$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: OsPSogzZpbQzfxmjLl0PYh2LUN6dvTNV3063ZJ8czdo= Subject key identifier: D9:72:08:20:D6:EA:C6:50:F4:41:29:27:8B:AA:99:B7:72:34:BE:97 Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0E14 Signing time: Fri 22 Aug 2025 17:57:18 +0000 Manifest this update: Fri 22 Aug 2025 17:57:18 +0000 Manifest next update: Fri 29 Aug 2025 17:57:18 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: iYTMKZcInZEFswfItPjYhpFqGCbwBdsRinr9pXvyRBM=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: TISln3OWwFMxrFHBXjhzJmsuAj7ldgpqpKcI/7qFxoU=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: cRBzFvwtKhO498akQMxVv4jrQ/Ofn1ctENdiE3NLHgk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:57:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3628 (0xe2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Aug 22 17:57:18 2025 GMT Not After : Aug 29 17:57:18 2025 GMT Subject: CN=68a8af7e-93f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f6:e3:61:01:7d:cc:08:c7:6a:93:4c:a7:21: 81:64:ce:17:96:17:42:81:37:4f:38:42:cf:67:bd: 5e:19:ab:ef:2b:8f:b3:88:dd:8c:18:e6:53:de:14: fe:c2:09:80:6b:60:1b:bb:a4:e7:ba:59:fe:29:4f: 49:3c:f1:f6:16:00:68:d3:a8:51:5c:d2:53:9f:37: 90:ff:14:c1:c0:26:8f:52:b9:0f:2f:d5:71:e4:0b: 42:e0:04:f5:41:97:26:72:79:2a:44:b2:a9:ad:74: 1c:e4:48:68:0f:0a:4c:4b:1e:b5:d1:77:72:3c:20: b6:54:d0:83:d3:03:ed:33:08:85:31:96:0c:17:c0: aa:40:fc:56:0e:e8:e0:f8:d8:0c:27:04:6b:5f:34: 0b:ce:22:3e:59:7d:28:b4:d4:22:80:14:24:3d:06: 5c:99:16:67:a7:4b:9b:a7:ff:db:57:54:95:a2:9a: 9f:a7:7e:51:7c:18:e9:01:cd:2d:35:6c:b8:b3:81: a5:89:3c:70:54:4b:3b:16:46:b0:58:3a:6e:ff:8a: 7f:5b:ed:8f:d5:09:e2:f4:d9:0f:62:d4:b8:72:5f: 8d:c5:35:b9:cf:92:a7:bb:33:0b:06:de:4a:ae:ae: 0f:02:29:20:16:69:ef:a0:57:a0:89:67:f1:6e:dc: 6e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:72:08:20:D6:EA:C6:50:F4:41:29:27:8B:AA:99:B7:72:34:BE:97 X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:9d:4c:e8:5a:1d:fb:ce:95:9a:56:6b:e9:ba:a0:a9:58:c8: 03:ac:d6:0a:97:d7:24:07:50:c1:b3:81:33:36:60:6b:9e:95: da:4f:f2:43:d1:36:38:34:18:21:ef:bf:a2:b3:57:1e:08:46: e3:2e:13:fe:4e:cd:15:c2:60:a2:e1:a2:33:43:f9:92:b8:d9: 01:9b:03:94:10:b1:e7:e7:5d:50:53:2e:19:fd:05:e7:ed:cf: 10:90:89:4d:c1:11:ee:89:65:46:88:b1:3f:e1:54:8e:33:22: 4a:43:1c:11:79:88:ba:16:a9:b4:74:8f:b5:ae:e6:71:e5:12: 8d:c1:5e:6e:a6:b4:b5:90:9b:80:ea:2b:64:4f:64:f7:93:06: b6:4f:91:bd:e6:ed:9b:68:18:1b:84:7c:90:ae:0d:dd:a8:04: f5:de:12:46:ee:f7:fe:69:81:bc:b5:62:09:b2:38:20:8b:1f: cb:8d:59:ec:dd:4a:2a:4d:da:64:58:e1:65:db:f7:9f:5c:60: b4:55:11:5a:76:80:c0:93:d3:39:02:b3:a4:72:59:4a:bf:63: c1:ae:32:9e:3d:81:a7:dc:fb:59:b7:1e:f5:52:fc:76:95:51: 5b:7b:8d:0b:84:52:d5:5e:2b:eb:ea:7d:67:6f:da:68:fb:39: ec:e8:44:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwODIyMTc1NzE4WhcNMjUwODI5MTc1NzE4WjAYMRYwFAYD VQQDEw02OGE4YWY3ZS05M2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/bjYQF9zAjHapNMpyGBZM4XlhdCgTdPOELPZ71eGavvK4+ziN2MGOZT3hT+ wgmAa2Abu6Tnuln+KU9JPPH2FgBo06hRXNJTnzeQ/xTBwCaPUrkPL9Vx5AtC4AT1 QZcmcnkqRLKprXQc5EhoDwpMSx610XdyPCC2VNCD0wPtMwiFMZYMF8CqQPxWDujg +NgMJwRrXzQLziI+WX0otNQigBQkPQZcmRZnp0ubp//bV1SVopqfp35RfBjpAc0t NWy4s4GliTxwVEs7FkawWDpu/4p/W+2P1Qni9NkPYtS4cl+NxTW5z5KnuzMLBt5K rq4PAikgFmnvoFegiWfxbtxuAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlyCCDW 6sZQ9EEpJ4uqmbdyNL6XMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAznUzoWh37zpWaVmvpuqCpWMgDrNYKl9ckB1DBs4EzNmBrnpXaT/JD 0TY4NBgh77+is1ceCEbjLhP+Ts0VwmCi4aIzQ/mSuNkBmwOUELHn511QUy4Z/QXn 7c8QkIlNwRHuiWVGiLE/4VSOMyJKQxwReYi6Fqm0dI+1ruZx5RKNwV5uprS1kJuA 6itkT2T3kwa2T5G95u2baBgbhHyQrg3dqAT13hJG7vf+aYG8tWIJsjggix/LjVns 3UoqTdpkWOFl2/efXGC0VRFadoDAk9M5ArOkcllKv2PBrjKePYGn3PtZtx71Uvx2 lVFbe40LhFLVXivr6n1nb9po+zns6ESG -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:36 2025 by rpki-client