$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft File: e9PkPRNOUjXpdgPOi6lIa2KpseY.mft (raw, json) Hash identifier: MnWRmwTApXLW8v1IlPirfuz+BFusk8pj61iHN3bAxg8= Subject key identifier: 91:44:1C:93:2B:29:A4:4A:D4:6B:D9:91:88:26:1B:4C:81:33:72:F3 Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 035A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft Manifest number: 0345 Signing time: Sat 23 Aug 2025 01:24:13 +0000 Manifest this update: Sat 23 Aug 2025 01:24:12 +0000 Manifest next update: Sat 30 Aug 2025 01:24:12 +0000 Files and hashes: 1: e9PkPRNOUjXpdgPOi6lIa2KpseY.crl (hash: UmI52PvcAl0AHBVIyBNFPtXRChIUPq1QF+Pg+LYDUDo=) 2: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (hash: +EUJazeuo/s8rP6nB04WL2xZlEUaDRdd68emzn/S4/I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631, serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: Aug 23 01:24:12 2025 GMT Not After : Aug 30 01:24:12 2025 GMT Subject: CN=68a9183d-8b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:76:37:d0:5b:66:d4:25:8b:63:fd:90:f1:01: c9:03:d9:74:d7:34:6e:fa:76:02:e8:5d:3a:af:79: 8d:48:7f:9b:90:39:3a:91:b0:36:38:f1:d6:fa:1f: dd:f5:75:b9:6a:bf:31:5d:65:2c:18:e1:68:dd:6a: 74:6e:f9:17:73:cc:51:79:00:a5:59:5d:e0:de:5d: ef:d2:3d:76:9a:91:ad:f8:84:29:7b:a5:b7:77:39: f1:de:05:50:81:a2:6c:3b:bf:7e:fc:ef:03:53:ab: 0e:8d:1e:a5:50:d4:bd:f4:a7:63:fd:2a:0e:a4:d0: 73:38:a0:b8:5c:e0:57:1d:d7:78:76:63:5c:e6:42: c8:b0:25:b0:78:55:30:cd:2b:83:c1:74:40:7a:b9: 51:0f:39:7e:ea:66:71:c8:bd:43:9d:a1:3b:18:aa: ca:9d:db:a5:76:c2:98:c7:6a:3f:39:84:4b:47:08: 57:cb:73:72:20:6a:8a:0d:27:b3:4c:66:35:15:35: 43:7f:c3:5f:0f:f2:84:15:37:be:70:e9:68:56:c5: 21:3d:89:c4:99:a3:7c:a9:14:ca:ea:cd:07:eb:f0: 40:30:5d:5f:8d:98:e9:5f:fe:67:eb:11:6d:a0:4e: cc:74:d0:90:24:1a:b6:38:2e:1c:25:cf:79:dc:e0: cb:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:44:1C:93:2B:29:A4:4A:D4:6B:D9:91:88:26:1B:4C:81:33:72:F3 X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:e7:4e:15:b5:4c:82:b6:14:2e:ca:d7:eb:e2:db:61:d8:c2: b7:02:25:e3:2c:fa:3d:bf:10:4a:e8:56:3c:f3:b7:04:3a:ad: 57:c5:a6:2f:a1:ef:6d:f5:37:e0:50:4a:50:a2:3e:ae:a5:4b: fa:81:c6:44:f9:9c:52:a2:45:02:9f:82:00:f5:18:96:f6:46: c9:62:d9:34:cc:4e:9b:13:6f:a4:05:05:cc:c8:21:5f:8b:4e: bc:58:ce:8c:ae:72:3c:00:42:94:7e:b5:95:df:78:2a:2c:61: b9:6c:35:77:bc:61:67:c9:0f:f7:5e:18:e0:40:1c:e8:fb:74: 04:9b:c4:d7:a2:1d:eb:bc:92:c8:6e:bc:1b:2d:7b:9f:6a:bd: a9:5c:39:e1:c4:6a:90:11:af:2c:3a:a5:30:05:f5:f6:b6:d3: 82:27:e2:e7:3a:a9:5c:60:42:69:d6:1a:e3:56:a3:82:bb:72: 4f:d0:88:b3:77:c4:f0:37:c9:f8:ec:0c:73:7d:78:5b:d8:48: 9b:77:85:f6:00:ba:56:52:e0:a4:8d:d7:c3:b6:b0:4a:4e:f7: 37:55:7c:1c:19:70:45:98:0b:d9:6f:a6:64:22:ce:47:2e:ce: db:d4:e9:65:17:4d:51:2b:a8:94:35:ad:bd:41:90:8f:e4:6e: ed:d7:00:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjUwODIzMDEyNDEyWhcNMjUwODMwMDEyNDEyWjAYMRYwFAYD VQQDEw02OGE5MTgzZC04YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHY30Ftm1CWLY/2Q8QHJA9l01zRu+nYC6F06r3mNSH+bkDk6kbA2OPHW+h/d 9XW5ar8xXWUsGOFo3Wp0bvkXc8xReQClWV3g3l3v0j12mpGt+IQpe6W3dznx3gVQ gaJsO79+/O8DU6sOjR6lUNS99Kdj/SoOpNBzOKC4XOBXHdd4dmNc5kLIsCWweFUw zSuDwXRAerlRDzl+6mZxyL1DnaE7GKrKnduldsKYx2o/OYRLRwhXy3NyIGqKDSez TGY1FTVDf8NfD/KEFTe+cOloVsUhPYnEmaN8qRTK6s0H6/BAMF1fjZjpX/5n6xFt oE7MdNCQJBq2OC4cJc953ODLewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFEHJMr KaRK1GvZkYgmG0yBM3LzMB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QzYzMS8zOUU0RDdBOERDNzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1Vq WHBkZ1BPaTZsSWEyS3BzZVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi504VtUyCthQuytfr4tth2MK3AiXjLPo9vxBK6FY887cEOq1XxaYv oe9t9TfgUEpQoj6upUv6gcZE+ZxSokUCn4IA9RiW9kbJYtk0zE6bE2+kBQXMyCFf i068WM6MrnI8AEKUfrWV33gqLGG5bDV3vGFnyQ/3XhjgQBzo+3QEm8TXoh3rvJLI brwbLXufar2pXDnhxGqQEa8sOqUwBfX2ttOCJ+LnOqlcYEJp1hrjVqOCu3JP0Iiz d8TwN8n47AxzfXhb2Eibd4X2ALpWUuCkjdfDtrBKTvc3VXwcGXBFmAvZb6ZkIs5H Ls7b1OllF01RK6iUNa29QZCP5G7t1wAM -----END CERTIFICATE-----Generated at Sat Aug 23 23:57:45 2025 by rpki-client