$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft File: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft (raw, json) Hash identifier: ina7Dx9n+mYQSmzHwSnNv6WHuQQxBPJ6wjHo5gDien8= Subject key identifier: A5:57:EC:19:48:77:AB:EA:BB:62:E9:D9:9D:D2:FF:E7:FC:D0:D2:84 Authority key identifier: F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F Certificate issuer: /CN=A9159ECD/serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Certificate serial: 0536 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft Manifest number: 052E Signing time: Sat 14 Jun 2025 23:17:24 +0000 Manifest this update: Sat 14 Jun 2025 23:17:23 +0000 Manifest next update: Sat 21 Jun 2025 23:17:23 +0000 Files and hashes: 1: 8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl (hash: fyU2snGEuKDXrvb0Myrc6eZlaNst5vI2YLv8JAdfBXI=) 2: C309F5BA017011ECB98B2F33C4F9AE02.roa (hash: aXSQnMlRqYHjlA+sWyHQ/h8SKDapqi9yLmH+QCm7j5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:17:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1334 (0x536) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=F1BA943C3036C69B44A75970A44D92905689A90F Validity Not Before: Jun 14 23:17:23 2025 GMT Not After : Jun 21 23:17:23 2025 GMT Subject: CN=684e0303-b0b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:df:36:b5:c1:db:5e:bb:7a:05:5b:71:a5:b9: 5e:cd:c9:0c:bf:7a:f1:7d:57:6e:b2:77:b7:4b:39: 0d:9c:01:b2:bf:d4:f8:b5:55:7c:2b:f0:1a:c4:4d: d4:84:3f:65:c1:9b:ca:92:5e:13:ce:ed:10:9e:55: 5c:9a:a7:d3:f1:0c:bd:42:c3:31:48:a7:f7:b4:ce: 1c:ad:ea:fc:55:88:f1:f6:69:8c:d8:2b:9d:4f:1a: 09:14:c5:8c:1d:7d:99:38:20:7f:98:33:ad:4d:32: d5:4b:7c:89:59:fb:7e:20:e0:18:20:65:37:cb:e8: 60:a5:87:f9:3a:a5:b3:6e:eb:d0:76:a5:d5:1e:82: e9:16:57:f9:97:9a:82:00:d8:64:e8:c4:2a:a0:5e: 37:10:62:d3:4f:54:58:2e:d7:50:19:fe:e1:05:f7: 37:fa:51:c1:57:d9:9e:65:90:76:9e:f7:5f:39:67: 4d:3e:af:fd:36:bc:16:7f:c7:77:48:55:f0:3b:5e: aa:9c:0e:9c:20:f4:f2:6a:ea:1f:28:00:f0:cb:b4: 36:a9:a5:47:8f:35:43:55:dd:b0:1e:c3:bd:a4:81: bc:23:3d:f6:d5:0a:d0:e8:58:03:76:2a:04:e5:ed: 38:6d:ae:77:0a:db:e5:d7:ef:8c:5b:38:92:11:92: 3a:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:57:EC:19:48:77:AB:EA:BB:62:E9:D9:9D:D2:FF:E7:FC:D0:D2:84 X509v3 Authority Key Identifier: keyid:F1:BA:94:3C:30:36:C6:9B:44:A7:59:70:A4:4D:92:90:56:89:A9:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bqUPDA2xptEp1lwpE2SkFaJqQ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/7AC5154C016A11ECB2B00C37C4F9AE02/8bqUPDA2xptEp1lwpE2SkFaJqQ8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:8b:19:0e:17:92:5c:cb:29:cb:86:3d:5e:85:48:f3:4c:81: 