$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: US16iIenzzuqqTVrCCEUi1noHZMbW7wspmc8XI8ent8= Subject key identifier: 04:A3:1F:D6:6A:2B:02:8E:B3:ED:A8:24:96:7B:30:CA:6B:7A:E9:D2 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 03BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03AE Signing time: Sat 19 Jul 2025 01:07:23 +0000 Manifest this update: Sat 19 Jul 2025 01:07:22 +0000 Manifest next update: Sat 26 Jul 2025 01:07:22 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: msKpQi3u+5emNbI01QZrw23HaRtr7sG4JxLR54n1K3Y=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:07:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Jul 19 01:07:22 2025 GMT Not After : Jul 26 01:07:22 2025 GMT Subject: CN=687aefcb-8c37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:24:ce:11:5d:b7:ae:b3:28:01:29:9c:7c:8b: 97:9f:e4:c9:65:35:49:fc:c3:cc:5a:27:7d:3f:6f: 5b:98:05:8b:98:ab:60:f3:2e:94:b2:90:cc:fb:40: 29:ae:e9:74:08:ba:17:ce:24:cb:49:ad:ef:45:8c: 9f:44:50:b4:ed:25:80:26:10:40:0e:5c:fc:0e:29: 0f:c9:03:fe:c8:39:37:40:c6:3e:32:55:ab:2f:66: 22:03:e3:2b:29:e4:53:78:0b:85:a0:7a:1c:2e:d7: b8:81:c6:19:9d:d9:ab:6e:31:2b:61:49:d2:98:84: 56:af:78:f4:2b:2a:68:ec:45:80:47:0e:d1:24:5b: 0c:4a:41:4b:ea:73:d4:ed:33:0f:19:f2:6b:f5:5a: 96:25:a0:e0:7a:a1:b1:19:94:7b:a6:fd:34:ae:d9: 2e:47:78:7f:3d:28:89:8e:da:37:6f:bc:8d:2c:96: 6b:ad:5e:ba:66:c0:db:f6:3f:fb:e4:df:23:45:df: 6b:91:8b:81:1e:07:89:f7:02:a6:59:94:98:f8:2a: 90:97:8f:cf:a6:f5:1f:0e:44:fa:3d:1d:79:31:f1: c5:6f:e9:af:b3:44:88:06:fb:03:da:82:46:eb:95: 07:e7:35:8e:52:f7:ff:7a:5a:d6:bf:d3:a7:9b:7d: cf:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A3:1F:D6:6A:2B:02:8E:B3:ED:A8:24:96:7B:30:CA:6B:7A:E9:D2 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:78:05:53:46:88:66:f5:56:48:3b:ef:ac:7a:79:5c:ea:09: 2d:e0:b9:51:5d:40:86:73:b9:92:74:6e:c9:ae:1e:2c:95:2f: 3c:30:fb:f6:cd:6e:45:dd:bf:df:31:55:9b:f2:fb:49:bc:d4: f2:66:15:5e:80:65:7f:0a:04:f5:36:1d:7d:35:82:09:54:61: 29:d0:1f:da:d8:2d:9b:46:ab:bf:e6:a0:ab:29:01:7b:30:e1: 78:47:a0:d3:67:12:db:ce:bd:09:57:1f:93:65:fc:a2:b2:b3: 3b:a1:52:f7:07:48:e8:23:f0:8c:c2:c4:9b:af:17:64:2c:82: 66:db:33:c6:b6:a2:a4:b1:1f:30:06:ce:d3:eb:5b:c1:4a:0c: c0:d9:fe:e4:83:fd:1b:fa:34:fe:09:c6:62:b6:ba:6b:e0:6a: a4:7e:67:37:00:e2:26:f0:50:5b:9a:e2:67:c8:68:ab:10:e8: 06:3b:ca:0b:7d:2e:d2:8c:da:41:03:4b:ec:43:1c:5f:1b:78: ec:28:c4:3b:78:12:bd:77:9c:ee:5a:47:6d:b1:68:bc:e1:cd: 80:88:64:73:51:c6:de:27:92:2a:98:a9:21:e0:90:95:96:b1: 3b:e4:5a:39:37:1b:12:9b:b6:92:de:7f:7b:a5:fd:8b:56:e8: 85:9c:a0:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwNzE5MDEwNzIyWhcNMjUwNzI2MDEwNzIyWjAYMRYwFAYD VQQDEw02ODdhZWZjYi04YzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnSTOEV23rrMoASmcfIuXn+TJZTVJ/MPMWid9P29bmAWLmKtg8y6UspDM+0Ap rul0CLoXziTLSa3vRYyfRFC07SWAJhBADlz8DikPyQP+yDk3QMY+MlWrL2YiA+Mr KeRTeAuFoHocLte4gcYZndmrbjErYUnSmIRWr3j0Kypo7EWARw7RJFsMSkFL6nPU 7TMPGfJr9VqWJaDgeqGxGZR7pv00rtkuR3h/PSiJjto3b7yNLJZrrV66ZsDb9j/7 5N8jRd9rkYuBHgeJ9wKmWZSY+CqQl4/PpvUfDkT6PR15MfHFb+mvs0SIBvsD2oJG 65UH5zWOUvf/elrWv9Onm33PeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFASjH9Zq KwKOs+2oJJZ7MMpreunSMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBHeAVTRohm9VZIO++senlc6gkt4LlRXUCGc7mSdG7Jrh4slS88MPv2 zW5F3b/fMVWb8vtJvNTyZhVegGV/CgT1Nh19NYIJVGEp0B/a2C2bRqu/5qCrKQF7 MOF4R6DTZxLbzr0JVx+TZfyisrM7oVL3B0joI/CMwsSbrxdkLIJm2zPGtqKksR8w Bs7T61vBSgzA2f7kg/0b+jT+CcZitrpr4Gqkfmc3AOIm8FBbmuJnyGirEOgGO8oL fS7SjNpBA0vsQxxfG3jsKMQ7eBK9d5zuWkdtsWi84c2AiGRzUcbeJ5IqmKkh4JCV lrE75Fo5NxsSm7aS3n97pf2LVuiFnKBV -----END CERTIFICATE-----Generated at Sun Jul 20 11:36:14 2025 by rpki-client