$ rpki-client -vvf rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft File: e0Coz49PGgbDbiA08Yo4v5jKWxg.mft (raw, json) Hash identifier: 9mcMQOwa3i8f9lmcBtnxMp0go+IM0ZVCrd8LkDUmyuM= Subject key identifier: 0E:E8:61:90:DD:5E:88:0C:3B:33:E1:85:C5:2F:73:7C:9F:F4:CC:88 Authority key identifier: 7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 Certificate issuer: /CN=A9166123/serialNumber=7B40A8CF8F4F1A06C36E2034F18A38BF98CA5B18 Certificate serial: 01AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft Manifest number: 01A7 Signing time: Sat 09 Aug 2025 03:38:34 +0000 Manifest this update: Sat 09 Aug 2025 03:38:33 +0000 Manifest next update: Sat 16 Aug 2025 03:38:33 +0000 Files and hashes: 1: e0Coz49PGgbDbiA08Yo4v5jKWxg.crl (hash: TsRRfv+b1+x7gTQ8dUrl3AQ8zZv3rjdPGuRgP5CNnxg=) 2: A74C3132F49211ED8659177BC4F9AE02.roa (hash: 306udLdXsDXkERPewXDbNH98O47h8mfNTv4RCgj1cHQ=) 3: 2F9915D8718D11EE97E3E022C4F9AE02.roa (hash: coH1x8KY/cq3OGm3WBXbeivefI4OPLTpBCpIkFV1i7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166123, serialNumber=7B40A8CF8F4F1A06C36E2034F18A38BF98CA5B18 Validity Not Before: Aug 9 03:38:33 2025 GMT Not After : Aug 16 03:38:33 2025 GMT Subject: CN=6896c2ba-ca31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ea:da:e9:7e:96:0a:26:04:d6:af:82:bf:62: fe:03:ce:47:45:38:7c:2e:ca:9f:9f:d2:d2:44:e3: de:a7:50:84:78:ce:46:78:96:dd:7c:88:67:17:6d: 8a:fd:fb:48:21:22:77:3c:4a:22:ca:f2:85:c4:82: 10:d7:b0:d8:30:34:32:61:4f:f8:ea:4a:5f:aa:b6: 8c:60:9b:9b:3a:9c:1b:93:12:1d:03:26:cd:d4:db: 37:ec:47:bc:15:1c:54:72:99:11:c0:24:27:31:ae: 8e:ff:f2:ef:50:fb:a9:00:32:9a:00:3b:d2:8f:34: cf:fd:59:13:c4:44:f7:cf:d8:03:c3:23:ab:5a:03: e9:d2:a0:7c:69:e1:b7:b3:a7:4b:73:65:7f:ca:0a: 5f:a2:f9:7b:e2:90:d1:63:fc:4f:9a:0c:6f:67:e9: 3b:f4:e4:5d:48:86:0c:2d:02:73:b7:b4:97:e7:f3: 05:34:4f:8e:74:03:9b:1e:2e:37:bb:f1:8d:43:37: fe:6b:81:b6:ae:58:aa:7d:b1:ee:1c:bd:bf:70:49: f8:24:d1:00:b7:67:fa:68:c7:34:b9:11:8c:8f:c4: d0:e6:d4:32:6a:99:78:34:4e:9b:3a:bf:35:33:cf: 86:f1:62:66:6e:61:aa:33:03:f6:3c:21:71:e1:17: d4:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E8:61:90:DD:5E:88:0C:3B:33:E1:85:C5:2F:73:7C:9F:F4:CC:88 X509v3 Authority Key Identifier: keyid:7B:40:A8:CF:8F:4F:1A:06:C3:6E:20:34:F1:8A:38:BF:98:CA:5B:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e0Coz49PGgbDbiA08Yo4v5jKWxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166123/1B00EAE8F48C11EDA8895453C4F9AE02/e0Coz49PGgbDbiA08Yo4v5jKWxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:20:97:b8:9c:6c:11:50:b6:63:c4:50:db:20:5b:72:5b:5a: 