$ rpki-client -vvf rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft File: 6N3s7Bb-NIXVthplph7s11qYG0M.mft (raw, json) Hash identifier: yscsyxnSkFlUAGCv2zIlUR2USCXqKmwE9MmLOqTZr6s= Subject key identifier: 4E:8D:1D:A0:6D:F8:00:58:86:5C:1F:A7:A8:90:5B:C7:0B:8B:39:49 Authority key identifier: E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 Certificate issuer: /CN=A9172EF8/serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Certificate serial: 0832 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft Manifest number: 082A Signing time: Sun 10 Aug 2025 20:49:02 +0000 Manifest this update: Sun 10 Aug 2025 20:49:02 +0000 Manifest next update: Sun 17 Aug 2025 20:49:02 +0000 Files and hashes: 1: 6N3s7Bb-NIXVthplph7s11qYG0M.crl (hash: qDXGbVwA3dJ1bjk6qrykm3/IToHRvLNk09FcTn62PFM=) 2: 82001182986511EFBFE02134C4F9AE02.roa (hash: zFMhUdKAsUErPaBJNxHFhs6kNz0L2uuSFEiFAntBllQ=) 3: 879AF91C9A8C11EF98A18D7FC4F9AE02.roa (hash: LWV1KeEebkqoxDRj/MN5Z6I+5780TArhWaO+yA4BHQg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172EF8, serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Validity Not Before: Aug 10 20:49:02 2025 GMT Not After : Aug 17 20:49:02 2025 GMT Subject: CN=689905be-d137 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:dd:e5:7d:94:5c:8a:f0:9c:a8:4f:9c:46:9d: 7f:27:0f:ab:b9:d4:f4:f7:ed:c0:60:af:cc:df:6c: d9:77:0d:30:df:20:55:08:b8:1a:03:4d:85:ae:46: 61:a9:9d:9d:84:38:36:be:fc:da:9e:71:1a:46:8f: d4:61:1f:88:78:4f:b9:f6:c4:d8:3d:cb:67:7c:00: 75:6d:a1:92:3d:1e:d5:56:e9:55:ac:78:73:a0:b3: 27:98:5a:b1:09:a8:c8:53:1e:04:bd:71:1c:d8:b0: 99:56:44:0c:d6:a8:ec:16:fe:a3:bb:17:0a:b2:c3: 7f:24:87:f9:1c:40:38:d5:60:33:b3:38:67:b6:44: bb:a3:99:4c:6a:68:dc:d8:8d:26:cb:c5:0b:f4:70: 05:a1:56:15:4d:8b:85:95:f1:95:01:b9:76:ee:c1: 90:e5:a0:14:ff:44:1b:7f:32:91:a8:81:ce:2b:53: c5:fc:b1:78:2c:9b:45:63:64:5f:59:61:27:13:8f: bc:ab:ba:31:98:de:e7:54:07:4d:94:06:00:7f:4d: 0d:9b:9c:ee:9a:76:33:f8:18:44:05:ba:3e:b3:db: 98:91:d0:6e:12:fc:4a:f9:ce:a3:9a:73:80:8d:ea: 5e:21:4b:34:e6:48:df:51:f9:3c:56:da:74:bf:42: be:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:8D:1D:A0:6D:F8:00:58:86:5C:1F:A7:A8:90:5B:C7:0B:8B:39:49 X509v3 Authority Key Identifier: keyid:E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:79:02:e8:69:01:04:0d:ed:7c:bb:3c:b4:c9:11:24:6f:99: 94:f4:08:1a:59:74:87:9b:21:60:d9:15:14:cc:45:33:3e:70: cb:9c:82:3b:26:f3:11:e0:6f:c1:fe:6f:d0:be:3a:b1:22:d9: e2:90:94:1e:a6:ac:f3:c5:92:1c:84:9d:33:7d:6d:29:99:be: 0c:98:c2:55:db:90:41:dc:62:fe:aa:60:79:1f:a7:bb:ef:59: e1:35:36:42:08:b9:6b:e4:1a:f8:a9:1a:18:99:44:9a:84:ef: 8c:e5:e1:ac:71:f1:b9:47:db:12:cc:8a:e0:e1:1b:75:3c:60: 48:af:58:11:19:b8:12:a0:81:d3:7b:69:d6:90:a2:06:5e:4e: 6b:8f:58:f6:a3:fa:6e:ac:df:23:40:4e:93:28:fd:08:9b:80: 6a:d0:00:1f:f4:eb:5f:e5:66:07:5b:ad:b0:68:b7:00:94:29: c9:36:3a:c5:8f:81:22:87:88:78:16:81:67:21:02:20:30:e8: 79:20:f5:2c:db:35:da:22:38:5c:c6:3c:68:71:aa:fb:39:3a: 1e:12:a6:a9:3a:d0:4d:ea:d6:6b:e2:c9:64:f4:7b:24:dc:64: 07:d8:75:75:a4:73:d5:d4:ea:7e:3c:fd:cb:f2:34:a3:17:fd: 2c:85:4f:44 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJFRjgxMTAvBgNVBAUTKEU4RERFQ0VDMTZGRTM0ODVENUI2MUE2NUE2MUVFQ0Q3 NUE5ODFCNDMwHhcNMjUwODEwMjA0OTAyWhcNMjUwODE3MjA0OTAyWjAYMRYwFAYD VQQDEw02ODk5MDViZS1kMTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8t3lfZRcivCcqE+cRp1/Jw+rudT09+3AYK/M32zZdw0w3yBVCLgaA02FrkZh qZ2dhDg2vvzannEaRo/UYR+IeE+59sTYPctnfAB1baGSPR7VVulVrHhzoLMnmFqx CajIUx4EvXEc2LCZVkQM1qjsFv6juxcKssN/JIf5HEA41WAzszhntkS7o5lMamjc 2I0my8UL9HAFoVYVTYuFlfGVAbl27sGQ5aAU/0QbfzKRqIHOK1PF/LF4LJtFY2Rf WWEnE4+8q7oxmN7nVAdNlAYAf00Nm5zumnYz+BhEBbo+s9uYkdBuEvxK+c6jmnOA jepeIUs05kjfUfk8Vtp0v0K+xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE6NHaBt +ABYhlwfp6iQW8cLizlJMB8GA1UdIwQYMBaAFOjd7OwW/jSF1bYaZaYe7NdamBtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkVGOC83N0Y5OEMzOERE OEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5JWFZ0aHBscGg3czExcVlH ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOM3M3QmItTklYVnRocGxwaDdzMTFxWUcwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkVGOC83N0Y5OEMzOEREOEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5J WFZ0aHBscGg3czExcVlHME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqeQLoaQEEDe18uzy0yREkb5mU9AgaWXSHmyFg2RUUzEUzPnDLnII7 JvMR4G/B/m/QvjqxItnikJQepqzzxZIchJ0zfW0pmb4MmMJV25BB3GL+qmB5H6e7 71nhNTZCCLlr5Br4qRoYmUSahO+M5eGscfG5R9sSzIrg4Rt1PGBIr1gRGbgSoIHT e2nWkKIGXk5rj1j2o/purN8jQE6TKP0Im4Bq0AAf9Otf5WYHW62waLcAlCnJNjrF j4Eih4h4FoFnIQIgMOh5IPUs2zXaIjhcxjxocar7OToeEqapOtBN6tZr4slk9Hsk 3GQH2HV1pHPV1Op+PP3L8jSjF/0shU9E -----END CERTIFICATE-----Generated at Mon Aug 11 13:12:00 2025 by rpki-client