$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: o5kQjWMNQiRbbyYNyLpjZxAY9AfAyZoJxKiZn2SxjHU= Subject key identifier: 53:2A:ED:2E:E6:98:EA:E5:1A:27:AB:D2:50:DE:99:93:7A:43:A9:FC Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 059E Signing time: Wed 06 Aug 2025 23:40:24 +0000 Manifest this update: Wed 06 Aug 2025 23:40:23 +0000 Manifest next update: Wed 13 Aug 2025 23:40:23 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: XOn9F/bV2I2oKwjPErAIqe1RS+HAX52LUhbqQLQ2aOQ=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 23:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1453 (0x5ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Aug 6 23:40:23 2025 GMT Not After : Aug 13 23:40:23 2025 GMT Subject: CN=6893e7e7-bd95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5a:55:03:71:d9:24:89:a0:c3:d3:e7:3b:9e: 5f:19:3d:70:03:9f:a2:75:71:50:fb:01:e1:12:70: b0:20:69:16:a8:88:dd:63:aa:17:f0:8e:08:c5:82: 5b:82:71:14:ee:c1:d1:d2:06:2e:71:f3:b4:86:d7: 87:8a:0e:0e:94:b3:44:c4:31:fe:09:ab:2d:47:18: 66:2e:2e:10:e6:15:36:67:39:f3:2f:04:0b:72:fc: 7e:7b:f6:ae:82:e3:ca:3a:69:88:7c:4c:4a:13:fb: 82:c3:9c:99:1c:ab:c6:53:21:40:b2:99:23:9c:2e: bd:84:bb:c0:76:18:27:57:e7:be:7b:0f:f6:77:d2: c5:ea:a3:32:47:f3:a1:8f:b9:0c:2d:39:9d:2b:27: 15:c6:c7:80:a9:a6:2a:70:ca:1b:73:c2:89:38:7a: f6:eb:fe:27:52:08:64:f5:27:4f:22:f8:1c:f4:de: 48:30:f6:c8:65:bb:24:e6:cd:fe:64:f9:df:e6:5e: 08:8b:46:bd:6b:76:eb:b3:62:0a:a1:93:e2:89:e8: 91:0f:fb:6b:13:ba:2b:34:79:9d:2f:5a:4a:73:85: bf:36:c4:0b:0d:e7:16:7b:ca:09:36:91:41:75:07: ed:b3:ec:f9:1e:7f:a3:4b:47:01:e1:d1:df:3d:4d: 73:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:2A:ED:2E:E6:98:EA:E5:1A:27:AB:D2:50:DE:99:93:7A:43:A9:FC X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:05:15:51:d5:4c:ae:94:f3:4f:63:70:28:75:aa:b1:92:68: 3b:b0:44:f1:52:44:98:31:06:f6:6c:0b:f9:71:f0:a1:ca:b1: 62:39:54:ec:9a:9f:c1:0a:17:cf:d8:eb:d4:56:b8:7f:9f:b9: 68:05:3f:d0:39:d5:7a:11:0d:94:5c:9e:6a:ff:9e:a8:d9:91: 91:63:9c:aa:68:e4:43:7e:69:da:35:39:9f:17:ae:ba:d8:e3: 51:a4:34:d7:16:c7:c5:99:d4:bf:42:68:f6:00:2c:75:d0:38: 92:3b:b5:18:4a:3c:22:03:e2:b1:2a:3e:db:a3:c7:d5:07:a1: 6c:5e:f8:61:72:8d:b1:fc:fd:83:fd:23:30:c7:2e:bd:35:d3: e5:02:b1:b7:f7:89:aa:a8:6d:e6:48:ff:71:1e:43:9e:69:0d: 5c:c5:3b:66:73:39:3c:f2:fa:13:28:f4:6c:8f:9a:68:db:fc: 38:d6:90:2d:bc:b3:9d:43:37:6e:d5:96:ff:d4:47:c0:9d:ab: cb:2c:8f:b1:91:71:04:3c:f3:f5:d4:77:da:a2:38:98:2f:6b: d2:b7:80:2f:9a:13:95:23:a5:15:96:4c:3f:e6:1e:c4:a1:e7: c9:85:1d:fe:96:a3:f0:88:76:1c:38:5a:33:a0:c2:c0:3e:7d: 6e:3b:1a:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwODA2MjM0MDIzWhcNMjUwODEzMjM0MDIzWjAYMRYwFAYD VQQDEw02ODkzZTdlNy1iZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1pVA3HZJImgw9PnO55fGT1wA5+idXFQ+wHhEnCwIGkWqIjdY6oX8I4IxYJb gnEU7sHR0gYucfO0hteHig4OlLNExDH+CastRxhmLi4Q5hU2ZznzLwQLcvx+e/au guPKOmmIfExKE/uCw5yZHKvGUyFAspkjnC69hLvAdhgnV+e+ew/2d9LF6qMyR/Oh j7kMLTmdKycVxseAqaYqcMobc8KJOHr26/4nUghk9SdPIvgc9N5IMPbIZbsk5s3+ ZPnf5l4Ii0a9a3brs2IKoZPiieiRD/trE7orNHmdL1pKc4W/NsQLDecWe8oJNpFB dQfts+z5Hn+jS0cB4dHfPU1zRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFMq7S7m mOrlGier0lDemZN6Q6n8MB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACBRVR1UyulPNPY3Aodaqxkmg7sETxUkSYMQb2bAv5cfChyrFiOVTs mp/BChfP2OvUVrh/n7loBT/QOdV6EQ2UXJ5q/56o2ZGRY5yqaORDfmnaNTmfF666 2ONRpDTXFsfFmdS/Qmj2ACx10DiSO7UYSjwiA+KxKj7bo8fVB6FsXvhhco2x/P2D /SMwxy69NdPlArG394mqqG3mSP9xHkOeaQ1cxTtmczk88voTKPRsj5po2/w41pAt vLOdQzdu1Zb/1EfAnavLLI+xkXEEPPP11HfaojiYL2vSt4AvmhOVI6UVlkw/5h7E oefJhR3+lqPwiHYcOFozoMLAPn1uOxr0 -----END CERTIFICATE-----Generated at Thu Aug 7 05:15:15 2025 by rpki-client