$ rpki-client -vvf rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft File: A0iYvB-xsaJGF6zZvIMq6D6vni0.mft (raw, json) Hash identifier: 2c4cVg3tvi8JaEqR6yxqDExCx/LgX9gOBQjxGXmD3FA= Subject key identifier: 2D:DB:CB:28:59:30:67:F3:E3:CC:8A:9E:39:E9:BE:B6:03:8E:B2:75 Authority key identifier: 03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D Certificate issuer: /CN=A918D727/serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft Manifest number: 0175 Signing time: Sat 09 Aug 2025 04:07:45 +0000 Manifest this update: Sat 09 Aug 2025 04:07:45 +0000 Manifest next update: Sat 16 Aug 2025 04:07:45 +0000 Files and hashes: 1: A0iYvB-xsaJGF6zZvIMq6D6vni0.crl (hash: TC6p8+6if4oO2D1fxqe5+3f8oiJTczbyAVVv2R3iGj4=) 2: A7E3DAB237FB11EEBB03FD6CC4F9AE02.roa (hash: 8KhdFf717KdtqIgoQSLRSc05ReV0MsZo2CeN3+2la54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D727, serialNumber=034898BC1FB1B1A24617ACD9BC832AE83EAF9E2D Validity Not Before: Aug 9 04:07:45 2025 GMT Not After : Aug 16 04:07:45 2025 GMT Subject: CN=6896c991-e3bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:04:03:cc:ea:67:cc:04:0e:8c:03:3c:ed:62: 55:e6:a9:cc:21:e0:54:16:76:02:3b:c6:7a:50:2e: 85:f4:58:14:00:98:55:a1:fe:71:5a:0a:bb:ec:d8: dc:4f:36:b8:61:d0:48:59:cc:25:a7:d7:82:ea:7c: db:f4:fd:fa:cf:34:62:f3:ce:68:d1:c1:bd:19:2b: e7:68:d7:1a:52:cf:f3:52:c2:15:ad:9f:32:f7:01: 9b:33:7d:68:1c:80:38:28:64:c7:7d:f3:f7:3d:43: e9:47:fd:9d:1f:69:05:87:8b:43:8c:b0:59:cb:08: 44:1f:85:72:0d:6c:68:e9:46:ea:27:90:6d:f5:67: 9f:9d:5e:01:59:a3:b3:5d:2a:d2:ae:70:da:c3:fa: 49:a4:b1:e1:c6:38:b6:e7:24:fe:c9:49:38:0b:c5: 9a:e1:d3:c8:59:e2:db:74:2e:71:d5:49:58:6f:e0: 16:08:2c:f0:bf:4e:0d:f8:b0:6b:54:87:7c:54:a8: 77:8c:fb:c8:20:70:4b:98:0b:da:25:7a:94:fe:31: 9f:d5:47:50:c4:1a:64:ca:72:6f:a5:7a:25:84:f0: cc:df:39:84:b0:12:4f:5d:3a:30:fa:50:1a:36:1e: e9:ac:08:8a:34:7d:f8:a6:c5:29:92:4e:21:74:e9: 60:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DB:CB:28:59:30:67:F3:E3:CC:8A:9E:39:E9:BE:B6:03:8E:B2:75 X509v3 Authority Key Identifier: keyid:03:48:98:BC:1F:B1:B1:A2:46:17:AC:D9:BC:83:2A:E8:3E:AF:9E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A0iYvB-xsaJGF6zZvIMq6D6vni0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D727/4798FB0637FB11EEB4296D3DC4F9AE02/A0iYvB-xsaJGF6zZvIMq6D6vni0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:e2:10:d2:cc:51:58:a9:9f:fa:f9:68:6b:7b:61:5a:b0:74: 