$ rpki-client -vvf rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft File: ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft (raw, json) Hash identifier: i/KuM+JP4tBggg3zhl4b7yNqbYrEYitwI1A1Cis3w1k= Subject key identifier: 5A:49:F6:80:4C:70:03:0A:68:6D:46:FD:67:BE:C9:18:29:F1:60:58 Authority key identifier: 6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A Certificate issuer: /CN=A9199BDF/serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Certificate serial: 0F78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft Manifest number: 0F69 Signing time: Sun 10 Aug 2025 17:35:30 +0000 Manifest this update: Sun 10 Aug 2025 17:35:29 +0000 Manifest next update: Sun 17 Aug 2025 17:35:29 +0000 Files and hashes: 1: ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl (hash: Mv5jmnyhq8FMvTIBIX9JqTdlYyebSCFd4p1kMVwiN/c=) 2: D193920E709411E99F95933EC4F9AE02.roa (hash: cGhnDxeygmjtWG8DkCbsMlX+1o7K6dnzIlHaIw6aiaM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3960 (0xf78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199BDF, serialNumber=6A4F43110050F0681964D858F9144E052BB8899A Validity Not Before: Aug 10 17:35:29 2025 GMT Not After : Aug 17 17:35:29 2025 GMT Subject: CN=6898d861-aaac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7c:3b:8f:b5:e3:54:f8:2a:98:0c:4d:f8:ab: 4f:0e:9e:b3:cc:b1:d8:1b:66:85:1f:9b:03:9e:42: 42:35:86:22:27:fd:76:86:71:29:a5:43:af:47:70: a9:95:63:0d:c9:47:ec:f2:16:66:71:2c:35:e7:c1: aa:6b:a4:fd:74:20:c6:53:88:33:e9:b0:05:67:f4: 36:48:a2:ea:af:0b:13:ac:b1:76:ce:12:36:06:33: 11:ea:b2:08:43:c3:5b:c0:24:2c:6b:13:fe:01:7a: 5e:0b:62:3f:e1:53:4e:89:70:80:55:df:c6:e9:7f: c9:42:c9:44:37:76:d6:90:1f:82:d6:7f:4f:a3:7d: e0:bf:2e:ae:1a:df:50:70:07:a7:d7:49:c2:80:f9: ea:3e:58:94:90:9c:cd:30:40:10:92:c1:d0:85:46: dd:a0:9c:f2:ab:21:9c:d5:0a:42:9a:bd:b4:d3:8f: 04:a1:a2:bc:dc:93:97:ab:a7:af:e9:d9:d0:7e:23: 9b:28:bf:c6:b8:7b:61:c3:b3:54:52:c7:66:97:70: ff:d1:2a:f4:09:5e:fa:9a:98:ac:1b:5c:6f:33:3a: ab:f2:a1:95:90:34:f9:43:90:98:c4:98:ca:5f:22: b6:8c:cf:5c:56:9e:6a:11:c8:1e:d5:95:61:94:d9: 2c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:49:F6:80:4C:70:03:0A:68:6D:46:FD:67:BE:C9:18:29:F1:60:58 X509v3 Authority Key Identifier: keyid:6A:4F:43:11:00:50:F0:68:19:64:D8:58:F9:14:4E:05:2B:B8:89:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak9DEQBQ8GgZZNhY-RROBSu4iZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199BDF/E70E0A98709311E980BD7C3DC4F9AE02/ak9DEQBQ8GgZZNhY-RROBSu4iZo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:dc:d9:bf:47:5c:be:0b:15:4f:0a:70:e8:f6:1d:ab:86:30: