$ rpki-client -vvf rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft File: i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft (raw, json) Hash identifier: BlOWX/JBMiWNnHQ/2HH6S9W5BqAQECx1SGjSUaBlw0I= Subject key identifier: D8:0F:6D:76:9C:2F:0A:3B:29:8B:49:6F:83:F1:45:C3:39:81:A5:CA Authority key identifier: 8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C Certificate issuer: /CN=A9116E68/serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft Manifest number: 012B Signing time: Sat 09 Aug 2025 04:59:43 +0000 Manifest this update: Sat 09 Aug 2025 04:59:43 +0000 Manifest next update: Sat 16 Aug 2025 04:59:43 +0000 Files and hashes: 1: i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl (hash: 130G4FT+H2b+a5mPTBMbwpDQMj6cry/bXoFZBJd5IG0=) 2: 2601A296AE1011EE92B7161BC4F9AE02.roa (hash: ruTuAI8tCOCbFuPP+2u83Ib06u3MS/nsClPmyXw7xNc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116E68, serialNumber=8BA94E244C8703E2E212456B9871B3C82D50709C Validity Not Before: Aug 9 04:59:43 2025 GMT Not After : Aug 16 04:59:43 2025 GMT Subject: CN=6896d5bf-dfd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:36:18:78:0b:fb:38:11:70:28:74:e7:14:87: fb:23:49:b2:8b:10:7f:81:de:c9:56:63:db:6f:17: 56:8c:ce:ad:7f:42:ae:ad:7d:58:c4:d9:53:f8:02: 5d:4d:a8:b5:9b:2b:cc:06:08:a2:df:73:33:a6:7b: eb:0a:48:2d:d0:52:c5:2b:d3:93:67:00:95:b6:df: 4d:9d:b1:24:82:32:6e:ad:67:24:eb:c4:05:20:c2: e6:33:16:99:c0:19:56:3c:7f:1e:69:7b:a5:9a:4c: 3c:22:37:06:e7:2c:19:af:65:e5:9d:ac:c8:1d:b3: 63:9a:91:f5:eb:91:78:25:db:b2:87:57:09:e2:e6: cc:ee:ca:f5:d0:13:5b:b6:81:ac:b2:94:ff:dd:b9: 26:6c:28:7f:fc:1d:f6:80:d4:17:01:01:d5:d5:78: 4c:40:e1:54:b3:63:5d:a5:4b:6f:11:6d:68:a7:74: c4:68:47:1f:a0:63:76:c0:fa:d8:66:52:fd:3a:34: cf:b2:60:0f:bb:a7:c9:7d:6e:00:be:37:b2:85:ca: 8d:f6:f1:fe:37:95:f1:1d:50:33:91:d1:a3:5b:3d: 4f:0e:be:35:ed:88:74:27:dd:06:41:85:31:02:59: 39:df:b9:e8:ff:ad:29:4f:a4:ef:eb:d2:50:46:f4: 97:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:0F:6D:76:9C:2F:0A:3B:29:8B:49:6F:83:F1:45:C3:39:81:A5:CA X509v3 Authority Key Identifier: keyid:8B:A9:4E:24:4C:87:03:E2:E2:12:45:6B:98:71:B3:C8:2D:50:70:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i6lOJEyHA-LiEkVrmHGzyC1QcJw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116E68/D2BAAC4AAE0F11EEA7AC941AC4F9AE02/i6lOJEyHA-LiEkVrmHGzyC1QcJw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c4:86:7f:a2:38:a5:42:b2:9e:6b:9f:d1:38:30:29:1e:ee: 