$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: ccywREroyx/a6zQW/sZFjM7FWHoXeMya7S7Dyw6pb6U= Subject key identifier: 65:6E:6D:00:0B:5B:E9:E0:47:64:61:5D:CD:0E:C2:B1:84:FA:62:55 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04A0 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 049A Signing time: Thu 03 Jul 2025 00:19:23 +0000 Manifest this update: Thu 03 Jul 2025 00:19:22 +0000 Manifest next update: Thu 10 Jul 2025 00:19:22 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: utShEmfLgAardNH+SrwkrFdrpEc3UBOlOFBIT6bM1LU=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:19:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1184 (0x4a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Jul 3 00:19:22 2025 GMT Not After : Jul 10 00:19:22 2025 GMT Subject: CN=6865cc8a-8ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ae:b7:3c:53:42:73:74:a4:ab:5d:76:9f:8f: cc:03:15:45:7e:ba:4f:cb:64:65:b8:f7:65:d7:23: 8a:50:36:d1:03:60:06:95:f1:22:de:f3:fd:54:59: bb:59:e7:1e:ac:d0:50:d7:32:b2:1d:68:82:61:c3: 97:42:94:7d:43:3a:a3:69:3c:2f:2a:e9:24:3d:f2: 63:dd:03:8c:90:fa:64:91:67:34:06:b5:24:e3:a7: f0:c8:94:70:4e:51:a6:f0:c2:9c:11:71:f9:51:41: 1f:a7:ae:99:46:e1:31:ff:48:98:76:d0:f4:3a:74: 94:5c:a0:a2:8d:97:8e:d2:c0:aa:d5:07:c4:04:5d: 81:6d:4e:55:59:33:48:0b:62:e0:27:b4:fb:11:87: ec:5d:fd:54:9d:3d:26:a0:e3:5f:91:13:4f:20:51: eb:44:22:41:c3:9a:6b:d5:ee:c2:fe:b6:3f:65:7e: d1:e4:8a:45:4c:08:e3:fd:82:a8:bf:fc:2b:29:b3: 92:c1:96:16:19:84:8b:96:f8:7d:36:a2:34:97:9d: e0:78:cd:32:b0:ca:71:03:4b:38:8b:4d:02:93:04: e1:b5:ea:89:23:0b:37:51:b0:1c:c1:79:9c:ea:02: 59:25:27:ba:1a:31:34:62:cd:6a:51:01:25:9c:71: 70:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:6E:6D:00:0B:5B:E9:E0:47:64:61:5D:CD:0E:C2:B1:84:FA:62:55 X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:e4:3a:3f:66:60:60:0e:02:8e:b4:ce:45:af:cd:dd:54:a6: de:62:c0:9e:62:8d:73:bd:60:77:76:24:b9:c4:0c:71:6a:80: 7e:75:03:4e:d5:6c:5b:9b:08:42:d6:34:36:f9:ab:86:ff:74: 56:28:84:24:f4:cf:f3:39:a5:9b:05:54:b6:30:6f:3f:73:e6: b8:64:ed:1d:cf:72:9d:c3:60:3c:1a:71:9e:17:71:39:15:57: 7c:e5:c2:49:a9:55:57:48:da:be:dd:f7:d7:ed:55:fd:42:15: cb:6a:25:bb:46:a0:a1:91:56:9c:66:40:7d:cf:46:82:dd:3a: 4e:2a:a1:6a:3a:24:eb:21:61:30:3d:56:7c:c5:eb:59:ef:3c: 02:62:a6:7d:b9:18:1b:3c:c7:e6:ca:6c:9a:91:b4:93:94:e1: 19:21:64:33:de:4f:2a:ca:85:40:72:1b:e3:6c:10:a6:d9:82: 3a:aa:aa:40:59:78:79:b5:c1:2d:15:9b:98:ee:61:51:7a:1a: 4a:7a:c9:ed:a5:2c:47:9d:69:1e:72:9f:98:c0:02:ee:61:bd: cd:52:70:f9:37:39:6d:60:ee:26:6e:a8:8e:47:67:f4:a0:03: 17:e1:c4:5c:8c:63:52:ad:79:bc:0e:c7:c1:8c:b9:93:7f:64: 7c:d0:20:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUwNzAzMDAxOTIyWhcNMjUwNzEwMDAxOTIyWjAYMRYwFAYD VQQDEw02ODY1Y2M4YS04ZWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAra63PFNCc3Skq112n4/MAxVFfrpPy2RluPdl1yOKUDbRA2AGlfEi3vP9VFm7 WecerNBQ1zKyHWiCYcOXQpR9QzqjaTwvKukkPfJj3QOMkPpkkWc0BrUk46fwyJRw TlGm8MKcEXH5UUEfp66ZRuEx/0iYdtD0OnSUXKCijZeO0sCq1QfEBF2BbU5VWTNI C2LgJ7T7EYfsXf1UnT0moONfkRNPIFHrRCJBw5pr1e7C/rY/ZX7R5IpFTAjj/YKo v/wrKbOSwZYWGYSLlvh9NqI0l53geM0ysMpxA0s4i00CkwThteqJIws3UbAcwXmc 6gJZJSe6GjE0Ys1qUQElnHFwPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVubQAL W+ngR2RhXc0OwrGE+mJVMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCS5Do/ZmBgDgKOtM5Fr83dVKbeYsCeYo1zvWB3diS5xAxxaoB+dQNO 1WxbmwhC1jQ2+auG/3RWKIQk9M/zOaWbBVS2MG8/c+a4ZO0dz3Kdw2A8GnGeF3E5 FVd85cJJqVVXSNq+3ffX7VX9QhXLaiW7RqChkVacZkB9z0aC3TpOKqFqOiTrIWEw PVZ8xetZ7zwCYqZ9uRgbPMfmymyakbSTlOEZIWQz3k8qyoVAchvjbBCm2YI6qqpA WXh5tcEtFZuY7mFRehpKesntpSxHnWkecp+YwALuYb3NUnD5NzltYO4mbqiOR2f0 oAMX4cRcjGNSrXm8DsfBjLmTf2R80CDA -----END CERTIFICATE-----Generated at Fri Jul 4 22:28:56 2025 by rpki-client