$ rpki-client -vvf rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft File: tO2w1sy18AyTBDdO6B9eJhrmcck.mft (raw, json) Hash identifier: a3s2qpevrCx0uZswJaKU5jnaKYwxQpZ8F+HMD3NtOHg= Subject key identifier: 42:D9:51:D4:2B:61:54:25:30:90:90:CE:CE:39:86:76:10:62:9C:39 Authority key identifier: B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 Certificate issuer: /CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Certificate serial: 0156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft Manifest number: 0151 Signing time: Mon 11 Aug 2025 04:22:56 +0000 Manifest this update: Mon 11 Aug 2025 04:22:55 +0000 Manifest next update: Mon 18 Aug 2025 04:22:55 +0000 Files and hashes: 1: tO2w1sy18AyTBDdO6B9eJhrmcck.crl (hash: tReZXIWolaODLb0WWHbwS5FBJbLnIEen5dgExwJ8I4o=) 2: 34DED1A2798711EEA7D73423C4F9AE02.roa (hash: pB1reIfyHdxeUfXs+919CuRxWhrieVaoumr+2A452aM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 04:22:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 342 (0x156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116AC6, serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Validity Not Before: Aug 11 04:22:55 2025 GMT Not After : Aug 18 04:22:55 2025 GMT Subject: CN=6899701f-69e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:dd:f8:a4:b8:5c:60:f7:d4:2d:a0:98:7a: 58:45:98:cc:32:f1:2e:03:46:4e:9d:b7:13:05:14: 5d:6e:f5:7c:3f:cf:f3:ff:ec:48:9f:c4:a9:e0:e8: 81:76:41:d3:07:3e:fa:99:d4:79:5c:a8:06:cd:27: 47:cf:3d:88:01:69:06:4b:dd:0c:40:d0:e3:dd:2d: 44:70:b4:bd:57:3f:2e:be:ff:0a:cd:0c:28:b0:b1: 1f:32:f6:af:37:33:09:e2:6e:d4:dc:bc:2a:23:ec: 09:84:84:74:29:dc:e0:f6:83:8b:f5:34:8c:49:c4: 10:f3:34:b3:95:de:6b:9a:44:e7:52:68:7c:5f:2d: 16:47:d4:f4:0b:2d:3e:1a:9d:df:90:4e:65:48:4a: ed:69:82:8e:48:1d:66:5b:d7:3d:d8:6b:fd:e0:bb: 76:58:46:47:2c:80:f2:8c:55:48:cf:48:ac:ac:39: 52:27:79:c1:75:c4:d3:e2:28:67:a2:f3:3f:a6:c1: 7b:c4:b7:e7:91:27:c0:05:ad:58:c4:40:22:ac:9d: 3d:76:79:c8:7b:51:66:bb:6d:f8:8a:98:24:34:52: ff:0a:3c:4f:92:39:c4:b3:2c:48:64:a2:2d:64:58: e4:fb:f6:b5:69:f3:fd:50:32:fa:fd:b2:bf:dc:c6: 18:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D9:51:D4:2B:61:54:25:30:90:90:CE:CE:39:86:76:10:62:9C:39 X509v3 Authority Key Identifier: keyid:B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ac:31:3a:a0:ba:6a:4a:15:ec:16:5c:7f:69:a6:3b:14:d6: bb:cb:45:27:84:a7:dc:84:5e:22:1c:32:1a:63:27:65:91:14: 97:46:7e:22:b5:f7:bc:3c:42:69:c0:a6:b6:47:93:4e:c3:39: 0f:ea:10:02:46:f2:d2:f4:8d:69:c1:4f:77:cc:89:33:26:ea: ac:99:92:23:79:fd:01:3f:19:1b:0a:0c:0a:7f:5c:a0:ad:35: 97:dc:10:90:cd:2e:38:dc:10:d4:9c:e5:8d:86:51:5e:7b:3d: af:b3:0e:d7:33:17:92:7c:92:52:e8:d6:71:38:57:b4:29:9b: 01:79:82:8c:05:5a:a8:95:01:95:43:22:95:08:a7:d1:35:cc: a0:26:50:bc:bd:03:33:00:95:b2:2a:04:98:53:e0:2b:03:43: 99:47:d1:86:75:58:4b:62:de:27:04:2e:b8:db:79:41:54:31: 96:83:cc:6e:9b:d0:02:49:e0:bf:3e:25:7d:38:3e:92:8c:19: c9:2d:36:22:37:64:30:0e:88:bb:47:83:04:f3:dc:15:8b:b9: 86:fc:e8:49:5c:e5:c8:4f:78:23:f4:82:6a:37:97:76:23:e7: 5c:f8:82:fd:de:ab:36:62:57:f6:fb:6c:1b:a0:b7:5f:6b:78: 70:5c:83:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZBQzYxMTAvBgNVBAUTKEI0RURCMEQ2Q0NCNUYwMEM5MzA0Mzc0RUU4MUY1RTI2 MUFFNjcxQzkwHhcNMjUwODExMDQyMjU1WhcNMjUwODE4MDQyMjU1WjAYMRYwFAYD VQQDEw02ODk5NzAxZi02OWU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRHd+KS4XGD31C2gmHpYRZjMMvEuA0ZOnbcTBRRdbvV8P8/z/+xIn8Sp4OiB dkHTBz76mdR5XKgGzSdHzz2IAWkGS90MQNDj3S1EcLS9Vz8uvv8KzQwosLEfMvav NzMJ4m7U3LwqI+wJhIR0Kdzg9oOL9TSMScQQ8zSzld5rmkTnUmh8Xy0WR9T0Cy0+ Gp3fkE5lSErtaYKOSB1mW9c92Gv94Lt2WEZHLIDyjFVIz0isrDlSJ3nBdcTT4ihn ovM/psF7xLfnkSfABa1YxEAirJ09dnnIe1Fmu234ipgkNFL/CjxPkjnEsyxIZKIt ZFjk+/a1afP9UDL6/bK/3MYYzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELZUdQr YVQlMJCQzs45hnYQYpw5MB8GA1UdIwQYMBaAFLTtsNbMtfAMkwQ3TugfXiYa5nHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkFDNi9BMUI2Q0JFQTc5 N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThBeVRCRGRPNkI5ZUpocm1j Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RPMncxc3kxOEF5VEJEZE82QjllSmhybWNjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkFDNi9BMUI2Q0JFQTc5N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi90TzJ3MXN5MThB eVRCRGRPNkI5ZUpocm1jY2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQrDE6oLpqShXsFlx/aaY7FNa7y0UnhKfchF4iHDIaYydlkRSXRn4i tfe8PEJpwKa2R5NOwzkP6hACRvLS9I1pwU93zIkzJuqsmZIjef0BPxkbCgwKf1yg rTWX3BCQzS443BDUnOWNhlFeez2vsw7XMxeSfJJS6NZxOFe0KZsBeYKMBVqolQGV QyKVCKfRNcygJlC8vQMzAJWyKgSYU+ArA0OZR9GGdVhLYt4nBC6423lBVDGWg8xu m9ACSeC/PiV9OD6SjBnJLTYiN2QwDoi7R4ME89wVi7mG/OhJXOXIT3gj9IJqN5d2 I+dc+IL93qs2Ylf2+2wboLdfa3hwXIOH -----END CERTIFICATE-----Generated at Tue Aug 12 19:08:06 2025 by rpki-client