$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: 63+mzB7bEXJB0Tyo4rrlKNwzR7oY+bdUZO+6DyF1U7o= Subject key identifier: E2:B7:86:5F:FB:5A:33:97:EB:F9:FC:5A:5A:B7:3E:3A:91:0B:83:DE Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 04B1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 04AC Signing time: Wed 06 Aug 2025 16:37:52 +0000 Manifest this update: Wed 06 Aug 2025 16:37:52 +0000 Manifest next update: Wed 13 Aug 2025 16:37:52 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: GrL+LnOJat1HDqsHY3uzmXMbirh57z+WvNBebj3Ent0=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 16:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Aug 6 16:37:52 2025 GMT Not After : Aug 13 16:37:52 2025 GMT Subject: CN=689384e0-ff39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:84:b3:40:d5:5a:32:65:8f:32:00:fd:a9:ba: cc:c7:1b:66:52:e5:db:37:c4:77:ad:32:14:f5:ca: d1:46:e3:24:3c:0b:7f:7e:fe:9a:96:7d:6f:49:50: 13:b4:d7:cb:3c:ed:e8:6a:2c:82:db:f6:18:df:6d: 56:ce:25:8f:ef:2e:a8:3e:13:c8:e3:f8:1a:8d:03: 38:be:47:b5:1c:27:c7:ab:ad:44:b0:1f:11:5b:0a: cb:55:dc:32:8f:6a:b8:15:22:6c:b1:10:69:f6:66: 64:c2:3a:75:8f:c0:9c:6a:42:63:95:52:f3:79:88: a2:ff:49:49:c1:4f:5d:ad:34:69:e9:bd:63:66:6a: ec:53:78:20:25:55:cc:7b:8e:46:aa:2d:d9:8d:02: d0:82:c8:d1:75:bb:3d:f2:20:31:ae:5e:55:37:a8: 40:b6:d9:41:3f:2c:ff:c0:c9:ec:44:9d:12:1d:9b: 5d:1b:8d:be:73:56:4e:ee:a2:5b:d6:07:5b:5a:87: c9:7a:55:15:23:80:3c:00:61:c5:01:8e:0a:59:a9: 99:f2:60:d0:53:38:72:96:0b:6a:26:60:a6:f2:29: dd:a2:d3:8a:a7:9d:74:67:65:f0:e9:29:90:38:fe: c1:2b:27:a6:68:8f:51:2a:8a:66:76:b8:89:68:d6: 33:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:B7:86:5F:FB:5A:33:97:EB:F9:FC:5A:5A:B7:3E:3A:91:0B:83:DE X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:cf:b7:55:d7:35:78:b4:fe:6a:1a:2a:f2:a6:fa:b3:39:3e: ea:09:57:c5:62:f3:a5:35:6f:aa:53:b4:66:e2:88:34:06:4c: 44:25:9a:aa:2e:8d:f0:4c:fd:e3:f8:bf:0c:0c:15:f1:a8:6f: 73:f2:99:21:53:7a:71:b7:2f:08:38:1b:be:72:15:5d:29:60: 4c:fd:fe:06:f0:6c:cd:5d:8b:53:c0:56:53:c3:f7:4f:5a:76: 6c:09:9a:35:ab:91:49:9b:14:d8:28:b3:57:bc:1c:64:9b:e9: c6:67:99:5e:a9:ea:89:4f:50:11:27:43:39:4d:12:01:19:64: 5c:6b:e0:8f:79:d3:3a:f9:54:72:da:3a:47:61:4a:c3:ec:6f: 62:b4:d8:01:cd:44:4c:ff:cf:1d:ed:6f:fb:e5:98:4a:86:6d: 09:41:81:71:ae:56:f9:b3:b5:4d:e1:e6:a9:e6:23:8b:20:0c: 4b:96:27:3b:7a:99:87:7a:0f:7b:d7:bc:1e:b6:99:fe:2a:c5: 51:ea:96:78:69:56:e9:92:9d:bd:1d:95:48:9f:6b:31:64:bb: 11:ee:40:45:36:63:a3:cc:b3:54:e7:a4:52:d0:23:6a:f9:39: 86:2f:fd:2d:a7:bf:c4:02:25:de:1d:4b:a1:c0:ef:e3:c0:7b: 8c:42:4a:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjUwODA2MTYzNzUyWhcNMjUwODEzMTYzNzUyWjAYMRYwFAYD VQQDEw02ODkzODRlMC1mZjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoSzQNVaMmWPMgD9qbrMxxtmUuXbN8R3rTIU9crRRuMkPAt/fv6aln1vSVAT tNfLPO3oaiyC2/YY321WziWP7y6oPhPI4/gajQM4vke1HCfHq61EsB8RWwrLVdwy j2q4FSJssRBp9mZkwjp1j8CcakJjlVLzeYii/0lJwU9drTRp6b1jZmrsU3ggJVXM e45Gqi3ZjQLQgsjRdbs98iAxrl5VN6hAttlBPyz/wMnsRJ0SHZtdG42+c1ZO7qJb 1gdbWofJelUVI4A8AGHFAY4KWamZ8mDQUzhylgtqJmCm8indotOKp510Z2Xw6SmQ OP7BKyemaI9RKopmdriJaNYzxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOK3hl/7 WjOX6/n8Wlq3PjqRC4PeMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbz7dV1zV4tP5qGirypvqzOT7qCVfFYvOlNW+qU7Rm4og0BkxEJZqq Lo3wTP3j+L8MDBXxqG9z8pkhU3pxty8IOBu+chVdKWBM/f4G8GzNXYtTwFZTw/dP WnZsCZo1q5FJmxTYKLNXvBxkm+nGZ5leqeqJT1ARJ0M5TRIBGWRca+CPedM6+VRy 2jpHYUrD7G9itNgBzURM/88d7W/75ZhKhm0JQYFxrlb5s7VN4eap5iOLIAxLlic7 epmHeg9717wetpn+KsVR6pZ4aVbpkp29HZVIn2sxZLsR7kBFNmOjzLNU56RS0CNq +TmGL/0tp7/EAiXeHUuhwO/jwHuMQkrO -----END CERTIFICATE-----Generated at Thu Aug 7 01:58:31 2025 by rpki-client