$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: Lf8OXyI/HtQFN/AULb8cUtkWnUcZxx8XUEnecc5mwtc= Subject key identifier: 8C:22:17:85:EA:D2:D5:1F:73:BD:B3:F1:62:E1:CE:E3:C7:6E:A3:EF Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 3A Signing time: Sat 23 Aug 2025 07:46:00 +0000 Manifest this update: Sat 23 Aug 2025 07:46:00 +0000 Manifest next update: Sat 30 Aug 2025 07:46:00 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: GUsNjfWx7+rEyL67OF+qvTdh4y7rn29OvKVyOlBpG6c=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Aug 23 07:46:00 2025 GMT Not After : Aug 30 07:46:00 2025 GMT Subject: CN=68a971b8-a7da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c3:10:b1:75:61:79:8c:b3:ea:54:8c:13:76: 92:18:6d:48:e7:1a:23:5c:f8:b7:69:5f:39:e0:a3: dd:8f:18:6c:93:25:98:c5:00:3e:5f:96:0f:5a:c1: b3:4e:05:6f:e4:61:ce:e6:03:3e:9b:d3:f9:67:48: b4:6b:d2:0e:3d:42:5b:75:86:e1:18:82:b0:d1:86: a9:f0:2c:c2:e5:c8:1b:7e:cd:53:33:98:3a:af:85: bc:88:ee:23:ae:85:14:75:b5:58:0b:07:15:ce:3a: a8:bc:6d:3d:e2:56:a9:23:50:93:29:8c:93:d6:76: 25:fd:81:06:9c:e9:04:d0:07:c5:69:ae:8c:41:8c: cd:d2:0d:e8:3c:31:ab:a4:53:e9:0a:e4:8c:f7:fe: ee:20:9a:f7:fd:5f:2c:49:e6:cd:7a:5b:41:a9:83: 26:ef:3a:0c:50:53:33:ee:2f:62:66:5c:19:74:a5: fc:f3:cc:bd:45:0f:f6:0b:04:6a:f6:2c:3e:ee:a3: a5:be:6d:5f:d0:2c:15:e5:f7:ea:5c:a3:78:1f:00: cd:58:c8:fd:14:b1:0a:30:73:6a:71:19:0d:40:13: 17:0f:2f:ca:76:5b:c6:37:1f:72:cc:07:4e:55:d8: 77:21:90:1a:b2:41:b7:42:87:c6:15:09:2e:9c:4e: fc:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:22:17:85:EA:D2:D5:1F:73:BD:B3:F1:62:E1:CE:E3:C7:6E:A3:EF X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:35:f3:f0:90:42:82:89:ca:b4:e6:b9:e0:95:c7:fa:14:7c: 0e:5e:2b:ec:2f:a2:90:6e:26:55:8e:38:53:1f:39:eb:9e:85: 34:45:9f:38:77:78:ca:ea:82:6e:83:3e:50:b7:70:ca:49:5a: 92:10:81:cb:f1:21:04:cd:84:9e:a7:9c:4f:a6:5d:d8:5f:d5: 83:ff:5b:e0:ab:71:bf:f9:8f:32:39:77:8c:51:f3:44:55:85: 19:e7:30:67:fb:4b:19:f6:76:a0:10:49:97:17:52:6e:92:ee: 71:7d:78:ad:4b:c1:49:87:1a:83:84:58:50:95:07:1b:78:bc: 0a:14:92:b0:aa:c6:ec:d2:ba:14:e4:18:e4:e1:68:34:ff:10: a7:6c:94:f7:be:02:51:1d:64:a7:d6:7b:86:07:ae:78:07:97: 6f:2f:1f:88:46:25:aa:5f:21:8e:48:8b:29:ca:c7:8c:78:de: 2a:4a:59:dd:7e:7c:fc:8e:fd:12:b2:ff:78:4e:aa:46:50:c5: 71:80:9b:45:86:d7:62:c8:74:3f:34:b2:e8:42:d5:e0:f8:b7: 07:21:5f:84:ed:d1:c8:25:de:46:47:2a:fb:e7:d9:3b:3f:46: ac:f9:54:5f:85:11:a9:26:af:76:8d:5a:6e:db:76:75:09:d5: 18:c0:74:da -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTA4MjMwNzQ2MDBaFw0yNTA4MzAwNzQ2MDBaMBgxFjAUBgNV BAMTDTY4YTk3MWI4LWE3ZGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtwxCxdWF5jLPqVIwTdpIYbUjnGiNc+LdpXzngo92PGGyTJZjFAD5flg9awbNO BW/kYc7mAz6b0/lnSLRr0g49Qlt1huEYgrDRhqnwLMLlyBt+zVMzmDqvhbyI7iOu hRR1tVgLBxXOOqi8bT3iVqkjUJMpjJPWdiX9gQac6QTQB8VproxBjM3SDeg8Mauk U+kK5Iz3/u4gmvf9XyxJ5s16W0GpgybvOgxQUzPuL2JmXBl0pfzzzL1FD/YLBGr2 LD7uo6W+bV/QLBXl9+pco3gfAM1YyP0UsQowc2pxGQ1AExcPL8p2W8Y3H3LMB05V 2HchkBqyQbdCh8YVCS6cTvybAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjCIXherS 1R9zvbPxYuHO48duo+8wHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEY18/CQQoKJyrTmueCVx/oUfA5eK+wvopBuJlWOOFMfOeuehTRFnzh3 eMrqgm6DPlC3cMpJWpIQgcvxIQTNhJ6nnE+mXdhf1YP/W+Crcb/5jzI5d4xR80RV hRnnMGf7Sxn2dqAQSZcXUm6S7nF9eK1LwUmHGoOEWFCVBxt4vAoUkrCqxuzSuhTk GOThaDT/EKdslPe+AlEdZKfWe4YHrngHl28vH4hGJapfIY5IiynKx4x43ipKWd1+ fPyO/RKy/3hOqkZQxXGAm0WG12LIdD80suhC1eD4twchX4Tt0cgl3kZHKvvn2Ts/ Rqz5VF+FEakmr3aNWm7bdnUJ1RjAdNo= -----END CERTIFICATE-----Generated at Sun Aug 24 03:03:32 2025 by rpki-client