a3:df:09:8e:0f:98:c6:92:92:84:a0:2e:93:87:a3:cd:a8:9f: b0:0e:cc:89:e7:61:b1:f5:13:d9:8c:55:01:ce:47:8e:f7:92: 42:8b:8d:20:1c:17:f5:3c:38:0c:80:8b:7c:0d:22:fd:d3:ea: 03:6a:cb:80:c4:55:a3:4d:eb:c5:bb:4d:ec:96:38:62:ab:f3: 06:56:b7:a8:95:8d:a9:b4:4b:c4:fa:8b:f3:81:96:ac:9f:72: c6:6e:a3:cf:b1:4e:53:43:83:30:59:33:cd:ef:6a:7d:12:89: ed:07:9f:ac:20:86:17:d3:a3:52:ae:a2:7f:51:81:57:f1:8d: 25:34:8a:ca:22:5a:85:c8:51:2f:8c:ef:8a:0b:4b:8a:13:f6: 2b:c0:9e:e3:4e:b3:30:d7:eb:7d:b3:5b:54:1e:2c:cc:94:3d: db:ca:69:b6:c4:5f:3d:a4:2a:f7:2a:ee:a8:44:15:4d:b7:b1: b1:8e:77:8e:7a:3b:bc:a3:1a:03:28:37:13:56:34:7d:70:19: 15:14:62:7c:25:60:c9:5c:9d:81:e0:82:57:78:01:ca:e2:61: 0b:a0:7a:6c:d5:fc:d2:86:a5:21:55:bf:6b:93:64:3c:b5:c2: a6:da:6e:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCREYxMTAvBgNVBAUTKDZBNEY0MzExMDA1MEYwNjgxOTY0RDg1OEY5MTQ0RTA1 MkJCODg5OUEwHhcNMjUwODEwMTczNTI5WhcNMjUwODE3MTczNTI5WjAYMRYwFAYD VQQDEw02ODk4ZDg2MS1hYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXw7j7XjVPgqmAxN+KtPDp6zzLHYG2aFH5sDnkJCNYYiJ/12hnEppUOvR3Cp lWMNyUfs8hZmcSw158Gqa6T9dCDGU4gz6bAFZ/Q2SKLqrwsTrLF2zhI2BjMR6rII Q8NbwCQsaxP+AXpeC2I/4VNOiXCAVd/G6X/JQslEN3bWkB+C1n9Po33gvy6uGt9Q cAen10nCgPnqPliUkJzNMEAQksHQhUbdoJzyqyGc1QpCmr20048EoaK83JOXq6ev 6dnQfiObKL/GuHthw7NUUsdml3D/0Sr0CV76mpisG1xvMzqr8qGVkDT5Q5CYxJjK XyK2jM9cVp5qEcge1ZVhlNks8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpJ9oBM cAMKaG1G/We+yRgp8WBYMB8GA1UdIwQYMBaAFGpPQxEAUPBoGWTYWPkUTgUruIma MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUJERi9FNzBFMEE5ODcw OTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThHZ1paTmhZLVJST0JTdTRp Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrOURFUUJROEdnWlpOaFktUlJPQlN1NGlaby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OUJERi9FNzBFMEE5ODcwOTMxMUU5ODBCRDdDM0RDNEY5QUUwMi9hazlERVFCUThH Z1paTmhZLVJST0JTdTRpWm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE3Nm/R1y+CxVPCnDo9h2rhjCj3wmOD5jGkpKEoC6Th6PNqJ+wDsyJ 52Gx9RPZjFUBzkeO95JCi40gHBf1PDgMgIt8DSL90+oDasuAxFWjTevFu03sljhi q/MGVreolY2ptEvE+ovzgZasn3LGbqPPsU5TQ4MwWTPN72p9EontB5+sIIYX06NS rqJ/UYFX8Y0lNIrKIlqFyFEvjO+KC0uKE/YrwJ7jTrMw1+t9s1tUHizMlD3bymm2 xF89pCr3Ku6oRBVNt7GxjneOeju8oxoDKDcTVjR9cBkVFGJ8JWDJXJ2B4IJXeAHK 4mELoHps1fzShqUhVb9rk2Q8tcKm2m4q -----END CERTIFICATE-----Generated at Mon Aug 11 09:43:19 2025 by rpki-client