$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft File: kMIvc5OFDo7Pa18eMg0HstGs2P0.mft (raw, json) Hash identifier: /0DTb0iCjy9DPQlDPPWENCjRLzbFNPY5NiPWyigYhE8= Subject key identifier: 6E:25:83:95:B1:42:B0:C0:A7:2C:97:58:91:78:A2:EF:A9:35:0D:4B Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 180F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft Manifest number: 179F Signing time: Fri 22 Aug 2025 16:42:22 +0000 Manifest this update: Fri 22 Aug 2025 16:42:22 +0000 Manifest next update: Fri 29 Aug 2025 16:42:22 +0000 Files and hashes: 1: kMIvc5OFDo7Pa18eMg0HstGs2P0.crl (hash: TTiRg548fGAPhDPUinRcg+eVNtYGo5A1gyEqiqf8dzY=) 2: E8118BFA022C11EBAC47A831C4F9AE02.roa (hash: l9PAtv4FmfKEbsr39kSblkIdk4l36jBShaU/yhiu3EA=) 3: 7E2725DAAC7611EAB766A74CC4F9AE02.roa (hash: pRnYMFn3MsmdKZMCcupGBS8xip66wFsc4Vhu+CVQM8s=) 4: DD145D6E023A11EBBDF8B35FC4F9AE02.roa (hash: Ki+ZYv+WbFodfUBA0Z9kcHIRNA0D2B2/Fqh0gMIddSg=) 5: A2C8B57074B711EB8491BC63C4F9AE02.roa (hash: 1XIBkz1xrsmaIEUuPCKysFF+5jDC/AbJdnY6h8iCmzA=) 6: B04675FC959711EA9F290A33C4F9AE02.roa (hash: ivQeuywrXd2HV3FA6lQn6A/OFE5M8rNHrmCwXxaSoOo=) 7: 694CCE66E53911EF9DD1B90DC4F9AE02.roa (hash: Q50guEdFQrac2WGNIOWOMwAPEusnnVtr+0WbjS+0Iw8=) 8: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (hash: 6dC3vmSVGgmkSh9nUR6cyWb5UZYgtCMEtbXtHWZQ+Ms=) 9: 696975861A3611EEA597E872C4F9AE02.roa (hash: oIGClTM3lHim9PRA3fKoX8EMPndg1+r8p0Zu4BUJRhA=) 10: 4C0C96C6022E11EBA920EA37C4F9AE02.roa (hash: K/ybxERnMroT+/HivxwCKoEx2WZjUMXQikxQf2o4Wtg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:42:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6159 (0x180f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: Aug 22 16:42:22 2025 GMT Not After : Aug 29 16:42:22 2025 GMT Subject: CN=68a89dee-d2e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8c:0e:7b:46:eb:a7:74:4e:ae:81:e8:42:bf: 76:26:cc:77:29:bd:7a:96:51:52:17:be:5e:f0:f8: c2:a0:4a:78:ed:e1:c0:f6:d2:48:76:f6:08:5e:b5: 9a:cd:6d:be:fb:fa:8a:c7:13:bb:a7:83:87:e8:7a: d7:9d:0a:b3:c2:fd:06:eb:ea:3d:3d:ea:b8:b2:c4: 3e:36:c2:8c:10:b8:a2:5b:67:a1:f4:c3:b9:66:ab: e6:96:b4:3c:15:e3:94:9f:72:c7:2e:5b:7d:98:10: 82:d1:66:59:d2:4a:58:ba:d8:01:92:bd:f2:ba:e3: 8b:30:56:ac:03:ca:9c:11:1f:a4:17:fe:40:93:ac: a1:e7:88:d3:cb:af:24:7d:3b:20:3a:b3:98:ae:b7: 54:39:95:4a:5d:48:09:73:d6:9d:43:4a:00:d0:dc: ae:8f:0b:b0:9b:7f:4a:89:1a:5a:ea:f9:67:22:f7: 6c:e6:fc:f5:7b:33:ba:2a:1b:da:0a:08:7e:cc:ca: 