$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: PQZBKG+cb/tMFwV6+H8w62I/Es0m9iYqRicJd5gwzT0= Subject key identifier: B1:E9:50:0F:C0:1E:F5:A8:DE:B8:1B:6D:0E:D8:0B:D2:CE:79:7A:EF Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 01C0 Signing time: Mon 11 Aug 2025 03:06:56 +0000 Manifest this update: Mon 11 Aug 2025 03:06:56 +0000 Manifest next update: Mon 18 Aug 2025 03:06:56 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: cc70Wzm9RiYFew63XvKFXhcunRb1nMW/4gXG2EuEdms=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: wjMufEaDH/y4s6T5wRstNmQqRorcPZgCttuLv7sLSbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:06:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Aug 11 03:06:56 2025 GMT Not After : Aug 18 03:06:56 2025 GMT Subject: CN=68995e50-4300 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:31:0b:4e:e9:f3:cc:74:e8:c8:9f:51:6f:bd: 89:17:63:c4:b9:73:7b:4f:5d:a3:98:c0:4d:bc:7f: 1c:d5:43:84:0f:2b:48:55:6c:7e:cb:f4:ed:70:bf: 7a:e1:92:4d:bb:9a:7a:62:11:f9:ee:4f:3a:0f:dd: 32:ee:60:3d:e1:8f:5b:55:46:ff:c0:fb:fe:d2:f6: 25:0f:73:6c:d2:0b:d3:c6:3c:47:a2:0c:07:6f:fa: c8:37:47:22:d9:8d:ba:2f:8e:37:46:01:a8:77:6a: 4a:66:1c:fe:a5:3d:d1:7a:b1:b7:d0:01:1c:d7:c4: 9a:39:b7:4f:d3:68:bc:d9:db:7d:0b:a9:07:3f:bd: e4:a6:26:27:47:fc:4d:9f:31:b9:78:bc:01:c4:cc: 48:01:a8:6e:f6:79:91:87:8c:af:48:b6:2c:5a:c1: 82:78:39:7a:1f:eb:c3:1f:c6:42:b8:3a:cb:e9:fe: a3:3c:b9:b5:cc:c5:70:b8:3a:b9:71:3c:94:98:57: 56:9e:5e:e9:99:b6:28:11:5c:98:01:61:c7:5c:06: e5:12:f7:37:73:40:61:8e:47:cb:18:e6:16:37:2b: a8:bf:fc:13:a0:6a:fe:d6:7a:db:98:0e:c2:6f:e6: 74:af:00:73:df:04:68:ab:8c:ba:c5:33:51:04:21: ea:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E9:50:0F:C0:1E:F5:A8:DE:B8:1B:6D:0E:D8:0B:D2:CE:79:7A:EF X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:45:aa:2e:7d:56:38:6c:91:ef:c7:35:b0:a6:4d:2f:72:c0: fd:79:bc:04:6b:88:e4:48:c7:51:3b:71:12:30:94:62:48:2f: 70:f7:93:d4:ed:a3:4a:5b:fa:3a:44:ee:23:2d:2a:40:f1:2f: 91:f1:9f:41:9b:38:38:10:a3:0f:38:5e:73:b9:9c:81:69:99: 32:cf:cc:d5:bf:ac:9f:4f:14:55:71:27:25:ab:cc:09:a5:a8: db:8d:71:49:47:30:8c:6e:80:d8:a2:66:5b:e5:68:69:a9:0a: 55:dd:39:e4:36:8c:1d:44:76:c6:91:6a:32:b2:05:70:c7:da: 0e:95:50:e1:33:be:da:81:03:5d:5e:91:ee:0f:84:7b:53:83: 70:b9:c4:3b:d2:e2:f9:b3:99:63:0c:ec:07:fa:5f:5c:23:f3: 75:79:2a:e9:fe:7b:44:c1:aa:2e:e1:53:ca:c3:72:4d:97:41: 86:23:1e:3a:13:92:67:95:b7:1f:4d:57:41:06:76:59:c4:cf: c7:bb:8b:69:10:04:b2:0e:d8:62:f2:14:1c:20:1f:37:5e:0a: ff:79:27:1f:34:33:a2:8a:0f:01:19:19:97:87:a7:1b:78:ad: 67:4a:20:1c:33:a6:c9:53:7c:8f:d3:63:b7:89:5c:fc:bc:1d: e5:b6:1a:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjUwODExMDMwNjU2WhcNMjUwODE4MDMwNjU2WjAYMRYwFAYD VQQDEw02ODk5NWU1MC00MzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzELTunzzHToyJ9Rb72JF2PEuXN7T12jmMBNvH8c1UOEDytIVWx+y/TtcL96 4ZJNu5p6YhH57k86D90y7mA94Y9bVUb/wPv+0vYlD3Ns0gvTxjxHogwHb/rIN0ci 2Y26L443RgGod2pKZhz+pT3RerG30AEc18SaObdP02i82dt9C6kHP73kpiYnR/xN nzG5eLwBxMxIAahu9nmRh4yvSLYsWsGCeDl6H+vDH8ZCuDrL6f6jPLm1zMVwuDq5 cTyUmFdWnl7pmbYoEVyYAWHHXAblEvc3c0BhjkfLGOYWNyuov/wToGr+1nrbmA7C b+Z0rwBz3wRoq4y6xTNRBCHqmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLHpUA/A HvWo3rgbbQ7YC9LOeXrvMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLRaoufVY4bJHvxzWwpk0vcsD9ebwEa4jkSMdRO3ESMJRiSC9w95PU 7aNKW/o6RO4jLSpA8S+R8Z9Bmzg4EKMPOF5zuZyBaZkyz8zVv6yfTxRVcSclq8wJ pajbjXFJRzCMboDYomZb5WhpqQpV3TnkNowdRHbGkWoysgVwx9oOlVDhM77agQNd XpHuD4R7U4NwucQ70uL5s5ljDOwH+l9cI/N1eSrp/ntEwaou4VPKw3JNl0GGIx46 E5JnlbcfTVdBBnZZxM/Hu4tpEASyDthi8hQcIB83Xgr/eScfNDOiig8BGRmXh6cb eK1nSiAcM6bJU3yP02O3iVz8vB3lthp2 -----END CERTIFICATE-----Generated at Tue Aug 12 13:48:43 2025 by rpki-client