$ rpki-client -vvf rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft File: AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft (raw, json) Hash identifier: sFYr2iMsg6Qm5dApWnmJYs7JTf1zQ9apNmlar4nzjjs= Subject key identifier: C8:8C:7B:30:04:C2:C3:65:B8:13:20:2F:A2:C3:1B:3B:8A:F5:F3:BD Authority key identifier: 00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 Certificate issuer: /CN=A915E678/serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Certificate serial: 0160 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft Manifest number: 0158 Signing time: Sat 23 Aug 2025 04:18:17 +0000 Manifest this update: Sat 23 Aug 2025 04:18:16 +0000 Manifest next update: Sat 30 Aug 2025 04:18:16 +0000 Files and hashes: 1: AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl (hash: V1JHzXvRjdEltsfxYz7WNbrEAmbxQVBioZxBd7iSvRo=) 2: D39B04847C4B11EEB4EA3632C4F9AE02.roa (hash: VkMCaNU7sXjTR/CQAkH/z8BpEQbO8jbw+1o8r2q8dPA=) 3: 5694D344791B11EEA64C016BC4F9AE02.roa (hash: cg93R23INGR8fe5V8I1v0XqkWQVYbzGg1oKwaVZnx2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:18:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E678, serialNumber=008F5D06F0FEFC40FD830B26CD7660A383110C91 Validity Not Before: Aug 23 04:18:16 2025 GMT Not After : Aug 30 04:18:16 2025 GMT Subject: CN=68a94109-a78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:63:cb:c2:7b:da:c9:74:7e:a5:6c:3d:95:7d: 1a:5e:c2:58:4e:8b:32:c9:dc:01:1a:f2:87:d4:c4: b5:d5:28:8e:d6:b6:98:e3:41:61:d7:99:a2:9d:f0: 04:5a:e5:4f:90:db:18:d7:66:fd:d5:18:0d:4c:1e: 91:b9:41:d1:d7:aa:83:b4:13:95:12:8a:c5:a9:72: 6d:d0:1a:36:6f:c9:f3:0e:9b:ba:65:de:1a:97:e3: 3c:66:b7:7c:4f:e0:e0:69:2b:0c:49:a9:f0:d1:f5: af:07:b3:06:36:e6:c7:3f:bb:75:ca:0b:29:aa:ae: 3b:39:43:b9:a7:23:57:3b:40:fc:b7:6a:54:ba:85: 5f:4f:74:45:1a:0b:ed:46:86:2c:72:15:70:ac:16: 88:84:03:bd:c3:9b:69:4a:da:a6:b9:4c:4d:71:24: 22:00:1e:75:05:5c:6b:cc:80:5b:b0:30:04:06:83: 71:dc:13:5a:26:1f:bd:1c:0b:40:2e:2c:aa:ba:dd: 60:2f:bf:75:91:61:d6:47:19:cc:96:87:59:a6:ba: 0b:25:a3:91:30:3f:75:9f:b6:ba:2b:48:4c:73:57: c5:cd:43:65:ff:81:af:f4:f3:15:e3:ab:0a:ea:d0: 19:70:9d:d1:85:42:d8:b3:83:89:bd:d8:3d:87:79: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8C:7B:30:04:C2:C3:65:B8:13:20:2F:A2:C3:1B:3B:8A:F5:F3:BD X509v3 Authority Key Identifier: keyid:00:8F:5D:06:F0:FE:FC:40:FD:83:0B:26:CD:76:60:A3:83:11:0C:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI9dBvD-_ED9gwsmzXZgo4MRDJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E678/7AEED862791A11EEACA1AD2BC4F9AE02/AI9dBvD-_ED9gwsmzXZgo4MRDJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:83:d8:c4:eb:d1:41:cb:3a:d8:0c:d3:a6:b5:fb:f0:43:6e: 