$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft File: q30L1dKrXe4vHNaWuCm675d_eM4.mft (raw, json) Hash identifier: 37X7QWpYthM/lGsDCpFpfDC1EHEr5IygB77JIDrFqVY= Subject key identifier: F3:D1:8B:11:8E:70:CB:A6:59:B1:31:D1:22:0C:F5:A6:AE:32:75:3C Authority key identifier: AB:7D:0B:D5:D2:AB:5D:EE:2F:1C:D6:96:B8:29:BA:EF:97:7F:78:CE Certificate issuer: /CN=A9171A5B/serialNumber=AB7D0BD5D2AB5DEE2F1CD696B829BAEF977F78CE Certificate serial: 18F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q30L1dKrXe4vHNaWuCm675d_eM4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft Manifest number: 18D8 Signing time: Sun 10 Aug 2025 16:27:11 +0000 Manifest this update: Sun 10 Aug 2025 16:27:11 +0000 Manifest next update: Sun 17 Aug 2025 16:27:11 +0000 Files and hashes: 1: q30L1dKrXe4vHNaWuCm675d_eM4.crl (hash: 04sqtOAWT0IcNNVxPQnQLM9Vkb+LtZUBlxnCRKtE3V4=) 2: EC8BB4F2B2B411EF8B387C7CC4F9AE02.roa (hash: YcDZtKeRh1UHltnHTYosXa988+fvsMaT0V4n1NKi1tc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.crl rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q30L1dKrXe4vHNaWuCm675d_eM4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6385 (0x18f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A5B, serialNumber=AB7D0BD5D2AB5DEE2F1CD696B829BAEF977F78CE Validity Not Before: Aug 10 16:27:11 2025 GMT Not After : Aug 17 16:27:11 2025 GMT Subject: CN=6898c85f-bc36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:20:2e:98:1e:80:b4:d2:e1:ca:d3:a7:e8:76: ce:15:bc:05:c9:1d:b6:c3:ac:ef:59:51:95:8e:8b: 97:35:5c:2c:ae:5d:37:d4:24:e7:97:65:e4:bd:fc: 57:7f:9f:ca:62:7c:07:cb:79:9d:69:35:55:47:bd: f5:a8:c9:d8:33:fb:8d:f2:77:6e:37:fb:2b:1b:87: f8:8f:e6:34:7f:35:b4:60:02:c2:fe:26:13:38:1f: ef:5c:e8:20:30:39:bb:2c:0e:b2:bb:a2:1d:48:64: 55:cc:f7:f7:80:aa:0b:cb:bd:86:62:05:66:f3:46: 00:75:dd:88:b4:ce:cb:79:fe:5d:9f:be:71:48:ee: 60:03:a9:f9:f5:ae:9d:bd:b7:65:9c:92:ce:00:c6: b8:1e:54:62:c1:1b:22:f5:d0:e2:c3:d9:eb:51:b9: be:4a:76:6c:2d:c7:9d:e5:88:bc:09:6d:23:99:c1: 42:4b:8c:9d:65:49:51:7a:00:76:11:59:b9:0e:f7: f5:ab:36:9a:7b:a9:b0:ba:a1:d1:cb:28:71:89:0c: ca:4f:1e:bb:c0:47:04:ed:c4:17:c5:36:9d:45:b3: 74:ac:df:34:ae:c1:c6:c5:51:e7:5b:2f:5e:ec:ed: 2a:1f:5e:d3:49:a7:99:25:91:01:68:f9:81:10:33: c3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D1:8B:11:8E:70:CB:A6:59:B1:31:D1:22:0C:F5:A6:AE:32:75:3C X509v3 Authority Key Identifier: