$ rpki-client -vvf rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft File: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft (raw, json) Hash identifier: UE+lZ+UuqCZLl8TFnVtVvdXmC1W6hxa1JdBg0tmh6LI= Subject key identifier: 13:9B:65:1A:74:62:16:1F:B5:24:F7:2D:FD:B4:93:95:85:EF:74:A8 Authority key identifier: 13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 Certificate issuer: /CN=A917B633/serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Certificate serial: A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft Manifest number: A3 Signing time: Sat 23 Aug 2025 06:26:43 +0000 Manifest this update: Sat 23 Aug 2025 06:26:42 +0000 Manifest next update: Sat 30 Aug 2025 06:26:42 +0000 Files and hashes: 1: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl (hash: 7Ocp0VPjGWYVFNdaFtXcz0j5H47UEEyIaEKCXdJRmGc=) 2: 3E4867CC86DC11EFA6022627C4F9AE02.roa (hash: kBrZwIHTbaSnaE7XdLULllQIjEnMuSEphHZrV4DhNKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:26:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 164 (0xa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B633, serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Validity Not Before: Aug 23 06:26:42 2025 GMT Not After : Aug 30 06:26:42 2025 GMT Subject: CN=68a95f23-3fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:95:14:e7:a1:35:a0:c8:f5:21:30:ae:df:51: e1:07:9b:ef:a4:09:79:53:ef:7d:14:12:b6:e1:f4: 6f:b5:b5:fc:29:56:73:7e:94:d2:46:21:2a:ac:24: 60:d6:40:69:a4:57:3d:ca:34:74:4d:bf:6d:1d:eb: 97:71:20:2a:77:f1:d2:2a:40:83:b6:e1:58:5d:03: d1:2e:54:d3:ef:b8:88:bc:0d:43:ea:14:ae:5b:83: 1f:68:4d:1e:71:f7:1a:f0:95:3f:65:d8:50:be:e4: 11:2f:b0:95:ba:5a:3e:21:26:ae:22:f6:10:35:86: d9:07:4a:bc:d8:b4:c8:28:01:9a:49:c4:f0:6f:9e: 99:c2:a5:75:6c:c9:5c:fd:ac:98:0d:5d:dd:9d:a1: 1b:4c:64:97:33:11:18:3a:32:1e:f5:6e:96:eb:95: 1a:9a:de:3c:0d:4c:de:78:12:ff:ef:be:62:27:f8: f2:8f:0b:25:44:e3:61:43:f3:3e:30:c4:ff:72:35: 2b:6b:5a:af:d1:5b:b6:f4:6a:ff:b2:b9:48:71:c1: b8:ad:fc:b1:8f:64:61:d8:26:9b:d5:6d:ef:03:31: 37:34:df:fd:96:28:44:34:6e:82:e6:e8:93:61:b0: 29:bc:06:02:1f:ad:19:50:42:f1:a7:aa:0d:e2:c4: 7f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9B:65:1A:74:62:16:1F:B5:24:F7:2D:FD:B4:93:95:85:EF:74:A8 X509v3 Authority Key Identifier: keyid:13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:9b:f0:d0:05:22:65:6f:21:ce:e1:4a:e1:39:a2:89:30:5f: d3:a9:49:0d:cd:b6:00:e9:62:30:a5:1e:ff:4f:f2:5f:3d:05: 46:b4:05:12:df:1c:89:0b:b7:cd:13:65:f1:b1:1e:f7:03:7e: 30:ed:c1:09:79:55:fa:a3:33:9c:bf:2e:d0:38:78:2b:60:4e: 43:86:fb:25:44:4b:f2:4a:ff:3f:54:28:86:5a:f9:08:54:1b: f0:24:00:c6:e9:e9:05:37:5c:d1:c1:3a:b9:ba:d7:88:2c:7e: 57:18:5a:9c:0e:f2:6c:4e:a8:de:bc:8f:8c:41:53:8f:95:92: 23:2f:30:b5:90:c8:33:d5:12:f9:68:c4:bf:1d:9c:9e:f0:f2: 8d:d5:58:3e:84:e4:6b:2d:62:74:78:b4:7d:94:1e:c1:b7:14: ee:76:4a:e8:8e:3e:e4:2a:eb:bf:a0:a0:77:45:9b:bb:22:91: 72:23:90:ba:c4:f9:1a:bd:95:1e:e8:1b:49:91:58:26:92:5a: 02:30:90:e1:7d:d2:c4:7e:8a:08:c3:c9:fc:60:30:03:25:52: 6c:cd:a2:12:0e:8b:33:2c:3c:72:b8:45:a9:d2:7a:05:df:50: 57:3c:ab:f8:ef:54:73:10:2a:9e:11:72:26:bb:36:6e:18:7a: 69:fc:44:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2MzMxMTAvBgNVBAUTKDEzRDdBMTNCNDIzQkI2RTg3QTFBNzVCNzQ5M0YwQkMx OUQwQ0VBQTMwHhcNMjUwODIzMDYyNjQyWhcNMjUwODMwMDYyNjQyWjAYMRYwFAYD VQQDEw02OGE5NWYyMy0zZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpUU56E1oMj1ITCu31HhB5vvpAl5U+99FBK24fRvtbX8KVZzfpTSRiEqrCRg 1kBppFc9yjR0Tb9tHeuXcSAqd/HSKkCDtuFYXQPRLlTT77iIvA1D6hSuW4MfaE0e cfca8JU/ZdhQvuQRL7CVulo+ISauIvYQNYbZB0q82LTIKAGaScTwb56ZwqV1bMlc /ayYDV3dnaEbTGSXMxEYOjIe9W6W65Uamt48DUzeeBL/775iJ/jyjwslRONhQ/M+ MMT/cjUra1qv0Vu29Gr/srlIccG4rfyxj2Rh2Cab1W3vAzE3NN/9lihENG6C5uiT YbApvAYCH60ZUELxp6oN4sR/0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBObZRp0 YhYftST3Lf20k5WF73SoMB8GA1UdIwQYMBaAFBPXoTtCO7boehp1t0k/C8GdDOqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjYzMy9EMEFCOTNFNDg2 RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1aDZHblczU1Q4THdaME02 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0U5ZWhPMEk3dHVoNkduVzNTVDhMd1owTTZxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjYzMy9EMEFCOTNFNDg2RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1 aDZHblczU1Q4THdaME02cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9m/DQBSJlbyHO4UrhOaKJMF/TqUkNzbYA6WIwpR7/T/JfPQVGtAUS 3xyJC7fNE2XxsR73A34w7cEJeVX6ozOcvy7QOHgrYE5DhvslREvySv8/VCiGWvkI VBvwJADG6ekFN1zRwTq5uteILH5XGFqcDvJsTqjevI+MQVOPlZIjLzC1kMgz1RL5 aMS/HZye8PKN1Vg+hORrLWJ0eLR9lB7BtxTudkrojj7kKuu/oKB3RZu7IpFyI5C6 xPkavZUe6BtJkVgmkloCMJDhfdLEfooIw8n8YDADJVJszaISDoszLDxyuEWp0noF 31BXPKv471RzECqeEXImuzZuGHpp/ETi -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:34 2025 by rpki-client