$ rpki-client -vvf rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft File: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft (raw, json) Hash identifier: 6hQAXpxjoWe99uMfzFv80NMReO5rOlQPlQMtntld9tY= Subject key identifier: 9E:3E:E0:62:B8:6D:0E:D9:BF:DE:18:C8:A4:80:90:51:B5:F8:D5:25 Authority key identifier: 13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 Certificate issuer: /CN=A917B633/serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft Manifest number: 89 Signing time: Thu 03 Jul 2025 06:43:53 +0000 Manifest this update: Thu 03 Jul 2025 06:43:53 +0000 Manifest next update: Thu 10 Jul 2025 06:43:53 +0000 Files and hashes: 1: E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl (hash: 8kSvPFfBtsczVy4mMuLh8tDz51107dagV+rJse2OI7Y=) 2: 3E4867CC86DC11EFA6022627C4F9AE02.roa (hash: kBrZwIHTbaSnaE7XdLULllQIjEnMuSEphHZrV4DhNKM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B633, serialNumber=13D7A13B423BB6E87A1A75B7493F0BC19D0CEAA3 Validity Not Before: Jul 3 06:43:53 2025 GMT Not After : Jul 10 06:43:53 2025 GMT Subject: CN=686626a9-7a30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f3:00:d5:a4:d4:fe:b6:e3:4a:a5:16:5e:98: 1a:f6:d5:69:2d:75:de:f0:96:be:59:84:87:f6:e2: 5f:66:e3:fd:3e:d8:b2:cd:36:21:8c:95:35:ba:3b: 84:f9:4a:3c:3c:7b:8e:65:44:3b:fe:a9:f3:9f:d6: 9e:80:bc:af:26:ba:32:b0:4f:0d:f6:22:de:91:35: b9:01:7a:5f:40:50:41:0e:75:bd:bc:80:a6:87:6f: 89:08:f8:fe:52:7d:90:c9:92:bd:85:c7:4b:4f:3b: 18:d8:e4:8d:ea:30:13:cf:c7:eb:1c:82:09:7c:3b: 6f:ab:e0:b0:54:ef:9e:e0:92:ab:f1:aa:88:d8:53: b7:4c:8e:a4:75:cb:02:f1:69:94:4d:4d:d4:3b:04: f3:b3:5f:93:bb:8d:b9:fe:12:95:4d:4b:4e:8a:9c: 9a:e5:a7:81:61:cf:58:6f:d3:21:52:52:5f:09:39: e8:77:7b:55:a5:9d:ed:68:10:16:4e:51:9f:a0:8c: 1d:11:4a:dc:f3:7b:1a:7d:6d:de:3a:b1:9e:4b:07: 66:85:49:f2:a1:6e:4d:0f:de:aa:4a:c1:24:a0:9b: 13:5a:9b:00:79:05:45:ba:e7:ce:36:21:dd:e3:d2: d6:05:2d:32:ea:ce:6f:8f:a0:f8:dd:35:48:9d:09: dd:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:3E:E0:62:B8:6D:0E:D9:BF:DE:18:C8:A4:80:90:51:B5:F8:D5:25 X509v3 Authority Key Identifier: keyid:13:D7:A1:3B:42:3B:B6:E8:7A:1A:75:B7:49:3F:0B:C1:9D:0C:EA:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B633/D0AB93E486D911EF8B8BEB1FC4F9AE02/E9ehO0I7tuh6GnW3ST8LwZ0M6qM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:fc:16:d0:36:81:5e:a9:e8:b4:26:b9:f0:c9:b5:68:4b:bc: