$ rpki-client -vvf rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft File: cLDwRtLzp0OW6Cx56OPazyYLOe4.mft (raw, json) Hash identifier: tqsEhLAUOyzwkeTup2jQSu6bFA+stu/ACNTppQmkAT8= Subject key identifier: 6C:72:60:DC:E5:46:31:A8:60:63:67:EB:D8:B7:02:22:9A:FA:FA:FD Authority key identifier: 70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE Certificate issuer: /CN=A916B6AA/serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Certificate serial: 24C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft Manifest number: 2480 Signing time: Fri 08 Aug 2025 15:52:07 +0000 Manifest this update: Fri 08 Aug 2025 15:52:06 +0000 Manifest next update: Fri 15 Aug 2025 15:52:06 +0000 Files and hashes: 1: cLDwRtLzp0OW6Cx56OPazyYLOe4.crl (hash: GCg+QKU8qmgYB4JWTokaSqiOwsfkctkVlAWwdlzIqbg=) 2: 83684F548DF411E7A230506DC4F9AE02.roa (hash: 7rwSXJvv/HshNFddgboHnncSidkclYa/NvGMbxx8LFA=) 3: 1A8324E28DF311E7B616ED66C4F9AE02.roa (hash: nq0Uzk8SuEDu3ZbDp3B41hYz4SbibvM9axOdjGoUmDE=) 4: E080F3508DFC11E7A7F08785C4F9AE02.roa (hash: 4MVhPeL89L4iqif2jjx8A1Zl5rTPkTTCl8RIrLHaD+o=) 5: 19C92BC88DF311E7B616ED66C4F9AE02.roa (hash: aaC6AltbMVKLhQjXZ7dpspAxhJD3m7klJ08VK8NpfEI=) 6: B2ED9AEE913311E79B98C45BC4F9AE02.roa (hash: RYNGA3H5ydUqwQnOMshPikkHHM7bQr9sFSWMotIy4S0=) 7: 5C9B073691CD11E7AD932563C4F9AE02.roa (hash: +cU9ydF4cWSQqI/mYS8fYBUIoo4803uhA7oc0s3jgaU=) 8: 027532E6385F11EAA879692AC4F9AE02.roa (hash: CM6RIxM9JHHGhZC10urcCuophC6TNcTlTYu0C+8d5wc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9411 (0x24c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B6AA, serialNumber=70B0F046D2F3A74396E82C79E8E3DACF260B39EE Validity Not Before: Aug 8 15:52:06 2025 GMT Not After : Aug 15 15:52:06 2025 GMT Subject: CN=68961d26-5634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:40:36:44:1a:e3:7e:4c:be:b6:0c:ef:4a:db: da:a2:66:6f:17:57:f3:25:9d:e7:82:10:d8:28:f9: 7a:b6:18:4a:b3:ec:22:58:a5:95:6f:02:7d:66:ed: 5b:d6:b4:0d:87:8f:62:de:83:1c:2f:00:da:7f:94: 10:33:87:2a:c9:90:e8:64:49:32:53:76:b8:1c:46: c5:b6:11:bc:7b:4b:86:3e:22:18:c4:87:5e:09:5d: c9:06:77:00:a8:b5:0a:0f:d0:8d:30:6f:44:5f:11: fb:b2:61:36:54:a0:87:84:7d:c2:19:dc:24:29:46: 83:07:35:db:7c:1e:66:df:1b:e2:d2:44:4c:06:fb: 86:66:70:55:31:ed:44:be:46:ce:06:a5:ad:52:ad: fa:de:00:0d:6a:83:fa:d4:d3:bd:e9:15:aa:38:e3: 33:06:3c:6b:a6:be:c1:dc:18:db:0e:34:b3:d8:92: 1d:71:a6:74:3b:cd:50:ea:8e:9b:36:cb:9c:72:b6: ec:c4:86:b6:39:34:a3:f1:11:97:49:8b:ec:18:93: 95:c8:48:d3:a2:1a:df:25:2a:0c:31:6c:4a:ff:97: 03:65:4d:27:f7:5c:03:0e:ee:75:4c:44:b6:e1:2c: 23:44:8c:29:a0:d4:d0:1c:8e:5b:19:b6:3f:cd:8f: 9e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:72:60:DC:E5:46:31:A8:60:63:67:EB:D8:B7:02:22:9A:FA:FA:FD X509v3 Authority