$ rpki-client -vvf rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft File: FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft (raw, json) Hash identifier: aLKe8LaUnmZsprHyIJdZ0WE7QGVFiNWG1irIChvWunw= Subject key identifier: F8:79:86:1E:EB:39:72:81:9E:04:1A:8B:F7:AF:52:30:C7:09:05:AA Authority key identifier: 15:28:F6:3D:28:F3:E1:36:69:02:C6:B6:4A:F5:86:6C:CB:A8:DA:C4 Certificate issuer: /CN=A9189BB3/serialNumber=1528F63D28F3E1366902C6B64AF5866CCBA8DAC4 Certificate serial: 05B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft Manifest number: 05A7 Signing time: Mon 04 Aug 2025 23:39:26 +0000 Manifest this update: Mon 04 Aug 2025 23:39:25 +0000 Manifest next update: Mon 11 Aug 2025 23:39:25 +0000 Files and hashes: 1: FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl (hash: 2VGjik4pdLvO12fkEniFiwm+DcAM78XJAKIonliklFg=) 2: AB532852B38911ED825BDC70C4F9AE02.roa (hash: ANHxtKugodgoKSgnFI0z3Q5CTPRRYAMndCAFyQe7v1g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1460 (0x5b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189BB3, serialNumber=1528F63D28F3E1366902C6B64AF5866CCBA8DAC4 Validity Not Before: Aug 4 23:39:25 2025 GMT Not After : Aug 11 23:39:25 2025 GMT Subject: CN=689144ae-25c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:40:07:96:0d:e4:3a:bf:36:17:08:d5:3a: 88:a6:89:02:a7:91:4a:cf:c0:e0:f7:c7:71:fe:fb: ae:38:23:ea:07:f7:3e:51:f7:d8:43:5e:cf:83:0c: 39:f5:06:70:1b:6b:e2:34:c8:b7:b3:ce:d4:40:61: 76:9f:8b:e5:6b:37:f7:e8:88:6d:fb:bb:ac:35:46: 04:29:4d:3f:8c:8e:06:b5:fc:81:6b:5f:da:7f:38: f5:2c:13:11:79:ec:e1:85:c2:6a:cb:b7:20:1e:62: d7:ac:b8:8d:1e:27:c4:8d:a2:8a:83:c6:b0:82:d9: cb:a8:41:37:0b:40:a5:56:63:c9:57:87:3d:4c:7e: 31:90:83:5f:f6:26:87:27:4d:0a:43:a9:70:4f:55: f0:dc:9a:ae:82:c8:d4:93:52:3e:38:48:92:1e:e5: 30:51:9c:a4:f6:fe:c8:8e:0d:10:08:f2:93:a6:58: 18:73:55:e5:e4:77:c4:dc:dd:71:21:39:71:00:60: 7e:4e:94:44:42:0f:7c:ed:03:8e:c2:5a:2e:ae:5b: 04:c5:cd:ab:b3:8d:dd:7f:d9:85:23:60:78:53:0f: 4b:b4:e2:6e:38:19:71:08:3d:6d:de:35:af:6c:35: 2e:f2:72:27:c9:bf:ee:6c:e4:b5:1a:ea:57:94:8c: 1e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:79:86:1E:EB:39:72:81:9E:04:1A:8B:F7:AF:52:30:C7:09:05:AA X509v3 Authority Key Identifier: keyid:15:28:F6:3D:28:F3:E1:36:69:02:C6:B6:4A:F5:86:6C:CB:A8:DA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189BB3/A4478674DFCE11EB959B501FC4F9AE02/FSj2PSjz4TZpAsa2SvWGbMuo2sQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:98:c9:5f:8c:af:6e:fd:8d:5a:8f:7a:f7:30:63:d8:d4:d5: 