$ rpki-client -vvf rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft File: aEWjVwdX5r8sBIWsIXib_1AFHpo.mft (raw, json) Hash identifier: 2SMLiWZfdtIb8YCM0VHEH0HyJSjFK8VAu0vV/NwLmzc= Subject key identifier: 9F:F8:18:94:38:06:82:20:F6:A7:EB:9D:8E:B9:F6:13:77:C8:1B:7B Authority key identifier: 68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A Certificate issuer: /CN=A913500A/serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Certificate serial: 0176 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft Manifest number: 0173 Signing time: Sat 23 Aug 2025 03:53:57 +0000 Manifest this update: Sat 23 Aug 2025 03:53:56 +0000 Manifest next update: Sat 30 Aug 2025 03:53:56 +0000 Files and hashes: 1: aEWjVwdX5r8sBIWsIXib_1AFHpo.crl (hash: JlwU+cYei4oHsrzugtPmslgvpGK/ukLejLU6d1eBl+I=) 2: 0CE4B8C6474911EEA995D74FC4F9AE02.roa (hash: o8XeNpRnuUBlVWA6mPKxdSovFEQUWjBzrI7Rs+4BJAM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913500A, serialNumber=6845A3570757E6BF2C0485AC21789BFF50051E9A Validity Not Before: Aug 23 03:53:56 2025 GMT Not After : Aug 30 03:53:56 2025 GMT Subject: CN=68a93b55-def3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c3:a1:69:c3:ca:42:21:55:69:20:ac:50:50: b4:08:4b:62:ba:03:5a:34:12:16:5d:6b:a2:63:52: 15:a7:ba:df:fb:99:29:77:c8:6d:57:30:9d:38:b3: 6a:e4:93:7d:7e:69:a6:6a:97:f8:d8:33:b6:6e:66: 82:bd:98:41:6a:de:a3:e0:f6:91:71:80:74:da:69: 4d:0b:eb:30:7d:c4:36:0c:e8:86:fa:69:42:30:67: b8:ef:69:b5:f0:0b:aa:68:3e:fb:bc:74:d7:a3:05: 10:a6:e9:e5:12:fe:f8:eb:62:db:e1:59:12:ff:a7: ec:20:09:24:b0:99:90:76:f6:9a:eb:03:23:6e:b5: b6:97:55:72:4a:e3:f3:0a:fe:cf:dd:f6:3f:3f:d5: c1:1e:86:d4:5b:d1:8b:83:b5:57:c2:98:55:59:e0: c9:69:f8:e1:61:6a:c3:4f:71:4f:c1:6f:6f:67:db: ea:dc:ce:1a:7b:d2:b8:00:ae:ef:7d:16:bd:49:8c: 04:04:1c:16:be:74:91:fe:c6:25:3e:d8:64:da:eb: c6:58:03:78:e1:70:4a:7f:4b:ef:15:ab:19:59:59: d1:eb:d1:d2:4a:09:60:20:58:db:a2:e7:49:0f:09: eb:12:a8:6e:5f:75:e3:07:bc:bc:26:96:a9:df:56: b0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F8:18:94:38:06:82:20:F6:A7:EB:9D:8E:B9:F6:13:77:C8:1B:7B X509v3 Authority Key Identifier: keyid:68:45:A3:57:07:57:E6:BF:2C:04:85:AC:21:78:9B:FF:50:05:1E:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aEWjVwdX5r8sBIWsIXib_1AFHpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913500A/CCA3EA92473F11EE87F40A7EC4F9AE02/aEWjVwdX5r8sBIWsIXib_1AFHpo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:c0:e9:29:c6:ea:b4:44:e3:1c:b6:1f:bc:63:5e:f7:f9:29: