$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: 6261bubgvhubwqeXvh08A6VVkDdlOOh8Sjl1kXv2vkI= Subject key identifier: 33:CE:57:78:F8:FC:52:BE:CC:54:83:31:2C:A5:23:86:14:F1:22:AC Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23BC Signing time: Tue 12 Aug 2025 15:53:07 +0000 Manifest this update: Tue 12 Aug 2025 15:53:07 +0000 Manifest next update: Tue 19 Aug 2025 15:53:07 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: tvgqhNCdZVPQOzvybaXDbZJLmKrdUvE+A/42yTQu6ZM=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 15:53:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9195 (0x23eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Aug 12 15:53:07 2025 GMT Not After : Aug 19 15:53:07 2025 GMT Subject: CN=689b6363-2816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:eb:8b:58:72:cf:86:6c:43:2a:7f:64:22:8e: cb:af:5b:2d:ac:d4:5a:9b:b0:a9:ce:81:a2:6b:9f: 48:1d:29:de:00:76:36:36:29:ce:aa:99:20:4c:75: a0:05:b7:e9:24:29:94:3c:c7:61:ee:b9:12:77:19: cc:7a:ad:3d:d1:20:b5:c3:90:38:65:28:4e:39:f8: 77:82:92:94:bf:88:48:39:01:0d:3c:53:a8:22:d1: 56:96:f1:b3:dd:d3:9f:6a:63:f6:79:ef:a8:78:0c: dc:b1:18:1f:e7:d5:85:5b:67:ba:46:63:8c:b4:d0: 9c:e2:1a:4e:29:07:fc:9a:ae:e4:e7:ff:ea:70:37: 98:d9:5b:77:80:b9:26:78:28:b9:c4:c3:29:09:83: 9c:dd:28:6c:33:b4:0e:85:ac:41:ff:a6:c9:9b:41: e1:07:a8:74:ba:43:47:7c:e4:11:ba:fb:e4:9b:70: da:27:ea:49:74:2f:5e:66:88:5b:ae:c9:49:15:03: 81:66:da:0d:a3:6d:c0:a3:49:3b:b2:34:9a:4f:ea: 3d:94:e4:d8:86:15:76:65:5a:41:77:e1:8c:42:46: 71:e9:14:e1:66:66:94:18:07:8a:03:78:55:b5:c2: a5:4f:8f:dc:c6:10:66:d9:a6:43:c7:f7:b6:e5:85: c0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CE:57:78:F8:FC:52:BE:CC:54:83:31:2C:A5:23:86:14:F1:22:AC X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:d1:4e:07:2f:ed:d9:4e:95:52:1d:47:1b:6b:20:0c:7f:9b: fc:3c:9c:88:47:2a:e2:d2:a4:64:ef:b8:49:73:f2:57:ba:1b: d7:df:7e:ae:fc:f0:ad:a0:27:72:d7:a1:e9:93:7d:e6:fc:74: a8:e8:bd:1b:27:68:fa:c4:a1:bb:5e:0f:40:f7:66:c7:db:05: f7:c2:46:ab:30:9c:39:71:27:4a:9b:8a:12:49:c1:64:60:41: 2f:9d:9f:95:56:5c:5b:26:ee:dc:ff:ad:26:d7:61:3d:0a:2c: 35:48:68:46:32:71:29:cc:85:9a:58:85:21:91:0e:36:39:51: f5:1e:65:15:05:2a:00:54:05:9f:db:41:9f:ea:ac:90:b3:f3: f1:e1:70:b6:53:c3:37:e4:c1:e4:1d:ad:00:49:08:60:d7:8e: 4b:a9:d9:ef:29:70:58:f6:be:47:3c:ba:86:06:d6:16:59:53: eb:56:18:57:e6:15:1b:12:1d:50:c6:e5:ac:7d:59:be:d9:28: eb:95:d3:48:4b:9d:cc:13:ee:96:6f:a2:52:95:6b:7d:89:c3: aa:f2:ff:54:dd:7a:a0:ed:6e:46:d9:9a:6e:1a:77:ee:74:ce: ef:8c:3d:cf:98:ba:a9:b6:a9:65:eb:83:7f:98:f3:3a:4e:d7: de:41:22:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI+swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwODEyMTU1MzA3WhcNMjUwODE5MTU1MzA3WjAYMRYwFAYD VQQDEw02ODliNjM2My0yODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueuLWHLPhmxDKn9kIo7Lr1strNRam7CpzoGia59IHSneAHY2NinOqpkgTHWg BbfpJCmUPMdh7rkSdxnMeq090SC1w5A4ZShOOfh3gpKUv4hIOQENPFOoItFWlvGz 3dOfamP2ee+oeAzcsRgf59WFW2e6RmOMtNCc4hpOKQf8mq7k5//qcDeY2Vt3gLkm eCi5xMMpCYOc3ShsM7QOhaxB/6bJm0HhB6h0ukNHfOQRuvvkm3DaJ+pJdC9eZohb rslJFQOBZtoNo23Ao0k7sjSaT+o9lOTYhhV2ZVpBd+GMQkZx6RThZmaUGAeKA3hV tcKlT4/cxhBm2aZDx/e25YXABQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDPOV3j4 /FK+zFSDMSylI4YU8SKsMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCk0U4HL+3ZTpVSHUcbayAMf5v8PJyIRyri0qRk77hJc/JXuhvX336u /PCtoCdy16Hpk33m/HSo6L0bJ2j6xKG7Xg9A92bH2wX3wkarMJw5cSdKm4oSScFk YEEvnZ+VVlxbJu7c/60m12E9Ciw1SGhGMnEpzIWaWIUhkQ42OVH1HmUVBSoAVAWf 20Gf6qyQs/Px4XC2U8M35MHkHa0ASQhg145LqdnvKXBY9r5HPLqGBtYWWVPrVhhX 5hUbEh1QxuWsfVm+2SjrldNIS53ME+6Wb6JSlWt9icOq8v9U3Xqg7W5G2ZpuGnfu dM7vjD3PmLqptqll64N/mPM6TtfeQSLu -----END CERTIFICATE-----Generated at Wed Aug 13 05:32:56 2025 by rpki-client