df:cc:ed:0f:ad:2a:ab:3e:b6:cb:a5:89:27:a5:35:4e:01:51: ec:2c:a6:f5:db:62:d4:52:93:c4:84:ba:85:13:0e:d3:29:f9: 05:71:f5:8e:b6:09:20:64:90:ee:97:23:f0:ff:c6:19:1a:ec: 72:42:ea:3b:90:eb:27:03:0b:89:5a:ef:4c:eb:6f:aa:29:29: 18:06:a0:c8:14:b7:99:1d:68:93:5d:33:5a:91:92:f5:f6:fa: bf:e9:1a:ad:2d:28:df:d0:98:95:31:dd:f7:1c:ea:c3:b8:ee: d6:e9:8c:f2:33:57:af:a9:ba:c9:2f:03:ad:fd:b3:33:fb:ca: c1:df:16:a0:f7:f7:d9:33:9a:a7:ba:2d:11:53:bf:94:88:2f: 4e:fc:7a:4d:dd:c8:bf:2c:6a:27:d3:97:ae:da:57:8b:03:e6: 25:c6:8f:be:f9:30:b2:ed:ad:74:0f:ba:9f:b2:c4:e1:3c:91: 2a:58:6a:39:8c:73:9d:e3:b8:cd:18:16:43:43:0b:0e:3b:33: ee:16:05:4b:6a:dc:f7:d2:90:ab:3e:6b:e8:08:c2:d9:e1:67: b3:02:93:03:3a:02:8a:82:be:ab:08:74:5e:0f:e5:22:fe:aa: 97:65:b3:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I2MzMxMTAvBgNVBAUTKDEzRDdBMTNCNDIzQkI2RTg3QTFBNzVCNzQ5M0YwQkMx OUQwQ0VBQTMwHhcNMjUwNzAzMDY0MzUzWhcNMjUwNzEwMDY0MzUzWjAYMRYwFAYD VQQDEw02ODY2MjZhOS03YTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfMA1aTU/rbjSqUWXpga9tVpLXXe8Ja+WYSH9uJfZuP9PtiyzTYhjJU1ujuE +Uo8PHuOZUQ7/qnzn9aegLyvJroysE8N9iLekTW5AXpfQFBBDnW9vICmh2+JCPj+ Un2QyZK9hcdLTzsY2OSN6jATz8frHIIJfDtvq+CwVO+e4JKr8aqI2FO3TI6kdcsC 8WmUTU3UOwTzs1+Tu425/hKVTUtOipya5aeBYc9Yb9MhUlJfCTnod3tVpZ3taBAW TlGfoIwdEUrc83safW3eOrGeSwdmhUnyoW5ND96qSsEkoJsTWpsAeQVFuufONiHd 49LWBS0y6s5vj6D43TVInQnd0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ4+4GK4 bQ7Zv94YyKSAkFG1+NUlMB8GA1UdIwQYMBaAFBPXoTtCO7boehp1t0k/C8GdDOqj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjYzMy9EMEFCOTNFNDg2 RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1aDZHblczU1Q4THdaME02 cU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0U5ZWhPMEk3dHVoNkduVzNTVDhMd1owTTZxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjYzMy9EMEFCOTNFNDg2RDkxMUVGOEI4QkVCMUZDNEY5QUUwMi9FOWVoTzBJN3R1 aDZHblczU1Q4THdaME02cU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi/BbQNoFeqei0JrnwybVoS7zfzO0PrSqrPrbLpYknpTVOAVHsLKb1 22LUUpPEhLqFEw7TKfkFcfWOtgkgZJDulyPw/8YZGuxyQuo7kOsnAwuJWu9M62+q KSkYBqDIFLeZHWiTXTNakZL19vq/6RqtLSjf0JiVMd33HOrDuO7W6YzyM1evqbrJ LwOt/bMz+8rB3xag9/fZM5qnui0RU7+UiC9O/HpN3ci/LGon05eu2leLA+Ylxo++ +TCy7a10D7qfssThPJEqWGo5jHOd47jNGBZDQwsOOzPuFgVLatz30pCrPmvoCMLZ 4WezApMDOgKKgr6rCHReD+Ui/qqXZbPH -----END CERTIFICATE-----Generated at Thu Jul 3 21:09:25 2025 by rpki-client