$ rpki-client -vvf rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft File: lDrZvGF3q4wvjoExwUpUZexClU8.mft (raw, json) Hash identifier: kWdIpf85YccNbqqubpOs/ceo9QlpTNJQY82oDXf85CA= Subject key identifier: EB:ED:35:BB:1F:22:0B:9A:49:26:85:21:EB:43:18:DC:A7:18:65:D5 Authority key identifier: 94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F Certificate issuer: /CN=A9158568/serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Certificate serial: 0159 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft Manifest number: 0155 Signing time: Sun 10 Aug 2025 18:45:10 +0000 Manifest this update: Sun 10 Aug 2025 18:45:10 +0000 Manifest next update: Sun 17 Aug 2025 18:45:10 +0000 Files and hashes: 1: lDrZvGF3q4wvjoExwUpUZexClU8.crl (hash: JEMyWp5Fn3Ndspg2tbO8AqyhTJyGG3oEo12Jxjx4UPo=) 2: 203DB338782111EEAFDDBD86C4F9AE02.roa (hash: wX9s/s7jxKKJJyFHtP8kJqChB04GKqVy3xgEjOBVe9Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 345 (0x159) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158568, serialNumber=943AD9BC6177AB8C2F8E8131C14A5465EC42954F Validity Not Before: Aug 10 18:45:10 2025 GMT Not After : Aug 17 18:45:10 2025 GMT Subject: CN=6898e8b6-fa66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9e:ee:eb:ff:32:34:c7:0e:97:d0:5c:53:6d: f7:86:ca:16:86:e4:f1:0d:8b:d9:2a:59:de:71:68: e0:a2:b8:5c:a9:3d:42:7e:2e:59:d0:3b:e8:f1:49: 00:6e:eb:85:45:d7:db:98:40:00:83:f5:ba:51:d8: f2:1c:34:e0:22:be:7f:df:81:d3:12:38:e9:b7:48: c0:f6:66:66:7a:3a:f0:9a:6a:6d:01:9b:fc:cd:28: a3:20:7d:e1:5b:ee:cd:13:18:42:2a:c2:07:f7:51: 73:71:69:03:1b:a2:6d:20:9b:a9:27:a7:57:8b:8e: 49:c5:4a:e3:d3:b3:c9:29:21:9a:16:16:e9:3a:5a: f3:28:26:62:1c:32:59:9e:ec:b8:86:7b:ee:f4:e2: 48:16:d5:3a:27:01:06:7b:55:b0:6a:94:9d:c1:ba: 1e:31:37:f7:03:ff:73:7b:d7:cf:2f:89:12:48:f4: 31:a4:d0:aa:6a:3b:9a:cb:8e:82:11:3e:c5:73:27: f8:de:0e:95:d7:93:8a:6d:2a:d6:3f:0f:7e:2c:f9: 19:e2:20:3c:f2:04:86:fb:02:80:1e:8f:0c:66:2a: cf:1b:15:68:f5:a0:cb:f9:5f:18:67:2d:05:40:33: 09:dd:32:68:a9:7d:31:84:68:41:2b:df:b6:c8:3a: 47:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:ED:35:BB:1F:22:0B:9A:49:26:85:21:EB:43:18:DC:A7:18:65:D5 X509v3 Authority Key Identifier: keyid:94:3A:D9:BC:61:77:AB:8C:2F:8E:81:31:C1:4A:54:65:EC:42:95:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/lDrZvGF3q4wvjoExwUpUZexClU8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158568/3618AB6E72A311EE94557211C4F9AE02/lDrZvGF3q4wvjoExwUpUZexClU8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:a9:02:2b:e8:46:28:41:85:62:88:47:58:f0:45:8a:25:3e: 