$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft File: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft (raw, json) Hash identifier: f744uyr45ASrNh+FJpu9tR7qcikVt5qMMaulCZ/B95U= Subject key identifier: D2:18:E3:9D:36:29:92:15:F1:6F:30:D0:D0:C0:31:05:DC:75:51:1C Authority key identifier: F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 Certificate issuer: /CN=A91BDD82/serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Certificate serial: 016D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft Manifest number: 1022 Signing time: Tue 12 Aug 2025 17:48:15 +0000 Manifest this update: Tue 12 Aug 2025 17:48:15 +0000 Manifest next update: Tue 19 Aug 2025 17:48:15 +0000 Files and hashes: 1: 9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl (hash: 1QwdQEsDrqWOp3lGp2hPtrUlsz4s58GSJwHOmeiUyME=) 2: 324967826D8D11EE9883B985C4F9AE02.roa (hash: MZyOtnzSYRn5H5siK78kl2QRZxsNV35INBP6UfbHk9E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:48:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDD82, serialNumber=F44018181EE5C6240E1394395A5CCC4D2F6231A4 Validity Not Before: Aug 12 17:48:15 2025 GMT Not After : Aug 19 17:48:15 2025 GMT Subject: CN=689b7e5f-29b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e2:4b:b7:20:a2:5b:31:ee:b7:c1:44:c3:3b: 97:b8:44:06:db:92:e1:f8:a4:d7:bd:f7:e5:8d:78: d7:95:66:55:51:70:17:1b:5d:bc:db:9c:95:ef:31: 53:55:3f:f5:98:00:a2:7b:07:29:7b:b4:e5:dc:be: b7:74:32:2c:53:62:39:81:4e:bf:a9:0c:05:b9:b9: 7d:e3:ed:6d:57:39:a3:c1:72:3a:0a:d4:d1:b3:47: 29:90:da:b3:4e:77:2a:b0:20:62:fb:e7:93:dc:32: 3e:47:98:f8:8a:af:85:55:4f:5e:08:0b:29:4e:9c: 9d:11:46:84:5a:18:97:59:54:2f:09:0c:35:4b:71: 57:e3:3b:0e:d3:b9:fb:ba:d0:18:84:20:1d:f3:82: 41:a5:8f:de:9c:c1:11:2c:71:93:18:c7:87:81:76: 2b:ef:0e:18:ec:c0:ee:2a:74:1b:b1:cf:e6:0a:55: 0b:0f:f6:84:5e:81:8e:55:8a:d7:a0:27:35:9d:88: a9:c5:d8:a4:9d:f6:08:70:fa:dd:90:70:25:22:d1: 55:ad:97:6d:33:49:6c:76:e7:b1:ac:7e:da:d3:e6: 81:1d:bd:55:01:6d:6f:24:4d:ee:d3:a5:0c:5a:69: ed:f2:06:c9:9f:0b:18:a8:b4:a4:31:3c:89:82:f4: d4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:18:E3:9D:36:29:92:15:F1:6F:30:D0:D0:C0:31:05:DC:75:51:1C X509v3 Authority Key Identifier: keyid:F4:40:18:18:1E:E5:C6:24:0E:13:94:39:5A:5C:CC:4D:2F:62:31:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDD82/197F9D9291E211E99768890EC4F9AE02/9EAYGB7lxiQOE5Q5WlzMTS9iMaQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:0d:11:19:00:7d:9f:a5:69:71:17:48:36:a7:58:cd:f6:4b: bc:c2:03:16:68:c4:22:45:e1:b8:fd:20:0c:63:bd:69:53:c9: f0:a6:24:40:b6:17:dd:d5:34:5f:a2:e7:71:b2:0a:01:55:a4: 5c:80:b1:40:19:a1:b6:90:16:56:0d:98:9b:6d:10:cd:91:b6: 27:57:9c:7a:b0:43:b7:2e:1c:df:51:42:f4:5d:28:34:d0:f7: d5:5d:d7:52:0f:e1:21:02:59:79:ee:ad:ea:06:64:fc:26:e0: ca:6b:39:c7:4f:82:55:de:26:05:76:55:3e:8d:bf:cd:3d:a0: 85:fd:45:78:31:c0:01:37:d9:6d:45:7c:4d:d7:db:37:24:00: c5:bd:90:9e:cd:2c:e7:fe:7e:c9:dc:c5:61:a6:1d:f7:c9:da: a6:ba:a5:29:68:f7:43:5a:2f:92:ef:c6:bc:62:e5:5b:23:90: f0:48:63:4c:b1:ad:10:a5:dd:54:32:6d:16:c4:88:50:a4:eb: 69:c8:62:78:6a:38:01:bd:52:bd:2a:a7:3a:ec:45:f5:f9:7d: dd:8f:cc:12:4b:0a:7b:8a:76:9f:ca:0b:7b:b1:7f:a4:5a:78: e5:93:74:51:12:c8:ce:f3:82:6f:7f:8d:12:d6:ee:b2:24:5f: 0b:13:f9:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkREODIxMTAvBgNVBAUTKEY0NDAxODE4MUVFNUM2MjQwRTEzOTQzOTVBNUNDQzRE MkY2MjMxQTQwHhcNMjUwODEyMTc0ODE1WhcNMjUwODE5MTc0ODE1WjAYMRYwFAYD VQQDEw02ODliN2U1Zi0yOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOJLtyCiWzHut8FEwzuXuEQG25Lh+KTXvffljXjXlWZVUXAXG12825yV7zFT VT/1mACiewcpe7Tl3L63dDIsU2I5gU6/qQwFubl94+1tVzmjwXI6CtTRs0cpkNqz TncqsCBi++eT3DI+R5j4iq+FVU9eCAspTpydEUaEWhiXWVQvCQw1S3FX4zsO07n7 utAYhCAd84JBpY/enMERLHGTGMeHgXYr7w4Y7MDuKnQbsc/mClULD/aEXoGOVYrX oCc1nYipxdiknfYIcPrdkHAlItFVrZdtM0lsduexrH7a0+aBHb1VAW1vJE3u06UM Wmnt8gbJnwsYqLSkMTyJgvTUNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIY4502 KZIV8W8w0NDAMQXcdVEcMB8GA1UdIwQYMBaAFPRAGBge5cYkDhOUOVpczE0vYjGk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREQ4Mi8xOTdGOUQ5Mjkx RTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhpUU9FNVE1V2x6TVRTOWlN YVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlFQVlHQjdseGlRT0U1UTVXbHpNVFM5aU1hUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REQ4Mi8xOTdGOUQ5MjkxRTIxMUU5OTc2ODg5MEVDNEY5QUUwMi85RUFZR0I3bHhp UU9FNVE1V2x6TVRTOWlNYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcDREZAH2fpWlxF0g2p1jN9ku8wgMWaMQiReG4/SAMY71pU8nwpiRA thfd1TRfoudxsgoBVaRcgLFAGaG2kBZWDZibbRDNkbYnV5x6sEO3LhzfUUL0XSg0 0PfVXddSD+EhAll57q3qBmT8JuDKaznHT4JV3iYFdlU+jb/NPaCF/UV4McABN9lt RXxN19s3JADFvZCezSzn/n7J3MVhph33ydqmuqUpaPdDWi+S78a8YuVbI5DwSGNM sa0Qpd1UMm0WxIhQpOtpyGJ4ajgBvVK9Kqc67EX1+X3dj8wSSwp7inafygt7sX+k Wnjlk3RREsjO84Jvf40S1u6yJF8LE/mA -----END CERTIFICATE-----Generated at Wed Aug 13 02:49:16 2025 by rpki-client