Key Identifier: keyid:70:B0:F0:46:D2:F3:A7:43:96:E8:2C:79:E8:E3:DA:CF:26:0B:39:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cLDwRtLzp0OW6Cx56OPazyYLOe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B6AA/46C7F1724F1611E58D2A3327C4F9AE02/cLDwRtLzp0OW6Cx56OPazyYLOe4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:b8:bf:02:09:52:a8:52:ab:6d:71:30:72:a9:e9:16:46:74: 40:ff:66:22:97:c0:db:b1:38:d5:c3:19:9f:f6:5c:a3:3d:d5: 8e:83:a9:f3:11:af:6b:0c:6b:94:36:59:9e:75:5b:06:7c:25: d5:27:78:f6:cb:19:68:87:0a:e4:e3:a5:55:4f:46:3a:cc:ff: 53:5b:2e:8e:9a:db:f2:20:e8:13:06:3f:f4:4b:af:5f:0f:e6: 3a:ff:ee:6f:23:bb:1e:48:22:39:6d:f0:a2:74:70:65:03:5e: d1:64:16:7c:70:f2:89:d0:29:96:fc:09:98:d8:ff:51:5e:5a: 4d:8c:7b:34:5c:9d:62:d3:87:bd:64:15:1a:eb:f4:51:50:bc: 64:58:0d:fc:92:6c:95:54:7b:ea:95:b1:25:89:e3:cd:2f:e6: 98:fe:c1:dc:df:e4:91:60:71:c3:5e:a3:6e:8e:0e:9f:d4:13: a7:c7:15:a9:68:b8:56:55:7a:e0:0a:75:cb:db:41:51:44:ee: 18:d8:71:38:be:fb:bb:18:40:50:cc:7f:d1:40:80:bd:c4:fa: 7f:b3:ad:d4:7d:77:d2:d1:8a:53:34:51:c8:4f:85:75:b7:16: 4f:3d:d0:1e:c4:61:48:6b:fe:96:f5:22:10:3a:46:ce:74:70: bd:56:65:94 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI2QUExMTAvBgNVBAUTKDcwQjBGMDQ2RDJGM0E3NDM5NkU4MkM3OUU4RTNEQUNG MjYwQjM5RUUwHhcNMjUwODA4MTU1MjA2WhcNMjUwODE1MTU1MjA2WjAYMRYwFAYD VQQDEw02ODk2MWQyNi01NjM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwEA2RBrjfky+tgzvStvaomZvF1fzJZ3nghDYKPl6thhKs+wiWKWVbwJ9Zu1b 1rQNh49i3oMcLwDaf5QQM4cqyZDoZEkyU3a4HEbFthG8e0uGPiIYxIdeCV3JBncA qLUKD9CNMG9EXxH7smE2VKCHhH3CGdwkKUaDBzXbfB5m3xvi0kRMBvuGZnBVMe1E vkbOBqWtUq363gANaoP61NO96RWqOOMzBjxrpr7B3BjbDjSz2JIdcaZ0O81Q6o6b NsuccrbsxIa2OTSj8RGXSYvsGJOVyEjTohrfJSoMMWxK/5cDZU0n91wDDu51TES2 4SwjRIwpoNTQHI5bGbY/zY+eDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGxyYNzl RjGoYGNn69i3AiKa+vr9MB8GA1UdIwQYMBaAFHCw8EbS86dDlugseejj2s8mCznu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjZBQS80NkM3RjE3MjRG MTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAwT1c2Q3g1Nk9QYXp5WUxP ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMRHdSdEx6cDBPVzZDeDU2T1BhenlZTE9lNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjZBQS80NkM3RjE3MjRGMTYxMUU1OEQyQTMzMjdDNEY5QUUwMi9jTER3UnRMenAw T1c2Q3g1Nk9QYXp5WUxPZTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAduL8CCVKoUqttcTByqekWRnRA/2Yil8DbsTjVwxmf9lyjPdWOg6nz Ea9rDGuUNlmedVsGfCXVJ3j2yxlohwrk46VVT0Y6zP9TWy6OmtvyIOgTBj/0S69f D+Y6/+5vI7seSCI5bfCidHBlA17RZBZ8cPKJ0CmW/AmY2P9RXlpNjHs0XJ1i04e9 ZBUa6/RRULxkWA38kmyVVHvqlbEliePNL+aY/sHc3+SRYHHDXqNujg6f1BOnxxWp aLhWVXrgCnXL20FRRO4Y2HE4vvu7GEBQzH/RQIC9xPp/s63UfXfS0YpTNFHIT4V1 txZPPdAexGFIa/6W9SIQOkbOdHC9VmWU -----END CERTIFICATE-----Generated at Sun Aug 10 16:03:17 2025 by rpki-client