$ rpki-client -vvf rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft File: MtNTdDyP4vCOl7IuW2CavBTM_js.mft (raw, json) Hash identifier: XGVfJ1wPRvQ6w1Hh3OnQPspK4IOIjZhlQnCnY6nG100= Subject key identifier: 76:66:53:F5:EE:6D:9F:15:7A:51:86:DB:4C:F4:A5:C7:14:7C:1D:79 Authority key identifier: 32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B Certificate issuer: /CN=A9179F64/serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft Manifest number: CA Signing time: Sat 09 Aug 2025 06:26:50 +0000 Manifest this update: Sat 09 Aug 2025 06:26:50 +0000 Manifest next update: Sat 16 Aug 2025 06:26:50 +0000 Files and hashes: 1: MtNTdDyP4vCOl7IuW2CavBTM_js.crl (hash: 2UP18BJGFQ4fLwhZz99SqI7TSM4AumdoWv2JUUHDlcs=) 2: F0CEC2E2663811F089040A3DC4F9AE02.roa (hash: qKo5GDm+NdH2Wkh9LsU4Ek55hvJRGlW/WsdLjpxnbHU=) 3: 144D9AA823F011F0B0D6F263C4F9AE02.roa (hash: 8/Hd/HSfsJzaFCQ02un66M2YDgdginFixcaFn5JQidY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179F64, serialNumber=32D353743C8FE2F08E97B22E5B609ABC14CCFE3B Validity Not Before: Aug 9 06:26:50 2025 GMT Not After : Aug 16 06:26:50 2025 GMT Subject: CN=6896ea2a-4620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:30:18:a1:58:9d:59:92:d3:0e:b0:c2:ef:b5: 91:a8:0a:e4:fd:bc:10:ab:0b:db:51:27:82:2c:e7: 76:19:5a:35:3d:a0:d9:71:5f:be:e3:40:d7:a9:a3: b6:8f:e3:3d:3c:98:ac:84:f1:22:29:72:c9:af:9b: 5d:3c:b6:0a:8c:75:bd:9d:a1:26:fb:d4:4d:4f:69: 00:ff:0c:41:62:ef:e0:1e:ab:22:63:6d:06:53:5f: f6:29:a0:e0:9f:6c:a8:a2:f5:dd:ca:f0:3c:9a:5d: 22:94:36:3f:d3:ba:ae:b1:aa:5c:15:9f:c5:12:84: 6f:8e:81:76:32:56:dd:29:5d:2d:f7:c8:24:22:b2: 54:ed:63:31:89:bf:1c:2e:01:a7:85:20:1e:0c:ce: f6:b4:63:79:a7:a5:77:ee:b1:3e:0e:06:f1:1d:fb: 61:e6:92:b1:01:88:61:42:98:12:b4:87:12:91:40: 67:25:9a:fe:1e:8c:29:e7:ec:3f:5f:25:79:a8:f9: 17:ac:e2:a1:b8:9b:5b:f7:94:bd:2f:fb:7a:85:fa: 64:18:71:07:45:71:52:40:e4:49:3d:67:11:23:4f: f2:49:5d:8d:e4:4b:27:1d:78:81:ab:bf:42:95:23: b4:72:1c:a8:9b:d8:6d:dd:48:c7:61:36:c0:04:20: 17:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:66:53:F5:EE:6D:9F:15:7A:51:86:DB:4C:F4:A5:C7:14:7C:1D:79 X509v3 Authority Key Identifier: keyid:32:D3:53:74:3C:8F:E2:F0:8E:97:B2:2E:5B:60:9A:BC:14:CC:FE:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MtNTdDyP4vCOl7IuW2CavBTM_js.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179F64/77BF0192624B11EFAB120F4FC4F9AE02/MtNTdDyP4vCOl7IuW2CavBTM_js.