11:3e:1e:55:9c:1f:32:93:02:06:c0:6f:f1:dc:9f:19:64:a7: cb:41:13:b3:99:f0:24:64:a9:03:b7:55:0d:ec:e1:b7:6e:4b: 80:93:b1:df:f6:65:ec:bd:a7:1c:63:33:c5:21:67:32:9f:f6: 6c:30:81:6e:48:71:7e:a8:61:47:5c:ea:bf:51:a3:c4:9a:1d: e9:ed:a4:91:02:60:a8:11:ff:1b:0e:83:46:36:a1:75:4f:ef: 24:c2:70:35:f2:3a:2d:95:d5:01:7e:84:84:3b:0b:a9:ea:d1: 99:10:aa:8b:38:c5:04:9b:a6:8d:1b:2d:3c:a4:2c:bf:87:9c: 34:fb:3f:3e:05:7b:c5:d7:ef:64:5b:92:26:5d:98:90:ae:09: 45:e3:06:3e:11:e4:f5:88:33:db:73:05:72:99:89:6c:69:dc: e5:d9:f5:ea:5b:c1:5c:62:6c:64:49:c3:11:f0:4b:a0:33:38: 7a:15:33:50:9c:52:8c:c8:11:32:a5:37:b3:2e:58:1f:c5:cd: ff:6a:dc:ed:c1:4a:17:ea:1b:37:c3:8d:6c:4e:63:8f:d7:88: 64:d0:9f:f5:a8:f8:82:b2:74:44:19:d8:49:fe:17:fa:1f:46: 0a:a4:2e:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3MjcxMTAvBgNVBAUTKDAzNDg5OEJDMUZCMUIxQTI0NjE3QUNEOUJDODMyQUU4 M0VBRjlFMkQwHhcNMjUwODA5MDQwNzQ1WhcNMjUwODE2MDQwNzQ1WjAYMRYwFAYD VQQDEw02ODk2Yzk5MS1lM2JiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQQDzOpnzAQOjAM87WJV5qnMIeBUFnYCO8Z6UC6F9FgUAJhVof5xWgq77Njc Tza4YdBIWcwlp9eC6nzb9P36zzRi885o0cG9GSvnaNcaUs/zUsIVrZ8y9wGbM31o HIA4KGTHffP3PUPpR/2dH2kFh4tDjLBZywhEH4VyDWxo6UbqJ5Bt9WefnV4BWaOz XSrSrnDaw/pJpLHhxji25yT+yUk4C8Wa4dPIWeLbdC5x1UlYb+AWCCzwv04N+LBr VId8VKh3jPvIIHBLmAvaJXqU/jGf1UdQxBpkynJvpXolhPDM3zmEsBJPXTow+lAa Nh7prAiKNH34psUpkk4hdOlg1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC3byyhZ MGfz48yKnjnpvrYDjrJ1MB8GA1UdIwQYMBaAFANImLwfsbGiRhes2byDKug+r54t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDcyNy80Nzk4RkIwNjM3 RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNhSkdGNnpadklNcTZENnZu aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EwaVl2Qi14c2FKR0Y2elp2SU1xNkQ2dm5pMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDcyNy80Nzk4RkIwNjM3RkIxMUVFQjQyOTZEM0RDNEY5QUUwMi9BMGlZdkIteHNh SkdGNnpadklNcTZENnZuaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA14hDSzFFYqZ/6+Whre2FasHQRPh5VnB8ykwIGwG/x3J8ZZKfLQROz mfAkZKkDt1UN7OG3bkuAk7Hf9mXsvaccYzPFIWcyn/ZsMIFuSHF+qGFHXOq/UaPE mh3p7aSRAmCoEf8bDoNGNqF1T+8kwnA18jotldUBfoSEOwup6tGZEKqLOMUEm6aN Gy08pCy/h5w0+z8+BXvF1+9kW5ImXZiQrglF4wY+EeT1iDPbcwVymYlsadzl2fXq W8FcYmxkScMR8EugMzh6FTNQnFKMyBEypTezLlgfxc3/atztwUoX6hs3w41sTmOP 14hk0J/1qPiCsnREGdhJ/hf6H0YKpC7b -----END CERTIFICATE-----Generated at Sun Aug 10 18:14:50 2025 by rpki-client