$ rpki-client -vvf rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft File: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft (raw, json) Hash identifier: Y4ptetM8S42groGPhadtmswBRv8VPs7toaAOpmiXwKU= Subject key identifier: 6B:5F:F9:3D:0E:D1:66:3E:A5:97:AB:B7:73:8A:E1:3C:EC:A4:5E:21 Authority key identifier: 32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 Certificate issuer: /CN=A918C88D/serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Certificate serial: 0B68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft Manifest number: 0B53 Signing time: Fri 22 Aug 2025 19:16:42 +0000 Manifest this update: Fri 22 Aug 2025 19:16:41 +0000 Manifest next update: Fri 29 Aug 2025 19:16:41 +0000 Files and hashes: 1: MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl (hash: IQJrcAPzvSTkQFdepCCbnktp3cpT0A7QZcHlCRznCME=) 2: E1EFDAA8F40611EAA5B2244FC4F9AE02.roa (hash: da18YanehMb25ZME1c4CpzCwhlEVLs96RlfGiZoiMxU=) 3: E324E2F6F40611EAA5B2244FC4F9AE02.roa (hash: feQeohVrk3aa2EM/daTKcvI0d6w6k0q2b/efqxvduBI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2920 (0xb68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C88D, serialNumber=3264436479A50ED40CCFD2B704E60249608E43A8 Validity Not Before: Aug 22 19:16:41 2025 GMT Not After : Aug 29 19:16:41 2025 GMT Subject: CN=68a8c21a-a7f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:62:ca:6c:e6:73:99:0c:cf:d0:a1:de:d8:f5: 0e:bb:79:7a:70:2f:85:6f:31:d6:c2:10:3b:d1:a2: 35:44:dc:12:e6:98:55:d2:b9:83:15:71:ba:7f:8a: fa:45:ea:06:af:69:41:3e:c2:91:f5:10:98:e1:10: 05:82:cd:2c:49:b7:78:1e:11:c7:22:1d:3f:7f:5e: 6b:56:9e:16:4d:2f:cf:18:8d:71:05:01:7f:10:e6: 59:17:62:c6:1b:11:0b:95:4a:71:df:61:29:b4:c1: 0b:55:24:35:32:4b:05:04:fd:f9:94:a2:af:cc:26: 6e:14:29:b5:f2:ac:5f:ef:21:ae:de:1d:b9:39:27: bc:17:52:76:85:b0:ff:ca:c8:fb:84:3a:ab:3c:cc: b5:23:ce:dc:31:2b:91:1d:64:88:84:38:4b:79:51: e8:2a:b1:89:64:41:be:3a:7c:24:c6:ee:b0:9b:8f: 51:3c:f9:ce:a5:83:06:9f:42:c5:d2:b6:06:a8:6d: 0d:6d:a5:b6:15:fa:db:2b:cb:23:af:ee:13:ff:76: c0:26:a7:20:f0:2e:8a:2f:2f:6c:bb:de:c9:dc:7d: 88:af:08:dd:2c:94:4b:35:72:1c:5d:91:6a:47:cc: e9:c9:73:12:33:04:1d:f7:68:9d:2e:c1:a7:5c:18: 20:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:5F:F9:3D:0E:D1:66:3E:A5:97:AB:B7:73:8A:E1:3C:EC:A4:5E:21 X509v3 Authority Key Identifier: keyid:32:64:43:64:79:A5:0E:D4:0C:CF:D2:B7:04:E6:02:49:60:8E:43:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C88D/38AB591E3DC111EAAF2B6735C4F9AE02/MmRDZHmlDtQMz9K3BOYCSWCOQ6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:23:94:54:cb:e8:b4:ed:8a:0d:e2:0f:e3:44:71:8c:aa:3d: 