$ rpki-client -vvf rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft (raw, json) Hash identifier: YbYjzO0zxsb1j9ZAOSZFUz+NWHQwjYB5oJR04CWpUz4= Subject key identifier: 35:02:47:82:95:AE:D2:10:ED:C5:B8:61:1F:3E:69:72:7A:5C:4B:9A Authority key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 Certificate issuer: /CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Certificate serial: 065B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft Manifest number: 0655 Signing time: Sun 10 Aug 2025 22:39:19 +0000 Manifest this update: Sun 10 Aug 2025 22:39:19 +0000 Manifest next update: Sun 17 Aug 2025 22:39:19 +0000 Files and hashes: 1: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl (hash: CEc+tms4zicNAJkyMKMHRKYcIXTWWVL1jRldCt1a+xs=) 2: EA266BB0965911EB9A717E21C4F9AE02.roa (hash: unXzVSB7rlCBOdPMYdpaMnBlAZNAT9x8+AUdN+A92PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178580, serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Validity Not Before: Aug 10 22:39:19 2025 GMT Not After : Aug 17 22:39:19 2025 GMT Subject: CN=68991f97-ef90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0c:43:e3:0d:63:b0:0b:58:ff:bd:c6:6c:6a: ae:fc:47:79:2a:ca:46:23:b1:a5:f8:57:e4:f0:23: ea:23:0b:35:6a:f0:6f:56:96:8a:c9:69:47:dc:97: 6e:4d:85:c8:8e:39:e1:05:cd:14:2f:62:ac:ce:c9: 31:9c:9d:b3:5d:d9:71:32:ca:bf:63:27:d7:ba:df: 89:43:fd:c0:1d:db:26:00:b7:5c:a5:ec:c4:e9:7b: 7d:05:69:08:e7:c2:f0:fe:e6:27:a3:3b:ac:92:10: 4f:8d:38:a1:60:84:54:9f:07:89:57:26:c5:17:40: 05:ba:0e:2b:c4:ff:ed:40:73:9a:b5:c3:91:e2:ef: 56:02:c7:16:be:34:96:bb:c8:81:cc:93:d6:3e:22: 86:4c:23:44:06:2b:a6:41:56:a2:92:d9:fd:97:52: 7e:dd:7a:e7:5a:ea:c0:56:ff:e0:6a:75:e7:7c:fb: 0f:19:d0:1c:b2:25:70:7c:f0:f2:7f:b8:23:be:76: 39:93:68:6d:9c:3b:f5:7d:68:c5:4b:d8:6a:3a:6e: f3:73:bc:9f:f9:e5:79:92:7a:6f:44:15:15:e1:63: 80:f6:19:1e:c3:d7:ed:a5:b6:ab:27:2c:ae:39:63: 45:58:24:39:12:67:34:db:da:6d:93:d7:5f:b5:7c: ca:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:02:47:82:95:AE:D2:10:ED:C5:B8:61:1F:3E:69:72:7A:5C:4B:9A X509v3 Authority Key Identifier: keyid:45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:75:fb:e5:64:6c:47:2c:7b:b7:c5:65:f1:af:dc:65:d3:93: 05:3e:41:93:29:f7:73:e2:bd:4f:1f:32:50:ff:04:ca:f3:2e: 53:9d:e5:b3:93:ea:3c:f1:26:03:06:3b:77:ae:0d:af:16:a3: a9:87:c4:51:54:cd:d3:51:87:cf:10:08:8f:37:50:9f:67:86: 79:2e:55:83:4f:70:93:56:3f:f3:e6:c6:21:f1:2a:99:a8:ba: d0:31:ed:eb:fe:0f:18:e3:81:3d:54:ac:f6:d2:c4:92:da:0a: ea:35:5e:f3:c9:74:a8:49:ec:2a:23:b6:65:74:e2:f7:83:30: ad:b2:9d:86:da:59:5d:ca:c0:dd:bd:d1:16:6d:ca:51:5b:b8: b3:8d:95:ed:24:03:58:f3:4d:11:92:37:bc:a9:d5:93:b8:b0: b2:d8:90:3e:6f:1a:ee:c8:50:d4:e9:5a:61:5c:b4:58:ab:17: ef:5b:dd:90:85:be:23:e0:57:81:8e:92:71:cf:cf:0e:05:da: d0:3a:69:46:dc:a7:6b:89:45:48:15:73:d6:6d:6a:1d:72:5c: 60:be:2b:c7:fc:3b:d5:3a:db:12:c8:23:ef:1d:d0:32:da:90: d4:67:ea:64:0d:33:be:56:21:ab:0e:5d:5f:a2:ac:e7:02:71: 74:4c:c1:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg1ODAxMTAvBgNVBAUTKDQ1QzlCOUJENDdEODIxODQ4NTk5QTY3RDdGMjI5NTZF MDkxM0M3RjYwHhcNMjUwODEwMjIzOTE5WhcNMjUwODE3MjIzOTE5WjAYMRYwFAYD VQQDEw02ODk5MWY5Ny1lZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwxD4w1jsAtY/73GbGqu/Ed5KspGI7Gl+Ffk8CPqIws1avBvVpaKyWlH3Jdu TYXIjjnhBc0UL2KszskxnJ2zXdlxMsq/YyfXut+JQ/3AHdsmALdcpezE6Xt9BWkI 58Lw/uYnozuskhBPjTihYIRUnweJVybFF0AFug4rxP/tQHOatcOR4u9WAscWvjSW u8iBzJPWPiKGTCNEBiumQVaiktn9l1J+3XrnWurAVv/ganXnfPsPGdAcsiVwfPDy f7gjvnY5k2htnDv1fWjFS9hqOm7zc7yf+eV5knpvRBUV4WOA9hkew9ftpbarJyyu OWNFWCQ5Emc029ptk9dftXzKnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUCR4KV rtIQ7cW4YR8+aXJ6XEuaMB8GA1UdIwQYMBaAFEXJub1H2CGEhZmmfX8ilW4JE8f2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODU4MC8zOUY5NjZGODk2 NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZU0ZtYVo5ZnlLVmJna1R4 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbTV2VWZZSVlTRm1hWjlmeUtWYmdrVHhfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODU4MC8zOUY5NjZGODk2NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZ U0ZtYVo5ZnlLVmJna1R4X1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSdfvlZGxHLHu3xWXxr9xl05MFPkGTKfdz4r1PHzJQ/wTK8y5TneWz k+o88SYDBjt3rg2vFqOph8RRVM3TUYfPEAiPN1CfZ4Z5LlWDT3CTVj/z5sYh8SqZ qLrQMe3r/g8Y44E9VKz20sSS2grqNV7zyXSoSewqI7ZldOL3gzCtsp2G2lldysDd vdEWbcpRW7izjZXtJANY800Rkje8qdWTuLCy2JA+bxruyFDU6VphXLRYqxfvW92Q hb4j4FeBjpJxz88OBdrQOmlG3KdriUVIFXPWbWodclxgvivH/DvVOtsSyCPvHdAy 2pDUZ+pkDTO+ViGrDl1foqznAnF0TMHV -----END CERTIFICATE-----Generated at Mon Aug 11 07:28:46 2025 by rpki-client