$ rpki-client -vvf rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft File: 19wEkNjuc-uWU-jiR2_8-4l0qt8.mft (raw, json) Hash identifier: bECI8DhWCB4ZArkxkK9qaVqTazR1/Ol5drvwS7zQwvY= Subject key identifier: 7A:9A:BE:3B:C2:A9:E5:F3:05:1A:77:CB:6C:B9:68:C1:AA:71:23:C6 Authority key identifier: D7:DC:04:90:D8:EE:73:EB:96:53:E8:E2:47:6F:FC:FB:89:74:AA:DF Certificate issuer: /CN=A918A0B8/serialNumber=D7DC0490D8EE73EB9653E8E2476FFCFB8974AADF Certificate serial: 04E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft Manifest number: 04D9 Signing time: Fri 22 Aug 2025 23:58:48 +0000 Manifest this update: Fri 22 Aug 2025 23:58:47 +0000 Manifest next update: Fri 29 Aug 2025 23:58:47 +0000 Files and hashes: 1: 19wEkNjuc-uWU-jiR2_8-4l0qt8.crl (hash: U3WQtafl5ezJoBciZwXwPK64WGGXc3vLaGuNjG8eIyo=) 2: 233E4D90309811ECAED04B4AC4F9AE02.roa (hash: CZ7WkBrqTyJNM4Pw1sCP57Phckm4MGOWnQm76XtbNLI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.crl rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:58:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A0B8, serialNumber=D7DC0490D8EE73EB9653E8E2476FFCFB8974AADF Validity Not Before: Aug 22 23:58:47 2025 GMT Not After : Aug 29 23:58:47 2025 GMT Subject: CN=68a90438-c9a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:7d:ed:94:cd:52:52:4c:6a:56:d4:54:21: 4e:72:0a:ea:76:b0:f3:34:99:8e:f0:5e:c1:95:2e: 06:ca:95:35:64:a9:c3:57:3e:f8:af:31:f9:ca:f5: d7:fd:55:68:2e:7e:48:a7:c7:ac:3f:85:66:21:76: e6:34:e5:53:51:f6:cd:49:dc:47:87:31:5c:bb:99: a5:22:6c:b5:08:14:35:e6:af:6b:4e:46:3f:00:5f: 5e:9a:de:cc:46:45:d4:4d:e6:ca:36:d7:ee:d6:f9: 4a:cf:d1:dd:02:ca:13:d2:b9:1b:54:b9:a8:1f:4e: 58:97:3a:21:0b:d5:6b:11:bf:8f:53:ad:86:4d:d0: 3b:be:88:9c:69:fd:e5:ba:71:73:e9:83:2e:22:b7: 7d:eb:da:3a:12:66:a2:82:5a:86:4c:3a:60:f2:63: 48:67:74:26:e7:82:d5:a6:6d:c4:59:8b:2b:58:e8: c0:53:f2:cd:d2:2a:d8:b8:a7:bb:b2:fe:66:f8:b2: 01:e8:f7:67:1e:2d:b8:96:68:7b:06:e2:dc:56:7f: dc:67:5c:35:5b:f8:62:6d:0d:58:58:e2:8a:e5:ac: 65:25:1f:df:0b:7c:39:e0:05:e4:c6:a2:ec:61:94: 74:b9:94:5d:0c:62:6d:7b:39:29:42:a3:eb:93:ab: f7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:9A:BE:3B:C2:A9:E5:F3:05:1A:77:CB:6C:B9:68:C1:AA:71:23:C6 X509v3 Authority Key Identifier: keyid:D7:DC:04:90:D8:EE:73:EB:96:53:E8:E2:47:6F:FC:FB:89:74:AA:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:52:45:eb:88:24:6d:2a:65:6c:16:af:00:0f:db:ef:6e:34: a6:3b:e7:48:d0:f6:8e:df:26:65:5c:5b:57:b0:b1:45:bc:33: 30:8c:60:e0:64:97:22:b1:a2:75:a8:16:df:c3:80:51:74:bb: 88:d9:a0:ec:3c:71:f0:cc:05:4f:16:52:e9:dc:dc:c0:b6:28: bf:d7:1f:f8:53:0f:52:7d:15:7f:29:45:4e:54:2d:57:bf:cb: 73:62:0c:a6:f5:43:21:d5:41:28:99:2b:8f:8d:29:63:c1:e3: 13:e5:f5:5c:3b:2e:66:1b:c1:3b:99:f2:dd:fd:fa:63:fe:50: c3:4d:8b:25:aa:85:58:ab:d3:fc:3a:15:0a:dc:fe:9e:b9:27: 20:df:06:d4:8a:64:aa:ad:2b:e0:e8:54:e9:fa:7e:39:24:0c: 49:9d:e0:63:06:b7:ff:d5:d8:d2:98:70:1d:c5:6d:2b:c3:e6: 2f:1a:61:3e:07:4c:1d:1d:0b:86:fd:7b:20:44:9f:24:7d:7d: f8:aa:e5:cb:95:74:bd:45:d0:82:2c:5d:72:99:fc:d0:4e:e7: 79:68:01:f3:65:32:09:9f:7e:52:20:21:22:31:1d:ed:ee:e3: ff:cd:2e:b0:d7:a6:a7:8b:48:6b:6d:3b:d7:67:59:e0:43:33: 88:b3:22:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwQjgxMTAvBgNVBAUTKEQ3REMwNDkwRDhFRTczRUI5NjUzRThFMjQ3NkZGQ0ZC ODk3NEFBREYwHhcNMjUwODIyMjM1ODQ3WhcNMjUwODI5MjM1ODQ3WjAYMRYwFAYD VQQDEw02OGE5MDQzOC1jOWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunB97ZTNUlJMalbUVCFOcgrqdrDzNJmO8F7BlS4GypU1ZKnDVz74rzH5yvXX /VVoLn5Ip8esP4VmIXbmNOVTUfbNSdxHhzFcu5mlImy1CBQ15q9rTkY/AF9emt7M RkXUTebKNtfu1vlKz9HdAsoT0rkbVLmoH05YlzohC9VrEb+PU62GTdA7voicaf3l unFz6YMuIrd969o6EmaiglqGTDpg8mNIZ3Qm54LVpm3EWYsrWOjAU/LN0irYuKe7 sv5m+LIB6PdnHi24lmh7BuLcVn/cZ1w1W/hibQ1YWOKK5axlJR/fC3w54AXkxqLs YZR0uZRdDGJtezkpQqPrk6v3HwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHqavjvC qeXzBRp3y2y5aMGqcSPGMB8GA1UdIwQYMBaAFNfcBJDY7nPrllPo4kdv/PuJdKrf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTBCOC8xN0RFRkYxNDJG RjYxMUVDOTA0N0EyNDNDNEY5QUUwMi8xOXdFa05qdWMtdVdVLWppUjJfOC00bDBx dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE5d0VrTmp1Yy11V1UtamlSMl84LTRsMHF0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTBCOC8xN0RFRkYxNDJGRjYxMUVDOTA0N0EyNDNDNEY5QUUwMi8xOXdFa05qdWMt dVdVLWppUjJfOC00bDBxdDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbUkXriCRtKmVsFq8AD9vvbjSmO+dI0PaO3yZlXFtXsLFFvDMwjGDg ZJcisaJ1qBbfw4BRdLuI2aDsPHHwzAVPFlLp3NzAtii/1x/4Uw9SfRV/KUVOVC1X v8tzYgym9UMh1UEomSuPjSljweMT5fVcOy5mG8E7mfLd/fpj/lDDTYslqoVYq9P8 OhUK3P6euScg3wbUimSqrSvg6FTp+n45JAxJneBjBrf/1djSmHAdxW0rw+YvGmE+ B0wdHQuG/XsgRJ8kfX34quXLlXS9RdCCLF1ymfzQTud5aAHzZTIJn35SICEiMR3t 7uP/zS6w16ani0hrbTvXZ1ngQzOIsyL6 -----END CERTIFICATE-----Generated at Sat Aug 23 18:25:39 2025 by rpki-client