keyid:AB:7D:0B:D5:D2:AB:5D:EE:2F:1C:D6:96:B8:29:BA:EF:97:7F:78:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q30L1dKrXe4vHNaWuCm675d_eM4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A5B/17E10102993B11E79ABB8181C4F9AE02/q30L1dKrXe4vHNaWuCm675d_eM4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:c8:b4:36:57:af:09:e5:09:a1:86:a0:a1:da:8a:3e:e0:18: 1a:8a:4b:3b:59:69:6e:3b:79:9b:ab:ba:8c:e2:1a:7d:f8:6c: bc:68:10:0c:fa:c6:6f:f7:23:8e:76:5c:91:89:a7:40:d1:d8: 60:b6:8d:5f:ac:26:01:62:b5:66:54:d2:22:c4:64:d2:ac:ce: d0:4f:e3:62:8c:49:d6:14:85:d7:c3:6f:0b:2d:6f:14:d2:6d: c7:7c:e3:72:a8:6c:5c:ca:48:ae:71:51:0a:34:fc:0f:da:a3: 46:f1:46:23:ec:ea:3e:b7:1b:30:ef:bc:3f:84:ba:67:82:50: 73:57:2f:c8:bb:1e:aa:5a:57:17:2b:05:76:89:80:da:01:3c: ab:f8:a4:17:ef:20:32:b5:5c:00:b1:1b:53:05:c4:9a:92:3b: f1:55:3a:f0:23:1c:89:3f:18:56:0b:6c:41:c9:09:c6:ac:da: 43:8a:d7:83:32:29:12:d6:15:be:4d:d2:f5:56:1e:e6:f7:5c: ee:e0:93:b6:c8:9e:42:ab:f2:70:ba:46:f4:f4:22:17:21:9d: 08:67:af:91:1f:b6:4e:c6:22:bb:50:29:22:0b:f2:d2:14:a9: 59:df:56:c5:9f:43:53:5e:93:b2:fa:5a:28:38:00:cf:cc:a2: 41:c9:3f:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNUIxMTAvBgNVBAUTKEFCN0QwQkQ1RDJBQjVERUUyRjFDRDY5NkI4MjlCQUVG OTc3Rjc4Q0UwHhcNMjUwODEwMTYyNzExWhcNMjUwODE3MTYyNzExWjAYMRYwFAYD VQQDEw02ODk4Yzg1Zi1iYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iAumB6AtNLhytOn6HbOFbwFyR22w6zvWVGVjouXNVwsrl031CTnl2XkvfxX f5/KYnwHy3mdaTVVR731qMnYM/uN8nduN/srG4f4j+Y0fzW0YALC/iYTOB/vXOgg MDm7LA6yu6IdSGRVzPf3gKoLy72GYgVm80YAdd2ItM7Lef5dn75xSO5gA6n59a6d vbdlnJLOAMa4HlRiwRsi9dDiw9nrUbm+SnZsLced5Yi8CW0jmcFCS4ydZUlRegB2 EVm5Dvf1qzaae6mwuqHRyyhxiQzKTx67wEcE7cQXxTadRbN0rN80rsHGxVHnWy9e 7O0qH17TSaeZJZEBaPmBEDPD1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPPRixGO cMumWbEx0SIM9aauMnU8MB8GA1UdIwQYMBaAFKt9C9XSq13uLxzWlrgpuu+Xf3jO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1Qi8xN0UxMDEwMjk5 M0IxMUU3OUFCQjgxODFDNEY5QUUwMi9xMzBMMWRLclhlNHZITmFXdUNtNjc1ZF9l TTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EzMEwxZEtyWGU0dkhOYVd1Q202NzVkX2VNNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1Qi8xN0UxMDEwMjk5M0IxMUU3OUFCQjgxODFDNEY5QUUwMi9xMzBMMWRLclhl NHZITmFXdUNtNjc1ZF9lTTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARyLQ2V68J5QmhhqCh2oo+4Bgaiks7WWluO3mbq7qM4hp9+Gy8aBAM +sZv9yOOdlyRiadA0dhgto1frCYBYrVmVNIixGTSrM7QT+NijEnWFIXXw28LLW8U 0m3HfONyqGxcykiucVEKNPwP2qNG8UYj7Oo+txsw77w/hLpnglBzVy/Iux6qWlcX KwV2iYDaATyr+KQX7yAytVwAsRtTBcSakjvxVTrwIxyJPxhWC2xByQnGrNpDiteD MikS1hW+TdL1Vh7m91zu4JO2yJ5Cq/Jwukb09CIXIZ0IZ6+RH7ZOxiK7UCkiC/LS FKlZ31bFn0NTXpOy+looOADPzKJByT+6 -----END CERTIFICATE-----Generated at Sun Aug 10 21:07:32 2025 by rpki-client