$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: Q+zshpttv6tVjoXmzT5u7mcmSRVDDvy549ao3MQ8kA8= Subject key identifier: 75:5D:EB:D7:43:E1:2B:BD:8D:33:9D:0F:78:39:C8:AF:DF:12:ED:7B Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 03CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03C0 Signing time: Sat 23 Aug 2025 00:53:35 +0000 Manifest this update: Sat 23 Aug 2025 00:53:35 +0000 Manifest next update: Sat 30 Aug 2025 00:53:35 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: wTTYty8NvFvxZ1BahHARUTR/JOhYL101J55jDvS4HTw=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 972 (0x3cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Aug 23 00:53:35 2025 GMT Not After : Aug 30 00:53:35 2025 GMT Subject: CN=68a9110f-e99b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:69:a4:21:94:13:a1:0e:52:0e:f1:b1:56:74: 59:cd:af:2c:9e:5f:60:c9:06:3e:08:cd:cd:02:01: 05:b0:ca:27:02:34:b6:5e:89:1f:8b:42:e9:7b:47: 66:62:b5:47:99:b3:4a:60:f0:98:07:48:d5:e3:3c: 78:89:e2:06:a0:05:b0:9c:0f:95:57:df:01:6b:1d: a1:ba:bb:d4:dc:fc:3c:26:99:26:03:c4:6f:92:62: ac:6c:6a:31:01:f8:b9:2c:68:4a:b4:33:89:bb:97: f4:cd:40:82:51:e8:15:9c:90:6e:a9:ac:34:ef:da: 64:67:4e:44:9e:4c:ad:34:52:30:04:6a:5e:04:38: d3:36:45:37:54:dc:21:ec:52:5a:a6:05:ed:52:5f: fd:b8:12:fc:73:df:84:d2:f2:7c:71:f4:b4:16:67: 7c:e9:21:31:b3:28:61:d7:2f:ef:12:9d:5a:80:ca: 8f:45:6c:95:81:27:c7:98:e4:26:92:aa:1e:b1:b7: 1f:a3:b9:8e:26:c9:06:58:85:09:a7:c7:aa:47:df: 10:6a:94:eb:7c:36:2b:a9:5f:a3:b3:94:7f:39:95: 93:86:e1:f0:1b:fb:78:d7:d8:31:a5:a7:47:dd:b6: 10:07:38:7d:e2:e7:cf:18:0c:62:81:71:c4:f8:5b: 2d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:5D:EB:D7:43:E1:2B:BD:8D:33:9D:0F:78:39:C8:AF:DF:12:ED:7B X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:e9:6d:bf:03:e1:14:ef:18:21:50:62:3a:3a:7c:16:24:9a: 32:9c:10:96:b3:c9:82:88:64:2e:69:d7:fd:c6:f1:e4:83:1d: 5e:56:6e:bc:34:df:ce:92:fa:3a:91:50:7d:11:6a:a6:f5:60: e8:9d:e5:c3:57:5c:71:ab:1c:57:49:67:4c:34:8b:93:12:b4: 43:c2:04:39:cb:57:f9:ee:0d:22:89:a4:01:e0:01:6c:c3:a6: 93:c1:9b:77:14:da:a7:72:a6:2f:49:1f:e6:b8:d6:66:3d:8e: b1:ce:2e:c1:55:dd:9d:4b:ca:e1:78:8e:0b:24:8d:fa:77:69: 48:74:34:98:4b:4b:5a:08:39:39:59:e9:a2:d5:a9:eb:66:13: d8:5a:d9:c0:86:5e:1b:93:f5:a1:e3:59:ce:16:07:3f:b2:98: 81:9e:2e:8f:33:5c:90:4e:06:41:9a:13:f5:5c:19:b2:33:e3: a4:af:fa:3d:ef:fa:6c:31:eb:ba:43:47:9c:1f:32:6c:63:83: 79:3b:38:76:b9:4c:13:09:1d:88:c1:70:01:b5:53:bb:1b:08: 8f:dd:db:b2:16:42:20:7c:7a:58:09:89:06:ae:54:a6:a7:e7: 1c:6f:5f:b7:47:c5:49:af:4a:5d:5c:6a:aa:74:76:f7:9b:e0: 4d:f0:5a:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwODIzMDA1MzM1WhcNMjUwODMwMDA1MzM1WjAYMRYwFAYD VQQDEw02OGE5MTEwZi1lOTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA22mkIZQToQ5SDvGxVnRZza8snl9gyQY+CM3NAgEFsMonAjS2Xokfi0Lpe0dm YrVHmbNKYPCYB0jV4zx4ieIGoAWwnA+VV98Bax2hurvU3Pw8JpkmA8RvkmKsbGox Afi5LGhKtDOJu5f0zUCCUegVnJBuqaw079pkZ05EnkytNFIwBGpeBDjTNkU3VNwh 7FJapgXtUl/9uBL8c9+E0vJ8cfS0Fmd86SExsyhh1y/vEp1agMqPRWyVgSfHmOQm kqoesbcfo7mOJskGWIUJp8eqR98QapTrfDYrqV+js5R/OZWThuHwG/t419gxpadH 3bYQBzh94ufPGAxigXHE+FstiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHVd69dD 4Su9jTOdD3g5yK/fEu17MB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAc6W2/A+EU7xghUGI6OnwWJJoynBCWs8mCiGQuadf9xvHkgx1eVm68 NN/Okvo6kVB9EWqm9WDoneXDV1xxqxxXSWdMNIuTErRDwgQ5y1f57g0iiaQB4AFs w6aTwZt3FNqncqYvSR/muNZmPY6xzi7BVd2dS8rheI4LJI36d2lIdDSYS0taCDk5 Wemi1anrZhPYWtnAhl4bk/Wh41nOFgc/spiBni6PM1yQTgZBmhP1XBmyM+Okr/o9 7/psMeu6Q0ecHzJsY4N5Ozh2uUwTCR2IwXABtVO7GwiP3duyFkIgfHpYCYkGrlSm p+ccb1+3R8VJr0pdXGqqdHb3m+BN8Fpp -----END CERTIFICATE-----Generated at Sat Aug 23 19:39:15 2025 by rpki-client