$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: b1nrOPPmiBk7GH4UF4WKLWXLUvApn1ccCauOc+Tr9lI= Subject key identifier: BA:ED:2E:68:EB:9B:D2:4B:E7:AD:FD:86:78:FA:98:BC:05:B2:45:61 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 03B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03A6 Signing time: Thu 03 Jul 2025 01:05:37 +0000 Manifest this update: Thu 03 Jul 2025 01:05:36 +0000 Manifest next update: Thu 10 Jul 2025 01:05:36 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: IBNd1NpKv74B9elyjvpM36NfNzfWXFq7iOhV5BxFIXI=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:05:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 946 (0x3b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Jul 3 01:05:36 2025 GMT Not After : Jul 10 01:05:36 2025 GMT Subject: CN=6865d760-14f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:75:a6:53:c5:d9:36:38:24:7b:c9:81:9a:70: 2f:06:34:09:02:31:ca:ea:bd:d8:9b:fa:fa:d6:43: 74:f2:f2:9f:3c:9b:cd:9a:c5:dc:26:31:23:7f:59: 3e:0a:62:62:ae:53:d2:88:3a:ce:59:ac:eb:b1:d0: f3:b4:76:a7:6f:c6:09:1e:19:9e:fa:a3:37:74:f6: 00:96:bd:6e:c2:4a:28:da:93:9b:c7:c8:ce:2a:b9: 8f:22:75:27:90:16:7f:f6:a7:32:7a:00:f2:8a:df: 6c:93:89:2b:79:75:ec:f6:67:1d:98:58:c9:d9:e9: 69:55:9f:37:84:a9:5b:b7:96:a3:6b:d1:59:e1:75: ed:3c:8e:fa:2b:23:01:fd:60:90:16:71:4f:b6:25: 27:6a:f0:13:c4:9f:72:7f:43:01:e1:36:53:1a:ef: 17:3c:9d:e7:dd:76:a3:3e:27:c3:fc:7d:9a:25:34: f6:ff:03:b3:dc:87:df:3a:c1:99:80:2a:e7:85:93: 01:4b:60:71:b6:20:50:fd:26:8a:eb:33:17:1d:17: 0a:11:d9:4f:19:57:1d:8e:bd:75:50:73:1e:f3:5b: 7f:b2:69:b3:e0:2c:85:40:28:6a:d5:24:e2:69:11: ce:a9:ab:f2:10:ab:18:22:3a:ae:21:69:cb:80:0b: 6b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:ED:2E:68:EB:9B:D2:4B:E7:AD:FD:86:78:FA:98:BC:05:B2:45:61 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:f5:18:5f:3b:e3:c6:2c:51:97:12:31:70:1e:aa:3b:58:77: b6:69:0c:da:0b:d1:b2:f9:2f:3f:55:ca:6a:24:47:55:ea:ae: dc:44:a0:31:aa:b1:d1:48:46:bb:e2:3f:0f:bf:c2:3a:73:bf: 88:19:41:a3:b5:5a:b2:8e:a8:39:e6:38:f7:9a:3c:2e:5f:1e: d3:32:d1:67:4b:e3:06:d0:0f:16:22:52:8d:89:5d:ac:f8:6e: 18:c1:23:d1:98:95:4a:67:c8:36:8a:4e:30:1a:96:d2:67:2b: 0d:52:78:51:3c:34:9a:11:62:82:4b:e8:be:dd:a2:48:c7:8d: 65:bf:f1:2f:07:bd:be:32:27:22:be:3c:f4:cf:73:03:5a:c5: 37:4f:67:f0:b0:19:2f:23:76:11:81:16:71:f6:1d:08:ab:51: 4f:71:55:60:45:1c:de:32:b0:e8:41:ee:bb:45:7a:84:b6:60: b2:79:90:f1:25:4e:5a:f2:cb:4f:df:d3:c1:b0:d0:ed:14:5c: 3f:1d:91:27:ee:53:6b:c8:f9:dd:11:76:4d:36:d4:2b:0a:9e: cb:fc:98:3e:47:06:b9:7d:6d:74:53:ff:cd:89:2c:74:35:80: ca:29:c9:b7:1c:51:cb:35:fe:f5:7c:94:40:f6:ab:4b:9a:91: 72:19:01:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwNzAzMDEwNTM2WhcNMjUwNzEwMDEwNTM2WjAYMRYwFAYD VQQDEw02ODY1ZDc2MC0xNGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6XWmU8XZNjgke8mBmnAvBjQJAjHK6r3Ym/r61kN08vKfPJvNmsXcJjEjf1k+ CmJirlPSiDrOWazrsdDztHanb8YJHhme+qM3dPYAlr1uwkoo2pObx8jOKrmPInUn kBZ/9qcyegDyit9sk4kreXXs9mcdmFjJ2elpVZ83hKlbt5aja9FZ4XXtPI76KyMB /WCQFnFPtiUnavATxJ9yf0MB4TZTGu8XPJ3n3XajPifD/H2aJTT2/wOz3IffOsGZ gCrnhZMBS2BxtiBQ/SaK6zMXHRcKEdlPGVcdjr11UHMe81t/smmz4CyFQChq1STi aRHOqavyEKsYIjquIWnLgAtr9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLrtLmjr m9JL5639hnj6mLwFskVhMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB79RhfO+PGLFGXEjFwHqo7WHe2aQzaC9Gy+S8/VcpqJEdV6q7cRKAx qrHRSEa74j8Pv8I6c7+IGUGjtVqyjqg55jj3mjwuXx7TMtFnS+MG0A8WIlKNiV2s +G4YwSPRmJVKZ8g2ik4wGpbSZysNUnhRPDSaEWKCS+i+3aJIx41lv/EvB72+Mici vjz0z3MDWsU3T2fwsBkvI3YRgRZx9h0Iq1FPcVVgRRzeMrDoQe67RXqEtmCyeZDx JU5a8stP39PBsNDtFFw/HZEn7lNryPndEXZNNtQrCp7L/Jg+Rwa5fW10U//NiSx0 NYDKKcm3HFHLNf71fJRA9qtLmpFyGQFs -----END CERTIFICATE-----Generated at Thu Jul 3 06:09:01 2025 by rpki-client