bd:e5:64:7e:6f:a9:af:46:51:2f:1f:a5:9b:0d:48:34:79:e1: 0c:78:81:d0:7d:a1:33:cb:c4:d0:8a:63:b0:cb:5e:93:91:5c: fc:ac:87:dd:70:54:c5:2d:a0:0c:4c:bb:df:ba:72:de:5b:1d: e3:9f:f0:75:b0:ac:22:7c:7f:4c:c7:57:cd:01:a3:65:2a:70: 96:25:4b:8e:49:8f:0b:e1:4f:9b:d4:0a:00:77:02:87:5d:c7: ae:25:15:dc:5a:a2:c1:8d:60:7a:5a:f0:dc:d3:1c:60:b5:31: fe:1a:d6:65:8a:be:d3:00:cd:5e:8d:a7:6a:81:44:a0:cb:0c: 94:9f:ef:c5:da:ed:54:fb:a0:41:a2:11:d1:60:c2:6b:65:a6: 55:69:9b:59:77:13:7f:8c:d4:07:fe:b3:b2:68:bd:db:64:ac: 33:72:9f:6a:e1:80:95:73:10:17:9c:2b:1f:36:59:1c:63:db: 09:d7:fa:38:11:bb:cc:fa:49:48:ad:39:7d:ee:0e:55:77:7e: bf:db:81:33:ee:61:38:8e:08:d1:70:00:4f:e9:f5:4e:49:c5: d4:ef:35:c6:f2:39:33:11:66:9d:4f:bd:3d:a8:18:9b:1d:4a: ad:4a:34:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMEExMTAvBgNVBAUTKDY4NDVBMzU3MDc1N0U2QkYyQzA0ODVBQzIxNzg5QkZG NTAwNTFFOUEwHhcNMjUwODIzMDM1MzU2WhcNMjUwODMwMDM1MzU2WjAYMRYwFAYD VQQDEw02OGE5M2I1NS1kZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvcOhacPKQiFVaSCsUFC0CEtiugNaNBIWXWuiY1IVp7rf+5kpd8htVzCdOLNq 5JN9fmmmapf42DO2bmaCvZhBat6j4PaRcYB02mlNC+swfcQ2DOiG+mlCMGe472m1 8AuqaD77vHTXowUQpunlEv7462Lb4VkS/6fsIAkksJmQdvaa6wMjbrW2l1VySuPz Cv7P3fY/P9XBHobUW9GLg7VXwphVWeDJafjhYWrDT3FPwW9vZ9vq3M4ae9K4AK7v fRa9SYwEBBwWvnSR/sYlPthk2uvGWAN44XBKf0vvFasZWVnR69HSSglgIFjboudJ DwnrEqhuX3XjB7y8Jpap31awKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/4GJQ4 BoIg9qfrnY659hN3yBt7MB8GA1UdIwQYMBaAFGhFo1cHV+a/LASFrCF4m/9QBR6a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAwQS9DQ0EzRUE5MjQ3 M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVyOHNCSVdzSVhpYl8xQUZI cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FFV2pWd2RYNXI4c0JJV3NJWGliXzFBRkhwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTAwQS9DQ0EzRUE5MjQ3M0YxMUVFODdGNDBBN0VDNEY5QUUwMi9hRVdqVndkWDVy OHNCSVdzSVhpYl8xQUZIcG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHwOkpxuq0ROMcth+8Y173+Sm95WR+b6mvRlEvH6WbDUg0eeEMeIHQ faEzy8TQimOwy16TkVz8rIfdcFTFLaAMTLvfunLeWx3jn/B1sKwifH9Mx1fNAaNl KnCWJUuOSY8L4U+b1AoAdwKHXceuJRXcWqLBjWB6WvDc0xxgtTH+GtZlir7TAM1e jadqgUSgywyUn+/F2u1U+6BBohHRYMJrZaZVaZtZdxN/jNQH/rOyaL3bZKwzcp9q 4YCVcxAXnCsfNlkcY9sJ1/o4EbvM+klIrTl97g5Vd36/24Ez7mE4jgjRcABP6fVO ScXU7zXG8jkzEWadT709qBibHUqtSjSx -----END CERTIFICATE-----Generated at Sat Aug 23 15:50:28 2025 by rpki-client