$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft File: ShUjM8QF9WZCwv0DscDx5R97ZNY.mft (raw, json) Hash identifier: q38bX8XUxfdDZGzVuZify/UbYnPp6Evw2098zozPip8= Subject key identifier: CF:12:73:EE:41:02:25:A3:0B:B4:17:79:CA:0A:4E:27:6B:F0:67:C9 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0C4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft Manifest number: 0C30 Signing time: Fri 22 Aug 2025 18:48:13 +0000 Manifest this update: Fri 22 Aug 2025 18:48:12 +0000 Manifest next update: Fri 29 Aug 2025 18:48:12 +0000 Files and hashes: 1: ShUjM8QF9WZCwv0DscDx5R97ZNY.crl (hash: t+7wBJu1qDUFRa/GuVziWmM5pUzadLtavWIP0ZlbfLs=) 2: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (hash: dn3kZoWooSddDB41uptssOk+YJNXq/e4qX48GOTMtT4=) 3: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (hash: 8Ead/6roCcIWAO/F6fTJ08XA18GUuGo77XaTq8IG4j8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:48:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3149 (0xc4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9, serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Aug 22 18:48:12 2025 GMT Not After : Aug 29 18:48:12 2025 GMT Subject: CN=68a8bb6d-9c4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ed:84:46:66:a7:c2:58:d2:87:c7:f3:65:7b: e0:6a:0a:34:ef:29:a8:02:29:f7:cc:00:7b:8e:8f: e3:f2:b1:eb:fc:75:8f:cf:81:32:8e:e7:b1:21:dc: a7:f2:f0:af:0c:0f:d3:be:93:a0:d4:3a:ce:58:d5: ba:6c:0b:b7:ee:fc:6a:90:0d:8f:32:ac:32:0a:c4: 5d:37:d8:cb:5e:8f:3c:6e:7d:53:92:9f:72:cf:2b: 37:5e:4d:bb:77:b7:a5:73:27:34:75:6c:0e:b2:bb: 74:a0:4a:a9:86:b2:ff:f0:01:87:96:7b:07:e9:ac: 26:81:62:92:a7:32:c4:2c:97:3e:66:e0:e7:cc:de: d2:59:f7:c0:d0:67:41:1f:35:9b:cb:a6:27:b5:8e: 3b:ce:b8:ff:3a:3c:48:ee:92:29:9a:52:7c:5c:38: d8:bc:3d:28:03:f4:d5:8f:76:ff:74:ba:06:4e:5a: 5f:c8:e2:a5:26:ce:b8:e1:ee:7a:34:95:11:73:0c: 25:42:c3:55:8a:1e:08:8d:d1:fb:88:aa:b7:83:85: 96:41:0f:aa:7b:df:ab:da:f3:f2:d2:1e:f1:22:40: f2:e7:7c:d6:f3:74:87:1c:12:ff:48:ab:c5:64:32: 70:5e:83:a6:31:3a:ff:24:9e:a0:a5:29:2b:4c:6b: 88:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:12:73:EE:41:02:25:A3:0B:B4:17:79:CA:0A:4E:27:6B:F0:67:C9 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:53:10:6d:13:8b:b4:03:ee:dd:92:4f:25:e1:a2:3f:cf:48: 36:6d:a1:0e:bd:93:c4:b8:65:7f:48:af:ae:f6:74:31:f7:51: 87:c9:80:e2:88:4b:5d:53:06:df:b7:78:55:08:67:ce:40:5d: 23:e5:92:e7:cd:01:42:c4:0e:73:fd:14:62:6b:70:ac:31:26: 11:ca:be:f8:c9:a4:bd:ce:a9:ff:18:97:e8:0e:75:91:47:23: 64:33:e6:f5:20:3b:59:af:6f:aa:8d:85:31:7c:1a:ab:66:65: 33:14:25:6f:cd:ac:33:5c:f5:60:dc:7a:96:d2:b9:15:a9:2d: 79:f0:af:54:1f:15:18:81:f0:c7:51:e5:5d:fa:5d:eb:d9:de: 5a:69:ff:0f:e6:27:77:78:0c:1d:7e:9f:1c:d1:b5:9c:05:4a: 7e:d6:32:3f:fd:29:19:f5:09:49:89:86:70:b4:6c:04:c1:b6: f0:6a:8d:e3:ee:38:71:37:4e:f5:9e:89:7a:f6:5c:db:e5:be: 96:1a:9b:7d:e0:cf:5c:c0:39:b1:a6:b9:27:c2:8d:90:a2:80: 6c:07:d7:6c:75:b9:b0:d8:ee:ec:9c:a8:91:b4:0e:44:ff:3a: 30:fd:d8:8d:48:21:f5:77:3a:f8:00:3a:c6:72:f9:78:75:13: fd:9a:f1:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDE0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjUwODIyMTg0ODEyWhcNMjUwODI5MTg0ODEyWjAYMRYwFAYD VQQDEw02OGE4YmI2ZC05YzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0e2ERmanwljSh8fzZXvgago07ymoAin3zAB7jo/j8rHr/HWPz4EyjuexIdyn 8vCvDA/TvpOg1DrOWNW6bAu37vxqkA2PMqwyCsRdN9jLXo88bn1Tkp9yzys3Xk27 d7elcyc0dWwOsrt0oEqphrL/8AGHlnsH6awmgWKSpzLELJc+ZuDnzN7SWffA0GdB HzWby6YntY47zrj/OjxI7pIpmlJ8XDjYvD0oA/TVj3b/dLoGTlpfyOKlJs644e56 NJURcwwlQsNVih4IjdH7iKq3g4WWQQ+qe9+r2vPy0h7xIkDy53zW83SHHBL/SKvF ZDJwXoOmMTr/JJ6gpSkrTGuIWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8Sc+5B AiWjC7QXecoKTidr8GfJMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0JDOS9DNUM4M0NBRTEzQTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlX WkN3djBEc2NEeDVSOTdaTlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSUxBtE4u0A+7dkk8l4aI/z0g2baEOvZPEuGV/SK+u9nQx91GHyYDi iEtdUwbft3hVCGfOQF0j5ZLnzQFCxA5z/RRia3CsMSYRyr74yaS9zqn/GJfoDnWR RyNkM+b1IDtZr2+qjYUxfBqrZmUzFCVvzawzXPVg3HqW0rkVqS158K9UHxUYgfDH UeVd+l3r2d5aaf8P5id3eAwdfp8c0bWcBUp+1jI//SkZ9QlJiYZwtGwEwbbwao3j 7jhxN071nol69lzb5b6WGpt94M9cwDmxprknwo2QooBsB9dsdbmw2O7snKiRtA5E /zow/diNSCH1dzr4ADrGcvl4dRP9mvGc -----END CERTIFICATE-----Generated at Sun Aug 24 00:50:10 2025 by rpki-client