$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: 7H+H21zb2/YK2HK/ONp3rmblzhsFrYygaknAjqeIIZQ= Subject key identifier: F2:C9:49:AC:B9:73:52:FD:DD:EF:D9:A0:33:46:EF:AD:81:E7:ED:E5 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04B4 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04AE Signing time: Mon 11 Aug 2025 00:03:54 +0000 Manifest this update: Mon 11 Aug 2025 00:03:54 +0000 Manifest next update: Mon 18 Aug 2025 00:03:54 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: jnMwZSyYoN0wArKRYI2y07kRyETIrUoyj3MOzl6Exd0=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1204 (0x4b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Aug 11 00:03:54 2025 GMT Not After : Aug 18 00:03:54 2025 GMT Subject: CN=6899336a-c9ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:e3:3b:13:79:33:2c:3d:eb:bb:65:52:20: e3:f4:b3:f7:bf:d1:86:1b:e9:79:e1:65:9f:14:79: 19:62:c9:e7:7b:34:cc:f4:09:17:ff:27:da:75:e6: 4c:32:cd:1e:c9:13:77:d5:eb:86:33:8b:c8:26:29: 3e:a7:19:44:7c:e6:2f:16:21:4d:32:dc:4d:3d:c7: 7f:cd:5f:ce:59:32:63:5f:d9:14:90:71:e0:40:c0: 60:88:c1:17:85:19:a1:a3:33:b8:31:b6:37:77:20: c8:90:23:16:51:9f:e1:df:d0:8b:28:62:e3:89:3a: 0a:42:1c:82:c1:98:54:f2:b6:59:b5:4f:1a:c9:db: 99:ed:7b:32:ed:74:8b:00:f9:35:27:f8:ae:68:cb: 98:40:36:c0:eb:7a:71:30:7e:b4:f6:6b:e1:5e:06: a5:87:52:15:77:ab:03:7d:f4:91:ea:4b:aa:52:de: 7a:26:3e:a0:45:f7:84:dd:b4:80:71:3f:c4:d0:3f: 48:9a:98:f3:e0:6b:d2:b1:96:b9:e9:d0:cf:9b:35: 06:63:a2:0d:ac:5f:90:ce:0a:d7:8a:5d:ac:db:b7: c5:d8:89:03:cf:e5:75:9d:1e:dd:37:fe:de:53:f1: b8:a9:e0:4c:9a:7b:5f:e4:83:55:86:87:81:34:ee: 47:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C9:49:AC:B9:73:52:FD:DD:EF:D9:A0:33:46:EF:AD:81:E7:ED:E5 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:87:b7:37:40:44:1b:34:32:9c:21:9c:53:ce:28:c7:28:4e: e9:c4:a6:4e:d4:9c:9f:3d:56:01:11:5c:e5:0c:52:0e:58:6a: 67:5f:2e:b1:43:f6:95:c3:48:fc:12:ff:3e:aa:3b:f2:4a:79: 02:08:d4:91:49:50:9f:2b:4f:3e:6d:d9:0b:d4:aa:82:a2:d2: a3:3d:af:8e:e9:a3:d4:ae:8a:29:70:95:ca:51:8b:f9:ce:06: ce:00:14:12:06:80:96:53:d5:7a:35:55:fa:21:3b:26:7b:d3: 96:94:70:c2:e8:d8:ab:28:c9:76:57:20:04:b5:3d:a9:2e:3b: 21:72:d3:b1:82:e8:67:46:33:d9:a3:34:f3:a4:27:b7:f6:06: de:bc:d4:fb:66:13:b7:ee:d3:5e:02:6f:a0:ef:8e:1b:b7:32: 8b:fe:d4:fd:9a:58:a5:2f:71:7c:d5:e9:49:ee:00:da:88:61: 5f:d6:a6:9b:89:33:6f:7c:02:57:99:98:2e:ee:51:59:e5:c7: 44:d1:1a:6a:70:47:30:36:20:e4:2d:65:24:b5:2c:85:39:37: e5:81:f8:7f:a0:84:58:22:9e:4c:9a:be:cd:ea:e3:d0:14:91: d2:de:77:37:c8:0f:69:81:e4:17:a0:26:8e:ee:03:01:81:27: 0c:dd:6f:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUwODExMDAwMzU0WhcNMjUwODE4MDAwMzU0WjAYMRYwFAYD VQQDEw02ODk5MzM2YS1jOWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrrjOxN5Myw967tlUiDj9LP3v9GGG+l54WWfFHkZYsnnezTM9AkX/yfadeZM Ms0eyRN31euGM4vIJik+pxlEfOYvFiFNMtxNPcd/zV/OWTJjX9kUkHHgQMBgiMEX hRmhozO4MbY3dyDIkCMWUZ/h39CLKGLjiToKQhyCwZhU8rZZtU8ayduZ7Xsy7XSL APk1J/iuaMuYQDbA63pxMH609mvhXgalh1IVd6sDffSR6kuqUt56Jj6gRfeE3bSA cT/E0D9Impjz4GvSsZa56dDPmzUGY6INrF+QzgrXil2s27fF2IkDz+V1nR7dN/7e U/G4qeBMmntf5INVhoeBNO5H0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPLJSay5 c1L93e/ZoDNG762B5+3lMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGh7c3QEQbNDKcIZxTzijHKE7pxKZO1JyfPVYBEVzlDFIOWGpnXy6x Q/aVw0j8Ev8+qjvySnkCCNSRSVCfK08+bdkL1KqCotKjPa+O6aPUroopcJXKUYv5 zgbOABQSBoCWU9V6NVX6ITsme9OWlHDC6NirKMl2VyAEtT2pLjshctOxguhnRjPZ ozTzpCe39gbevNT7ZhO37tNeAm+g744btzKL/tT9mlilL3F81elJ7gDaiGFf1qab iTNvfAJXmZgu7lFZ5cdE0RpqcEcwNiDkLWUktSyFOTflgfh/oIRYIp5Mmr7N6uPQ FJHS3nc3yA9pgeQXoCaO7gMBgScM3W8Y -----END CERTIFICATE-----Generated at Mon Aug 11 12:51:48 2025 by rpki-client