$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: SOCq4tIjZHRQhtYVritbKKktIChtD8VtxXoXbOugu3I= Subject key identifier: D8:78:AC:62:3B:26:9F:9E:BB:B3:06:95:FD:B1:52:DC:AE:32:8B:79 Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0AEB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AE4 Signing time: Wed 06 Aug 2025 19:40:16 +0000 Manifest this update: Wed 06 Aug 2025 19:40:15 +0000 Manifest next update: Wed 13 Aug 2025 19:40:15 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: 3m+SDq/G+VuFF0aCNREjbeBvB+sDO52QXP8exyLMXDk=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: vj3M9GWIecNQbzYctkTLvK5haUmE73bb2B+bBqSBJ9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:40:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2795 (0xaeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Aug 6 19:40:15 2025 GMT Not After : Aug 13 19:40:15 2025 GMT Subject: CN=6893afa0-da25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cd:65:c0:2b:50:c0:5b:43:fb:71:3e:65:a2: f0:b8:af:45:73:d3:ee:54:d8:e5:c3:52:b4:e0:f2: 82:ff:8e:a7:f3:9a:4d:3c:11:d7:59:aa:5d:4a:e9: a6:a5:30:18:53:15:16:35:38:0d:9b:0f:3e:77:b8: 54:13:a4:e0:eb:3c:46:0a:51:e4:23:cd:bf:01:1b: 4f:2b:6f:04:f1:f7:cc:cc:05:36:9d:9b:4f:74:97: 82:ef:78:7b:e8:4f:e3:08:5d:70:5d:43:98:77:f9: 60:67:99:15:c0:bf:ef:f5:c7:08:52:3f:08:0a:4d: 64:b4:77:36:3b:aa:67:95:ed:2e:cc:54:cb:12:3f: f5:91:65:a9:65:b9:f0:8e:1b:a2:e7:41:ee:ae:c2: 92:84:f9:c9:73:f3:25:ca:83:9d:7f:98:d2:8d:9d: 5d:ae:e5:1e:fc:dc:de:9b:92:d9:98:9d:0d:fb:9b: dc:cd:25:22:b3:5f:dd:24:1d:4c:c0:f3:57:cf:5b: f3:1f:e7:4c:90:2d:8a:bc:2e:6d:23:a9:56:ce:40: c4:af:76:66:68:0d:6a:12:16:53:94:a0:52:4e:24: 11:24:3f:51:c9:61:08:0c:1a:4b:d1:be:17:cc:00: 7f:59:ec:d6:fa:8f:5e:bc:74:a4:46:76:5a:a5:29: 5e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:78:AC:62:3B:26:9F:9E:BB:B3:06:95:FD:B1:52:DC:AE:32:8B:79 X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:00:30:2b:e9:4e:6e:70:39:24:e5:54:63:5d:68:17:6b:4f: 5e:02:85:2c:96:b5:8a:ae:eb:80:5b:d5:11:81:8e:0f:8f:65: 47:73:a7:6d:23:d3:5a:74:83:3b:66:81:b5:f4:70:4c:89:b5: 32:84:fa:d6:b0:e6:c6:fb:90:01:43:fb:24:1e:7c:d9:14:1b: 4e:1b:0f:ad:33:ba:1e:f6:20:e5:73:59:40:d5:13:aa:1c:40: a0:5c:ba:2d:0a:ac:b4:55:84:b9:16:c4:5c:44:9d:2c:5b:cc: a7:38:ed:87:76:59:82:b6:4f:2e:3b:53:e6:13:14:be:ac:8b: 06:2f:f3:66:66:46:41:49:d7:1e:46:da:87:37:8b:54:09:30: 08:90:54:79:2c:53:16:bc:18:6e:01:ef:92:3a:3a:e9:24:ef: 02:1c:8c:5e:56:fc:1f:7f:ea:a0:3b:18:89:91:c9:07:fe:92: 0a:40:cd:99:73:c7:e2:02:d8:03:f8:89:db:df:45:52:9f:69: 06:c7:2f:48:b0:aa:98:78:56:03:2f:35:06:70:80:6d:15:e2: 3c:b4:54:7e:36:88:85:b6:fd:1d:91:c2:12:ca:dc:74:ce:96: 1e:43:16:85:ec:d1:bb:c2:54:cb:8e:14:7b:be:6b:5b:50:f3: ba:d2:e9:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwODA2MTk0MDE1WhcNMjUwODEzMTk0MDE1WjAYMRYwFAYD VQQDEw02ODkzYWZhMC1kYTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvs1lwCtQwFtD+3E+ZaLwuK9Fc9PuVNjlw1K04PKC/46n85pNPBHXWapdSumm pTAYUxUWNTgNmw8+d7hUE6Tg6zxGClHkI82/ARtPK28E8ffMzAU2nZtPdJeC73h7 6E/jCF1wXUOYd/lgZ5kVwL/v9ccIUj8ICk1ktHc2O6pnle0uzFTLEj/1kWWpZbnw jhui50HursKShPnJc/MlyoOdf5jSjZ1druUe/Nzem5LZmJ0N+5vczSUis1/dJB1M wPNXz1vzH+dMkC2KvC5tI6lWzkDEr3ZmaA1qEhZTlKBSTiQRJD9RyWEIDBpL0b4X zAB/WezW+o9evHSkRnZapSlezQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNh4rGI7 Jp+eu7MGlf2xUtyuMot5MB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnADAr6U5ucDkk5VRjXWgXa09eAoUslrWKruuAW9URgY4Pj2VHc6dt I9NadIM7ZoG19HBMibUyhPrWsObG+5ABQ/skHnzZFBtOGw+tM7oe9iDlc1lA1ROq HECgXLotCqy0VYS5FsRcRJ0sW8ynOO2HdlmCtk8uO1PmExS+rIsGL/NmZkZBSdce RtqHN4tUCTAIkFR5LFMWvBhuAe+SOjrpJO8CHIxeVvwff+qgOxiJkckH/pIKQM2Z c8fiAtgD+Inb30VSn2kGxy9IsKqYeFYDLzUGcIBtFeI8tFR+NoiFtv0dkcISytx0 zpYeQxaF7NG7wlTLjhR7vmtbUPO60ull -----END CERTIFICATE-----Generated at Fri Aug 8 20:49:51 2025 by rpki-client