$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: tO970gAJh3hVbBtrDCIVJk2jq2Ut9sWoEAscT7cRnjk= Subject key identifier: 2A:AE:59:F7:96:27:F4:36:10:8D:21:04:9B:5B:49:A1:C6:41:25:F9 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C46 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0C29 Signing time: Fri 08 Aug 2025 18:55:49 +0000 Manifest this update: Fri 08 Aug 2025 18:55:48 +0000 Manifest next update: Fri 15 Aug 2025 18:55:48 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: 4vu9hvUCNVvqc2lkCZJUvRz1zlZn6nHo+XL4V1iTsqc=) 2: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: dn3kZoWooSddDB41uptssOk+YJNXq/e4qX48GOTMtT4=) 3: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: 8Ead/6roCcIWAO/F6fTJ08XA18GUuGo77XaTq8IG4j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Aug 8 18:55:48 2025 GMT Not After : Aug 15 18:55:48 2025 GMT Subject: CN=68964834-fb30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:59:e9:3f:59:35:8a:dd:51:65:39:50:65:04: e2:a1:33:98:11:3c:fa:00:41:80:b4:1a:f9:a1:24: e8:47:9a:1d:34:67:6a:9c:d1:70:4d:97:bc:19:ba: 80:c5:a0:83:1b:c6:36:dd:09:db:9f:5f:12:53:fd: ce:1d:3f:5b:57:87:10:12:a5:c0:14:f6:4c:20:75: c7:d1:39:86:8a:45:fb:4f:d0:98:55:4e:06:f0:8d: 45:7b:ff:29:fa:8d:61:eb:eb:c0:af:1b:72:5e:5a: cc:83:59:1c:cc:16:ff:2d:6a:33:34:d6:d8:e5:2d: 00:87:d3:63:5f:6f:c6:3e:41:17:13:8a:e8:9d:5a: 57:d7:b5:68:90:08:ec:b8:a7:a5:6d:b2:48:dc:6e: 2f:74:75:72:a8:50:b6:55:06:a2:dc:1e:bf:a8:3a: c2:98:25:7a:b2:2e:de:d2:27:c6:47:0b:16:a7:dc: f8:ff:d3:6b:b7:c7:83:0c:93:d4:00:5a:0f:3e:39: cf:78:3e:a4:25:76:95:e0:91:38:d9:4c:57:48:82: 34:f7:41:bf:41:63:6b:9b:1a:ee:6f:cb:5f:27:01: 61:e5:56:84:ff:cf:91:5b:16:55:f5:52:5f:0c:b1: b0:91:14:16:19:ab:63:5a:2d:43:d5:e7:39:d0:3a: d5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:AE:59:F7:96:27:F4:36:10:8D:21:04:9B:5B:49:A1:C6:41:25:F9 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:c6:d4:1a:d2:4e:a5:66:f1:1a:3d:fd:60:53:b2:6c:6f:bc: ea:0d:6e:11:20:c8:53:6f:50:ad:13:70:5b:a0:f7:d0:99:16: a3:12:2c:8e:c1:fe:bd:e0:b3:64:00:e4:af:a4:8e:65:45:d1: 6d:20:63:9a:6e:be:07:66:dc:6e:b0:60:ea:42:04:ba:e0:70: e3:7a:e1:da:d3:5f:7f:14:d6:6f:95:eb:45:2c:90:bc:e0:52: e2:6c:37:08:74:c0:15:ae:f7:15:e1:aa:40:89:92:40:01:4a: a1:51:e2:bf:ae:0c:54:f3:66:9b:b6:1f:84:76:26:c5:91:6b: 19:e7:9d:55:2e:6d:13:74:45:b6:37:0a:f0:1f:24:c3:c0:df: 75:e3:38:45:37:bc:48:b5:7d:64:05:cb:97:c3:0a:64:10:c0: ac:48:a1:8e:76:c7:23:ac:59:38:cc:6e:ff:62:13:d3:e5:f3: 9c:29:3e:f2:f1:96:75:60:40:69:d4:1d:63:a5:11:34:82:9a: b0:aa:fe:3f:b4:61:3a:53:00:75:94:f9:56:77:2b:3c:8f:47: f3:5b:64:e9:6b:81:bc:a1:f4:d5:91:e4:07:02:12:1e:5e:38: 4f:c4:7a:e6:ca:90:2a:32:48:bc:da:8b:8a:76:2c:dc:0b:15: 8e:d7:93:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwODA4MTg1NTQ4WhcNMjUwODE1MTg1NTQ4WjAYMRYwFAYD VQQDEw02ODk2NDgzNC1mYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVnpP1k1it1RZTlQZQTioTOYETz6AEGAtBr5oSToR5odNGdqnNFwTZe8GbqA xaCDG8Y23Qnbn18SU/3OHT9bV4cQEqXAFPZMIHXH0TmGikX7T9CYVU4G8I1Fe/8p +o1h6+vArxtyXlrMg1kczBb/LWozNNbY5S0Ah9NjX2/GPkEXE4ronVpX17VokAjs uKelbbJI3G4vdHVyqFC2VQai3B6/qDrCmCV6si7e0ifGRwsWp9z4/9Nrt8eDDJPU AFoPPjnPeD6kJXaV4JE42UxXSII090G/QWNrmxrub8tfJwFh5VaE/8+RWxZV9VJf DLGwkRQWGatjWi1D1ec50DrV/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCquWfeW J/Q2EI0hBJtbSaHGQSX5MB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAsxtQa0k6lZvEaPf1gU7Jsb7zqDW4RIMhTb1CtE3BboPfQmRajEiyO wf694LNkAOSvpI5lRdFtIGOabr4HZtxusGDqQgS64HDjeuHa019/FNZvletFLJC8 4FLibDcIdMAVrvcV4apAiZJAAUqhUeK/rgxU82abth+EdibFkWsZ551VLm0TdEW2 NwrwHyTDwN914zhFN7xItX1kBcuXwwpkEMCsSKGOdscjrFk4zG7/YhPT5fOcKT7y 8ZZ1YEBp1B1jpRE0gpqwqv4/tGE6UwB1lPlWdys8j0fzW2Tpa4G8ofTVkeQHAhIe XjhPxHrmypAqMki82ouKdizcCxWO15Mb -----END CERTIFICATE-----Generated at Sun Aug 10 18:57:31 2025 by rpki-client