74:1a:c6:00:24:8c:08:48:48:4e:d3:9a:73:32:96: 87:da:31:18:2c:d2:48:ea:af:16:85:54:b0:a5:72: 36:1d:11:4d:0f:22:f4:a1:b1:49:7a:e0:ad:aa:63: 41:f9:22:a6:34:a6:3f:3c:e8:fe:3e:fe:13:43:e4: d1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:25:83:95:B1:42:B0:C0:A7:2C:97:58:91:78:A2:EF:A9:35:0D:4B X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1c:13:68:56:de:49:bb:b0:59:62:f6:3a:61:ae:9e:69:8f:9c: f5:49:0e:88:7d:61:05:a5:20:9f:ac:e1:ee:15:f7:e1:7c:60: 53:84:2f:99:7a:a0:b1:6e:20:90:03:12:98:36:6a:40:b8:8f: a6:0e:e7:76:fc:91:42:c2:4c:bf:88:63:5a:81:b1:96:13:bf: 63:d0:3b:38:0a:2a:fe:5a:88:01:e6:00:0e:44:8b:6b:84:08: ac:ae:58:35:66:d5:97:d3:cd:64:fd:42:10:8b:60:63:84:9a: fe:1f:67:14:c5:83:fe:fe:c6:91:3c:e9:e4:87:a1:ac:9e:36: 24:6a:97:85:68:d7:77:28:84:f0:a0:7e:0f:8a:88:d3:0b:92: 63:61:da:a0:2f:01:9d:ef:16:37:ad:0d:40:e7:a7:20:5e:fd: 68:d6:b6:f0:ba:1a:2f:8e:de:33:e9:38:05:4b:58:3b:b3:f6: 30:87:ba:3a:87:a7:12:b0:0a:86:ce:03:91:c5:55:f1:60:83: e8:a0:2e:63:f0:f3:89:ec:46:1d:49:32:77:89:93:0d:22:8f: 9d:f3:85:52:7f:50:a0:d8:d9:2d:12:20:02:d1:97:68:61:46: d5:16:af:cb:fa:c6:23:97:89:3c:d7:fc:28:65:3e:d6:de:ad: e3:ac:1e:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUwODIyMTY0MjIyWhcNMjUwODI5MTY0MjIyWjAYMRYwFAYD VQQDEw02OGE4OWRlZS1kMmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYwOe0brp3ROroHoQr92Jsx3Kb16llFSF75e8PjCoEp47eHA9tJIdvYIXrWa zW2++/qKxxO7p4OH6HrXnQqzwv0G6+o9Peq4ssQ+NsKMELiiW2eh9MO5ZqvmlrQ8 FeOUn3LHLlt9mBCC0WZZ0kpYutgBkr3yuuOLMFasA8qcER+kF/5Ak6yh54jTy68k fTsgOrOYrrdUOZVKXUgJc9adQ0oA0Nyujwuwm39KiRpa6vlnIvds5vz1ezO6Khva Cgh+zMp0GsYAJIwISEhO05pzMpaH2jEYLNJI6q8WhVSwpXI2HRFNDyL0obFJeuCt qmNB+SKmNKY/POj+Pv4TQ+TRcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4lg5Wx QrDApyyXWJF4ou+pNQ1LMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDk1Ri84NDhDODU3Q0RGRUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRv N1BhMThlTWcwSHN0R3MyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAcE2hW3km7sFli9jphrp5pj5z1SQ6IfWEFpSCfrOHuFffhfGBThC+Z eqCxbiCQAxKYNmpAuI+mDud2/JFCwky/iGNagbGWE79j0Ds4Cir+WogB5gAORItr hAisrlg1ZtWX081k/UIQi2BjhJr+H2cUxYP+/saRPOnkh6GsnjYkapeFaNd3KITw oH4PiojTC5JjYdqgLwGd7xY3rQ1A56cgXv1o1rbwuhovjt4z6TgFS1g7s/Ywh7o6 h6cSsAqGzgORxVXxYIPooC5j8POJ7EYdSTJ3iZMNIo+d84VSf1Cg2NktEiAC0Zdo YUbVFq/L+sYjl4k81/woZT7W3q3jrB4o -----END CERTIFICATE-----Generated at Sat Aug 23 12:22:51 2025 by rpki-client