83:b7:5b:36:b5:55:28:47:b2:23:e5:f1:b7:37:4b:83:15:62: 55:11:2b:b3:6c:dd:ab:f6:11:1d:2e:54:e9:7c:de:e1:c4:84: d4:bf:29:23:e8:b1:b4:5d:2b:80:76:fc:44:69:82:9d:66:c8: 40:77:f3:c7:37:28:ed:e4:28:77:8a:b7:7c:76:f9:8a:f2:9a: 87:5a:89:7a:8f:e7:32:5c:1e:01:eb:2b:2f:ae:7b:7e:65:ee: 17:74:ed:ac:c4:ce:46:4d:15:b7:8e:e6:05:c5:fc:62:f7:ba: 0f:db:d4:c1:3b:3a:60:80:a6:e4:bb:fe:b7:97:e0:98:18:90: 6a:d8:18:8f:7a:5d:f6:7d:63:c9:d6:d7:d9:97:2d:fa:27:16: 6f:17:a5:5f:ef:f2:02:81:25:23:c0:6f:d4:36:2a:50:14:da: 4e:2c:89:61:db:4c:51:9b:4b:c8:03:18:b2:cc:a5:6a:84:2d: d7:d1:90:26:cf:42:0f:23:54:00:1b:d0:00:ed:5e:28:1a:e9: eb:87:6f:9b:0a:53:71:0d:72:68:b3:98:e4:fb:0e:7d:73:5e: 67:78:98:6f:49:28:5e:1d:ff:a7:14:41:ec:6c:3a:ea:fa:51: 5b:17:f1:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEYxQkE5NDNDMzAzNkM2OUI0NEE3NTk3MEE0NEQ5Mjkw NTY4OUE5MEYwHhcNMjUwNjE0MjMxNzIzWhcNMjUwNjIxMjMxNzIzWjAYMRYwFAYD VQQDEw02ODRlMDMwMy1iMGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN82tcHbXrt6BVtxpblezckMv3rxfVdusne3SzkNnAGyv9T4tVV8K/AaxE3U hD9lwZvKkl4Tzu0QnlVcmqfT8Qy9QsMxSKf3tM4crer8VYjx9mmM2CudTxoJFMWM HX2ZOCB/mDOtTTLVS3yJWft+IOAYIGU3y+hgpYf5OqWzbuvQdqXVHoLpFlf5l5qC ANhk6MQqoF43EGLTT1RYLtdQGf7hBfc3+lHBV9meZZB2nvdfOWdNPq/9NrwWf8d3 SFXwO16qnA6cIPTyauofKADwy7Q2qaVHjzVDVd2wHsO9pIG8Iz321QrQ6FgDdioE 5e04ba53Ctvl1++MWziSEZI6YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVX7BlI d6vqu2Lp2Z3S/+f80NKEMB8GA1UdIwQYMBaAFPG6lDwwNsabRKdZcKRNkpBWiakP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC83QUM1MTU0QzAx NkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhwdEVwMWx3cEUyU2tGYUpx UTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhicVVQREEyeHB0RXAxbHdwRTJTa0ZhSnFROC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OUVDRC83QUM1MTU0QzAxNkExMUVDQjJCMDBDMzdDNEY5QUUwMi84YnFVUERBMnhw dEVwMWx3cEUyU2tGYUpxUTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnixkOF5JcyynLhj1ehUjzTIGDt1s2tVUoR7Ij5fG3N0uDFWJVESuz bN2r9hEdLlTpfN7hxITUvykj6LG0XSuAdvxEaYKdZshAd/PHNyjt5Ch3ird8dvmK 8pqHWol6j+cyXB4B6ysvrnt+Ze4XdO2sxM5GTRW3juYFxfxi97oP29TBOzpggKbk u/63l+CYGJBq2BiPel32fWPJ1tfZly36JxZvF6Vf7/ICgSUjwG/UNipQFNpOLIlh 20xRm0vIAxiyzKVqhC3X0ZAmz0IPI1QAG9AA7V4oGunrh2+bClNxDXJos5jk+w59 c15neJhvSSheHf+nFEHsbDrq+lFbF/Ei -----END CERTIFICATE-----Generated at Sun Jun 15 09:45:14 2025 by rpki-client