$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: sNUamaTP8YGqRYTVabuxrU9fyewjMp+uhjBqtZ/SoIk= Subject key identifier: C0:8D:CF:58:B0:A4:94:33:E1:C2:4A:52:7D:0C:0B:9E:93:99:CF:26 Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: 8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: 8B Signing time: Sat 23 Aug 2025 06:46:18 +0000 Manifest this update: Sat 23 Aug 2025 06:46:17 +0000 Manifest next update: Sat 30 Aug 2025 06:46:17 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: QIHRSx2WszO4UB5+IEujSpg+l5Z/A4S/GUfRKpwQeO4=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:46:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Aug 23 06:46:17 2025 GMT Not After : Aug 30 06:46:17 2025 GMT Subject: CN=68a963ba-6f5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:07:7f:c9:c9:e4:eb:98:42:07:74:66:cd: 93:27:8d:62:a5:1e:47:99:6e:a5:b0:32:2b:e5:d4: 30:c5:b1:9f:77:f3:c9:65:5d:b0:41:a6:cf:e6:22: f9:30:b7:6f:c2:49:9e:7f:5d:97:2f:65:54:81:23: 7c:b1:8a:52:a2:e5:ad:61:da:c5:3a:0d:65:c7:c5: 2b:ad:1e:8c:a7:fd:bd:ba:73:c1:b8:ed:17:8d:aa: 70:ca:db:64:83:79:83:0e:5a:13:bc:4f:13:96:b0: df:7f:44:79:c3:cd:60:52:52:6f:cb:e0:3d:58:05: c3:35:11:c3:1f:dc:c7:53:28:85:63:38:d7:76:7d: 8f:8c:ec:bb:cb:4d:10:cd:01:cc:8e:da:d7:1d:ac: ca:5a:a3:3b:3a:54:fb:37:39:59:59:d5:66:14:cb: 0e:af:08:13:a1:4c:e7:c5:17:e7:4c:9e:5e:36:67: 87:78:b3:5a:60:6b:c4:72:66:5b:c0:fb:c1:22:ae: 94:d5:bd:d3:0b:a6:bc:5c:b4:7a:22:45:e3:43:b8: 87:77:4a:73:6f:4c:45:e1:9c:5f:3f:83:74:67:a7: 0b:33:ec:e9:fa:4b:0f:f1:23:4e:fe:c2:f8:45:d7: 02:b5:42:5d:b1:9f:e0:4f:89:6f:98:61:66:ca:7d: 0f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:8D:CF:58:B0:A4:94:33:E1:C2:4A:52:7D:0C:0B:9E:93:99:CF:26 X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:09:22:9e:4f:3c:10:e6:38:f3:1f:25:85:de:a8:16:91:94: dc:40:84:63:99:5e:e7:0a:00:e9:d5:16:54:7c:e4:41:d3:00: 18:5a:40:ee:f9:b0:ea:81:95:a4:f6:6c:5b:db:2f:b3:f0:ca: 40:2d:e0:16:76:9e:00:79:b7:f9:d6:3a:9a:7b:56:ba:1a:27: c4:61:24:17:a3:f7:02:18:9b:df:b7:14:32:1a:de:db:eb:28: 85:53:36:29:0f:b0:18:3d:31:18:4c:d4:25:ab:97:cf:0f:a0: 8f:50:e1:73:3b:f3:7e:36:e9:a1:92:7b:e1:ec:9e:77:4f:9e: 45:d9:f9:a8:0b:14:c0:23:f8:e3:60:94:13:99:60:7d:b7:a6: 5d:0f:38:ec:1c:b9:3b:61:f4:b3:17:62:10:25:55:db:f4:1d: 37:4e:1f:68:6f:d0:be:25:65:4e:eb:3f:2a:a5:f6:7e:ab:6f: 53:7a:03:4f:90:48:45:67:6a:ec:0f:be:ae:ff:8c:85:b1:8a: 60:4b:7b:3c:71:0a:fa:6b:99:34:88:50:e7:02:a2:c3:d5:94: f8:f6:81:64:18:b5:16:ba:c9:5b:07:00:0a:bd:70:50:1b:ce: f7:f3:d2:45:23:cf:7e:d8:1b:2e:ed:fd:c5:83:f9:f7:7d:56: 5e:1a:b9:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYxNzkxMTAvBgNVBAUTKEE2MjNEQzA1RUU3QzIzNzBDQTQ0NDMxMDg0REU1MTMy MUYzN0E3MDQwHhcNMjUwODIzMDY0NjE3WhcNMjUwODMwMDY0NjE3WjAYMRYwFAYD VQQDEw02OGE5NjNiYS02ZjVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGkHf8nJ5OuYQgd0Zs2TJ41ipR5HmW6lsDIr5dQwxbGfd/PJZV2wQabP5iL5 MLdvwkmef12XL2VUgSN8sYpSouWtYdrFOg1lx8UrrR6Mp/29unPBuO0Xjapwyttk g3mDDloTvE8TlrDff0R5w81gUlJvy+A9WAXDNRHDH9zHUyiFYzjXdn2PjOy7y00Q zQHMjtrXHazKWqM7OlT7NzlZWdVmFMsOrwgToUznxRfnTJ5eNmeHeLNaYGvEcmZb wPvBIq6U1b3TC6a8XLR6IkXjQ7iHd0pzb0xF4ZxfP4N0Z6cLM+zp+ksP8SNO/sL4 RdcCtUJdsZ/gT4lvmGFmyn0PFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCNz1iw pJQz4cJKUn0MC56Tmc8mMB8GA1UdIwQYMBaAFKYj3AXufCNwykRDEITeUTIfN6cE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjE3OS80QkZEOUJCQ0FB N0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkzREtSRU1RaE41Uk1oODNw d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkz REtSRU1RaE41Uk1oODNwd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeCSKeTzwQ5jjzHyWF3qgWkZTcQIRjmV7nCgDp1RZUfORB0wAYWkDu +bDqgZWk9mxb2y+z8MpALeAWdp4Aebf51jqae1a6GifEYSQXo/cCGJvftxQyGt7b 6yiFUzYpD7AYPTEYTNQlq5fPD6CPUOFzO/N+Numhknvh7J53T55F2fmoCxTAI/jj YJQTmWB9t6ZdDzjsHLk7YfSzF2IQJVXb9B03Th9ob9C+JWVO6z8qpfZ+q29TegNP kEhFZ2rsD76u/4yFsYpgS3s8cQr6a5k0iFDnAqLD1ZT49oFkGLUWuslbBwAKvXBQ G87389JFI89+2Bsu7f3Fg/n3fVZeGrkY -----END CERTIFICATE-----Generated at Sat Aug 23 19:13:17 2025 by rpki-client