$ rpki-client -vvf rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft File: thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft (raw, json) Hash identifier: fVqujc+s3RRoN1IVA/jUtNKgH1xTUkk1LZqHcMDeaMA= Subject key identifier: 16:4B:8D:29:F2:5B:1D:E7:28:1A:B4:B6:A3:51:CE:50:89:38:B8:B4 Authority key identifier: B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 Certificate issuer: /CN=A9118B32/serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Certificate serial: 03CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft Manifest number: 03C5 Signing time: Sat 23 Aug 2025 00:53:28 +0000 Manifest this update: Sat 23 Aug 2025 00:53:28 +0000 Manifest next update: Sat 30 Aug 2025 00:53:28 +0000 Files and hashes: 1: thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl (hash: c72ysF2Shk6nPVCEzxjRYGM+VmbdxuRPxXUvXZ2UnjY=) 2: 0F291AFE9D2811EC83448E6FC4F9AE02.roa (hash: p2rd5X9PRaHj3dg5SJAK0M8GBgiGK7ul3HPfe5PMkz4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118B32, serialNumber=B61103A5C9CC60EAD188A2F9FD11E63D5233D995 Validity Not Before: Aug 23 00:53:28 2025 GMT Not After : Aug 30 00:53:28 2025 GMT Subject: CN=68a91108-c69a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:5e:83:cb:df:46:60:4b:46:11:59:ba:f4:6d: 50:2d:e9:8c:49:d1:10:35:73:0e:0a:74:01:3b:16: 92:cd:3f:8a:36:f5:89:7c:0b:4a:f7:06:20:7f:c3: 02:68:bf:16:19:37:4a:98:19:6a:ff:fe:c8:d6:e4: 6f:a5:0b:e8:ef:df:74:cd:50:d1:0a:bd:b4:d7:48: a4:e0:ae:12:6b:0f:4e:ff:46:08:fb:b4:d1:1d:58: 37:e7:15:37:c5:3d:c9:1b:aa:9b:59:52:28:8d:ec: d3:38:59:24:eb:bd:4f:f3:1e:07:63:dd:69:ea:1d: cd:26:4d:4a:b6:35:0e:aa:20:79:c0:5a:9c:8e:3a: 92:72:34:c2:3b:9c:cc:c4:2c:30:eb:4a:19:0c:ea: 7b:ee:f0:73:f5:c0:b2:ec:5b:84:5d:58:2a:3d:12: 1a:17:ef:a7:f5:1f:6b:ed:c5:90:fb:40:12:1b:db: b7:71:2d:ad:c5:96:69:29:87:6d:01:3d:83:de:85: 42:ab:c3:c0:9a:df:fa:72:05:99:b2:69:37:65:6e: 30:02:8e:e9:f3:0e:80:58:37:f3:ab:78:77:72:a3: 37:66:2f:02:73:a4:c5:d7:23:f2:ce:81:51:03:c4: 26:95:59:1e:f8:7d:45:c7:d2:e5:d9:ba:a0:93:80: cc:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:4B:8D:29:F2:5B:1D:E7:28:1A:B4:B6:A3:51:CE:50:89:38:B8:B4 X509v3 Authority Key Identifier: keyid:B6:11:03:A5:C9:CC:60:EA:D1:88:A2:F9:FD:11:E6:3D:52:33:D9:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/thEDpcnMYOrRiKL5_RHmPVIz2ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118B32/FF771BBC9D2511EC85FDF36EC4F9AE02/thEDpcnMYOrRiKL5_RHmPVIz2ZU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:e5:ce:1d:9a:65:b8:ad:e7:a5:e3:67:32:f2:5e:57:c0:e2: 