$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: qrp7rlbwzGf1JLdmZIJHp+OsTXYR1ePaLs8UBKErvTk= Subject key identifier: D7:A9:9E:90:90:B5:71:95:3E:E7:F5:D5:2A:32:8A:D1:48:91:28:E5 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23C1 Signing time: Fri 22 Aug 2025 15:51:50 +0000 Manifest this update: Fri 22 Aug 2025 15:51:49 +0000 Manifest next update: Fri 29 Aug 2025 15:51:49 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: 9PZNSdWW22nSyym5G5FuqInuxnPz02w+qspczDqcBdk=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:51:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9200 (0x23f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Aug 22 15:51:49 2025 GMT Not After : Aug 29 15:51:49 2025 GMT Subject: CN=68a89215-aee8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ea:cf:82:65:60:f7:88:d0:d8:10:03:1d:fc: a6:8c:08:05:62:84:b6:b2:f2:aa:cd:47:2f:a0:89: 45:2e:8d:c0:c7:62:c5:1f:6e:18:e7:80:3b:89:2a: 18:47:88:91:4f:bf:c5:2f:96:e1:09:11:c5:c4:fa: 9f:40:90:e9:fd:35:29:a0:ad:87:2e:0a:a8:4a:77: 8c:cf:38:70:29:22:68:39:65:ee:79:2e:a0:9c:91: 7d:2c:27:8b:f2:68:ba:3c:4f:50:50:4c:4c:b4:72: 27:a2:01:dc:a1:6c:ed:fa:fb:38:96:e5:bf:54:52: 30:35:4a:ad:a8:02:89:62:d4:72:32:ba:b1:fd:08: 33:16:3e:c2:68:df:c0:0c:75:8f:db:be:94:fd:e3: 4c:f8:e6:e7:df:3d:c4:c6:c9:3c:cb:72:9f:fb:ea: 70:68:42:0a:3a:e0:54:58:b3:e0:ae:70:21:25:1f: 60:69:b9:e7:2e:50:5c:08:04:9f:d5:a7:b9:c2:77: 6a:1e:ae:d4:35:80:80:d3:c0:0f:79:ad:ca:68:44: 24:18:51:e9:25:a4:0a:73:89:e9:cf:de:a5:b0:a5: 48:5d:fc:11:53:78:e8:09:55:b4:d5:e3:6a:3b:cf: 55:8a:55:b4:bb:7e:98:22:95:75:75:b1:ff:60:f4: c2:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A9:9E:90:90:B5:71:95:3E:E7:F5:D5:2A:32:8A:D1:48:91:28:E5 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:12:5d:68:c8:c0:fe:01:b5:eb:f7:21:06:7a:c0:c9:87:f4: c6:64:99:42:29:8b:b8:21:d6:80:28:bb:82:fa:eb:ff:be:86: f9:1a:24:1b:aa:0e:75:05:d1:52:ae:04:bd:24:4e:00:09:5e: f7:39:d5:be:1d:08:9d:80:d6:2f:8c:3d:28:9a:15:07:49:35: b4:92:ef:e1:d6:b0:93:15:bf:41:f1:21:d9:6f:9f:43:9d:a8: 75:c8:71:9d:31:96:b6:18:af:f1:fc:3a:56:e7:a7:3b:24:fb: 50:e3:b5:ab:0d:f5:21:60:e0:9f:79:eb:e1:96:87:0d:c4:77: ae:e3:35:75:d3:df:7d:e0:f9:9f:15:e1:0d:63:cd:4b:20:3b: 42:5c:63:aa:bf:48:f0:be:99:d0:a1:15:a9:5a:6a:b0:f0:7d: f5:11:94:49:2e:75:82:1c:ad:be:ee:eb:76:48:85:71:bb:83: 33:0d:17:6d:de:60:ac:b7:5c:fe:fb:d7:d2:33:f9:89:f1:e1: 67:8f:97:2f:70:c5:ac:a7:bc:e5:85:63:97:2f:1a:0d:12:13: 32:1d:c8:5e:94:42:df:87:0b:1e:5f:17:36:0b:4b:d6:fe:4a: f6:fc:e4:52:ba:3c:1e:98:a7:ed:16:fa:a5:c3:ef:5b:44:5e: 7a:72:0c:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwODIyMTU1MTQ5WhcNMjUwODI5MTU1MTQ5WjAYMRYwFAYD VQQDEw02OGE4OTIxNS1hZWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArurPgmVg94jQ2BADHfymjAgFYoS2svKqzUcvoIlFLo3Ax2LFH24Y54A7iSoY R4iRT7/FL5bhCRHFxPqfQJDp/TUpoK2HLgqoSneMzzhwKSJoOWXueS6gnJF9LCeL 8mi6PE9QUExMtHInogHcoWzt+vs4luW/VFIwNUqtqAKJYtRyMrqx/QgzFj7CaN/A DHWP276U/eNM+Obn3z3Exsk8y3Kf++pwaEIKOuBUWLPgrnAhJR9gabnnLlBcCASf 1ae5wndqHq7UNYCA08APea3KaEQkGFHpJaQKc4npz96lsKVIXfwRU3joCVW01eNq O89VilW0u36YIpV1dbH/YPTCywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNepnpCQ tXGVPuf11SoyitFIkSjlMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZEl1oyMD+AbXr9yEGesDJh/TGZJlCKYu4IdaAKLuC+uv/vob5GiQb qg51BdFSrgS9JE4ACV73OdW+HQidgNYvjD0omhUHSTW0ku/h1rCTFb9B8SHZb59D nah1yHGdMZa2GK/x/DpW56c7JPtQ47WrDfUhYOCfeevhlocNxHeu4zV109994Pmf FeENY81LIDtCXGOqv0jwvpnQoRWpWmqw8H31EZRJLnWCHK2+7ut2SIVxu4MzDRdt 3mCst1z++9fSM/mJ8eFnj5cvcMWsp7zlhWOXLxoNEhMyHchelELfhwseXxc2C0vW /kr2/ORSujwemKftFvqlw+9bRF56cgzY -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:06 2025 by rpki-client