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:3d:4b:36:c0:34:3c:97:f6:24:00:2c:9c:be:7e:30:b3:0b: b4:59:42:4e:32:58:5a:98:39:96:45:5a:16:15:02:b2:86:d3: a1:55:d8:59:61:54:49:fa:00:91:a9:51:d7:5d:09:63:e1:65: a8:b6:94:82:4f:a8:05:ba:65:72:0e:7f:ad:1f:2f:e0:8d:0c: f4:89:0c:fa:cb:d8:7f:fc:45:ae:af:4f:96:30:5f:7c:e4:23: e9:67:ab:fd:43:17:32:a9:b5:1c:58:d4:d1:29:9b:57:ca:2e: 22:c1:5c:6a:62:43:1c:7f:a0:90:ca:22:c0:03:73:d5:bf:f2: d7:a9:32:00:f3:07:b9:a2:ef:88:2f:ef:03:6e:0f:12:76:f3: 1a:82:8b:b4:a6:d0:1e:3b:31:46:9e:27:90:9a:7e:93:f6:80: d8:c3:27:ec:90:fe:1a:b1:66:7a:a4:7c:13:28:1b:fe:55:c6: f1:fa:9c:7b:e8:c7:bb:37:74:91:b0:bd:d7:ac:be:55:f0:da: 7a:7f:c3:78:e1:9e:34:d4:8b:17:b9:92:3b:16:8b:78:0e:90: 9b:96:45:91:14:d5:af:7c:f9:d3:5b:64:ed:07:5d:bc:24:d7: 8f:61:06:36:89:ec:36:5d:2c:8e:15:c5:9c:a3:e7:73:48:26: 8a:43:23:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlGNjQxMTAvBgNVBAUTKDMyRDM1Mzc0M0M4RkUyRjA4RTk3QjIyRTVCNjA5QUJD MTRDQ0ZFM0IwHhcNMjUwODA5MDYyNjUwWhcNMjUwODE2MDYyNjUwWjAYMRYwFAYD VQQDEw02ODk2ZWEyYS00NjIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6jAYoVidWZLTDrDC77WRqArk/bwQqwvbUSeCLOd2GVo1PaDZcV++40DXqaO2 j+M9PJishPEiKXLJr5tdPLYKjHW9naEm+9RNT2kA/wxBYu/gHqsiY20GU1/2KaDg n2yoovXdyvA8ml0ilDY/07qusapcFZ/FEoRvjoF2MlbdKV0t98gkIrJU7WMxib8c LgGnhSAeDM72tGN5p6V37rE+DgbxHfth5pKxAYhhQpgStIcSkUBnJZr+Howp5+w/ XyV5qPkXrOKhuJtb95S9L/t6hfpkGHEHRXFSQORJPWcRI0/ySV2N5EsnHXiBq79C lSO0chyom9ht3UjHYTbABCAX9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZmU/Xu bZ8VelGG20z0pccUfB15MB8GA1UdIwQYMBaAFDLTU3Q8j+LwjpeyLltgmrwUzP47 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUY2NC83N0JGMDE5MjYy NEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2Q09sN0l1VzJDYXZCVE1f anMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL010TlRkRHlQNHZDT2w3SXVXMkNhdkJUTV9qcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OUY2NC83N0JGMDE5MjYyNEIxMUVGQUIxMjBGNEZDNEY5QUUwMi9NdE5UZER5UDR2 Q09sN0l1VzJDYXZCVE1fanMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0PUs2wDQ8l/YkACycvn4wswu0WUJOMlhamDmWRVoWFQKyhtOhVdhZ YVRJ+gCRqVHXXQlj4WWotpSCT6gFumVyDn+tHy/gjQz0iQz6y9h//EWur0+WMF98 5CPpZ6v9QxcyqbUcWNTRKZtXyi4iwVxqYkMcf6CQyiLAA3PVv/LXqTIA8we5ou+I L+8Dbg8SdvMagou0ptAeOzFGnieQmn6T9oDYwyfskP4asWZ6pHwTKBv+Vcbx+px7 6Me7N3SRsL3XrL5V8Np6f8N44Z401IsXuZI7Fot4DpCblkWRFNWvfPnTW2TtB128 JNePYQY2iew2XSyOFcWco+dzSCaKQyMc -----END CERTIFICATE-----Generated at Sun Aug 10 21:13:12 2025 by rpki-client