95:c2:ed:3f:bc:2b:fd:59:03:dc:a9:a6:01:b4:39:a3:cf:48: 36:03:75:ef:9b:98:93:cd:78:dd:1b:7d:33:1b:b0:f2:3a:e7: 30:98:a1:28:76:2c:1a:6f:80:32:24:2b:f5:1d:97:6a:0c:a3: 37:7d:12:09:10:d4:00:43:84:e6:32:7a:4f:f0:8c:3f:ba:fa: 5b:c1:6b:15:d0:c7:98:3d:44:83:bd:c5:e9:ff:ea:00:2f:f1: e4:17:0b:9e:ac:cc:0c:32:46:96:6b:a8:55:af:d5:a4:fe:de: 1b:c5:00:ee:e1:64:ea:a4:fd:2e:77:0c:b2:97:ee:1a:da:3e: d3:55:4f:64:b1:98:7e:05:96:1b:e5:ab:6c:a0:ce:e9:cf:8e: 8e:a4:20:f3:7f:c5:41:42:ff:0f:d4:79:aa:dd:8d:c7:93:9c: ca:ab:59:be:a8:7c:0a:61:a8:9a:3b:39:4c:7a:ba:68:0d:fb: c3:df:77:b5:46:92:2e:18:e7:50:19:6c:c9:15:8f:63:27:db: d2:f2:12:7f:05:ed:ff:c3:ee:dd:ba:91:ba:34:7c:bf:fb:1f: 06:25:8f:4b:fb:7f:bc:07:5e:6a:a4:46:c1:3b:1b:c6:45:79: 3c:01:40:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThCMzIxMTAvBgNVBAUTKEI2MTEwM0E1QzlDQzYwRUFEMTg4QTJGOUZEMTFFNjNE NTIzM0Q5OTUwHhcNMjUwODIzMDA1MzI4WhcNMjUwODMwMDA1MzI4WjAYMRYwFAYD VQQDEw02OGE5MTEwOC1jNjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoF6Dy99GYEtGEVm69G1QLemMSdEQNXMOCnQBOxaSzT+KNvWJfAtK9wYgf8MC aL8WGTdKmBlq//7I1uRvpQvo7990zVDRCr2010ik4K4Saw9O/0YI+7TRHVg35xU3 xT3JG6qbWVIojezTOFkk671P8x4HY91p6h3NJk1KtjUOqiB5wFqcjjqScjTCO5zM xCww60oZDOp77vBz9cCy7FuEXVgqPRIaF++n9R9r7cWQ+0ASG9u3cS2txZZpKYdt AT2D3oVCq8PAmt/6cgWZsmk3ZW4wAo7p8w6AWDfzq3h3cqM3Zi8Cc6TF1yPyzoFR A8QmlVke+H1Fx9Ll2bqgk4DMMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBZLjSny Wx3nKBq0tqNRzlCJOLi0MB8GA1UdIwQYMBaAFLYRA6XJzGDq0Yii+f0R5j1SM9mV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEIzMi9GRjc3MUJCQzlE MjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlPclJpS0w1X1JIbVBWSXoy WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RoRURwY25NWU9yUmlLTDVfUkhtUFZJejJaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEIzMi9GRjc3MUJCQzlEMjUxMUVDODVGREYzNkVDNEY5QUUwMi90aEVEcGNuTVlP clJpS0w1X1JIbVBWSXoyWlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN5c4dmmW4reel42cy8l5XwOKVwu0/vCv9WQPcqaYBtDmjz0g2A3Xv m5iTzXjdG30zG7DyOucwmKEodiwab4AyJCv1HZdqDKM3fRIJENQAQ4TmMnpP8Iw/ uvpbwWsV0MeYPUSDvcXp/+oAL/HkFwuerMwMMkaWa6hVr9Wk/t4bxQDu4WTqpP0u dwyyl+4a2j7TVU9ksZh+BZYb5atsoM7pz46OpCDzf8VBQv8P1Hmq3Y3Hk5zKq1m+ qHwKYaiaOzlMerpoDfvD33e1RpIuGOdQGWzJFY9jJ9vS8hJ/Be3/w+7dupG6NHy/ +x8GJY9L+3+8B15qpEbBOxvGRXk8AUAI -----END CERTIFICATE-----Generated at Sat Aug 23 18:39:30 2025 by rpki-client