$ rpki-client -vvf rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft File: rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft (raw, json) Hash identifier: pw3d8a6uGOQTWEJKOS4hgxlqgo1kUb6k851Ndk0TX00= Subject key identifier: 39:38:C8:94:32:11:91:06:56:86:37:98:82:56:99:05:5D:17:45:7C Authority key identifier: AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 Certificate issuer: /CN=A9172FC5/serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Certificate serial: 87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft Manifest number: 84 Signing time: Tue 05 Aug 2025 07:14:03 +0000 Manifest this update: Tue 05 Aug 2025 07:14:02 +0000 Manifest next update: Tue 12 Aug 2025 07:14:02 +0000 Files and hashes: 1: rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl (hash: H3Qk3O2cEAURBeAq0GF+3b+ZM864Q8Wpy5q98uQ/wAI=) 2: 15B99EFC016111F0B1B6A34EC4F9AE02.roa (hash: fNaQxATAW6BCNgpllm+ul+pMRSXup8I9s/wGqDPcAs4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:14:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172FC5, serialNumber=AD545D2504FE1DE92AE1766DF4657637DB7A7E75 Validity Not Before: Aug 5 07:14:02 2025 GMT Not After : Aug 12 07:14:02 2025 GMT Subject: CN=6891af3a-f9e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b9:c1:72:8e:2c:0a:d9:a9:ad:bd:67:18:f2: d8:71:fe:e4:db:62:9e:ad:a7:b6:4d:dd:f0:76:1e: 2a:fd:a1:f3:32:24:79:b3:3d:f2:82:31:e5:b7:39: c8:af:98:80:80:f7:b8:a7:a1:d6:46:44:db:33:6f: 82:de:49:53:56:c7:60:5c:a8:16:26:9b:d5:b2:62: b2:88:f8:19:4d:cc:d9:93:44:8f:68:de:13:0f:ff: 97:02:7b:97:f3:88:fb:39:48:bf:c1:99:52:82:92: 5f:95:ba:ea:38:82:90:1f:2a:fc:2a:89:de:cd:0a: d6:20:e0:92:d3:31:63:a7:42:13:29:c8:15:26:6a: 81:89:fa:03:12:57:03:7e:14:94:b8:8d:c3:b8:b6: ef:64:f4:23:e7:c5:03:15:40:c1:2d:44:9c:b6:7e: ba:ec:6c:47:46:d7:3a:48:e1:37:8d:9f:4e:da:10: 65:c1:db:86:6d:60:df:52:35:99:56:aa:48:7e:3c: 13:18:9c:7c:48:8e:15:81:4d:38:8a:11:19:e4:03: 65:05:d5:07:e7:0a:56:41:b1:db:16:8e:36:6d:00: 6d:aa:03:b1:8e:af:04:05:5c:56:3d:de:15:68:cd: ef:d7:d4:42:07:07:03:b4:b7:6a:99:bd:ef:af:0d: a8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:38:C8:94:32:11:91:06:56:86:37:98:82:56:99:05:5D:17:45:7C X509v3 Authority Key Identifier: keyid:AD:54:5D:25:04:FE:1D:E9:2A:E1:76:6D:F4:65:76:37:DB:7A:7E:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rVRdJQT-Hekq4XZt9GV2N9t6fnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172FC5/E539CDA0AB3F11EFBE02CF14C4F9AE02/rVRdJQT-Hekq4XZt9GV2N9t6fnU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:60:dc:fe:6b:f4:51:9c:f7:c8:ca:97:13:d4:e7:8e:6a:53: 