$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: yjIk8+YDqXyaeadUkUsaQN29kcLMvLz2m3FgYab6rTI= Subject key identifier: 97:BD:06:B9:26:EA:A6:B4:EB:5E:D0:47:90:3D:A4:01:EE:D8:75:A5 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 05B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 05A6 Signing time: Fri 22 Aug 2025 23:23:16 +0000 Manifest this update: Fri 22 Aug 2025 23:23:15 +0000 Manifest next update: Fri 29 Aug 2025 23:23:15 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: gBC7O3SnBEgKEocQjk+0DicyqVmDfx3zG3nNvEJ5Hho=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Aug 22 23:23:15 2025 GMT Not After : Aug 29 23:23:15 2025 GMT Subject: CN=68a8fbe4-ea20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:5f:f2:1c:8d:60:f9:ff:af:ba:66:ff:70:98: d4:51:20:bc:dc:98:2f:0a:6a:1f:55:95:34:72:f0: 0a:7a:0c:e7:30:d6:ce:59:8f:21:27:46:e6:6b:2d: 9c:86:12:da:d3:1f:9a:94:6c:eb:40:c3:54:75:f5: 00:03:fe:1d:5c:4e:83:98:bc:35:65:1c:80:43:9e: c4:f7:7b:84:7d:8a:fb:0d:74:05:69:3a:d7:32:11: fe:d2:25:40:db:9b:cf:90:ef:17:cc:1e:73:2f:43: b6:a7:5a:0a:b6:60:cf:2f:01:ac:f1:3c:a3:6f:75: fe:c2:1b:2f:46:1e:a9:90:ee:ec:53:8d:8d:6f:34: 75:1f:45:2c:33:3d:b2:bd:1f:05:5a:97:d3:7d:70: 93:79:e1:83:5b:66:13:b7:db:67:53:4a:01:55:3f: 78:53:ee:23:cd:88:26:4e:19:11:e6:e5:f4:95:9f: bc:d1:ce:18:0a:02:97:4f:d9:ba:95:02:80:2c:c9: 8e:db:df:1c:d0:70:63:04:e1:fe:06:fe:27:c1:64: 7e:f3:81:27:3d:d8:2d:a4:35:79:7d:b2:2e:3e:9f: a7:91:51:82:ac:6e:cb:91:ad:fa:96:a0:f8:fc:63: 9c:f9:a0:25:a7:36:67:3d:e9:14:86:63:7f:b2:e9: a6:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:BD:06:B9:26:EA:A6:B4:EB:5E:D0:47:90:3D:A4:01:EE:D8:75:A5 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:8d:94:41:1f:60:f6:10:95:67:be:f7:37:61:a1:82:b4:9a: c8:a8:6e:0e:1c:9a:62:27:2d:88:03:df:7e:c5:40:d6:ed:0c: 4b:9f:f7:f2:7f:fa:07:70:16:a6:f7:c3:33:01:6d:f2:3e:a8: 12:2b:79:b0:a1:53:03:e3:b6:07:28:7e:2a:be:7e:c9:ac:d6: 5d:33:dc:6c:5d:54:0e:cd:78:a3:1d:d0:9b:d0:f0:a2:bc:d5: cd:2b:9a:14:e6:9c:3b:10:89:ad:b1:2c:4b:e2:da:83:c8:7a: e9:be:3c:49:12:9d:8d:1c:e2:c2:7b:0f:f9:69:22:43:fd:27: 04:a0:f0:35:91:49:70:9d:aa:a5:2f:a6:bd:46:50:31:16:a7: f6:4e:40:d3:59:b3:13:8f:05:c3:32:aa:76:c2:53:d1:2d:78: 83:38:a2:78:21:da:df:5c:5d:13:9b:86:64:3d:70:a6:b6:a0: 6d:b4:ed:01:9f:90:10:f0:f7:9f:91:56:e8:3d:d9:75:bf:79: 5a:89:e5:12:b3:aa:3e:0e:69:8f:bf:e9:c5:87:ac:d1:52:6b: e3:20:bf:38:34:d5:b6:1a:c3:22:1d:91:4d:24:75:fe:4a:39: e4:33:48:eb:a5:57:f5:3f:50:b2:55:e4:a1:28:8e:60:47:d4: b1:34:d8:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwODIyMjMyMzE1WhcNMjUwODI5MjMyMzE1WjAYMRYwFAYD VQQDEw02OGE4ZmJlNC1lYTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzF/yHI1g+f+vumb/cJjUUSC83JgvCmofVZU0cvAKegznMNbOWY8hJ0bmay2c hhLa0x+alGzrQMNUdfUAA/4dXE6DmLw1ZRyAQ57E93uEfYr7DXQFaTrXMhH+0iVA 25vPkO8XzB5zL0O2p1oKtmDPLwGs8Tyjb3X+whsvRh6pkO7sU42NbzR1H0UsMz2y vR8FWpfTfXCTeeGDW2YTt9tnU0oBVT94U+4jzYgmThkR5uX0lZ+80c4YCgKXT9m6 lQKALMmO298c0HBjBOH+Bv4nwWR+84EnPdgtpDV5fbIuPp+nkVGCrG7Lka36lqD4 /GOc+aAlpzZnPekUhmN/summTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJe9Brkm 6qa0617QR5A9pAHu2HWlMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIjZRBH2D2EJVnvvc3YaGCtJrIqG4OHJpiJy2IA99+xUDW7QxLn/fy f/oHcBam98MzAW3yPqgSK3mwoVMD47YHKH4qvn7JrNZdM9xsXVQOzXijHdCb0PCi vNXNK5oU5pw7EImtsSxL4tqDyHrpvjxJEp2NHOLCew/5aSJD/ScEoPA1kUlwnaql L6a9RlAxFqf2TkDTWbMTjwXDMqp2wlPRLXiDOKJ4IdrfXF0Tm4ZkPXCmtqBttO0B n5AQ8PefkVboPdl1v3laieUSs6o+DmmPv+nFh6zRUmvjIL84NNW2GsMiHZFNJHX+ SjnkM0jrpVf1P1CyVeShKI5gR9SxNNg/ -----END CERTIFICATE-----Generated at Sat Aug 23 22:34:05 2025 by rpki-client