$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: EUx6obW8Dw0PYt2a42rKCwdP5rsHJQT21nauBvgrAv4= Subject key identifier: 05:63:AF:BC:DD:35:C9:B2:42:8C:83:AA:74:94:90:1C:66:83:E3:11 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 04BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 04A4 Signing time: Sat 09 Aug 2025 00:29:06 +0000 Manifest this update: Sat 09 Aug 2025 00:29:05 +0000 Manifest next update: Sat 16 Aug 2025 00:29:05 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: 25nlodKHvlhNAYkP8ZzGLqoHqAfYpxuGjLwUF+L7Zs8=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: TGHGZPpqAj2jmtX8lTQMi8kBaI8ojiWWIFj1IWycEgs=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: Y2Z1jehKepnssjRVP8joGvXLmK9adM98wErhHrOtaeg=) 4: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: i1mD+r6XwMu6On3/bUlN+PaLdP6khHenZ0Z0HUab9AI=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: o+VIx3yy8oMDW/C3RImP2D9X9JrFefZYlsNOIecQzAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Aug 9 00:29:05 2025 GMT Not After : Aug 16 00:29:05 2025 GMT Subject: CN=68969651-3a5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:6b:1d:38:db:b0:89:df:d0:06:6e:ab:36: ff:73:0a:84:db:d8:cc:3c:cb:59:26:79:20:cf:77: 75:ae:d3:89:99:60:11:42:20:0a:cf:6e:c2:61:8e: 00:f3:9c:cf:97:9f:6a:e6:c5:9a:96:ac:50:3c:f9: 36:d4:73:68:79:1d:ed:33:ba:b5:2e:f5:bc:70:1c: df:5b:99:43:90:6e:17:cb:e4:84:26:de:99:5f:c9: 64:af:ca:87:a6:4f:00:1f:63:5f:ff:2d:5b:d1:5d: 11:04:b9:97:48:8d:8c:60:a4:7d:55:ea:a9:4f:28: 52:4c:7c:34:93:cb:e2:a5:7f:95:21:d2:72:7e:e2: bb:0f:3b:9d:05:70:6a:11:eb:d2:a8:dd:dc:ad:0e: 70:cd:62:5f:b1:6b:74:82:f1:a7:bc:9d:79:5e:85: 92:0b:ec:6e:59:28:e1:99:55:39:73:04:56:ee:71: c1:95:a0:90:ad:65:fb:20:25:26:e9:d4:a1:f2:cd: 51:b7:78:fb:0c:10:a6:2c:83:23:f7:77:71:a5:2f: 77:aa:e5:5c:9d:f4:61:85:1b:40:c9:05:cf:8a:01: 7f:77:35:34:92:df:00:43:e4:ee:7d:91:d6:04:be: bb:88:86:6e:b4:6b:ba:81:5c:bb:d2:18:53:40:79: 6f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:63:AF:BC:DD:35:C9:B2:42:8C:83:AA:74:94:90:1C:66:83:E3:11 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:b1:37:4b:f0:18:59:7f:ca:61:ff:49:0f:f3:06:d6:20:8f: 8d:f4:1c:23:d5:ba:77:a6:f9:37:e1:af:17:46:72:4b:ea:d5: d8:55:67:d5:ba:81:62:54:8c:28:78:77:64:2d:3f:3b:72:17: b5:ae:ef:23:1d:51:01:a9:17:d8:e7:71:30:9d:09:41:cd:6a: 13:89:c6:bb:da:11:31:ea:92:0f:7a:77:ff:e3:f5:4d:09:19: ea:19:ac:86:e2:f6:09:89:bd:d5:58:f4:5b:af:5e:c3:0f:23: 3c:8d:b7:3b:52:19:2e:a7:19:77:d6:96:b0:46:6f:2d:89:13: 24:db:69:33:d1:20:2c:0a:ee:1d:29:fe:39:67:ce:cd:39:09: b7:a2:f6:9a:c0:1c:34:28:45:64:00:e0:59:98:6e:44:c7:75: 56:be:b1:9e:78:dc:3f:77:af:6f:9e:3a:b2:61:87:4c:ae:e3: b6:1c:b1:67:c0:ab:77:9d:e3:f7:80:7a:60:06:11:7a:ca:0c: d6:14:6c:e1:2a:46:98:33:e9:fe:b2:4a:49:59:ad:27:c8:9b: 1b:71:8e:5e:b4:20:d5:75:2e:02:d3:44:d4:77:12:0a:c4:46: bd:5c:c3:09:35:fa:cb:c4:f7:b8:20:31:bd:e1:55:03:56:49: a0:61:96:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUwODA5MDAyOTA1WhcNMjUwODE2MDAyOTA1WjAYMRYwFAYD VQQDEw02ODk2OTY1MS0zYTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs6RrHTjbsInf0AZuqzb/cwqE29jMPMtZJnkgz3d1rtOJmWARQiAKz27CYY4A 85zPl59q5sWalqxQPPk21HNoeR3tM7q1LvW8cBzfW5lDkG4Xy+SEJt6ZX8lkr8qH pk8AH2Nf/y1b0V0RBLmXSI2MYKR9VeqpTyhSTHw0k8vipX+VIdJyfuK7DzudBXBq EevSqN3crQ5wzWJfsWt0gvGnvJ15XoWSC+xuWSjhmVU5cwRW7nHBlaCQrWX7ICUm 6dSh8s1Rt3j7DBCmLIMj93dxpS93quVcnfRhhRtAyQXPigF/dzU0kt8AQ+TufZHW BL67iIZutGu6gVy70hhTQHlvKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAVjr7zd NcmyQoyDqnSUkBxmg+MRMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxsTdL8BhZf8ph/0kP8wbWII+N9Bwj1bp3pvk34a8XRnJL6tXYVWfV uoFiVIwoeHdkLT87che1ru8jHVEBqRfY53EwnQlBzWoTica72hEx6pIPenf/4/VN CRnqGayG4vYJib3VWPRbr17DDyM8jbc7Uhkupxl31pawRm8tiRMk22kz0SAsCu4d Kf45Z87NOQm3ovaawBw0KEVkAOBZmG5Ex3VWvrGeeNw/d69vnjqyYYdMruO2HLFn wKt3neP3gHpgBhF6ygzWFGzhKkaYM+n+skpJWa0nyJsbcY5etCDVdS4C00TUdxIK xEa9XMMJNfrLxPe4IDG94VUDVkmgYZZM -----END CERTIFICATE-----Generated at Sat Aug 9 03:03:29 2025 by rpki-client