4e:8d:86:85:df:17:56:bc:8a:65:a2:ee:f9:52:51:6e:08:22: f1:bf:64:96:d2:df:9f:a5:d7:a8:35:63:09:5b:2f:ed:c5:9b: 57:de:d9:ec:9b:14:53:f7:64:91:a5:21:35:33:e8:57:28:25: 7c:88:94:bf:5c:dd:4e:1a:d8:7f:7e:56:1e:0a:2c:a4:01:30: f3:86:91:5d:f1:ad:6b:b1:25:ee:5c:a8:6b:62:6e:6f:6b:c8: b5:df:43:9b:8d:e9:d1:e6:3d:78:2b:35:b0:a0:21:4b:e4:86: 36:2c:fa:9b:68:88:72:04:04:76:aa:5d:32:3f:58:81:94:01: b7:ff:ec:3c:24:e5:05:2e:25:6b:3f:b0:85:af:69:f7:b2:5e: 7d:96:0e:3b:ac:b5:f1:4c:dc:b5:75:ce:ba:67:c5:c0:b3:4c: 03:30:40:87:b6:7d:8c:5f:70:23:c3:d7:d2:f9:0e:d2:5a:07: 7e:27:19:29:7f:75:1e:c6:08:72:9c:f2:a7:c8:44:47:15:25: 00:5d:d3:a5:41:ca:7d:74:4f:bf:81:de:6c:ec:eb:60:e0:b3: 92:f4:75:b9:63:cc:a8:15:e6:f3:03:dc:12:b4:36:3b:3b:7b: 8c:9c:e3:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlCQjMxMTAvBgNVBAUTKDE1MjhGNjNEMjhGM0UxMzY2OTAyQzZCNjRBRjU4NjZD Q0JBOERBQzQwHhcNMjUwODA0MjMzOTI1WhcNMjUwODExMjMzOTI1WjAYMRYwFAYD VQQDEw02ODkxNDRhZS0yNWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwehAB5YN5Dq/NhcI1TqIpokCp5FKz8Dg98dx/vuuOCPqB/c+UffYQ17Pgww5 9QZwG2viNMi3s87UQGF2n4vlazf36Iht+7usNUYEKU0/jI4GtfyBa1/afzj1LBMR eezhhcJqy7cgHmLXrLiNHifEjaKKg8awgtnLqEE3C0ClVmPJV4c9TH4xkINf9iaH J00KQ6lwT1Xw3JqugsjUk1I+OEiSHuUwUZyk9v7Ijg0QCPKTplgYc1Xl5HfE3N1x ITlxAGB+TpREQg987QOOwlourlsExc2rs43df9mFI2B4Uw9LtOJuOBlxCD1t3jWv bDUu8nInyb/ubOS1GupXlIwehwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPh5hh7r OXKBngQai/evUjDHCQWqMB8GA1UdIwQYMBaAFBUo9j0o8+E2aQLGtkr1hmzLqNrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUJCMy9BNDQ3ODY3NERG Q0UxMUVCOTU5QjUwMUZDNEY5QUUwMi9GU2oyUFNqejRUWnBBc2EyU3ZXR2JNdW8y c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTajJQU2p6NFRacEFzYTJTdldHYk11bzJzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUJCMy9BNDQ3ODY3NERGQ0UxMUVCOTU5QjUwMUZDNEY5QUUwMi9GU2oyUFNqejRU WnBBc2EyU3ZXR2JNdW8yc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdmMlfjK9u/Y1aj3r3MGPY1NVOjYaF3xdWvIplou75UlFuCCLxv2SW 0t+fpdeoNWMJWy/txZtX3tnsmxRT92SRpSE1M+hXKCV8iJS/XN1OGth/flYeCiyk ATDzhpFd8a1rsSXuXKhrYm5va8i130ObjenR5j14KzWwoCFL5IY2LPqbaIhyBAR2 ql0yP1iBlAG3/+w8JOUFLiVrP7CFr2n3sl59lg47rLXxTNy1dc66Z8XAs0wDMECH tn2MX3Ajw9fS+Q7SWgd+Jxkpf3UexghynPKnyERHFSUAXdOlQcp9dE+/gd5s7Otg 4LOS9HW5Y8yoFebzA9wStDY7O3uMnOPi -----END CERTIFICATE-----Generated at Wed Aug 6 13:17:55 2025 by rpki-client