$ rpki-client -vvf rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft File: rIf9aQzGskx4_D9x0y3eDbookNs.mft (raw, json) Hash identifier: bd6IHQdctm+EJtjHzYMCsSCRIg9WlyzMex96yndvis0= Subject key identifier: 04:BC:F1:42:11:CB:C7:61:AF:C5:1E:DF:2C:6B:A6:9A:80:70:EF:17 Authority key identifier: AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB Certificate issuer: /CN=A917C156/serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft Manifest number: 45 Signing time: Sat 23 Aug 2025 07:41:36 +0000 Manifest this update: Sat 23 Aug 2025 07:41:36 +0000 Manifest next update: Sat 30 Aug 2025 07:41:36 +0000 Files and hashes: 1: rIf9aQzGskx4_D9x0y3eDbookNs.crl (hash: X8P23gr6ljqHisXAZ4femW4cop5MB1Nvu7yP0KxG3HI=) 2: 82B7AD281C2811F0AF6EDC47C4F9AE02.roa (hash: TOct4YZ3x0uVg6PIqVFGhW7Pj8+y8nCLAaZLvcpqBvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C156, serialNumber=AC87FD690CC6B24C78FC3F71D32DDE0DBA2890DB Validity Not Before: Aug 23 07:41:36 2025 GMT Not After : Aug 30 07:41:36 2025 GMT Subject: CN=68a970b0-90db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:05:68:45:12:10:39:da:7e:6f:fe:c2:cf:c9: e6:01:61:36:0f:9f:bc:65:91:b9:08:9b:7f:d9:76: c2:d1:69:86:36:12:7c:66:f9:7b:ec:50:27:af:bc: 34:b8:2f:a8:14:ce:ed:78:13:08:02:41:e3:c2:37: e1:9c:f3:6e:37:fa:bb:5c:de:d7:77:49:30:e6:a5: 1a:95:ca:00:1d:23:97:38:01:9d:05:0b:0b:6e:c9: 81:c0:42:bb:9c:bb:a9:21:b3:fd:c7:c7:8d:2b:93: a9:0d:b0:ed:83:c3:8b:1e:3f:11:88:63:76:20:db: 43:db:08:55:c4:69:d7:e5:db:61:0d:3b:a2:a8:21: 99:99:68:08:a2:e3:f9:be:cd:05:64:af:4a:c5:b8: 1b:a6:ae:44:2b:51:24:e9:68:43:10:6b:bd:ee:fe: f1:46:e6:d3:33:38:d2:1f:b3:ea:ae:46:0b:9f:d0: c5:3c:ff:41:3a:d0:82:0b:05:5c:b7:db:cf:32:c4: 24:44:f8:9e:c6:6f:42:1f:c0:c7:d5:53:70:c1:08: 8f:63:cf:87:78:a6:de:54:15:e4:c0:c7:a1:67:2a: d4:d4:5e:f9:77:fc:46:12:13:ad:f2:0b:fa:a3:b0: 4c:fa:ea:9d:15:48:5a:b8:13:1a:c1:ce:eb:34:78: c9:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:BC:F1:42:11:CB:C7:61:AF:C5:1E:DF:2C:6B:A6:9A:80:70:EF:17 X509v3 Authority Key Identifier: keyid:AC:87:FD:69:0C:C6:B2:4C:78:FC:3F:71:D3:2D:DE:0D:BA:28:90:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIf9aQzGskx4_D9x0y3eDbookNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C156/142E64DE1C0311F0A5DC1556C4F9AE02/rIf9aQzGskx4_D9x0y3eDbookNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:ba:6e:00:dd:73:20:13:22:50:e8:e0:fc:e4:d4:a5:33:d5: e3:b4:ba:35:25:94:d8:b3:8d:fd:62:62:26:3f:20:99:6e:68: 4a:22:65:58:7b:db:20:5f:18:27:06:a8:af:f1:f9:37:f6:d3: f2:e1:eb:4e:af:43:d8:9c:f5:66:f0:e1:fb:c5:2a:b2:98:34: 6a:35:10:42:53:4b:34:02:38:d7:19:b7:c4:43:37:d7:8c:d4: f8:1f:9e:7d:23:e1:d3:ad:16:c7:3b:bd:0a:f7:6f:40:76:7c: 78:a6:87:cb:c2:72:31:13:2f:12:6d:d2:5e:c0:d6:a7:3e:e0: a8:b5:38:31:52:16:44:fc:99:72:eb:5d:e9:5f:b5:3d:77:4c: cf:61:ac:34:66:85:b8:0d:fe:cd:19:11:f6:41:11:53:38:83: f4:0f:90:43:ac:18:ff:e7:1f:11:35:20:b4:fd:37:a4:0f:1b: 4a:9c:a5:98:91:5f:3a:a9:ad:b8:e9:d9:67:ba:0e:2e:2a:6d: eb:c6:fc:ec:52:81:35:f7:8e:0b:ec:7b:bc:0d:b9:59:e9:61: 9f:da:cd:09:de:2b:f9:b1:11:59:25:bf:13:98:67:ec:65:b9: cf:dd:24:e6:b9:13:b5:9a:d5:f2:8b:68:be:a2:41:c6:45:77: c4:86:40:3b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzE1NjExMC8GA1UEBRMoQUM4N0ZENjkwQ0M2QjI0Qzc4RkMzRjcxRDMyRERFMERC QTI4OTBEQjAeFw0yNTA4MjMwNzQxMzZaFw0yNTA4MzAwNzQxMzZaMBgxFjAUBgNV BAMTDTY4YTk3MGIwLTkwZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzBWhFEhA52n5v/sLPyeYBYTYPn7xlkbkIm3/ZdsLRaYY2Enxm+XvsUCevvDS4 L6gUzu14EwgCQePCN+Gc8243+rtc3td3STDmpRqVygAdI5c4AZ0FCwtuyYHAQruc u6khs/3Hx40rk6kNsO2Dw4sePxGIY3Yg20PbCFXEadfl22ENO6KoIZmZaAii4/m+ zQVkr0rFuBumrkQrUSTpaEMQa73u/vFG5tMzONIfs+quRguf0MU8/0E60IILBVy3 288yxCRE+J7Gb0IfwMfVU3DBCI9jz4d4pt5UFeTAx6FnKtTUXvl3/EYSE63yC/qj sEz66p0VSFq4ExrBzus0eMnTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBLzxQhHL x2GvxR7fLGummoBw7xcwHwYDVR0jBBgwFoAUrIf9aQzGskx4/D9x0y3eDbookNsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMTU2LzE0MkU2NERFMUMw MzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4NF9EOXgweTNlRGJvb2tO cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcklmOWFRekdza3g0X0Q5eDB5M2VEYm9va05zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MTU2LzE0MkU2NERFMUMwMzExRjBBNURDMTU1NkM0RjlBRTAyL3JJZjlhUXpHc2t4 NF9EOXgweTNlRGJvb2tOcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAI66bgDdcyATIlDo4Pzk1KUz1eO0ujUllNizjf1iYiY/IJluaEoiZVh7 2yBfGCcGqK/x+Tf20/Lh606vQ9ic9Wbw4fvFKrKYNGo1EEJTSzQCONcZt8RDN9eM 1Pgfnn0j4dOtFsc7vQr3b0B2fHimh8vCcjETLxJt0l7A1qc+4Ki1ODFSFkT8mXLr XelftT13TM9hrDRmhbgN/s0ZEfZBEVM4g/QPkEOsGP/nHxE1ILT9N6QPG0qcpZiR Xzqprbjp2We6Di4qbevG/OxSgTX3jgvse7wNuVnpYZ/azQneK/mxEVklvxOYZ+xl uc/dJOa5E7Wa1fKLaL6iQcZFd8SGQDs= -----END CERTIFICATE-----Generated at Sat Aug 23 20:40:40 2025 by rpki-client