$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft File: MsAhMRti_kUAvI5OD0hSxkvF2ss.mft (raw, json) Hash identifier: CJ/Ml4elSNdEXfv2L+AdsDIY8YWTzvAXQa4A4KPKUgk= Subject key identifier: 2C:D7:C8:B3:95:49:3D:A5:E0:AB:57:3B:76:38:0F:35:76:78:7F:CA Authority key identifier: 32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB Certificate issuer: /CN=A915D8F3/serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft Manifest number: 93 Signing time: Mon 11 Aug 2025 05:13:09 +0000 Manifest this update: Mon 11 Aug 2025 05:13:08 +0000 Manifest next update: Mon 18 Aug 2025 05:13:08 +0000 Files and hashes: 1: MsAhMRti_kUAvI5OD0hSxkvF2ss.crl (hash: XOyDEevZWi80LYIgHVYiHr+6o7sxLtREhpjWU/oHcRM=) 2: 37DEC83C9DEC11EFB004850FC4F9AE02.roa (hash: AzFl0RFcs8OJznRZfBYgmDybc5F7V12CS5camGFMWxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:13:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3, serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Validity Not Before: Aug 11 05:13:08 2025 GMT Not After : Aug 18 05:13:08 2025 GMT Subject: CN=68997be5-226c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e5:2f:3d:14:8b:2a:57:01:c3:eb:48:c1:f7: 75:20:27:03:06:8a:56:5c:ed:1e:14:40:b2:d2:7b: 9e:e6:95:cc:6c:30:01:53:be:f9:eb:c9:f9:6c:d1: 3e:49:d0:54:87:22:08:4e:c4:d1:28:53:40:ee:81: 4c:85:b0:b4:3b:ec:97:d4:69:50:c2:79:ab:61:b2: d7:40:30:00:d2:d5:1d:eb:bb:2a:09:66:73:b5:e7: 31:b0:b4:50:28:c4:aa:b1:82:b1:5b:df:72:c9:e0: b6:fe:93:f2:6d:ef:c6:d3:9d:7c:95:64:00:66:1f: 2d:bb:1f:fa:0a:5e:14:c8:20:9c:c7:29:46:c8:ca: 4e:a1:f0:c7:79:50:2c:21:41:8d:62:b8:ae:97:1e: a0:da:26:01:58:68:0b:60:8a:e7:4a:59:c4:fd:08: fc:b5:b3:cf:3b:09:4e:b3:c9:04:43:83:2a:09:ac: 59:18:ff:3c:8f:3c:21:7b:63:83:d2:0f:70:89:c7: 22:d7:9a:47:f9:b2:c1:87:b0:27:5e:ae:b0:27:6d: 66:99:ff:86:25:3e:0c:08:8f:b9:5a:c9:0f:dc:3f: fc:32:62:88:94:f9:f2:c1:a6:d5:46:ec:1c:f0:61: 4b:e4:62:da:2e:15:58:0f:4d:a1:96:6f:94:28:ee: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D7:C8:B3:95:49:3D:A5:E0:AB:57:3B:76:38:0F:35:76:78:7F:CA X509v3 Authority Key Identifier: keyid:32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:fd:e5:de:cd:f8:94:3b:59:16:88:c3:71:87:98:5c:9a:72: 76:54:25:9e:e1:8c:db:c1:e3:3c:91:02:3b:9c:5c:da:73:55: 65:1a:57:91:3c:be:93:b2:ee:73:50:9e:00:ee:64:1f:13:86: d0:fd:3d:75:fd:d1:17:cb:e1:eb:3b:d7:5b:8c:f4:23:50:ef: 4f:81:e5:d2:26:f5:b5:22:c8:05:8f:e8:d6:ce:1f:b9:da:8a: c8:e8:d1:c6:ea:19:73:40:51:e9:d2:f3:27:35:31:24:b4:4e: f1:47:d7:19:53:35:1f:9b:6a:df:0f:ce:c5:f6:93:72:62:85: 73:03:d9:23:d8:9e:15:1c:58:b5:7a:ff:ff:b3:c4:58:fd:3e: a7:b1:16:50:00:d2:b5:1c:7b:b7:8f:c1:05:fe:a8:02:04:9c: f4:6e:1f:57:2c:b3:a2:01:d6:25:15:f8:23:f0:50:e3:db:24: c1:bc:1c:17:7c:d9:8c:08:65:83:ab:0e:0b:ab:6c:db:8e:eb: 93:4f:f0:8f:06:d5:23:cc:b4:ca:4a:80:02:a1:21:0b:7d:41: 09:aa:79:b8:c4:34:7a:90:2c:d3:53:27:66:09:56:10:a9:01: b0:8c:d4:c7:4b:12:dd:b8:8e:7c:39:71:81:c1:f7:cc:b0:d2: 1f:52:a6:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ4RjMxMTAvBgNVBAUTKDMyQzAyMTMxMUI2MkZFNDUwMEJDOEU0RTBGNDg1MkM2 NEJDNURBQ0IwHhcNMjUwODExMDUxMzA4WhcNMjUwODE4MDUxMzA4WjAYMRYwFAYD VQQDEw02ODk5N2JlNS0yMjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApuUvPRSLKlcBw+tIwfd1ICcDBopWXO0eFECy0nue5pXMbDABU77568n5bNE+ SdBUhyIITsTRKFNA7oFMhbC0O+yX1GlQwnmrYbLXQDAA0tUd67sqCWZztecxsLRQ KMSqsYKxW99yyeC2/pPybe/G0518lWQAZh8tux/6Cl4UyCCcxylGyMpOofDHeVAs IUGNYriulx6g2iYBWGgLYIrnSlnE/Qj8tbPPOwlOs8kEQ4MqCaxZGP88jzwhe2OD 0g9wicci15pH+bLBh7AnXq6wJ21mmf+GJT4MCI+5WskP3D/8MmKIlPnywabVRuwc 8GFL5GLaLhVYD02hlm+UKO7vBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzXyLOV ST2l4KtXO3Y4DzV2eH/KMB8GA1UdIwQYMBaAFDLAITEbYv5FALyOTg9IUsZLxdrL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDhGMy9DNTdGMjNBRTlC MDcxMUVGODM3RUEwMTJDNEY5QUUwMi9Nc0FoTVJ0aV9rVUF2STVPRDBoU3hrdkYy c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01zQWhNUnRpX2tVQXZJNU9EMGhTeGt2RjJzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDhGMy9DNTdGMjNBRTlCMDcxMUVGODM3RUEwMTJDNEY5QUUwMi9Nc0FoTVJ0aV9r VUF2STVPRDBoU3hrdkYyc3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCA/eXezfiUO1kWiMNxh5hcmnJ2VCWe4YzbweM8kQI7nFzac1VlGleR PL6Tsu5zUJ4A7mQfE4bQ/T11/dEXy+HrO9dbjPQjUO9PgeXSJvW1IsgFj+jWzh+5 2orI6NHG6hlzQFHp0vMnNTEktE7xR9cZUzUfm2rfD87F9pNyYoVzA9kj2J4VHFi1 ev//s8RY/T6nsRZQANK1HHu3j8EF/qgCBJz0bh9XLLOiAdYlFfgj8FDj2yTBvBwX fNmMCGWDqw4Lq2zbjuuTT/CPBtUjzLTKSoACoSELfUEJqnm4xDR6kCzTUydmCVYQ qQGwjNTHSxLduI58OXGBwffMsNIfUqaK -----END CERTIFICATE-----Generated at Tue Aug 12 22:55:36 2025 by rpki-client