18:97:30:4a:2e:79:df:fb:73:82:27:38:5e:d7:cb:a3:82:4f: 28:86:59:d9:cd:72:5a:10:08:f9:bf:47:6a:a8:34:ba:58:f7: 5c:1b:11:ff:2d:5d:3b:cd:74:d5:f0:33:bd:f6:59:7a:4e:39: 2c:c8:36:1e:ce:b1:9e:a9:e2:aa:e6:bc:9b:7e:73:02:29:c8: d4:9a:98:b8:ed:f5:d5:19:09:26:d0:ef:d4:26:f8:21:63:40: 4f:27:bc:c2:f5:7b:d3:b6:56:4d:13:5d:69:10:de:f7:23:71: ce:3b:4d:c4:ca:e0:24:41:17:28:08:48:e1:d0:3f:9d:08:5f: 40:b9:b3:c9:e3:04:c7:86:ae:fc:4a:95:df:bb:7c:b5:91:d0: 31:e0:75:72:8a:49:b4:3c:77:96:e7:6e:7e:43:91:86:66:7e: 9c:e9:1b:71:70:25:0a:85:d6:b2:53:38:f6:19:be:1b:7f:c3: 69:ff:b5:8b:94:b4:36:b1:fc:69:04:96:4c:85:ab:1b:be:6f: a5:de:20:2d:21:29:2c:f5:06:07:fb:4c:33:49:cf:9e:3f:29: 1e:6e:52:52:57:c4:c9:c3:5f:f6:47:11:3f:a9:b5:bd:66:eb: 1a:37:0b:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZFNjgxMTAvBgNVBAUTKDhCQTk0RTI0NEM4NzAzRTJFMjEyNDU2Qjk4NzFCM0M4 MkQ1MDcwOUMwHhcNMjUwODA5MDQ1OTQzWhcNMjUwODE2MDQ1OTQzWjAYMRYwFAYD VQQDEw02ODk2ZDViZi1kZmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDYYeAv7OBFwKHTnFIf7I0myixB/gd7JVmPbbxdWjM6tf0KurX1YxNlT+AJd Tai1myvMBgii33MzpnvrCkgt0FLFK9OTZwCVtt9NnbEkgjJurWck68QFIMLmMxaZ wBlWPH8eaXulmkw8IjcG5ywZr2XlnazIHbNjmpH165F4Jduyh1cJ4ubM7sr10BNb toGsspT/3bkmbCh//B32gNQXAQHV1XhMQOFUs2NdpUtvEW1op3TEaEcfoGN2wPrY ZlL9OjTPsmAPu6fJfW4AvjeyhcqN9vH+N5XxHVAzkdGjWz1PDr417Yh0J90GQYUx Alk537no/60pT6Tv69JQRvSXrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgPbXac Lwo7KYtJb4PxRcM5gaXKMB8GA1UdIwQYMBaAFIupTiRMhwPi4hJFa5hxs8gtUHCc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkU2OC9EMkJBQUM0QUFF MEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEtTGlFa1ZybUhHenlDMVFj SncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k2bE9KRXlIQS1MaUVrVnJtSEd6eUMxUWNKdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkU2OC9EMkJBQUM0QUFFMEYxMUVFQTdBQzk0MUFDNEY5QUUwMi9pNmxPSkV5SEEt TGlFa1ZybUhHenlDMVFjSncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7xIZ/ojilQrKea5/RODApHu4YlzBKLnnf+3OCJzhe18ujgk8ohlnZ zXJaEAj5v0dqqDS6WPdcGxH/LV07zXTV8DO99ll6TjksyDYezrGeqeKq5rybfnMC KcjUmpi47fXVGQkm0O/UJvghY0BPJ7zC9XvTtlZNE11pEN73I3HOO03EyuAkQRco CEjh0D+dCF9AubPJ4wTHhq78SpXfu3y1kdAx4HVyikm0PHeW525+Q5GGZn6c6Rtx cCUKhdayUzj2Gb4bf8Np/7WLlLQ2sfxpBJZMhasbvm+l3iAtISks9QYH+0wzSc+e PykeblJSV8TJw1/2RxE/qbW9ZusaNwvU -----END CERTIFICATE-----Generated at Mon Aug 11 04:26:57 2025 by rpki-client