$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: fR/hcXYRwWpKjN7vHSzZZc/4F7/3GTs4Xovvzf03e7Q= Subject key identifier: 8F:18:58:23:07:00:77:FE:AF:F6:8E:93:EF:5D:00:D8:22:92:7C:1B Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04BA Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04B4 Signing time: Sat 23 Aug 2025 00:07:16 +0000 Manifest this update: Sat 23 Aug 2025 00:07:16 +0000 Manifest next update: Sat 30 Aug 2025 00:07:16 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: Qk2Mv7J37aXjaX6JwGTe3fCpTDgzWXCHLtm9qP01hss=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:07:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1210 (0x4ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Aug 23 00:07:16 2025 GMT Not After : Aug 30 00:07:16 2025 GMT Subject: CN=68a90634-a0f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cc:7c:77:d9:94:f1:3b:e0:34:13:7d:d9:4d: 33:97:ff:96:84:fd:6e:c6:91:ba:0f:7c:12:09:60: 35:e8:5f:3e:bb:7b:2a:36:af:0d:66:a1:a7:1c:2a: 9c:2c:8a:6c:61:5f:e6:aa:50:94:65:93:11:68:99: be:e3:ad:2a:88:b5:a0:68:31:8c:b1:d0:93:37:12: 34:9e:e0:43:42:d5:13:45:26:fb:99:72:7f:f7:ea: 2b:66:26:84:61:b7:e9:d4:f1:90:55:cd:9e:85:d5: e7:7e:af:e6:d1:c2:ac:ff:c6:cd:6f:21:de:dd:2f: 47:c4:fe:d1:f7:d2:86:bd:43:3b:fd:00:b8:dc:5c: f5:4c:b3:59:34:36:e5:df:81:da:b9:49:8a:f4:bc: 64:05:b4:1a:bc:30:9d:2d:33:5f:55:a1:e5:c3:7a: d3:e8:79:26:b8:55:11:27:f4:1d:18:e1:cc:25:a2: a6:8f:71:27:93:d0:6f:a7:36:42:f6:42:a5:ae:e8: 54:2a:54:b0:31:ac:17:41:de:8d:11:ee:0b:35:3d: 93:a6:fd:a9:e7:5c:9d:ad:97:2c:d1:53:3b:7f:49: 0c:db:fa:90:54:b2:f0:eb:15:e7:a3:6a:6f:5c:31: 14:11:1b:0e:16:f8:ef:5e:ef:4f:54:8b:7c:c0:d8: 1f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:18:58:23:07:00:77:FE:AF:F6:8E:93:EF:5D:00:D8:22:92:7C:1B X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:3e:6a:b5:7b:b9:66:98:2e:fd:b0:e7:13:e3:ac:44:a2:88: 5d:a2:65:31:04:3b:be:bd:d2:ca:9c:60:6d:57:72:5e:1b:89: 6a:f5:84:93:6d:97:c4:36:56:2b:14:62:1e:01:4b:a7:02:c6: 96:79:a7:82:94:e6:e4:a6:6e:5d:89:b9:1f:88:60:90:47:10: aa:33:29:bb:95:67:f5:25:a0:55:16:ad:9a:7c:9e:f2:7d:41: 58:fd:6a:d7:8a:d9:ef:77:6e:02:cd:31:51:bd:30:78:71:af: 25:4e:0d:03:14:61:cd:89:eb:5e:d6:4f:9c:7b:ee:b8:73:49: eb:0a:76:02:24:9d:68:93:a0:1d:58:a2:1c:b9:17:41:9b:00: 4c:4f:74:b1:a1:ea:54:87:1f:74:d8:94:d4:6e:eb:5a:af:d0: 5b:ec:6e:19:55:87:c2:81:01:c3:a6:64:10:1b:19:4e:81:03: 44:4f:4e:9f:f7:f1:4b:1d:16:fa:2e:07:e3:27:12:6d:f1:ba: 4f:52:80:0b:6e:7c:95:2d:1f:1b:d4:fa:a6:2d:03:30:69:ca: fc:11:f5:d6:d8:73:94:66:83:b6:9f:6e:7f:2b:c2:24:81:90: e3:87:1c:2a:11:45:40:02:16:a7:b2:0d:0d:08:9d:33:b4:63: 47:97:9a:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUwODIzMDAwNzE2WhcNMjUwODMwMDAwNzE2WjAYMRYwFAYD VQQDEw02OGE5MDYzNC1hMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArsx8d9mU8TvgNBN92U0zl/+WhP1uxpG6D3wSCWA16F8+u3sqNq8NZqGnHCqc LIpsYV/mqlCUZZMRaJm+460qiLWgaDGMsdCTNxI0nuBDQtUTRSb7mXJ/9+orZiaE Ybfp1PGQVc2ehdXnfq/m0cKs/8bNbyHe3S9HxP7R99KGvUM7/QC43Fz1TLNZNDbl 34HauUmK9LxkBbQavDCdLTNfVaHlw3rT6HkmuFURJ/QdGOHMJaKmj3Enk9BvpzZC 9kKlruhUKlSwMawXQd6NEe4LNT2Tpv2p51ydrZcs0VM7f0kM2/qQVLLw6xXno2pv XDEUERsOFvjvXu9PVIt8wNgfiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI8YWCMH AHf+r/aOk+9dANgiknwbMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6Pmq1e7lmmC79sOcT46xEoohdomUxBDu+vdLKnGBtV3JeG4lq9YST bZfENlYrFGIeAUunAsaWeaeClObkpm5dibkfiGCQRxCqMym7lWf1JaBVFq2afJ7y fUFY/WrXitnvd24CzTFRvTB4ca8lTg0DFGHNiete1k+ce+64c0nrCnYCJJ1ok6Ad WKIcuRdBmwBMT3SxoepUhx902JTUbutar9Bb7G4ZVYfCgQHDpmQQGxlOgQNET06f 9/FLHRb6LgfjJxJt8bpPUoALbnyVLR8b1PqmLQMwacr8EfXW2HOUZoO2n25/K8Ik gZDjhxwqEUVAAhansg0NCJ0ztGNHl5qN -----END CERTIFICATE-----Generated at Sun Aug 24 05:04:36 2025 by rpki-client