$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: ZhSfpS0S1E+vVYZVTAdOXmAn+72PT10AIsbxvlzT+k8= Subject key identifier: 83:92:DA:0B:B6:1E:F4:42:47:76:AB:D5:A4:59:EC:46:A4:8E:02:9A Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0AF3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AEC Signing time: Fri 22 Aug 2025 19:31:01 +0000 Manifest this update: Fri 22 Aug 2025 19:31:00 +0000 Manifest next update: Fri 29 Aug 2025 19:31:00 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: 6ixFJMQjoTZLehJ3SQYoEEF0VxBAD5Y/D2JTuDN9OJY=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: vj3M9GWIecNQbzYctkTLvK5haUmE73bb2B+bBqSBJ9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Aug 22 19:31:00 2025 GMT Not After : Aug 29 19:31:00 2025 GMT Subject: CN=68a8c574-7b83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:08:0c:04:8c:d8:a9:91:ef:16:77:2c:5e:88: 4c:55:e7:3e:da:bc:86:d5:d7:fa:44:94:08:1d:b3: 83:9d:11:bc:dd:8f:03:f7:9a:8c:5d:99:79:66:ff: f4:36:77:d2:c0:11:77:9b:a7:b7:8d:af:70:36:30: f5:cf:c6:e4:90:c0:1e:7a:3e:08:63:32:8a:c3:77: 6d:96:26:db:90:db:9b:90:ac:9c:9b:c8:38:78:bd: b1:b3:86:78:fb:7b:4e:5d:18:5f:11:95:2e:2e:18: 8e:58:58:16:7b:e9:40:0c:df:1e:c4:87:86:05:aa: 9f:85:0d:33:f0:43:67:c2:7e:f1:81:1a:51:9f:ce: 0b:63:c3:22:f5:51:87:37:21:15:b2:a3:e0:c5:8a: 95:f9:f4:6f:f0:11:82:29:e2:bb:c3:b8:70:d4:d6: 3e:8e:59:a5:9a:57:54:39:49:e6:6b:2e:9f:af:28: 49:e5:92:47:4f:92:c0:8c:a7:0e:a4:ed:bb:05:4a: ae:33:ed:9a:fc:ff:c1:62:09:f8:2b:08:53:57:de: fd:76:08:87:fe:29:ff:60:03:d2:b6:a3:15:98:94: e6:7c:cb:2e:51:89:b9:3d:ac:90:f7:7d:a4:bb:55: fd:63:d1:82:c3:22:e1:33:ff:f7:ab:d2:a3:83:41: 91:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:92:DA:0B:B6:1E:F4:42:47:76:AB:D5:A4:59:EC:46:A4:8E:02:9A X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:1d:ab:ba:8b:ed:31:a9:e1:42:b8:77:1c:9f:5f:7c:77:a1: 3a:f7:2a:7e:ae:c0:d8:a4:19:06:0b:ed:b0:a1:a1:c9:53:2d: fc:5c:cf:3e:12:88:99:fa:42:d4:4e:bb:6f:78:be:2c:33:79: fb:67:25:d3:e7:4f:4b:f5:39:83:75:0b:33:85:9d:12:88:80: c5:56:5d:6f:45:17:c4:39:05:7c:dc:c7:0a:57:5b:05:c6:1f: 15:93:77:c6:d0:48:c5:ca:e2:46:2e:64:c4:df:54:52:3f:4c: df:b6:26:fb:70:28:af:17:1e:20:90:7b:bf:73:5a:72:08:5f: e1:db:08:c7:20:5e:12:6b:99:70:b3:61:78:1f:f7:d8:45:54: 1c:e7:fb:d5:73:57:02:4e:38:29:e7:d1:a8:26:15:22:35:55: 61:03:5f:21:75:59:bc:0a:d4:11:42:db:aa:af:84:97:56:6a: da:87:ed:17:55:f2:a9:c8:9f:44:05:ad:a0:44:23:b6:50:f5: 54:85:e4:0a:cc:7d:e2:46:59:1c:d6:f5:39:4d:47:d7:8e:26: 3e:c6:51:5d:7e:70:17:f6:15:e2:2f:25:ab:39:be:e3:6d:66: 2e:4a:dc:51:f1:fd:f9:85:ce:24:de:a6:f5:06:77:02:31:c6: 09:66:c6:57 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwODIyMTkzMTAwWhcNMjUwODI5MTkzMTAwWjAYMRYwFAYD VQQDEw02OGE4YzU3NC03YjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQgMBIzYqZHvFncsXohMVec+2ryG1df6RJQIHbODnRG83Y8D95qMXZl5Zv/0 NnfSwBF3m6e3ja9wNjD1z8bkkMAeej4IYzKKw3dtlibbkNubkKycm8g4eL2xs4Z4 +3tOXRhfEZUuLhiOWFgWe+lADN8exIeGBaqfhQ0z8ENnwn7xgRpRn84LY8Mi9VGH NyEVsqPgxYqV+fRv8BGCKeK7w7hw1NY+jlmlmldUOUnmay6fryhJ5ZJHT5LAjKcO pO27BUquM+2a/P/BYgn4KwhTV979dgiH/in/YAPStqMVmJTmfMsuUYm5PayQ932k u1X9Y9GCwyLhM//3q9Kjg0GROQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIOS2gu2 HvRCR3ar1aRZ7EakjgKaMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC1Hau6i+0xqeFCuHccn198d6E69yp+rsDYpBkGC+2woaHJUy38XM8+ EoiZ+kLUTrtveL4sM3n7ZyXT509L9TmDdQszhZ0SiIDFVl1vRRfEOQV83McKV1sF xh8Vk3fG0EjFyuJGLmTE31RSP0zftib7cCivFx4gkHu/c1pyCF/h2wjHIF4Sa5lw s2F4H/fYRVQc5/vVc1cCTjgp59GoJhUiNVVhA18hdVm8CtQRQtuqr4SXVmrah+0X VfKpyJ9EBa2gRCO2UPVUheQKzH3iRlkc1vU5TUfXjiY+xlFdfnAX9hXiLyWrOb7j bWYuStxR8f35hc4k3qb1BncCMcYJZsZX -----END CERTIFICATE-----Generated at Sat Aug 23 21:23:25 2025 by rpki-client