12:a5:73:fb:66:74:09:60:90:a7:32:1c:70:67:66:99:db:77: a4:5b:5a:b9:14:ad:4a:06:df:74:98:33:d3:51:e1:c9:37:41: 92:4a:73:11:de:5e:b5:3b:64:ac:d3:72:fc:5b:e5:18:8d:04: 58:22:b0:20:89:cb:ee:20:82:03:a0:0e:01:bb:90:1e:d4:8b: cb:5c:37:7d:ce:fa:f2:71:e7:68:73:ba:dc:95:7e:11:75:19: 55:5e:9f:b5:c7:be:7e:3a:2f:21:1c:d0:fb:ab:f8:a9:79:a4: f5:b8:18:82:fb:5e:fa:02:5e:1a:65:5e:af:8c:57:cb:6f:aa: 39:b8:9a:39:08:86:35:6d:5a:cf:ff:dd:df:36:29:8c:d5:99: fa:2a:af:d5:b0:5a:8d:c6:6a:8e:81:31:08:ec:db:b4:80:5f: d1:fb:5a:8a:55:2c:be:49:60:85:21:e5:f7:42:29:fc:1d:bf: 22:82:7f:50:a9:60:9b:78:a5:dc:5e:d4:ff:60:ea:44:56:78: 87:98:4c:45:c6:37:31:47:61:1e:4f:42:2a:62:8e:b6:22:76: 99:d7:3c:ee:ef:0d:50:ab:53:23:6b:f2:2e:ad:c9:d7:80:d2: c6:eb:d8:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJGQzUxMTAvBgNVBAUTKEFENTQ1RDI1MDRGRTFERTkyQUUxNzY2REY0NjU3NjM3 REI3QTdFNzUwHhcNMjUwODA1MDcxNDAyWhcNMjUwODEyMDcxNDAyWjAYMRYwFAYD VQQDEw02ODkxYWYzYS1mOWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LnBco4sCtmprb1nGPLYcf7k22Kerae2Td3wdh4q/aHzMiR5sz3ygjHltznI r5iAgPe4p6HWRkTbM2+C3klTVsdgXKgWJpvVsmKyiPgZTczZk0SPaN4TD/+XAnuX 84j7OUi/wZlSgpJflbrqOIKQHyr8KonezQrWIOCS0zFjp0ITKcgVJmqBifoDElcD fhSUuI3DuLbvZPQj58UDFUDBLUSctn667GxHRtc6SOE3jZ9O2hBlwduGbWDfUjWZ VqpIfjwTGJx8SI4VgU04ihEZ5ANlBdUH5wpWQbHbFo42bQBtqgOxjq8EBVxWPd4V aM3v19RCBwcDtLdqmb3vrw2oawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDk4yJQy EZEGVoY3mIJWmQVdF0V8MB8GA1UdIwQYMBaAFK1UXSUE/h3pKuF2bfRldjfben51 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkZDNS9FNTM5Q0RBMEFC M0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhla3E0WFp0OUdWMk45dDZm blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JWUmRKUVQtSGVrcTRYWnQ5R1YyTjl0NmZuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkZDNS9FNTM5Q0RBMEFCM0YxMUVGQkUwMkNGMTRDNEY5QUUwMi9yVlJkSlFULUhl a3E0WFp0OUdWMk45dDZmblUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCeYNz+a/RRnPfIypcT1OeOalMSpXP7ZnQJYJCnMhxwZ2aZ23ekW1q5 FK1KBt90mDPTUeHJN0GSSnMR3l61O2Ss03L8W+UYjQRYIrAgicvuIIIDoA4Bu5Ae 1IvLXDd9zvrycedoc7rclX4RdRlVXp+1x75+Oi8hHND7q/ipeaT1uBiC+176Al4a ZV6vjFfLb6o5uJo5CIY1bVrP/93fNimM1Zn6Kq/VsFqNxmqOgTEI7Nu0gF/R+1qK VSy+SWCFIeX3Qin8Hb8ign9QqWCbeKXcXtT/YOpEVniHmExFxjcxR2EeT0IqYo62 InaZ1zzu7w1Qq1Mja/IurcnXgNLG69iu -----END CERTIFICATE-----Generated at Wed Aug 6 14:08:16 2025 by rpki-client