$ rpki-client -vvf rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft File: x7Jkc1A4Cmo0404yzv41GZN-l8g.mft (raw, json) Hash identifier: LuFvpffYSWYxhQm9VCd15MJH9C6BSkL2MZyOsdeyNdY= Subject key identifier: CC:9C:1F:E0:3A:2B:F0:30:E4:0E:42:18:1C:C0:99:1B:DE:A2:01:DC Authority key identifier: C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 Certificate issuer: /CN=A9144F59/serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Certificate serial: 170D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft Manifest number: 16E5 Signing time: Fri 22 Aug 2025 16:46:42 +0000 Manifest this update: Fri 22 Aug 2025 16:46:42 +0000 Manifest next update: Fri 29 Aug 2025 16:46:42 +0000 Files and hashes: 1: x7Jkc1A4Cmo0404yzv41GZN-l8g.crl (hash: KnhCi8z9FqyU0q+65WpD1+sKwowzpVC6S7vX3Ih91s0=) 2: CCE4818E514D11EEADBDDC4DC4F9AE02.roa (hash: mHHD4iG0u+Xkwk4pjbL/x0UUJaJ5cYa7RlAiU7ksSOM=) 3: 0897E314434811EF8E76757AC4F9AE02.roa (hash: VmGRRamI92gsFHH67DOcSNfpbQCDWa56npBMPnLQFzI=) 4: 453489B8BE6311EE90BF9241C4F9AE02.roa (hash: bqFmiv55QKtXboSAyhppicmxMvI2sf59cazaYPcU9EY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:46:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5901 (0x170d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144F59, serialNumber=C7B2647350380A6A34E34E32CEFE3519937E97C8 Validity Not Before: Aug 22 16:46:42 2025 GMT Not After : Aug 29 16:46:42 2025 GMT Subject: CN=68a89ef2-0fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a1:73:6f:a9:f9:67:8d:ab:44:9a:da:15:1b: fc:73:00:2c:23:5c:bf:89:7b:1e:f2:cb:4e:df:63: f1:67:75:02:e2:23:30:ab:ff:78:f2:a8:e0:eb:e7: 24:af:52:28:10:58:fa:f2:ab:60:07:61:57:f6:2d: 50:5f:cf:61:ba:3b:23:15:e5:97:8f:23:f8:3a:40: f8:bd:e9:49:b6:59:76:3b:d9:8e:1e:78:8c:31:6a: 51:5d:4f:83:86:3c:3c:80:b8:94:7f:15:07:72:4b: d9:08:6b:70:83:16:a3:f7:76:00:2c:6f:b6:61:b7: d6:6f:7f:22:3a:50:5c:a9:73:96:a2:c8:cb:45:aa: a3:74:80:07:ae:3d:17:64:24:58:73:92:14:c2:22: 53:a0:15:45:b9:ce:c6:7c:4b:36:fd:02:8b:4e:bc: 42:0f:2b:f0:2e:89:0f:33:1d:41:79:52:82:a9:bb: 97:85:67:87:ed:c6:55:80:77:a4:cd:aa:d4:75:ad: 26:a9:57:1d:03:2b:ad:5e:20:8e:15:13:2b:48:5e: c0:4b:ab:de:8d:ef:8d:ff:63:11:ca:06:ba:5c:e0: a4:8a:19:ce:b4:a2:f6:b3:70:c6:66:c4:63:91:2c: 7b:66:ad:63:a2:36:e0:60:70:05:9b:8e:52:66:01: 3d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:9C:1F:E0:3A:2B:F0:30:E4:0E:42:18:1C:C0:99:1B:DE:A2:01:DC X509v3 Authority Key Identifier: