$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: MKSIRWajoDCWwY2J6Mgu27bfizBzOYmDcpHNod1VTCs= Subject key identifier: F9:26:C4:E5:EE:C3:BD:24:5D:63:0F:D2:A1:1E:3F:D3:8F:F0:84:B9 Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 012C Signing time: Thu 07 Aug 2025 05:06:53 +0000 Manifest this update: Thu 07 Aug 2025 05:06:52 +0000 Manifest next update: Thu 14 Aug 2025 05:06:52 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: onvW+/Vb1+YAhxss8Acia6LeMUxF90uLrWiG2/ArIJo=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:06:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Aug 7 05:06:52 2025 GMT Not After : Aug 14 05:06:52 2025 GMT Subject: CN=6894346c-e19e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:85:55:35:a3:3f:b9:c5:6a:8d:f0:c0:b5:2e: b8:df:3c:eb:e6:f8:22:94:09:6b:ef:a1:a8:ba:b7: a5:06:72:73:97:cc:51:9c:3e:b0:a4:0d:71:5a:56: 5c:8c:6b:19:fe:e9:97:88:93:1c:bb:9c:d7:0b:ff: 04:6e:4e:f8:ef:39:8f:90:e0:4c:6a:1d:f0:20:b1: fc:7b:56:96:6e:db:fe:97:38:83:fd:50:be:91:d9: 77:80:bc:29:c6:8a:ab:b3:8b:11:63:32:36:1a:58: c3:dd:c2:6c:47:55:37:47:f6:ba:75:2a:e9:1c:b4: a4:86:7f:cf:d3:56:9a:d0:2c:1f:1b:1c:00:32:a6: b1:67:77:47:b5:fa:23:67:6e:d0:49:bd:f1:b7:1a: ac:61:66:fa:84:0d:07:6b:80:1a:31:67:b2:ad:f0: 97:37:36:e7:9f:62:02:87:2b:ea:69:54:44:71:85: 43:67:d8:60:5a:f1:1d:bb:f9:9c:d4:05:c7:6c:2b: ef:d5:63:9f:9a:3c:78:c8:10:4c:df:6c:00:d7:5c: 30:18:78:34:10:70:63:06:65:96:fd:73:cf:6d:b8: 4f:b5:6a:6c:f8:24:8a:40:b9:cb:35:3b:a0:f1:b2: 01:b8:09:e3:25:50:58:ae:0f:ac:7b:18:65:f2:c1: b6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:26:C4:E5:EE:C3:BD:24:5D:63:0F:D2:A1:1E:3F:D3:8F:F0:84:B9 X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:24:91:2a:ff:0c:27:85:9a:53:bc:04:8b:27:af:a3:c1:5c: 79:b1:87:e0:55:4e:1a:f6:bb:bc:dc:1c:1a:24:58:5f:68:28: ac:9c:f9:b1:64:70:c4:1c:38:5b:bd:ac:4a:c0:19:c5:a8:7c: 6f:74:49:bb:53:9a:e5:4e:83:db:ba:21:be:4d:ac:2e:19:06: 41:2a:c2:39:4f:2a:5b:f7:f9:61:22:09:47:73:56:a3:0b:90: 8e:54:6a:16:e7:f1:6b:5a:06:bb:23:da:5c:cd:47:c8:2c:bd: 04:45:03:5a:98:1d:97:4b:c1:1d:ee:87:13:ce:57:0a:ba:0f: ab:19:d9:14:c4:d9:85:5e:c8:14:5d:1c:fb:54:99:b2:a6:d3: e8:58:96:87:55:ff:96:99:ec:55:81:f3:af:76:59:4a:b9:e5: 33:57:0f:55:52:d7:89:02:5f:f8:fd:43:08:9b:f9:24:31:7d: ce:a7:bd:e0:d0:1a:09:c0:92:b0:5f:13:b1:4d:81:05:fd:d9: 25:bc:80:45:6b:cd:8c:0a:0b:a1:15:61:7d:c7:04:7c:74:f1: 66:ad:99:cd:24:49:96:d2:6e:ab:4b:4b:9e:fa:19:af:17:b3: a2:eb:b5:93:8f:3d:fa:e9:0c:18:68:d9:76:54:8b:59:f4:59: 30:d0:c0:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUwODA3MDUwNjUyWhcNMjUwODE0MDUwNjUyWjAYMRYwFAYD VQQDEw02ODk0MzQ2Yy1lMTllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlIVVNaM/ucVqjfDAtS643zzr5vgilAlr76GourelBnJzl8xRnD6wpA1xWlZc jGsZ/umXiJMcu5zXC/8Ebk747zmPkOBMah3wILH8e1aWbtv+lziD/VC+kdl3gLwp xoqrs4sRYzI2GljD3cJsR1U3R/a6dSrpHLSkhn/P01aa0CwfGxwAMqaxZ3dHtfoj Z27QSb3xtxqsYWb6hA0Ha4AaMWeyrfCXNzbnn2IChyvqaVREcYVDZ9hgWvEdu/mc 1AXHbCvv1WOfmjx4yBBM32wA11wwGHg0EHBjBmWW/XPPbbhPtWps+CSKQLnLNTug 8bIBuAnjJVBYrg+sexhl8sG27QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkmxOXu w70kXWMP0qEeP9OP8IS5MB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNJJEq/wwnhZpTvASLJ6+jwVx5sYfgVU4a9ru83BwaJFhfaCisnPmx ZHDEHDhbvaxKwBnFqHxvdEm7U5rlToPbuiG+TawuGQZBKsI5Typb9/lhIglHc1aj C5COVGoW5/FrWga7I9pczUfILL0ERQNamB2XS8Ed7ocTzlcKug+rGdkUxNmFXsgU XRz7VJmyptPoWJaHVf+WmexVgfOvdllKueUzVw9VUteJAl/4/UMIm/kkMX3Op73g 0BoJwJKwXxOxTYEF/dklvIBFa82MCguhFWF9xwR8dPFmrZnNJEmW0m6rS0ue+hmv F7Oi67WTjz366QwYaNl2VItZ9Fkw0MDY -----END CERTIFICATE-----Generated at Sat Aug 9 02:59:32 2025 by rpki-client