69:84:1f:b5:cd:58:12:98:b0:d3:75:ab:10:43:a9:ee:b5:ee: 09:4f:a7:0e:97:79:28:55:5d:84:d1:cb:98:10:05:96:0b:06: ac:69:98:62:5e:14:75:b8:b5:ef:cc:f8:e5:f3:a6:66:c0:30: f0:d7:67:74:f0:e3:35:35:c8:46:37:7c:e4:55:18:46:9c:17: 3a:db:d0:93:9f:b1:ca:37:7d:d2:ae:f5:73:f3:80:d4:47:4c: 18:3e:79:ba:df:87:35:03:d9:99:73:51:bf:3a:a9:0f:c0:b6: 79:03:46:c1:ad:0f:fb:b6:c3:47:7e:38:97:56:92:a1:ce:46: 15:12:88:a6:d7:2c:be:67:96:f7:e1:a2:2a:db:0b:ed:b8:89: 41:71:a5:bf:95:7f:f1:e7:ba:3a:92:a4:73:f6:47:cf:09:2c: 54:1d:f7:f4:a2:5e:59:76:41:62:df:e4:c8:e7:bc:f7:a2:90: db:02:58:d9:90:4c:b8:fb:88:f4:92:bc:b9:a0:d6:e4:71:db: 8a:83:6e:c6:33:36:6c:4c:12:84:aa:52:33:4c:db:3c:45:fe: 80:23:22:86:45:64:3f:ee:57:2f:35:13:c6:fa:7c:41:39:3d: 69:08:27:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjYxMjMxMTAvBgNVBAUTKDdCNDBBOENGOEY0RjFBMDZDMzZFMjAzNEYxOEEzOEJG OThDQTVCMTgwHhcNMjUwODA5MDMzODMzWhcNMjUwODE2MDMzODMzWjAYMRYwFAYD VQQDEw02ODk2YzJiYS1jYTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyura6X6WCiYE1q+Cv2L+A85HRTh8Lsqfn9LSROPep1CEeM5GeJbdfIhnF22K /ftIISJ3PEoiyvKFxIIQ17DYMDQyYU/46kpfqraMYJubOpwbkxIdAybN1Ns37Ee8 FRxUcpkRwCQnMa6O//LvUPupADKaADvSjzTP/VkTxET3z9gDwyOrWgPp0qB8aeG3 s6dLc2V/ygpfovl74pDRY/xPmgxvZ+k79ORdSIYMLQJzt7SX5/MFNE+OdAObHi43 u/GNQzf+a4G2rliqfbHuHL2/cEn4JNEAt2f6aMc0uRGMj8TQ5tQyapl4NE6bOr81 M8+G8WJmbmGqMwP2PCFx4RfUPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7oYZDd XogMOzPhhcUvc3yf9MyIMB8GA1UdIwQYMBaAFHtAqM+PTxoGw24gNPGKOL+YylsY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjEyMy8xQjAwRUFFOEY0 OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9lMENvejQ5UEdnYkRiaUEwOFlvNHY1aktX eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UwQ296NDlQR2diRGJpQTA4WW80djVqS1d4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NjEyMy8xQjAwRUFFOEY0OEMxMUVEQTg4OTU0NTNDNEY5QUUwMi9lMENvejQ5UEdn YkRiaUEwOFlvNHY1aktXeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3IJe4nGwRULZjxFDbIFtyW1pphB+1zVgSmLDTdasQQ6nute4JT6cO l3koVV2E0cuYEAWWCwasaZhiXhR1uLXvzPjl86ZmwDDw12d08OM1NchGN3zkVRhG nBc629CTn7HKN33SrvVz84DUR0wYPnm634c1A9mZc1G/OqkPwLZ5A0bBrQ/7tsNH fjiXVpKhzkYVEoim1yy+Z5b34aIq2wvtuIlBcaW/lX/x57o6kqRz9kfPCSxUHff0 ol5ZdkFi3+TI57z3opDbAljZkEy4+4j0kry5oNbkcduKg27GMzZsTBKEqlIzTNs8 Rf6AIyKGRWQ/7lcvNRPG+nxBOT1pCCdd -----END CERTIFICATE-----Generated at Mon Aug 11 01:54:13 2025 by rpki-client