$ rpki-client -vvf rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft File: _whTCVKXG6BlIktSH1ZWO20hJO0.mft (raw, json) Hash identifier: cBLvWIbBoFDBP5l0MqStjora3EUmKoB02mRgN5u0yaY= Subject key identifier: E6:F2:30:72:66:50:B6:B4:68:95:D7:10:90:D8:FB:4E:D6:B9:29:15 Authority key identifier: FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED Certificate issuer: /CN=A917E475/serialNumber=FF08530952971BA065224B521F56563B6D2124ED Certificate serial: 0D19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft Manifest number: 0D13 Signing time: Fri 22 Aug 2025 18:10:29 +0000 Manifest this update: Fri 22 Aug 2025 18:10:28 +0000 Manifest next update: Fri 29 Aug 2025 18:10:28 +0000 Files and hashes: 1: _whTCVKXG6BlIktSH1ZWO20hJO0.crl (hash: mygbemO3CpIa14y1jzK/L/3jX1BBX3mV4BdmGPHVphM=) 2: 3A8AC908E41C11E9AD4A8D16C4F9AE02.roa (hash: 7Dst7szyPWooV+5WFj8vI4oANvEvXDCaESLYXfhjMk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3353 (0xd19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E475, serialNumber=FF08530952971BA065224B521F56563B6D2124ED Validity Not Before: Aug 22 18:10:28 2025 GMT Not After : Aug 29 18:10:28 2025 GMT Subject: CN=68a8b295-6670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:bd:cc:4a:d3:55:4e:62:e4:ac:9f:1c:e4:65: 88:e6:d2:35:48:80:26:17:7b:98:12:35:25:f6:38: bb:20:94:16:f5:7a:7f:3d:20:ee:95:21:a4:dc:29: 9e:77:a6:4c:84:31:75:64:d1:74:f9:ea:f8:67:0c: 78:86:a6:91:79:6d:36:78:7a:89:32:33:9c:3f:49: 64:80:d7:5a:78:70:86:cb:01:71:06:20:82:93:a8: a1:0a:6a:65:4f:4f:33:e0:2f:85:e1:12:0c:b9:f8: 3d:4c:b6:bd:f3:82:35:03:a9:96:4a:fc:aa:98:5a: 94:58:fc:e7:58:f4:1f:63:9e:bf:35:1e:77:73:a2: d7:00:c1:fe:a3:2b:1d:dd:14:2c:5c:a1:b5:f2:86: bd:f9:07:09:a2:33:9f:84:f5:8c:a7:cf:d8:69:c0: 61:96:8d:14:f3:64:45:0e:fb:69:48:ac:d7:35:78: 6a:28:e9:dd:b4:fa:1e:2b:0e:c3:71:3c:b6:33:04: 1f:1d:2c:b7:2a:bd:76:23:d6:10:db:d2:c1:95:10: 53:92:1a:ed:29:45:be:ff:f5:e2:b2:0f:a9:f8:c7: 52:c9:bc:b7:0e:87:88:a4:9e:1f:49:c5:aa:e1:1c: 82:b4:9e:10:66:53:0f:6e:58:6a:b8:d7:fb:f1:52: 99:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F2:30:72:66:50:B6:B4:68:95:D7:10:90:D8:FB:4E:D6:B9:29:15 X509v3 Authority Key Identifier: keyid:FF:08:53:09:52:97:1B:A0:65:22:4B:52:1F:56:56:3B:6D:21:24:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_whTCVKXG6BlIktSH1ZWO20hJO0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E475/DBFB3EB4E41A11E9AD79B811C4F9AE02/_whTCVKXG6BlIktSH1ZWO20hJO0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:11:c9:c4:45:7b:fd:bf:a4:12:99:d6:c2:2e:ee:1d:a1:df: a1:fc:db:33:c5:c0:e2:2b:5b:c4:14:c8:87:98:6d:aa:b0:56: 8d:17:e4:8d:5c:4e:86:28:4c:63:d9:f3:66:c7:ef:05:55:d5: 99:09:8e:1d:13:68:5f:87:97:9b:75:0f:c2:b8:57:0a:66:5d: 4f:2d:80:dd:c9:ee:e5:b4:7d:cc:37:a1:44:26:2c:5a:cf:39: 8a:31:34:13:6e:38:54:38:5d:3e:41:05:7a:91:39:fe:27:44: f0:88:d5:13:96:36:ea:66:25:f9:1f:1e:ee:4e:a7:ee:ec:e6: 05:ad:cb:09:40:67:71:74:15:6a:17:51:1d:ae:99:d8:38:bc: 98:d7:34:52:b4:22:87:89:2b:7e:44:3b:3e:c6:91:8f:44:47: 94:2b:b7:19:e6:b1:0b:45:fd:ca:f1:f2:aa:a9:61:fb:72:79: 02:e5:80:39:ca:80:72:a8:d6:1f:cf:15:74:ea:f2:7a:e5:bb: f0:55:8b:d2:9b:5a:83:5b:3f:d4:c8:e4:18:90:e9:62:6c:0c: 22:94:15:82:d8:11:26:61:86:d4:58:39:93:2f:d1:1a:a2:d0: 23:ca:43:09:c4:92:98:41:f8:6d:d9:fa:08:0a:a8:f5:fb:01: ca:16:9d:7c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDRkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0NzUxMTAvBgNVBAUTKEZGMDg1MzA5NTI5NzFCQTA2NTIyNEI1MjFGNTY1NjNC NkQyMTI0RUQwHhcNMjUwODIyMTgxMDI4WhcNMjUwODI5MTgxMDI4WjAYMRYwFAYD VQQDEw02OGE4YjI5NS02NjcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvr3MStNVTmLkrJ8c5GWI5tI1SIAmF3uYEjUl9ji7IJQW9Xp/PSDulSGk3Cme d6ZMhDF1ZNF0+er4Zwx4hqaReW02eHqJMjOcP0lkgNdaeHCGywFxBiCCk6ihCmpl T08z4C+F4RIMufg9TLa984I1A6mWSvyqmFqUWPznWPQfY56/NR53c6LXAMH+oysd 3RQsXKG18oa9+QcJojOfhPWMp8/YacBhlo0U82RFDvtpSKzXNXhqKOndtPoeKw7D cTy2MwQfHSy3Kr12I9YQ29LBlRBTkhrtKUW+//Xisg+p+MdSyby3DoeIpJ4fScWq 4RyCtJ4QZlMPblhquNf78VKZEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFObyMHJm ULa0aJXXEJDY+07WuSkVMB8GA1UdIwQYMBaAFP8IUwlSlxugZSJLUh9WVjttISTt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTQ3NS9EQkZCM0VCNEU0 MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2QmxJa3RTSDFaV08yMGhK TzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL193aFRDVktYRzZCbElrdFNIMVpXTzIwaEpPMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTQ3NS9EQkZCM0VCNEU0MUExMUU5QUQ3OUI4MTFDNEY5QUUwMi9fd2hUQ1ZLWEc2 QmxJa3RTSDFaV08yMGhKTzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChEcnERXv9v6QSmdbCLu4dod+h/NszxcDiK1vEFMiHmG2qsFaNF+SN XE6GKExj2fNmx+8FVdWZCY4dE2hfh5ebdQ/CuFcKZl1PLYDdye7ltH3MN6FEJixa zzmKMTQTbjhUOF0+QQV6kTn+J0TwiNUTljbqZiX5Hx7uTqfu7OYFrcsJQGdxdBVq F1EdrpnYOLyY1zRStCKHiSt+RDs+xpGPREeUK7cZ5rELRf3K8fKqqWH7cnkC5YA5 yoByqNYfzxV06vJ65bvwVYvSm1qDWz/UyOQYkOlibAwilBWC2BEmYYbUWDmTL9Ea otAjykMJxJKYQfht2foICqj1+wHKFp18 -----END CERTIFICATE-----Generated at Sat Aug 23 21:06:38 2025 by rpki-client