keyid:C7:B2:64:73:50:38:0A:6A:34:E3:4E:32:CE:FE:35:19:93:7E:97:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7Jkc1A4Cmo0404yzv41GZN-l8g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144F59/4B958BCE00CB11E8BEB1EF10C4F9AE02/x7Jkc1A4Cmo0404yzv41GZN-l8g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:8e:f0:b1:c1:83:a6:bc:4b:37:2c:41:7b:17:64:94:20:22: dc:b3:43:2b:60:49:98:c2:a0:49:15:3a:27:21:32:55:f2:31: 65:c8:cc:7e:3b:4c:ee:90:7c:4f:53:a0:75:7e:67:c5:1c:4a: 9f:c0:f1:59:3e:86:eb:f0:bc:87:6a:8b:fb:a4:30:60:20:02: d4:20:38:5b:41:9c:5b:0d:15:e8:c4:99:07:bd:01:cb:e7:5f: 45:c7:f1:05:3e:66:49:64:2c:73:46:19:fd:23:50:34:cf:b8: 37:87:ea:76:64:f4:6e:5a:ea:2d:df:cb:39:a7:b9:1d:90:3c: 0a:4e:74:c9:94:a5:ef:3b:ca:1a:ba:d4:ac:73:bf:7b:fe:2d: 13:3a:dd:0b:9f:a1:48:c2:02:3f:31:f6:92:07:b1:ca:33:f7: 88:0f:f3:ce:63:15:cb:59:38:b1:02:d0:7f:72:42:07:ce:9a: 97:38:57:54:91:ac:b9:c8:33:9b:47:40:fa:2e:e0:7f:b8:20: 2c:6b:4f:32:f7:e1:7f:17:84:29:34:28:00:9e:8c:ec:8d:89: 62:76:97:78:f6:21:e0:fc:f8:53:d8:1f:06:72:6f:d1:47:5c: 65:9a:1a:b1:3d:7d:c5:a9:d0:b0:81:c6:b3:11:6b:82:33:f6: f3:70:0a:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRGNTkxMTAvBgNVBAUTKEM3QjI2NDczNTAzODBBNkEzNEUzNEUzMkNFRkUzNTE5 OTM3RTk3QzgwHhcNMjUwODIyMTY0NjQyWhcNMjUwODI5MTY0NjQyWjAYMRYwFAYD VQQDEw02OGE4OWVmMi0wZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKFzb6n5Z42rRJraFRv8cwAsI1y/iXse8stO32PxZ3UC4iMwq/948qjg6+ck r1IoEFj68qtgB2FX9i1QX89hujsjFeWXjyP4OkD4velJtll2O9mOHniMMWpRXU+D hjw8gLiUfxUHckvZCGtwgxaj93YALG+2YbfWb38iOlBcqXOWosjLRaqjdIAHrj0X ZCRYc5IUwiJToBVFuc7GfEs2/QKLTrxCDyvwLokPMx1BeVKCqbuXhWeH7cZVgHek zarUda0mqVcdAyutXiCOFRMrSF7AS6veje+N/2MRyga6XOCkihnOtKL2s3DGZsRj kSx7Zq1jojbgYHAFm45SZgE91wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMycH+A6 K/Aw5A5CGBzAmRveogHcMB8GA1UdIwQYMBaAFMeyZHNQOApqNONOMs7+NRmTfpfI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEY1OS80Qjk1OEJDRTAw Q0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENtbzA0MDR5enY0MUdaTi1s OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3SmtjMUE0Q21vMDQwNHl6djQxR1pOLWw4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NEY1OS80Qjk1OEJDRTAwQ0IxMUU4QkVCMUVGMTBDNEY5QUUwMi94N0prYzFBNENt bzA0MDR5enY0MUdaTi1sOGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRjvCxwYOmvEs3LEF7F2SUICLcs0MrYEmYwqBJFTonITJV8jFlyMx+ O0zukHxPU6B1fmfFHEqfwPFZPobr8LyHaov7pDBgIALUIDhbQZxbDRXoxJkHvQHL 519Fx/EFPmZJZCxzRhn9I1A0z7g3h+p2ZPRuWuot38s5p7kdkDwKTnTJlKXvO8oa utSsc797/i0TOt0Ln6FIwgI/MfaSB7HKM/eID/POYxXLWTixAtB/ckIHzpqXOFdU kay5yDObR0D6LuB/uCAsa08y9+F/F4QpNCgAnozsjYlidpd49iHg/PhT2B8Gcm/R R1xlmhqxPX3FqdCwgcazEWuCM/bzcAq6 -----END CERTIFICATE-----Generated at Sat Aug 23 07:34:57 2025 by rpki-client