:5a:0c:26:7f: 2f:e5:78:ce:16:73:f0:e0:75:29:1e:4f:c7:6c:08:b2:83:ec: 06:bb:d0:3f:72:da:cf:d2:24:44:89:a7:9b:12:fa:60:ee:54: ed:cc:dc:57:55:ec:08:9e:7b:c5:61:72:3f:25:50:e0:e3:d2: 15:e8:f9:a9:84:6c:62:b9:28:94:a4:71:91:47:60:46:29:c7: 0b:9a:ae:c9:5d:52:51:7e:a0:0b:c6:8d:ce:51:0b:55:90:e9: b8:29:e4:7d:49:47:a9:73:64:ef:70:c3:1f:5e:28:09:13:50: 0f:1c:af:7c:80:e1:97:91:b5:fe:e0:73:86:e7:00:8d:35:ff: 36:57:4e:7d:db:ca:7c:12:94:2d:23:92:ec:06:4e:6c:83:14: 87:24:19:6a:57:8c:d3:01:2b:e3:83:fe:99:a0:89:8b:64:4f: c1:bc:ba:43:b5:40:6d:08:f8:05:80:7d:c1:54:02:e7:ae:b5: 6a:71:b4:43:2e:85:4a:85:d8:3d:12:80:c2:d2:07:7a:08:c6: 26:8a:6d:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKEY2NUNGRDFDRjNCMUM1QThFQTYwODcxRkEzQzM0MDYx REI0Q0YzODMwHhcNMjUwODEwMTk1NjA4WhcNMjUwODE3MTk1NjA4WjAYMRYwFAYD VQQDEw02ODk4Zjk1OS01ZDU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwb+dSxvLsOwr3R4PzT0Gbo0ukP6bxvrqQ1SmslwVIp1DI7+zzdN9ZAxcWppq PDSG1lCE88VkS1dsveGRo4Uc2d46IHWK+PRC5fQUkOrfOO48slvsHn0LUMaCk5l8 lQ7Ex1KTKFhZZG4CM72ONZntxyW1xSBLrXDAhMCEhNGKRPoZrTl3TbdcELXk8tPa 7Ucf/eu7KJUFglwfgH2H4QDdefSPZDE5yXVImpAwHOy9VtZhrw+45Jtf040HHS9+ LgvvCr5rIFm7wZvuJFYfpt18BGPYqmKYmUfE8oojJcVAfpEUAdW4Fn1TIt+gRhDn QiN0vP2mrL76uGg9KpS+PV/rOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAdzOMy7 dz4dh15c5RGH238OBTMDMB8GA1UdIwQYMBaAFPZc/RzzscWo6mCHH6PDQGHbTPOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9DRUU2ODgyMjM3 QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhhanFZSWNmbzhOQVlkdE04 NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzlsejlIUE94eGFqcVlJY2ZvOE5BWWR0TTg0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9DRUU2ODgyMjM3QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi85bHo5SFBPeHhh anFZSWNmbzhOQVlkdE04NE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBL7dSCXMr9vULayx1yklc6t+ljcxkU3VCGOqgj/UgD+epiXGqFp3LP GmrLtuZkKPi8C1oMJn8v5XjOFnPw4HUpHk/HbAiyg+wGu9A/ctrP0iREiaebEvpg 7lTtzNxXVewInnvFYXI/JVDg49IV6PmphGxiuSiUpHGRR2BGKccLmq7JXVJRfqAL xo3OUQtVkOm4KeR9SUepc2TvcMMfXigJE1APHK98gOGXkbX+4HOG5wCNNf82V059 28p8EpQtI5LsBk5sgxSHJBlqV4zTASvjg/6ZoImLZE/BvLpDtUBtCPgFgH3BVALn rrVqcbRDLoVKhdg9EoDC0gd6CMYmim2Q -----END CERTIFICATE-----Generated at Mon Aug 11 10:36:14 2025 by rpki-client