$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft File: jZIwmM1n9tG_JM--LD3KC2Zau4w.mft (raw, json) Hash identifier: LK6nHP1M0+a29CoK+kGYzFaDRdVsZw4zP8WZ7/iRAMQ= Subject key identifier: 63:A5:EF:1C:9E:44:DC:16:B3:BD:AF:C7:18:4D:8F:B0:1E:6B:4B:5D Authority key identifier: 8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C Certificate issuer: /CN=A9148B17/serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Certificate serial: 0168 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft Manifest number: 0160 Signing time: Sat 09 Aug 2025 04:29:43 +0000 Manifest this update: Sat 09 Aug 2025 04:29:43 +0000 Manifest next update: Sat 16 Aug 2025 04:29:43 +0000 Files and hashes: 1: jZIwmM1n9tG_JM--LD3KC2Zau4w.crl (hash: hKT0610sgVEI9CMCaqQPCYeXwZxehkYAKcyZPBsORs0=) 2: 4495F306772E11EEB7DE544FC4F9AE02.roa (hash: ccDaM+xIQE3p2Y5zhdqiVD5sdxLAr7SXV+gu36JLnEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 360 (0x168) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B17, serialNumber=8D923098CD67F6D1BF24CFBE2C3DCA0B665ABB8C Validity Not Before: Aug 9 04:29:43 2025 GMT Not After : Aug 16 04:29:43 2025 GMT Subject: CN=6896ceb7-8ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:c8:00:6e:13:09:70:3b:74:21:61:02:78:5c: 28:fe:24:e0:05:c3:7d:94:f4:03:3c:6f:e4:64:32: 33:bf:7a:53:a2:76:ea:cd:7c:6f:43:da:1d:c2:09: 5c:ca:9d:73:0c:d0:79:bb:07:39:75:8c:2d:dc:98: d5:cf:15:44:73:9c:80:3a:ed:ed:b1:f2:2d:68:e6: 14:0a:ea:76:3f:41:71:c1:00:01:fa:7f:8c:e9:f5: b6:ec:9f:64:ae:a2:92:65:2a:4a:bf:b5:fe:5d:de: 0f:c7:0e:3d:bb:bb:a3:c7:6d:33:2a:c9:f5:18:24: e0:c5:ce:d0:50:c7:64:14:48:74:08:c9:56:d9:5b: 79:74:c2:5a:d6:13:4d:60:80:c3:f2:c0:99:e0:fe: 3f:9d:52:a9:ff:e3:cc:ba:7b:55:96:92:07:f2:b0: d0:20:46:1b:94:da:15:cc:51:da:52:80:67:0f:82: 38:a5:d2:55:81:8a:dd:c5:e0:9f:a6:4a:e0:4d:03: 7c:62:e2:41:b8:d2:d0:37:0e:fa:49:04:e1:c5:f8: 5d:67:7e:70:3d:3b:f5:ce:3e:a2:93:99:ac:84:38: cd:d9:ab:67:76:59:3a:3e:51:01:ab:2d:65:a4:6a: c2:58:3a:0c:f6:67:e3:90:97:2a:85:26:59:70:ac: a9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A5:EF:1C:9E:44:DC:16:B3:BD:AF:C7:18:4D:8F:B0:1E:6B:4B:5D X509v3 Authority Key Identifier: keyid:8D:92:30:98:CD:67:F6:D1:BF:24:CF:BE:2C:3D:CA:0B:66:5A:BB:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZIwmM1n9tG_JM--LD3KC2Zau4w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B17/EA4B165E68ED11EEB4B5D362C4F9AE02/jZIwmM1n9tG_JM--LD3KC2Zau4w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:34:71:41:e2:f6:c8:96:ae:cb:c4:50:ed:4f:93:39:18:1a: b8:46:d4:f8:35:d0:ae:f2:97:82:1e:e3:0d:36:e7:8d:c2:3a: 66:64:af:96:65:87:92:3b:cd:fc:e0:49:0e:00:0a:0c:43:5e: af:ca:80:7d:c8:8b:5c:76:f4:cc:ad:fa:ac:eb:1c:22:03:3e: 45:c3:93:25:e8:8b:aa:91:04:ae:0f:fb:b2:ab:7b:7e:51:a5: 8d:f7:5e:00:d7:b3:0e:a4:48:a3:a7:1e:ea:65:a2:d8:1a:f9: 47:e0:9b:1c:a8:85:54:63:31:9d:a6:51:e4:31:1b:26:8a:5f: 40:1d:cd:b6:94:72:60:2e:51:c3:fc:d9:cd:0d:04:da:b7:2f: bf:2c:47:ec:05:bb:9d:92:76:3f:5c:fe:d2:14:56:1d:05:44: b0:b6:3c:26:13:d6:0a:53:c2:75:c7:50:bc:c4:cb:58:f7:e6: 41:37:0f:34:a9:16:79:f6:82:f3:76:90:5d:be:49:24:3d:3c: d5:bd:1c:f3:ef:97:1d:4e:97:15:1d:9f:12:4e:02:11:4a:32: 5b:28:45:18:4f:fe:03:4f:17:17:90:aa:5c:e9:c4:b1:0a:ee: e4:74:4b:e9:71:e7:92:4c:bd:63:f7:12:11:27:6b:1d:ec:2d: 16:2a:8c:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCMTcxMTAvBgNVBAUTKDhEOTIzMDk4Q0Q2N0Y2RDFCRjI0Q0ZCRTJDM0RDQTBC NjY1QUJCOEMwHhcNMjUwODA5MDQyOTQzWhcNMjUwODE2MDQyOTQzWjAYMRYwFAYD VQQDEw02ODk2Y2ViNy04YWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MgAbhMJcDt0IWECeFwo/iTgBcN9lPQDPG/kZDIzv3pTonbqzXxvQ9odwglc yp1zDNB5uwc5dYwt3JjVzxVEc5yAOu3tsfItaOYUCup2P0FxwQAB+n+M6fW27J9k rqKSZSpKv7X+Xd4Pxw49u7ujx20zKsn1GCTgxc7QUMdkFEh0CMlW2Vt5dMJa1hNN YIDD8sCZ4P4/nVKp/+PMuntVlpIH8rDQIEYblNoVzFHaUoBnD4I4pdJVgYrdxeCf pkrgTQN8YuJBuNLQNw76SQThxfhdZ35wPTv1zj6ik5mshDjN2atndlk6PlEBqy1l pGrCWDoM9mfjkJcqhSZZcKypPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGOl7xye RNwWs72vxxhNj7Aea0tdMB8GA1UdIwQYMBaAFI2SMJjNZ/bRvyTPviw9ygtmWruM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEIxNy9FQTRCMTY1RTY4 RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0R19KTS0tTEQzS0MyWmF1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2paSXdtTTFuOXRHX0pNLS1MRDNLQzJaYXU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OEIxNy9FQTRCMTY1RTY4RUQxMUVFQjRCNUQzNjJDNEY5QUUwMi9qWkl3bU0xbjl0 R19KTS0tTEQzS0MyWmF1NHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTNHFB4vbIlq7LxFDtT5M5GBq4RtT4NdCu8peCHuMNNueNwjpmZK+W ZYeSO8384EkOAAoMQ16vyoB9yItcdvTMrfqs6xwiAz5Fw5Ml6IuqkQSuD/uyq3t+ UaWN914A17MOpEijpx7qZaLYGvlH4JscqIVUYzGdplHkMRsmil9AHc22lHJgLlHD /NnNDQTaty+/LEfsBbudknY/XP7SFFYdBUSwtjwmE9YKU8J1x1C8xMtY9+ZBNw80 qRZ59oLzdpBdvkkkPTzVvRzz75cdTpcVHZ8STgIRSjJbKEUYT/4DTxcXkKpc6cSx Cu7kdEvpceeSTL1j9xIRJ2sd7C0WKowv -----END CERTIFICATE-----Generated at Mon Aug 11 01:47:31 2025 by rpki-client