$ rpki-client -vvf rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft File: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft (raw, json) Hash identifier: LtTanDGugpnrImH+LtXJh5DIc89vxc06NUoP+2CdEro= Subject key identifier: 78:9E:5E:E8:44:1C:D2:A1:E5:FC:8D:72:B1:DA:08:C4:20:23:E6:C1 Authority key identifier: 0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 Certificate issuer: /CN=A918A05D/serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Certificate serial: 01A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft Manifest number: 018F Signing time: Sat 23 Aug 2025 03:56:34 +0000 Manifest this update: Sat 23 Aug 2025 03:56:34 +0000 Manifest next update: Sat 30 Aug 2025 03:56:34 +0000 Files and hashes: 1: D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl (hash: Kett1VgTtx1mmF2+A4rDE6DLFPGSy0AVDD6uzIo5uS0=) 2: E506BE2CF03811EFAD4C2257C4F9AE02.roa (hash: iRxA1ggG5Gg6gMWZuZ8L1lPJN3fft+M4sC43triwT/s=) 3: B67EFE26A2DB11EEABACB981C4F9AE02.roa (hash: bYvF1gDJX1ZeUVWwtl4pq/MaUKBYzhyJEZ9Gr/fKvjk=) 4: A045C92CB46611EEAFEE8758C4F9AE02.roa (hash: tbP1wHLZXWdBy80smo7nwsfBeTkYD2DmwbznFImHmJs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:56:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A05D, serialNumber=0F545E6273D7C97E9995411F76D5C4F006BB5186 Validity Not Before: Aug 23 03:56:34 2025 GMT Not After : Aug 30 03:56:34 2025 GMT Subject: CN=68a93bf2-86a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:a9:ae:3f:d5:34:e3:85:67:51:b8:ef:ba: 53:bc:3c:3e:9f:2c:7b:00:de:d9:5b:db:3c:59:0b: a5:9c:8d:45:60:64:24:71:6f:83:ac:f3:2e:e9:2b: be:e3:4d:72:f3:34:cd:c6:e6:86:e7:63:3b:2a:72: cd:b3:46:1e:6f:d4:26:87:a5:5b:81:55:f3:61:67: 4e:c1:8b:ac:b0:3d:72:f3:ad:5d:46:8f:ee:02:eb: 2b:29:9c:b3:23:07:ba:06:70:fa:77:89:e1:39:ed: de:2d:3d:02:23:76:f8:7d:1e:71:95:b7:2b:33:11: d8:eb:5b:f1:e9:a6:d8:f8:99:40:40:f1:e9:45:3a: 8a:dc:2c:fa:37:23:16:fb:f9:e6:48:e4:3a:3a:0e: cc:2a:89:49:0a:31:5e:58:bc:07:57:87:93:dc:8d: e7:de:cb:6a:af:56:7c:72:6c:c0:bc:94:a1:42:44: 97:c1:dc:fb:35:4c:0c:ca:75:26:b2:cd:5e:01:e6: 2a:4a:18:1b:62:cf:cb:35:da:5e:0c:74:35:5f:22: e6:1b:0d:74:63:27:30:d7:20:4d:c8:77:09:25:24: 25:f0:3e:69:6c:75:c7:6c:b1:29:0a:37:ea:e7:1f: ab:a4:56:61:39:44:8c:38:d5:12:a0:e6:6b:89:79: ed:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:9E:5E:E8:44:1C:D2:A1:E5:FC:8D:72:B1:DA:08:C4:20:23:E6:C1 X509v3 Authority Key Identifier: keyid:0F:54:5E:62:73:D7:C9:7E:99:95:41:1F:76:D5:C4:F0:06:BB:51:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A05D/C1EFB0804E2511EEAAAE6D49C4F9AE02/D1ReYnPXyX6ZlUEfdtXE8Aa7UYY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:a7:99:5f:dc:d5:aa:69:37:a2:2f:1c:90:75:dd:97:5d:0d: 43:2b:e9:6f:0f:63:74:b5:be:03:99:6c:c7:73:bb:80:10:91: 27:9b:3f:0f:dd:84:aa:cb:55:fc:bf:9c:52:c6:51:fb:a7:2c: 89:9b:4e:37:0f:a4:0f:8c:1a:4d:a3:bb:f3:f5:ee:ac:e1:bb: df:d7:23:25:eb:e5:21:4b:9c:06:1d:82:31:af:a1:55:8e:4c: 70:f9:0b:ef:f6:b8:01:a2:5e:bd:8d:93:3d:13:4c:90:dc:b8: 14:d3:63:be:91:f3:b3:fc:21:0e:7f:71:2d:88:6f:62:a6:66: d7:a6:a8:c6:b0:9b:37:1d:92:60:68:b7:16:c8:d6:95:dd:6e: 3c:3b:17:4d:74:6a:65:0d:04:ab:63:bb:a8:73:99:8a:01:0b: 32:9b:cb:06:fd:d6:7b:ee:67:eb:78:a1:dd:b9:de:14:05:4f: eb:f6:f6:55:f9:d1:0f:4d:b7:83:ba:ca:51:e7:b1:46:66:9d: e4:23:ae:61:d5:e1:f4:f4:da:62:09:71:7a:2a:ca:f4:58:e4: 43:15:7d:6b:42:a4:0e:6b:a5:f6:da:b5:07:a2:f7:ed:f7:31: 3e:ec:9e:7b:9c:e4:fa:44:58:c0:fd:f1:af:ba:59:bc:b0:c1: ba:67:7b:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwNUQxMTAvBgNVBAUTKDBGNTQ1RTYyNzNEN0M5N0U5OTk1NDExRjc2RDVDNEYw MDZCQjUxODYwHhcNMjUwODIzMDM1NjM0WhcNMjUwODMwMDM1NjM0WjAYMRYwFAYD VQQDEw02OGE5M2JmMi04NmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJyprj/VNOOFZ1G477pTvDw+nyx7AN7ZW9s8WQulnI1FYGQkcW+DrPMu6Su+ 401y8zTNxuaG52M7KnLNs0Yeb9Qmh6VbgVXzYWdOwYussD1y861dRo/uAusrKZyz Iwe6BnD6d4nhOe3eLT0CI3b4fR5xlbcrMxHY61vx6abY+JlAQPHpRTqK3Cz6NyMW +/nmSOQ6Og7MKolJCjFeWLwHV4eT3I3n3stqr1Z8cmzAvJShQkSXwdz7NUwMynUm ss1eAeYqShgbYs/LNdpeDHQ1XyLmGw10Yycw1yBNyHcJJSQl8D5pbHXHbLEpCjfq 5x+rpFZhOUSMONUSoOZriXntwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHieXuhE HNKh5fyNcrHaCMQgI+bBMB8GA1UdIwQYMBaAFA9UXmJz18l+mZVBH3bVxPAGu1GG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTA1RC9DMUVGQjA4MDRF MjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlYNlpsVUVmZHRYRThBYTdV WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QxUmVZblBYeVg2WmxVRWZkdFhFOEFhN1VZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTA1RC9DMUVGQjA4MDRFMjUxMUVFQUFBRTZENDlDNEY5QUUwMi9EMVJlWW5QWHlY NlpsVUVmZHRYRThBYTdVWVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCGp5lf3NWqaTeiLxyQdd2XXQ1DK+lvD2N0tb4DmWzHc7uAEJEnmz8P 3YSqy1X8v5xSxlH7pyyJm043D6QPjBpNo7vz9e6s4bvf1yMl6+UhS5wGHYIxr6FV jkxw+Qvv9rgBol69jZM9E0yQ3LgU02O+kfOz/CEOf3EtiG9ipmbXpqjGsJs3HZJg aLcWyNaV3W48OxdNdGplDQSrY7uoc5mKAQsym8sG/dZ77mfreKHdud4UBU/r9vZV +dEPTbeDuspR57FGZp3kI65h1eH09NpiCXF6Ksr0WORDFX1rQqQOa6X22rUHovft 9zE+7J57nOT6RFjA/fGvulm8sMG6Z3tT -----END CERTIFICATE-----Generated at Sat Aug 23 09:43:20 2025 by rpki-client