$ rpki-client -vvf rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft File: _9C9_G0db07W7Tg5A59B6e3Gb7o.mft (raw, json) Hash identifier: cwlg8QqH7mcNiQgMX6ELQzIm8yW5lExNl0rRpCtGaU8= Subject key identifier: 29:9D:56:D9:A6:CD:66:53:2D:F4:56:71:21:86:CE:32:62:5B:39:DE Authority key identifier: FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA Certificate issuer: /CN=A919697D/serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Certificate serial: 0878 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft Manifest number: 0878 Signing time: Fri 08 Aug 2025 20:58:47 +0000 Manifest this update: Fri 08 Aug 2025 20:58:47 +0000 Manifest next update: Fri 15 Aug 2025 20:58:47 +0000 Files and hashes: 1: _9C9_G0db07W7Tg5A59B6e3Gb7o.crl (hash: 3gTEnNOfWYSTnXbzrMCS21k1RVS+Tp5Nnfs9Az89cZI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2168 (0x878) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919697D, serialNumber=FFD0BDFC6D1D6F4ED6ED3839039F41E9EDC66FBA Validity Not Before: Aug 8 20:58:47 2025 GMT Not After : Aug 15 20:58:47 2025 GMT Subject: CN=68966507-8e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b9:69:1f:c5:f8:ac:83:77:3d:96:b8:e2:5a: 39:57:23:13:e1:c4:26:65:27:7c:85:6a:7c:f7:f0: 81:b7:61:eb:f7:87:67:bb:d0:5e:14:77:60:6a:93: 3b:04:3a:33:c2:27:70:5b:91:f8:09:24:a0:9f:e8: df:f0:17:e8:0f:af:13:d2:b5:29:55:73:ff:fd:82: e5:6c:37:4d:f9:62:e7:18:be:9c:ae:2f:06:1c:ee: a1:e0:f0:25:90:b7:7a:f8:c7:92:d2:08:0b:24:7a: 3b:9b:9a:21:62:57:75:76:84:d9:e1:46:6b:ce:be: 83:cc:c6:4e:11:fa:f4:79:dc:2c:51:00:ec:f9:7e: 7d:0e:3b:e7:6d:cb:ca:e0:8a:94:79:ba:c6:5a:0c: ae:ae:44:9f:34:d0:f0:e0:76:89:d8:70:53:46:95: cb:34:86:9b:dc:5b:22:65:30:38:f1:81:44:a0:24: 03:e3:d5:a8:99:ce:f2:23:90:ff:97:ae:8a:9c:04: 25:e0:c9:68:81:66:e4:83:74:8f:4e:0f:be:54:03: 84:9e:e5:94:7c:7c:71:8c:8b:d4:25:8d:8f:fa:4e: 2e:b4:d6:78:b2:57:79:ab:c1:a9:35:4a:0c:dc:16: 45:05:ab:16:e3:d4:23:0d:9a:ce:16:f8:b1:fe:d0: db:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:9D:56:D9:A6:CD:66:53:2D:F4:56:71:21:86:CE:32:62:5B:39:DE X509v3 Authority Key Identifier: keyid:FF:D0:BD:FC:6D:1D:6F:4E:D6:ED:38:39:03:9F:41:E9:ED:C6:6F:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_9C9_G0db07W7Tg5A59B6e3Gb7o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919697D/9D28EC0CC7BF11EA90084D1DC4F9AE02/_9C9_G0db07W7Tg5A59B6e3Gb7o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:a3:11:46:97:52:70:18:78:9f:3e:68:aa:b7:ef:ba:00:ef: 