$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: KO5kjHpX8hck4ZxM4ZYLU/vfiyxjB+2go6vbAAenjMQ= Subject key identifier: CE:36:C5:74:AF:CF:4C:82:7B:B7:C4:62:88:26:3D:D3:1E:70:F2:D7 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 0602 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 05F8 Signing time: Fri 08 Aug 2025 23:20:25 +0000 Manifest this update: Fri 08 Aug 2025 23:20:24 +0000 Manifest next update: Fri 15 Aug 2025 23:20:24 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: a9xuBSQOf+yJuRU0G9tg/UsZgztB35SkjGGi3ekW/zc=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1538 (0x602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Aug 8 23:20:24 2025 GMT Not After : Aug 15 23:20:24 2025 GMT Subject: CN=68968639-7531 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:12:e6:80:ec:94:74:24:a2:72:50:fd:b3:99: 37:b1:33:3e:2e:4e:2a:15:9c:4b:50:f5:b3:0b:99: e6:d3:56:ca:40:30:6c:9a:a1:ca:87:69:c5:3b:4f: bf:a8:e2:bb:62:cc:4d:c3:c4:10:8f:9a:96:42:17: 92:00:23:6f:30:72:54:19:95:59:8a:cf:6b:0f:03: dc:5a:55:4d:e8:ec:8c:ca:2b:15:7c:8c:da:57:77: 8f:3a:ce:a5:b6:18:82:86:2d:35:c5:de:6a:66:4c: 5f:c5:d8:98:76:c4:6b:fb:33:40:28:c2:0c:44:c2: 28:d7:67:7f:12:e8:39:93:30:ce:4e:30:49:53:cf: 8f:25:b5:38:39:f8:a6:12:79:76:90:26:e3:9f:31: 0a:ea:60:c6:c2:6c:92:cc:78:7e:58:b9:b1:ed:cd: be:c3:7a:50:7a:a5:bc:53:ef:38:14:25:02:8a:de: da:34:4f:95:78:2d:a1:e5:d1:47:fd:12:d8:b0:72: a5:06:c3:5b:71:a4:7a:68:df:c2:2a:d4:aa:13:ef: b6:ab:b1:c5:87:5e:f9:db:0f:29:19:14:7b:af:a2: df:f0:18:b9:8e:1f:e8:b3:a3:c6:99:8c:f0:5b:b6: d5:8b:17:f4:c4:92:6b:cb:94:8e:5e:d8:f2:68:0f: 61:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:36:C5:74:AF:CF:4C:82:7B:B7:C4:62:88:26:3D:D3:1E:70:F2:D7 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:42:b1:12:82:87:5d:ff:1b:39:8f:41:c3:fd:75:01:43:90: 2e:c7:9b:26:01:e8:f0:4f:be:b2:01:0f:4e:a5:01:9e:42:61: c2:07:79:32:f8:8a:25:bf:e7:43:71:34:1c:b8:ef:db:f7:92: e4:fc:a8:c3:83:ee:d4:c8:4d:48:d4:b8:f2:a4:28:2d:7f:f0: be:af:38:7c:d2:b2:dd:79:4b:28:8e:57:76:ab:e9:99:e1:9e: c7:24:f8:b1:b4:53:27:0f:a7:f9:c8:2a:7e:32:c1:94:59:fd: ac:a6:5f:76:46:f4:ba:09:92:70:1b:39:62:aa:87:dc:cd:03: 61:3b:a1:47:29:72:3d:95:29:87:55:ae:c4:74:3b:4f:71:94: 58:e4:4f:cb:33:c3:a3:ef:d4:cd:e1:ce:a8:3c:b1:64:85:ad: 7a:d8:ce:c2:0c:64:a5:ae:73:d9:27:6b:57:c5:4f:d9:09:fd: 90:a9:1c:ae:e8:2b:75:5a:b8:ed:3a:8d:59:53:f7:be:72:77: f9:af:a6:ed:1f:a0:da:17:cf:dd:1d:ee:24:2c:af:05:02:6e: f9:40:e5:ca:7e:7c:10:7c:1d:e7:88:6e:62:ab:cf:8e:e6:d2: cb:89:71:99:ec:2b:be:77:d8:79:f5:60:5b:80:2e:81:d7:65: 89:99:89:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwODA4MjMyMDI0WhcNMjUwODE1MjMyMDI0WjAYMRYwFAYD VQQDEw02ODk2ODYzOS03NTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyxLmgOyUdCSiclD9s5k3sTM+Lk4qFZxLUPWzC5nm01bKQDBsmqHKh2nFO0+/ qOK7YsxNw8QQj5qWQheSACNvMHJUGZVZis9rDwPcWlVN6OyMyisVfIzaV3ePOs6l thiChi01xd5qZkxfxdiYdsRr+zNAKMIMRMIo12d/Eug5kzDOTjBJU8+PJbU4Ofim Enl2kCbjnzEK6mDGwmySzHh+WLmx7c2+w3pQeqW8U+84FCUCit7aNE+VeC2h5dFH /RLYsHKlBsNbcaR6aN/CKtSqE++2q7HFh1752w8pGRR7r6Lf8Bi5jh/os6PGmYzw W7bVixf0xJJry5SOXtjyaA9hRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM42xXSv z0yCe7fEYogmPdMecPLXMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEQrESgodd/xs5j0HD/XUBQ5Aux5smAejwT76yAQ9OpQGeQmHCB3ky +Iolv+dDcTQcuO/b95Lk/KjDg+7UyE1I1LjypCgtf/C+rzh80rLdeUsojld2q+mZ 4Z7HJPixtFMnD6f5yCp+MsGUWf2spl92RvS6CZJwGzliqofczQNhO6FHKXI9lSmH Va7EdDtPcZRY5E/LM8Oj79TN4c6oPLFkha162M7CDGSlrnPZJ2tXxU/ZCf2QqRyu 6Ct1WrjtOo1ZU/e+cnf5r6btH6DaF8/dHe4kLK8FAm75QOXKfnwQfB3niG5iq8+O 5tLLiXGZ7Cu+d9h59WBbgC6B12WJmYlW -----END CERTIFICATE-----Generated at Sun Aug 10 18:51:22 2025 by rpki-client