16:67:21:aa:13:7f:c9:fe:81:ec:dc:96:08:9c:b9:58:1e:db: fd:84:b5:9c:be:c8:80:d7:71:94:28:bc:65:82:f0:5f:b3:82: 32:a1:b8:3e:31:c5:40:69:52:37:2d:9a:5d:67:05:e1:d4:7c: 29:cb:4e:4c:35:2c:17:fa:2d:8b:f3:b5:5b:25:af:be:1d:9f: 48:79:78:a4:f5:fa:27:24:c4:0b:19:87:f7:67:ab:f4:8e:3a: 15:d8:29:08:56:42:c2:a3:7d:ca:26:5c:0d:f2:9d:29:6e:8e: 7e:e3:f3:18:32:13:7f:ae:63:b3:00:cd:00:c5:22:00:0b:7e: 01:77:6e:4c:02:80:65:29:2b:a0:0d:65:03:82:a5:95:ab:8b: a5:2e:7d:43:05:d8:7d:74:9c:3c:42:ec:10:49:69:47:b3:8c: 5c:e7:2a:e1:89:8e:8f:97:da:0c:b4:68:1b:5b:a1:0e:26:d0: 88:09:dd:7c:37:00:9c:e2:50:11:45:d4:df:3e:f8:d8:f0:5b: 38:b5:44:7d:44:b7:fa:fc:33:89:5d:ce:bc:08:2a:7a:ad:05: f9:94:e6:ec:22:45:4c:9a:06:fd:09:d0:7f:f1:d5:f7:a8:52: c7:b2:46:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NjgxMTAvBgNVBAUTKDk0M0FEOUJDNjE3N0FCOEMyRjhFODEzMUMxNEE1NDY1 RUM0Mjk1NEYwHhcNMjUwODEwMTg0NTEwWhcNMjUwODE3MTg0NTEwWjAYMRYwFAYD VQQDEw02ODk4ZThiNi1mYTY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx57u6/8yNMcOl9BcU233hsoWhuTxDYvZKlnecWjgorhcqT1Cfi5Z0Dvo8UkA buuFRdfbmEAAg/W6UdjyHDTgIr5/34HTEjjpt0jA9mZmejrwmmptAZv8zSijIH3h W+7NExhCKsIH91FzcWkDG6JtIJupJ6dXi45JxUrj07PJKSGaFhbpOlrzKCZiHDJZ nuy4hnvu9OJIFtU6JwEGe1WwapSdwboeMTf3A/9ze9fPL4kSSPQxpNCqajuay46C ET7Fcyf43g6V15OKbSrWPw9+LPkZ4iA88gSG+wKAHo8MZirPGxVo9aDL+V8YZy0F QDMJ3TJoqX0xhGhBK9+2yDpH9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOvtNbsf IguaSSaFIetDGNynGGXVMB8GA1UdIwQYMBaAFJQ62bxhd6uML46BMcFKVGXsQpVP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU2OC8zNjE4QUI2RTcy QTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0d3Zqb0V4d1VwVVpleENs VTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2xEclp2R0YzcTR3dmpvRXh3VXBVWmV4Q2xVOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODU2OC8zNjE4QUI2RTcyQTMxMUVFOTQ1NTcyMTFDNEY5QUUwMi9sRHJadkdGM3E0 d3Zqb0V4d1VwVVpleENsVTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyqQIr6EYoQYViiEdY8EWKJT4WZyGqE3/J/oHs3JYInLlYHtv9hLWc vsiA13GUKLxlgvBfs4Iyobg+McVAaVI3LZpdZwXh1Hwpy05MNSwX+i2L87VbJa++ HZ9IeXik9fonJMQLGYf3Z6v0jjoV2CkIVkLCo33KJlwN8p0pbo5+4/MYMhN/rmOz AM0AxSIAC34Bd25MAoBlKSugDWUDgqWVq4ulLn1DBdh9dJw8QuwQSWlHs4xc5yrh iY6Pl9oMtGgbW6EOJtCICd18NwCc4lARRdTfPvjY8Fs4tUR9RLf6/DOJXc68CCp6 rQX5lObsIkVMmgb9CdB/8dX3qFLHskZ6 -----END CERTIFICATE-----Generated at Mon Aug 11 06:00:53 2025 by rpki-client