25:db:04:98:e6:85:23:b1:8b:79:d0:e9:48:e8:0c:5c:22:62: 84:87:9f:82:06:ba:ea:c8:55:72:bd:3a:6f:b9:fb:3b:d3:8e: 56:96:30:c9:82:c3:5b:5d:cf:ac:6d:f6:a6:dd:38:ba:f4:65: ea:10:50:90:b0:97:5c:2a:b8:80:79:6e:d6:e4:34:0e:1f:0e: 01:80:0f:5b:c2:e0:55:24:47:54:c2:43:aa:48:fb:3c:91:59: 09:98:4c:5f:c7:5c:a6:82:43:83:f3:2b:2f:8e:ad:3c:c7:17: db:ea:98:07:d8:6a:dc:67:2d:94:6c:04:1c:27:2b:ad:ee:47: 39:e1:38:95:c4:a2:a9:03:26:20:e5:6a:ba:f6:4a:d7:af:01: d5:a0:37:d8:1e:f8:2d:63:3f:e0:a9:28:28:70:99:b8:92:0c: 84:80:af:98:30:6e:fa:d6:dc:2a:b1:ee:ad:6b:91:73:1c:90: db:2d:98:7e:76:cb:58:01:6f:b4:b5:be:e8:a3:89:cf:87:1c: 4e:4e:af:8c:77:f3:89:47:02:4b:29:c8:14:66:b5:a0:de:27: e7:6c:6a:ff:3d:5c:ff:27:fb:68:c8:77:ad:07:a9:9f:92:18: 77:e4:21:13 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5N0QxMTAvBgNVBAUTKEZGRDBCREZDNkQxRDZGNEVENkVEMzgzOTAzOUY0MUU5 RURDNjZGQkEwHhcNMjUwODA4MjA1ODQ3WhcNMjUwODE1MjA1ODQ3WjAYMRYwFAYD VQQDEw02ODk2NjUwNy04ZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurlpH8X4rIN3PZa44lo5VyMT4cQmZSd8hWp89/CBt2Hr94dnu9BeFHdgapM7 BDozwidwW5H4CSSgn+jf8BfoD68T0rUpVXP//YLlbDdN+WLnGL6cri8GHO6h4PAl kLd6+MeS0ggLJHo7m5ohYld1doTZ4UZrzr6DzMZOEfr0edwsUQDs+X59DjvnbcvK 4IqUebrGWgyurkSfNNDw4HaJ2HBTRpXLNIab3FsiZTA48YFEoCQD49Womc7yI5D/ l66KnAQl4MlogWbkg3SPTg++VAOEnuWUfHxxjIvUJY2P+k4utNZ4sld5q8GpNUoM 3BZFBasW49QjDZrOFvix/tDbawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCmdVtmm zWZTLfRWcSGGzjJiWzneMB8GA1UdIwQYMBaAFP/QvfxtHW9O1u04OQOfQentxm+6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njk3RC85RDI4RUMwQ0M3 QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIwN1c3VGc1QTU5QjZlM0di N28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL185QzlfRzBkYjA3VzdUZzVBNTlCNmUzR2I3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 Njk3RC85RDI4RUMwQ0M3QkYxMUVBOTAwODREMURDNEY5QUUwMi9fOUM5X0cwZGIw N1c3VGc1QTU5QjZlM0diN28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBpoxFGl1JwGHifPmiqt++6AO8l2wSY5oUjsYt50OlI6AxcImKEh5+C BrrqyFVyvTpvufs7045WljDJgsNbXc+sbfam3Ti69GXqEFCQsJdcKriAeW7W5DQO Hw4BgA9bwuBVJEdUwkOqSPs8kVkJmExfx1ymgkOD8ysvjq08xxfb6pgH2GrcZy2U bAQcJyut7kc54TiVxKKpAyYg5Wq69krXrwHVoDfYHvgtYz/gqSgocJm4kgyEgK+Y MG761twqse6ta5FzHJDbLZh+dstYAW+0tb7oo4nPhxxOTq+Md/OJRwJLKcgUZrWg 3ifnbGr/PVz/J/toyHetB6mfkhh35CET -----END CERTIFICATE-----Generated at Sat Aug 9 15:11:36 2025 by rpki-client