$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft File: lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft (raw, json) Hash identifier: 0ikGfR1/hMgg/ov+NsSOA6RKP8ka4K6XdWqgHTxlVZM= Subject key identifier: F4:3C:3C:48:00:87:4F:0E:44:07:A3:06:77:F3:4D:45:56:63:7B:09 Authority key identifier: 95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E Certificate issuer: /CN=A9185D6E/serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Certificate serial: 059B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft Manifest number: 058C Signing time: Wed 02 Jul 2025 23:35:42 +0000 Manifest this update: Wed 02 Jul 2025 23:35:41 +0000 Manifest next update: Wed 09 Jul 2025 23:35:41 +0000 Files and hashes: 1: lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl (hash: F3nkZ+XlSS5t8HTO10/oiOKuGIXR1HY2OJX+tWNARb0=) 2: 37F43E66A27311EFA8731822C4F9AE02.roa (hash: nZqxDtZBd3TKtOg41uHIOH+ht6vmrzVcqsB/4sKS7Lw=) 3: 229CD24AF9FB11EB8CFF5E7DC4F9AE02.roa (hash: Ad+xO92l20yDnJAF1r+RTCORzADKmBcytCe/7+C9evg=) 4: 53BCB840EA4211EB846B8757C4F9AE02.roa (hash: Qq7xLdmh4FD2aD1wbY5We4EWUzMXM2X7Q61tiyGnpuI=) 5: 368F5308A27311EFA8731822C4F9AE02.roa (hash: nF3bhaPZagyNLULkvS1a5+uROKF0zNPyL/4XlBSqH9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1435 (0x59b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=9524EA9B823C20FA78923BE6667E14F6C4C3B47E Validity Not Before: Jul 2 23:35:41 2025 GMT Not After : Jul 9 23:35:41 2025 GMT Subject: CN=6865c24d-55b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d0:cd:fe:6e:f4:54:b8:be:a5:f9:d0:e3:11: 69:4e:fe:eb:95:42:ea:ff:16:3d:5e:3c:41:a6:cf: 11:5f:b5:2b:6f:cf:6a:33:d4:f1:52:0c:9a:0c:d6: dd:72:e8:ec:90:4f:66:85:68:3b:86:0a:18:2b:1e: 27:c6:6d:17:c9:2a:13:0f:0e:f9:c2:75:4d:e0:c6: 8e:af:97:2b:f4:e1:05:c8:cd:54:01:0c:2a:d5:8a: a5:cb:37:8f:f7:f6:dc:a7:cb:11:8b:10:f7:b2:61: 8d:4c:47:d1:a2:f4:ea:29:30:ec:88:fd:70:b2:c9: d1:5b:9e:81:7b:99:28:3f:d1:75:6f:5e:e5:49:08: 83:cc:f5:58:bf:5d:47:49:31:65:d4:47:fe:f7:1b: 03:a5:41:93:8f:9c:c4:39:6f:35:d8:5f:12:a0:d5: 61:38:9c:e3:4b:8a:46:5d:ff:d4:00:c0:8a:b0:50: 3d:e6:86:e4:9a:c7:34:9b:a0:30:ba:10:3c:c3:80: 84:f6:1b:1e:1d:89:e0:cd:d2:b0:f9:42:8c:11:65: fc:44:07:f4:09:58:d2:fc:2a:80:30:db:f7:b8:6e: a4:45:39:57:1f:d4:17:c0:60:50:02:66:33:62:37: 3e:67:35:5f:1f:62:8a:c1:cd:e6:fd:d0:9f:fd:79: b0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:3C:3C:48:00:87:4F:0E:44:07:A3:06:77:F3:4D:45:56:63:7B:09 X509v3 Authority Key Identifier: keyid:95:24:EA:9B:82:3C:20:FA:78:92:3B:E6:66:7E:14:F6:C4:C3:B4:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lSTqm4I8IPp4kjvmZn4U9sTDtH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/4CBFF4AEDFF111EB894F3067C4F9AE02/lSTqm4I8IPp4kjvmZn4U9sTDtH4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:1d:d8:ac:0b:9b:0c:30:d6:4e:fb:ba:78:69:47:34:d5:a7: 62:e3:62:66:b0:01:3c:a7:2a:04:05:3f:26:f5:85:a2:f6:15: 83:6e:8a:09:8f:c3:58:07:d5:d1:c7:e3:58:44:92:d0:10:00: e4:69:03:c7:7e:19:90:45:26:cc:7d:d4:9f:fb:b9:90:3d:e2: 0f:df:8c:a6:6d:ed:76:01:e7:cd:2a:a5:8b:0b:b8:d2:0b:ae: c8:b0:02:e3:17:db:5b:76:79:85:34:3e:c0:37:01:93:36:9c: de:87:33:66:0f:2a:28:5f:b6:73:63:f1:64:b6:57:e3:ff:f5: a3:e1:41:09:31:3f:54:53:c9:e3:03:38:6a:d6:96:48:e1:9f: e5:51:95:7f:2e:4b:a5:e8:73:bd:33:6d:41:c9:b4:7c:60:60: 92:c9:11:6f:e6:f0:a2:0b:55:39:80:0a:85:4f:59:b9:7e:b3: ef:b5:7a:c0:40:fd:41:c6:18:84:c9:33:9d:e6:94:0e:74:30: 5e:a2:be:5c:35:65:46:f7:67:53:7b:3a:0f:70:01:d0:c6:ba: 47:7a:99:8b:b5:b0:42:3f:b5:33:42:2e:38:40:78:6b:cb:f2: e4:2f:3a:78:d9:b6:68:7a:c4:e8:b3:c4:43:e9:ce:fd:0b:30: 42:8c:e2:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDk1MjRFQTlCODIzQzIwRkE3ODkyM0JFNjY2N0UxNEY2 QzRDM0I0N0UwHhcNMjUwNzAyMjMzNTQxWhcNMjUwNzA5MjMzNTQxWjAYMRYwFAYD VQQDEw02ODY1YzI0ZC01NWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtDN/m70VLi+pfnQ4xFpTv7rlULq/xY9XjxBps8RX7Urb89qM9TxUgyaDNbd cujskE9mhWg7hgoYKx4nxm0XySoTDw75wnVN4MaOr5cr9OEFyM1UAQwq1YqlyzeP 9/bcp8sRixD3smGNTEfRovTqKTDsiP1wssnRW56Be5koP9F1b17lSQiDzPVYv11H STFl1Ef+9xsDpUGTj5zEOW812F8SoNVhOJzjS4pGXf/UAMCKsFA95obkmsc0m6Aw uhA8w4CE9hseHYngzdKw+UKMEWX8RAf0CVjS/CqAMNv3uG6kRTlXH9QXwGBQAmYz Yjc+ZzVfH2KKwc3m/dCf/XmweQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQ8PEgA h08ORAejBnfzTUVWY3sJMB8GA1UdIwQYMBaAFJUk6puCPCD6eJI75mZ+FPbEw7R+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS80Q0JGRjRBRURG RjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQcDRranZtWm40VTlzVER0 SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xTVHFtNEk4SVBwNGtqdm1abjRVOXNURHRINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUQ2RS80Q0JGRjRBRURGRjExMUVCODk0RjMwNjdDNEY5QUUwMi9sU1RxbTRJOElQ cDRranZtWm40VTlzVER0SDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACHdisC5sMMNZO+7p4aUc01adi42JmsAE8pyoEBT8m9YWi9hWDbooJ j8NYB9XRx+NYRJLQEADkaQPHfhmQRSbMfdSf+7mQPeIP34ymbe12AefNKqWLC7jS C67IsALjF9tbdnmFND7ANwGTNpzehzNmDyooX7ZzY/Fktlfj//Wj4UEJMT9UU8nj Azhq1pZI4Z/lUZV/Lkul6HO9M21BybR8YGCSyRFv5vCiC1U5gAqFT1m5frPvtXrA QP1BxhiEyTOd5pQOdDBeor5cNWVG92dTezoPcAHQxrpHepmLtbBCP7UzQi44QHhr y/LkLzp42bZoesTos8RD6c79CzBCjOLE -----END CERTIFICATE-----Generated at Thu Jul 3 06:55:00 2025 by rpki-client