$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: GuR57gi/NNRqdhvHFrjQ/ux5LAvt19Y4HwB/NmNxtWU= Subject key identifier: 77:EC:22:63:4D:32:6B:EA:B1:1C:03:E4:58:55:18:B2:50:60:B5:B6 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 2B Signing time: Thu 03 Jul 2025 08:02:42 +0000 Manifest this update: Thu 03 Jul 2025 08:02:42 +0000 Manifest next update: Thu 10 Jul 2025 08:02:42 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: +6HsmPOVwxq1YsEhb5WgIthMQ/D8QE0IWEh0bKzRJDs=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: Jul 3 08:02:42 2025 GMT Not After : Jul 10 08:02:42 2025 GMT Subject: CN=68663922-e407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:90:c2:22:30:3a:d9:b1:9e:f2:02:36:36:92: 83:3f:65:f7:d8:e5:6a:cb:44:47:1f:05:de:d3:4d: 6a:84:3d:57:bf:a7:f9:74:de:96:07:2a:6e:42:be: cf:74:14:66:fd:7f:5a:c6:4c:21:98:07:1b:9b:cc: b3:09:52:18:4b:76:95:1a:21:d8:f9:e0:d6:5f:7e: 5c:f1:e6:d6:fa:a0:d6:47:13:89:49:78:9b:82:bf: 69:1b:50:01:5b:73:4e:97:3e:07:a7:cc:cc:00:f9: 34:77:dc:86:fe:a5:3f:8f:86:3c:60:83:db:db:21: 26:6f:f1:d5:78:df:ac:2d:6f:0f:28:14:57:86:2b: b3:83:8f:ef:29:5d:2b:71:fa:21:f7:3b:e6:08:b4: 33:27:ed:93:63:0a:5f:42:5d:43:a8:bc:52:f3:d6: 32:db:1d:cd:e2:af:2c:d1:d8:ab:a8:2c:7a:12:0d: c5:48:8a:c0:e5:d9:c7:4d:76:d0:26:3d:ad:32:9a: 89:9a:92:d8:37:18:5c:f9:9d:d2:0f:e6:90:7b:9f: f5:15:28:d8:3f:6f:57:58:cd:18:13:56:ad:d2:1f: cf:d9:9f:af:a8:b6:29:cd:36:95:a4:88:a0:fd:e8: 62:ab:dd:d6:4e:99:38:2b:49:b0:a0:5a:75:06:ae: fc:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:EC:22:63:4D:32:6B:EA:B1:1C:03:E4:58:55:18:B2:50:60:B5:B6 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:a7:98:e9:68:7b:6b:c0:20:02:32:df:47:da:d0:7f:54:08: ff:22:be:a7:9a:5c:85:0c:0a:47:77:d4:e9:d1:53:e4:71:ca: 29:63:20:b5:4b:a0:25:be:a5:5b:f1:04:3c:64:ac:e3:33:87: 36:bc:6a:54:e2:f1:7a:6a:9b:f7:b1:35:b7:06:a8:5a:5b:2b: 4e:93:3b:25:0c:e7:b8:91:35:cf:55:02:9a:35:e0:7b:5f:95: 00:3a:2a:57:42:0d:c0:7b:72:94:e4:ca:09:14:81:4c:14:bf: fd:6b:d5:fa:20:6a:87:5f:43:bf:e0:87:75:fc:87:95:36:10: 9f:24:05:5f:a8:70:ff:ae:33:f6:d3:e9:47:96:8d:e6:ba:89: a0:24:40:b3:cb:86:21:25:ea:32:22:d0:a0:58:f2:e2:cf:75: 9f:c8:5e:dd:e2:60:e0:77:c6:96:10:18:64:6f:4b:e2:22:d2: 08:1a:9b:ed:04:f8:77:a1:7d:57:27:bf:96:6b:1c:30:5a:7f: 34:2b:93:f0:c9:ee:f3:ed:50:fd:b0:52:4e:30:3d:3e:1a:91: c6:f7:42:38:0b:3a:31:df:ec:a2:d3:5e:aa:00:4a:84:b4:76: a6:e8:f0:20:d7:9b:ee:a3:57:f1:c3:50:70:09:58:0b:01:45: 32:3f:8f:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTA3MDMwODAyNDJaFw0yNTA3MTAwODAyNDJaMBgxFjAUBgNV BAMTDTY4NjYzOTIyLWU0MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCkMIiMDrZsZ7yAjY2koM/ZffY5WrLREcfBd7TTWqEPVe/p/l03pYHKm5Cvs90 FGb9f1rGTCGYBxubzLMJUhhLdpUaIdj54NZfflzx5tb6oNZHE4lJeJuCv2kbUAFb c06XPgenzMwA+TR33Ib+pT+Phjxgg9vbISZv8dV436wtbw8oFFeGK7ODj+8pXStx +iH3O+YItDMn7ZNjCl9CXUOovFLz1jLbHc3iryzR2KuoLHoSDcVIisDl2cdNdtAm Pa0ymomaktg3GFz5ndIP5pB7n/UVKNg/b1dYzRgTVq3SH8/Zn6+otinNNpWkiKD9 6GKr3dZOmTgrSbCgWnUGrvwnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUd+wiY00y a+qxHAPkWFUYslBgtbYwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIKnmOloe2vAIAIy30fa0H9UCP8ivqeaXIUMCkd31OnRU+RxyiljILVL oCW+pVvxBDxkrOMzhza8alTi8Xpqm/exNbcGqFpbK06TOyUM57iRNc9VApo14Htf lQA6KldCDcB7cpTkygkUgUwUv/1r1fogaodfQ7/gh3X8h5U2EJ8kBV+ocP+uM/bT 6UeWjea6iaAkQLPLhiEl6jIi0KBY8uLPdZ/IXt3iYOB3xpYQGGRvS+Ii0ggam+0E +HehfVcnv5ZrHDBafzQrk/DJ7vPtUP2wUk4wPT4akcb3QjgLOjHf7KLTXqoASoS0 dqbo8CDXm+6jV/HDUHAJWAsBRTI/j1E= -----END CERTIFICATE-----Generated at Thu Jul 3 18:48:41 2025 by rpki-client