5f:02:f9:df:e9:04:af:a0:ab:32:63:b4:57:0f:4a:93:2f:91: 06:ba:bb:aa:d2:51:56:c9:86:83:0b:17:06:36:2c:df:e5:07: 72:aa:59:b6:fd:37:61:be:37:a1:76:33:41:48:14:a1:b2:2b: e9:4c:39:c9:11:94:7b:d6:7f:f8:13:a9:c0:42:0d:ea:af:84: c2:5e:29:ab:51:55:88:3c:91:7b:17:a3:47:9e:cb:ab:bd:0f: f7:22:a3:99:08:6b:3c:51:7b:df:3f:09:73:ef:d8:b0:c2:fa: df:5e:55:f7:fd:16:58:31:cb:b9:d0:97:b5:65:0e:91:a5:dd: 42:b8:0a:43:b8:b9:70:2f:6b:78:de:9d:c4:5e:36:66:77:ad: 38:d2:3a:49:b7:b2:65:03:c7:a7:03:32:92:0e:bc:31:19:77: c9:b4:46:b1:af:37:cb:96:0c:05:e2:0b:53:86:ad:83:0f:43: 52:ee:3d:41:6d:ad:4c:28:e5:76:b5:1a:0a:0b:6e:e8:28:d3: d3:cf:bc:2f:b9:b1:43:d8:a4:70:4a:be:e5:59:0e:d4:8b:b6: 9b:12:78:92:26:6e:67:d4:05:d1:04:eb:88:59:cf:be:bd:f2: c6:62:15:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEM4OEQxMTAvBgNVBAUTKDMyNjQ0MzY0NzlBNTBFRDQwQ0NGRDJCNzA0RTYwMjQ5 NjA4RTQzQTgwHhcNMjUwODIyMTkxNjQxWhcNMjUwODI5MTkxNjQxWjAYMRYwFAYD VQQDEw02OGE4YzIxYS1hN2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mLKbOZzmQzP0KHe2PUOu3l6cC+FbzHWwhA70aI1RNwS5phV0rmDFXG6f4r6 ReoGr2lBPsKR9RCY4RAFgs0sSbd4HhHHIh0/f15rVp4WTS/PGI1xBQF/EOZZF2LG GxELlUpx32EptMELVSQ1MksFBP35lKKvzCZuFCm18qxf7yGu3h25OSe8F1J2hbD/ ysj7hDqrPMy1I87cMSuRHWSIhDhLeVHoKrGJZEG+Onwkxu6wm49RPPnOpYMGn0LF 0rYGqG0NbaW2FfrbK8sjr+4T/3bAJqcg8C6KLy9su97J3H2IrwjdLJRLNXIcXZFq R8zpyXMSMwQd92idLsGnXBgg7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGtf+T0O 0WY+pZert3OK4TzspF4hMB8GA1UdIwQYMBaAFDJkQ2R5pQ7UDM/StwTmAklgjkOo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Qzg4RC8zOEFCNTkxRTNE QzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0UU16OUszQk9ZQ1NXQ09R NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01tUkRaSG1sRHRRTXo5SzNCT1lDU1dDT1E2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Qzg4RC8zOEFCNTkxRTNEQzExMUVBQUYyQjY3MzVDNEY5QUUwMi9NbVJEWkhtbER0 UU16OUszQk9ZQ1NXQ09RNmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBI5RUy+i07YoN4g/jRHGMqj1fAvnf6QSvoKsyY7RXD0qTL5EGuruq 0lFWyYaDCxcGNizf5Qdyqlm2/TdhvjehdjNBSBShsivpTDnJEZR71n/4E6nAQg3q r4TCXimrUVWIPJF7F6NHnsurvQ/3IqOZCGs8UXvfPwlz79iwwvrfXlX3/RZYMcu5 0Je1ZQ6Rpd1CuApDuLlwL2t43p3EXjZmd6040jpJt7JlA8enAzKSDrwxGXfJtEax rzfLlgwF4gtThq2DD0NS7j1Bba1MKOV2tRoKC27oKNPTz7wvubFD2KRwSr7lWQ7U i7abEniSJm5n1AXRBOuIWc++vfLGYhWO -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:51 2025 by rpki-client