$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft File: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft (raw, json) Hash identifier: 4ymYQypJBq6k2h9QzTs+G2mV2zJuPjO8C5VeK07WHY8= Subject key identifier: 25:D8:3A:AD:35:43:15:25:38:B4:0E:8E:2A:6E:91:13:D3:64:7D:CE Authority key identifier: F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F Certificate issuer: /CN=A9159ECD/serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Certificate serial: 0552 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft Manifest number: 054A Signing time: Fri 08 Aug 2025 23:55:45 +0000 Manifest this update: Fri 08 Aug 2025 23:55:45 +0000 Manifest next update: Fri 15 Aug 2025 23:55:45 +0000 Files and hashes: 1: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl (hash: ngsl8T61y2/Z8GksK2pDNLTHCc2MrCMZq1mGqK3YlPg=) 2: C309F5BA017011ECB98B2F33C4F9AE02.roa (hash: aXSQnMlRqYHjlA+sWyHQ/h8SKDapqi9yLmH+QCm7j5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1362 (0x552) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Validity Not Before: Aug 8 23:55:45 2025 GMT Not After : Aug 15 23:55:45 2025 GMT Subject: CN=68968e81-57e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:71:75:c1:9b:19:4c:de:70:6b:0e:ad:7b:15: 37:ea:29:b1:b1:51:8b:64:e5:3f:a3:12:b1:e3:ce: e2:be:98:37:8e:8b:01:24:65:2c:ed:6d:44:0b:e6: b1:0f:1c:7e:ac:02:4d:82:a0:4a:8e:26:50:ce:6e: 8f:76:88:83:53:e6:81:19:b6:2f:4a:23:32:9e:f6: fc:43:da:94:99:da:8f:ff:a1:b4:d8:6b:38:1e:78: 47:ed:7b:ee:d0:55:ea:ba:22:f0:7c:7b:84:3f:01: 8c:e8:15:74:87:54:78:df:04:ab:a6:56:b6:ea:33: e7:b2:a3:2c:5b:11:37:a8:4b:35:1f:12:b8:1d:f8: ec:55:e6:f8:a0:8d:c3:17:f3:8f:1b:8a:93:2d:da: 91:38:b6:e8:c8:61:ca:15:4e:b4:4f:db:e8:6d:fe: 8b:04:06:46:17:53:94:dc:ee:9d:e5:d1:ce:9e:d3: 39:69:c2:00:e6:fd:64:7e:1f:98:71:ea:1b:a4:f5: 96:a6:46:33:32:69:37:30:cc:b9:bc:78:3d:62:1e: fd:ac:08:96:5f:2f:39:26:bc:8e:00:32:c5:dc:bb: d3:a9:4f:cd:57:f0:47:60:67:89:e2:92:b5:41:27: 16:38:a5:1b:fb:37:89:e6:89:34:9f:02:7a:9b:62: c7:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D8:3A:AD:35:43:15:25:38:B4:0E:8E:2A:6E:91:13:D3:64:7D:CE X509v3 Authority Key Identifier: keyid:F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:47:64:b5:16:0c:0c:75:f7:49:8b:97:0e:fb:46:fd:d6:18: 45:fa:c1:53:31:a8:5c:65:99:0c:00:65:2f:5a:e1:08:7e:52: 3a:48:e4:fa:af:21:bf:13:dc:29:78:4f:b6:e1:d5:a0:56:1e: d1:ac:0d:c8:43:44:b1:dc:ab:cc:64:ea:cb:8a:b9:cf:d5:d0: 1a:c7:44:45:e0:a8:93:9e:c9:ea:23:23:68:94:dc:76:e2:cf: 74:3b:6b:bd:f4:1f:27:3e:a3:14:8f:ed:b3:ef:c2:fe:68:3d: 0a:3a:f6:7d:12:dc:07:e2:3d:de:f6:c1:a4:f5:52:53:60:c2: a8:d8:68:b5:30:96:6a:0a:ad:0b:e1:34:0e:06:5a:fe:69:bd: f0:9a:de:3d:ac:4b:8d:30:b3:3d:c3:38:c6:72:c3:ae:56:43: 8a:b7:ef:f5:4a:35:c3:1f:02:cd:a0:a3:3d:31:c5:71:0d:5f: 10:f5:86:6e:4e:74:7a:72:ca:5e:df:e0:9f:2a:c9:49:38:88: 22:4d:41:f1:c5:41:54:04:82:6d:01:75:14:e6:5d:4e:7e:98: a3:23:09:36:95:b7:e8:0a:ee:c3:ce:b3:1f:aa:c1:a7:7c:7d: cb:26:dc:8e:88:d2:d9:50:98:19:b3:34:c6:27:c2:ea:27:6f: a5:6c:72:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEYxQkE5NDNDMzAzNkM2OUI0NEE3NTk3MEE0NEQ5Mjkw NTY4OUE5MEYwHhcNMjUwODA4MjM1NTQ1WhcNMjUwODE1MjM1NTQ1WjAYMRYwFAYD VQQDEw02ODk2OGU4MS01N2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73F1wZsZTN5waw6texU36imxsVGLZOU/oxKx487ivpg3josBJGUs7W1EC+ax Dxx+rAJNgqBKjiZQzm6PdoiDU+aBGbYvSiMynvb8Q9qUmdqP/6G02Gs4HnhH7Xvu 0FXquiLwfHuEPwGM6BV0h1R43wSrpla26jPnsqMsWxE3qEs1HxK4HfjsVeb4oI3D F/OPG4qTLdqROLboyGHKFU60T9vobf6LBAZGF1OU3O6d5dHOntM5acIA5v1kfh+Y ceobpPWWpkYzMmk3MMy5vHg9Yh79rAiWXy85JryOADLF3LvTqU/NV/BHYGeJ4pK1 QScWOKUb+zeJ5ok0nwJ6m2LHEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCXYOq01 QxUlOLQOjipukRPTZH3OMB8GA1UdIwQYMBaAFPG6lDwwNsabRKdZcKRNkpBWiakP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC83QUM1MTU0QzAx NkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhwdEVwMWx3cEUyU2tGYUpx UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhicVVQREEyeHB0RXAxbHdwRTJTa0ZhSnFROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC83QUM1MTU0QzAxNkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhw dEVwMWx3cEUyU2tGYUpxUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCR2S1FgwMdfdJi5cO+0b91hhF+sFTMahcZZkMAGUvWuEIflI6SOT6 ryG/E9wpeE+24dWgVh7RrA3IQ0Sx3KvMZOrLirnP1dAax0RF4KiTnsnqIyNolNx2 4s90O2u99B8nPqMUj+2z78L+aD0KOvZ9EtwH4j3e9sGk9VJTYMKo2Gi1MJZqCq0L 4TQOBlr+ab3wmt49rEuNMLM9wzjGcsOuVkOKt+/1SjXDHwLNoKM9McVxDV8Q9YZu TnR6cspe3+CfKslJOIgiTUHxxUFUBIJtAXUU5l1OfpijIwk2lbfoCu7DzrMfqsGn fH3LJtyOiNLZUJgZszTGJ8LqJ2+lbHKC -----END CERTIFICATE-----Generated at Sun Aug 10 18:15:48 2025 by rpki-client