$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft File: -1uWlTzNsR6SaDs-tbekV0lLJfA.mft (raw, json) Hash identifier: hbT1b8QJ5kEJIn0UZ0EsGsfWrT/nWN8k4JoYTB1FjIU= Subject key identifier: 6A:39:11:93:7F:DB:AD:60:2B:77:67:48:9F:6E:43:B0:01:8A:81:A1 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft Manifest number: 0151 Signing time: Sun 10 Aug 2025 15:27:39 +0000 Manifest this update: Sun 10 Aug 2025 15:27:38 +0000 Manifest next update: Sun 17 Aug 2025 15:27:38 +0000 Files and hashes: 1: -1uWlTzNsR6SaDs-tbekV0lLJfA.crl (hash: uRlqmLw3C9VCdL7OIOy7I9f78KB2kweXf9k4Wob8FfA=) 2: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (hash: 4RQI+EFj/mJJo3iDsYdl0ustKcpifsqTMWOHIgjxyFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Aug 10 15:27:38 2025 GMT Not After : Aug 17 15:27:38 2025 GMT Subject: CN=6898ba6b-904e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:12:6a:6e:e5:06:da:04:dc:39:42:13:af:77: 89:91:b6:da:49:2c:72:65:49:6b:8b:94:84:67:e2: df:cd:41:1b:96:59:36:64:4f:fa:2c:b8:01:66:fc: e1:9f:db:05:28:5a:56:39:f8:4a:7c:87:39:1d:72: e3:a3:16:e9:37:5a:e0:1a:41:b2:44:48:ff:46:d0: b5:b4:dc:17:f3:66:b1:3c:71:4b:11:2f:90:9d:c5: e2:7c:12:c0:16:3c:41:97:ec:83:60:1b:b5:c5:ee: 50:22:46:24:25:e4:5b:b3:de:3d:78:bc:20:c4:3b: 0f:31:7d:ec:d1:b9:00:a4:6a:55:08:24:a9:ac:bd: 78:f2:45:f8:94:c0:db:77:f9:00:71:7d:30:56:89: ea:85:74:49:d1:6d:f3:6c:be:ae:08:d0:f0:8a:4c: e9:28:da:6b:00:ab:ce:45:0f:4c:4c:57:e1:88:76: fc:d3:6a:07:36:c1:1c:e6:66:35:ca:72:26:48:dc: 9a:72:10:48:5f:52:9b:40:50:48:cc:ec:b4:e2:52: 86:81:05:af:dc:d6:af:ea:bd:2b:f6:d1:0c:89:58: 8f:2a:b9:46:83:d1:51:48:c8:d0:a8:52:84:03:a2: 57:bf:25:21:6b:2b:ff:f4:5e:57:62:92:58:63:57: e7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:39:11:93:7F:DB:AD:60:2B:77:67:48:9F:6E:43:B0:01:8A:81:A1 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:79:bb:38:ad:ef:33:38:06:50:8b:87:95:96:f0:69:c9:43: c8:44:9f:38:69:2a:65:05:a3:b3:50:32:14:64:4f:e9:ad:57: cd:b0:83:65:8e:84:73:d8:94:87:93:1c:73:2f:cb:23:f4:82: d5:c9:da:e9:4b:57:10:cd:d3:14:a9:3c:88:35:d9:35:78:40: ca:ed:c6:e7:fb:07:5e:a2:11:93:e6:8e:ab:39:30:29:29:28: 5d:33:4b:a0:1e:98:49:d5:d3:07:87:f0:2d:b2:a5:be:fb:16: 2c:2b:cd:5e:c0:78:89:cf:a9:d1:a7:47:36:8c:49:a9:3a:08: e8:a2:fb:95:cc:ba:60:91:54:47:99:3a:f3:22:24:29:a1:d8: 22:94:f3:17:3b:ae:51:b0:98:e6:34:ff:8d:0a:9a:1a:4e:0b: fe:34:eb:51:ed:6a:5d:d1:df:b0:fc:2d:51:1f:54:e2:01:b3: ca:64:10:cc:23:8c:93:33:5b:6c:53:55:01:ed:35:84:fd:4d: 63:f0:d2:9f:ae:f1:6a:5e:30:fb:fe:32:ed:12:99:93:dc:dd: 20:8a:34:36:46:99:0b:b9:b8:68:62:88:21:8d:37:fa:5a:1e: 7e:cd:7d:bd:bf:e1:39:f0:b4:99:5c:44:b6:31:4c:37:22:a4: 2b:5f:47:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUwODEwMTUyNzM4WhcNMjUwODE3MTUyNzM4WjAYMRYwFAYD VQQDEw02ODk4YmE2Yi05MDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RJqbuUG2gTcOUITr3eJkbbaSSxyZUlri5SEZ+LfzUEbllk2ZE/6LLgBZvzh n9sFKFpWOfhKfIc5HXLjoxbpN1rgGkGyREj/RtC1tNwX82axPHFLES+QncXifBLA FjxBl+yDYBu1xe5QIkYkJeRbs949eLwgxDsPMX3s0bkApGpVCCSprL148kX4lMDb d/kAcX0wVonqhXRJ0W3zbL6uCNDwikzpKNprAKvORQ9MTFfhiHb802oHNsEc5mY1 ynImSNyachBIX1KbQFBIzOy04lKGgQWv3Nav6r0r9tEMiViPKrlGg9FRSMjQqFKE A6JXvyUhayv/9F5XYpJYY1fnawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGo5EZN/ 261gK3dnSJ9uQ7ABioGhMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNS NlNhRHMtdGJla1YwbExKZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByebs4re8zOAZQi4eVlvBpyUPIRJ84aSplBaOzUDIUZE/prVfNsINl joRz2JSHkxxzL8sj9ILVydrpS1cQzdMUqTyINdk1eEDK7cbn+wdeohGT5o6rOTAp KShdM0ugHphJ1dMHh/AtsqW++xYsK81ewHiJz6nRp0c2jEmpOgjoovuVzLpgkVRH mTrzIiQpodgilPMXO65RsJjmNP+NCpoaTgv+NOtR7Wpd0d+w/C1RH1TiAbPKZBDM I4yTM1tsU1UB7TWE/U1j8NKfrvFqXjD7/jLtEpmT3N0gijQ2RpkLubhoYoghjTf6 Wh5+zX29v+E58LSZXES2MUw3IqQrX0dc -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:02 2025 by rpki-client