$ rpki-client -vvf rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft File: ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft (raw, json) Hash identifier: ScVkEjycA3UGCefmlhA8QPJbPQ8BqyahMTLm4VC4SeQ= Subject key identifier: 53:64:A9:6A:95:A2:95:7B:6C:B4:FE:90:18:3C:AF:47:24:5B:95:01 Authority key identifier: 72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 Certificate issuer: /CN=A9161477/serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft Manifest number: 57 Signing time: Sat 09 Aug 2025 07:41:41 +0000 Manifest this update: Sat 09 Aug 2025 07:41:40 +0000 Manifest next update: Sat 16 Aug 2025 07:41:40 +0000 Files and hashes: 1: ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl (hash: XXQkvm5PnfubmBEKxjJiHVejlLbCjFCwcSdBIRMr+uo=) 2: CAB73E3AF3FC11EF83B4DD30C4F9AE02.roa (hash: BR0iac6RCibng8iXx5EGv9yUT7uect2xiyJYOcbA9Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161477, serialNumber=7241E8F038B9F252FB61CA41B6A4FC167B775526 Validity Not Before: Aug 9 07:41:40 2025 GMT Not After : Aug 16 07:41:40 2025 GMT Subject: CN=6896fbb5-afea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:76:53:6c:82:4b:ff:55:8a:47:b8:e0:0f:0d: dc:ee:9d:00:5a:99:7f:d1:35:83:b0:96:d7:3a:c2: 20:86:76:dd:53:af:bc:87:62:1d:43:cb:15:0b:33: 97:0d:2e:a1:a5:c3:98:6a:a6:f0:3e:ed:84:9a:1b: 4c:2f:26:45:a3:f0:47:a8:45:a0:91:c8:63:b1:a3: 8e:00:e2:1b:5d:7f:10:52:b8:ee:ad:18:91:ee:77: f6:77:fd:74:bc:fe:46:b2:8f:d6:3c:b0:3b:15:7e: 13:65:e3:d2:e2:f5:bc:07:49:42:ec:c3:d1:c3:e5: 24:11:18:e8:e4:17:db:eb:a8:d4:4d:0a:01:fd:31: cd:37:83:18:21:06:3a:4c:42:f6:09:4a:ed:02:4a: 2b:bd:98:e3:ec:1d:33:fc:54:d6:79:7e:a0:a9:57: e0:8d:78:7d:41:ff:63:75:0d:3f:c1:e8:7f:ba:59: f3:6f:41:90:01:91:73:9c:cb:d1:d6:b1:7b:4e:2e: d3:7f:21:9f:06:0e:12:ce:03:32:0b:b5:ac:1a:06: c7:28:e6:73:52:b8:28:21:4e:ad:6c:a3:e5:3e:83: 6d:7b:9b:1f:26:e8:28:71:e6:d9:e4:97:0c:a9:be: 62:b6:20:c9:2a:5c:d1:1f:3a:8f:f5:30:09:87:eb: ce:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:64:A9:6A:95:A2:95:7B:6C:B4:FE:90:18:3C:AF:47:24:5B:95:01 X509v3 Authority Key Identifier: keyid:72:41:E8:F0:38:B9:F2:52:FB:61:CA:41:B6:A4:FC:16:7B:77:55:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ckHo8Di58lL7YcpBtqT8Fnt3VSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161477/6B7035F8F3FC11EF99D53730C4F9AE02/ckHo8Di58lL7YcpBtqT8Fnt3VSY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:94:d8:97:0e:59:95:43:7e:2a:cd:3f:5b:9a:1c:1b:cf:d3: 