$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft File: loNUUNMhwefEjKDF3NK6bB0tSPE.mft (raw, json) Hash identifier: 5qYJecWb+mBbq8VNtck2GuUHO1oo3NZAeg6+dMhy+pA= Subject key identifier: 97:07:29:8D:CF:35:95:01:CC:24:71:9F:F3:7C:DE:8B:BF:1E:DB:F1 Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft Manifest number: B8 Signing time: Tue 05 Aug 2025 06:26:15 +0000 Manifest this update: Tue 05 Aug 2025 06:26:15 +0000 Manifest next update: Tue 12 Aug 2025 06:26:15 +0000 Files and hashes: 1: loNUUNMhwefEjKDF3NK6bB0tSPE.crl (hash: 009PePwr0tvou52Yex92vJLJUgyY9ZLRpgeQwEUl9Mk=) 2: 050079585AC911EF9DF4275AC4F9AE02.roa (hash: FQoFMhaO39gGEcc2pn8CyPB8yz5sPKJ5LS8scOVr+nU=) 3: 047C04705AC911EF9DF4275AC4F9AE02.roa (hash: UGCPOMHQWDHdKMVZEIClF1yCBQsAp0GOZkBRwsHoCKc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Aug 5 06:26:15 2025 GMT Not After : Aug 12 06:26:15 2025 GMT Subject: CN=6891a407-b1e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:31:b5:53:37:57:30:68:e3:0b:09:8b:a2:75: 73:7d:1d:a0:e7:aa:85:fa:4e:49:fe:1e:44:57:c5: 4e:24:f7:b8:fd:7a:d8:79:84:9f:7e:2c:f1:2c:af: 95:63:02:b7:54:e4:71:92:31:58:14:f2:0a:dc:86: 9e:58:54:7e:be:81:a3:65:45:9a:ae:6a:50:b6:80: a5:3d:26:3e:e6:61:38:c5:43:01:b9:c5:da:b3:39: 96:07:e4:27:a0:90:1f:5c:01:b8:8c:ec:70:dd:0c: f2:ef:d6:8b:bc:e6:73:b5:49:b2:14:95:3c:d5:16: 7e:5e:5e:06:51:bd:73:d9:1a:2c:79:00:cc:fa:06: 82:16:df:fc:2d:93:93:b3:e4:1c:53:33:37:e1:cc: b9:c7:74:d8:e4:37:53:92:97:35:07:0b:f8:2a:ba: e1:9b:bc:fb:86:28:26:35:46:48:00:45:d3:c8:bb: be:9e:79:2a:9e:73:c9:e9:68:52:6f:78:52:d8:c3: 09:c9:86:bc:05:bc:65:1f:16:29:33:0b:18:e3:7f: 10:40:42:70:c2:c2:2d:e0:a3:6a:40:0a:d0:d0:11: dc:7c:af:f5:96:ea:fc:f2:b3:d9:f1:f4:fb:9c:98: ca:c7:b2:9b:84:3f:76:fa:c8:df:0f:46:bd:60:a6: d2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:07:29:8D:CF:35:95:01:CC:24:71:9F:F3:7C:DE:8B:BF:1E:DB:F1 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:15:04:d8:63:ef:70:9e:a7:3a:d9:2f:ad:ce:d2:23:89:e0: 1e:4f:36:f7:a7:f4:bc:39:12:a3:13:a0:6a:c0:d5:5a:8c:de: c1:f1:a3:59:ec:7c:31:93:27:35:bb:0f:e4:53:16:70:fe:41: 6d:b1:2e:72:d1:ff:b5:8c:71:fa:51:97:e3:3d:a4:a8:c4:2e: 85:0f:ea:9f:c4:e5:4d:72:c8:c9:3c:3f:61:70:39:9d:85:c8: 85:56:78:1b:a0:58:a5:a3:aa:2e:d0:39:3b:d8:ea:ab:70:34: a0:dd:30:b4:58:e2:fc:a0:d6:0f:4b:63:13:31:63:97:b8:c0: 45:e9:01:a5:7e:ed:2c:6a:3c:24:0f:4b:79:4d:23:6d:c3:5e: 70:3d:9f:55:c7:a2:20:2f:0c:59:16:c9:7e:31:1e:aa:7b:04: e1:56:2a:f0:7a:63:3e:20:4d:f3:32:a4:9a:c2:4c:a9:d0:de: eb:f3:a8:cd:44:d6:e8:7c:d7:80:7a:b6:fe:82:c8:2d:30:22: dc:dc:d2:d1:af:71:fe:49:b1:6f:bb:f1:61:6c:9f:d0:0b:8b: 7c:28:b9:77:46:3c:95:0a:6e:0b:07:01:ef:c3:83:49:65:f0: db:50:f9:0e:73:e9:fd:01:ec:c6:6e:53:ce:d2:0a:92:8f:4f: bb:38:c8:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUwODA1MDYyNjE1WhcNMjUwODEyMDYyNjE1WjAYMRYwFAYD VQQDEw02ODkxYTQwNy1iMWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDG1UzdXMGjjCwmLonVzfR2g56qF+k5J/h5EV8VOJPe4/XrYeYSffizxLK+V YwK3VORxkjFYFPIK3IaeWFR+voGjZUWarmpQtoClPSY+5mE4xUMBucXaszmWB+Qn oJAfXAG4jOxw3Qzy79aLvOZztUmyFJU81RZ+Xl4GUb1z2RoseQDM+gaCFt/8LZOT s+QcUzM34cy5x3TY5DdTkpc1Bwv4Krrhm7z7higmNUZIAEXTyLu+nnkqnnPJ6WhS b3hS2MMJyYa8BbxlHxYpMwsY438QQEJwwsIt4KNqQArQ0BHcfK/1lur88rPZ8fT7 nJjKx7KbhD92+sjfD0a9YKbS0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJcHKY3P NZUBzCRxn/N83ou/HtvxMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REYyNS83RjdCMURBQzVBQzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdl ZkVqS0RGM05LNmJCMHRTUEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWFQTYY+9wnqc62S+tztIjieAeTzb3p/S8ORKjE6BqwNVajN7B8aNZ 7Hwxkyc1uw/kUxZw/kFtsS5y0f+1jHH6UZfjPaSoxC6FD+qfxOVNcsjJPD9hcDmd hciFVngboFilo6ou0Dk72OqrcDSg3TC0WOL8oNYPS2MTMWOXuMBF6QGlfu0sajwk D0t5TSNtw15wPZ9Vx6IgLwxZFsl+MR6qewThVirwemM+IE3zMqSawkyp0N7r86jN RNbofNeAerb+gsgtMCLc3NLRr3H+SbFvu/FhbJ/QC4t8KLl3RjyVCm4LBwHvw4NJ ZfDbUPkOc+n9AezGblPO0gqSj0+7OMiK -----END CERTIFICATE-----Generated at Thu Aug 7 04:00:04 2025 by rpki-client