01:05:ac:ea:ee:c9:25:46:82:76:44:be:8e:bf:c7:ef:28:2e: 3f:43:56:05:db:a0:88:5f:9d:35:70:e1:af:56:c2:a2:74:12: 83:34:ba:a1:10:57:ee:34:a5:fd:62:bb:7f:51:b2:89:41:f2: 77:a3:d1:37:32:33:45:80:33:ff:e7:0c:cc:bf:5f:72:e3:1a: ca:c2:28:e7:85:f2:cd:56:cc:9d:df:af:15:0c:ce:b4:15:5f: 56:1b:26:a3:5c:8f:3e:d8:be:33:4b:fc:ec:df:77:2c:d6:cc: d5:7c:74:70:d0:bb:30:7d:c0:04:02:90:ef:d3:f8:60:b8:a1: 48:05:9d:09:69:fe:87:77:49:59:6d:3b:43:69:1b:39:99:d8: dd:8d:3b:2c:85:ea:cb:ab:c9:9e:38:b9:83:c8:6d:c6:f6:a3: 3b:57:45:c4:ba:b8:7a:7c:59:fa:de:55:29:01:61:0f:1d:f4: 6d:87:c9:51:38:6a:a4:e3:1c:5e:64:24:fc:99:33:e9:54:37: 92:b9:81:6d:6c:6e:58:6a:71:08:62:09:56:6e:84:1a:1d:3f: 33:22:bb:ed:cb:41:ed:f5:d6:42:94:70:fa:03:56:b4:88:06: bb:53:a2:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU2NzgxMTAvBgNVBAUTKDAwOEY1RDA2RjBGRUZDNDBGRDgzMEIyNkNENzY2MEEz ODMxMTBDOTEwHhcNMjUwODIzMDQxODE2WhcNMjUwODMwMDQxODE2WjAYMRYwFAYD VQQDEw02OGE5NDEwOS1hNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWPLwnvayXR+pWw9lX0aXsJYTosyydwBGvKH1MS11SiO1raY40Fh15minfAE WuVPkNsY12b91RgNTB6RuUHR16qDtBOVEorFqXJt0Bo2b8nzDpu6Zd4al+M8Zrd8 T+DgaSsMSanw0fWvB7MGNubHP7t1ygspqq47OUO5pyNXO0D8t2pUuoVfT3RFGgvt RoYschVwrBaIhAO9w5tpStqmuUxNcSQiAB51BVxrzIBbsDAEBoNx3BNaJh+9HAtA Liyqut1gL791kWHWRxnMlodZproLJaORMD91n7a6K0hMc1fFzUNl/4Gv9PMV46sK 6tAZcJ3RhULYs4OJvdg9h3mkrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMiMezAE wsNluBMgL6LDGzuK9fO9MB8GA1UdIwQYMBaAFACPXQbw/vxA/YMLJs12YKODEQyR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTY3OC83QUVFRDg2Mjc5 MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9FRDlnd3NtelhaZ280TVJE SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FJOWRCdkQtX0VEOWd3c216WFpnbzRNUkRKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTY3OC83QUVFRDg2Mjc5MUExMUVFQUNBMUFEMkJDNEY5QUUwMi9BSTlkQnZELV9F RDlnd3NtelhaZ280TVJESkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACg9jE69FByzrYDNOmtfvwQ24BBazq7sklRoJ2RL6Ov8fvKC4/Q1YF 26CIX501cOGvVsKidBKDNLqhEFfuNKX9Yrt/UbKJQfJ3o9E3MjNFgDP/5wzMv19y 4xrKwijnhfLNVsyd368VDM60FV9WGyajXI8+2L4zS/zs33cs1szVfHRw0LswfcAE ApDv0/hguKFIBZ0Jaf6Hd0lZbTtDaRs5mdjdjTssherLq8meOLmDyG3G9qM7V0XE urh6fFn63lUpAWEPHfRth8lROGqk4xxeZCT8mTPpVDeSuYFtbG5YanEIYglWboQa HT8zIrvty0Ht9dZClHD6A1a0iAa7U6KE -----END CERTIFICATE-----Generated at Sat Aug 23 21:34:57 2025 by rpki-client