40:f5:d7:99:59:66:f6:f5:57:37:5a:15:b9:3f:5d:3e:26:c6: a9:51:ca:59:83:f2:87:7d:cb:39:b8:73:7c:0c:4d:68:5d:3a: 84:3b:74:53:a7:2f:10:f4:51:4d:d8:bf:da:23:ab:e6:64:34: d7:b7:a0:13:88:db:79:cd:d4:d8:83:fc:9a:e6:26:af:10:91: a4:09:9e:ca:f5:74:4a:fd:7b:6e:30:3c:82:1d:ba:ac:f2:d5: 4a:96:34:be:e9:8d:49:12:dd:74:52:81:88:dd:73:38:27:72: 78:b5:14:1f:75:f8:4b:5d:d6:44:e1:5b:b2:55:01:35:97:64: 41:d1:8d:d7:b9:92:2b:08:cd:18:27:26:1d:32:6f:bb:34:ad: cf:6e:a0:18:40:ac:04:6c:20:3a:7a:c3:68:65:37:61:67:02: f3:9a:1f:aa:47:23:db:ad:a9:5a:01:2d:91:dd:ef:b1:32:04: 08:b8:1c:5f:c3:7d:52:f1:c9:ba:56:0e:16:a5:40:8a:da:5a: 53:62:00:32:f8:ef:64:39:3b:b8:54:ab:bb:47:ba:94:2a:c5: ee:b1:ca:45:9b:57:80:c8:aa:fc:22:c6:9e:59:20:b4:eb:aa: 87:00:49:bb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MTQ3NzExMC8GA1UEBRMoNzI0MUU4RjAzOEI5RjI1MkZCNjFDQTQxQjZBNEZDMTY3 Qjc3NTUyNjAeFw0yNTA4MDkwNzQxNDBaFw0yNTA4MTYwNzQxNDBaMBgxFjAUBgNV BAMTDTY4OTZmYmI1LWFmZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEdlNsgkv/VYpHuOAPDdzunQBamX/RNYOwltc6wiCGdt1Tr7yHYh1DyxULM5cN LqGlw5hqpvA+7YSaG0wvJkWj8EeoRaCRyGOxo44A4htdfxBSuO6tGJHud/Z3/XS8 /kayj9Y8sDsVfhNl49Li9bwHSULsw9HD5SQRGOjkF9vrqNRNCgH9Mc03gxghBjpM QvYJSu0CSiu9mOPsHTP8VNZ5fqCpV+CNeH1B/2N1DT/B6H+6WfNvQZABkXOcy9HW sXtOLtN/IZ8GDhLOAzILtawaBsco5nNSuCghTq1so+U+g217mx8m6Chx5tnklwyp vmK2IMkqXNEfOo/1MAmH686rAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU2SpapWi lXtstP6QGDyvRyRblQEwHwYDVR0jBBgwFoAUckHo8Di58lL7YcpBtqT8Fnt3VSYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYxNDc3LzZCNzAzNUY4RjNG QzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxMN1ljcEJ0cVQ4Rm50M1ZT WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY2tIbzhEaTU4bEw3WWNwQnRxVDhGbnQzVlNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYx NDc3LzZCNzAzNUY4RjNGQzExRUY5OUQ1MzczMEM0RjlBRTAyL2NrSG84RGk1OGxM N1ljcEJ0cVQ4Rm50M1ZTWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFCU2JcOWZVDfirNP1uaHBvP00D115lZZvb1VzdaFbk/XT4mxqlRylmD 8od9yzm4c3wMTWhdOoQ7dFOnLxD0UU3Yv9ojq+ZkNNe3oBOI23nN1NiD/JrmJq8Q kaQJnsr1dEr9e24wPIIduqzy1UqWNL7pjUkS3XRSgYjdczgncni1FB91+Etd1kTh W7JVATWXZEHRjde5kisIzRgnJh0yb7s0rc9uoBhArARsIDp6w2hlN2FnAvOaH6pH I9utqVoBLZHd77EyBAi4HF/DfVLxybpWDhalQIraWlNiADL472Q5O7hUq7tHupQq xe6xykWbV4DIqvwixp5ZILTrqocASbs= -----END CERTIFICATE-----Generated at Sun Aug 10 10:33:53 2025 by rpki-client