$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft File: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft (raw, json) Hash identifier: Om1HG5lfvkWioTN1dMbaIL2HfOLP1Ay2tco+3O7Qbxk= Subject key identifier: 23:54:86:BF:26:20:0D:0D:BA:79:C0:B8:F7:14:F3:AD:03:DC:E5:D7 Authority key identifier: B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C Certificate issuer: /CN=A9160C95/serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Certificate serial: 05F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft Manifest number: 05ED Signing time: Fri 18 Jul 2025 23:16:08 +0000 Manifest this update: Fri 18 Jul 2025 23:16:07 +0000 Manifest next update: Fri 25 Jul 2025 23:16:07 +0000 Files and hashes: 1: tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl (hash: vCWF0kJdFatFlkIlnY2Kup3UNMaR1axmbVpvfln2bMM=) 2: 3C2408105CBF11ECACDFE47BC4F9AE02.roa (hash: 0H9iVWOcGuVvN/MVa3XeV+I+PG+LvrsVTNSfk98zbHw=) 3: B3DED5C6BAC911EB8533B615C4F9AE02.roa (hash: DsgHJydaVuiP2/JOiaGz7+8hzbblvMVmJcBWMtJLoOw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1527 (0x5f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C95, serialNumber=B48E4073B810BCF9C794819C80FDE71D53F2DE2C Validity Not Before: Jul 18 23:16:07 2025 GMT Not After : Jul 25 23:16:07 2025 GMT Subject: CN=687ad5b7-e221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:75:2e:2d:52:34:bc:9b:3a:bd:6c:7c:ba:3c: c3:55:f7:18:dd:cc:ea:5f:cd:ee:ee:4e:a0:c3:32: 77:d0:13:67:d1:6a:0a:35:0b:45:6f:9e:8f:3f:81: 51:23:0b:bd:8b:87:a1:a3:7c:28:24:6d:24:fb:45: 7b:fd:4b:5b:3b:13:1a:f0:4a:aa:bc:6f:74:e8:af: e6:3c:c8:0d:86:6e:89:fd:28:9d:4d:7e:59:dd:94: ec:bd:6c:90:26:c9:71:50:d0:f7:82:92:7c:24:ca: 2c:ee:d3:4c:e1:78:f6:c9:af:d7:5f:3d:1a:b5:f3: 75:62:d5:73:5b:e8:3d:cc:7e:8b:7c:3e:aa:b4:ec: 59:5d:0b:a4:b5:4e:87:12:6f:3f:1b:33:e0:65:d3: 88:62:17:cd:2e:1d:69:fd:c1:52:c5:d8:98:e3:ea: 4e:16:26:58:5e:01:71:ad:ca:8c:6d:22:c8:48:08: 1e:a1:26:68:58:2c:c1:fc:37:f1:b2:ae:b0:5e:7c: fa:da:62:3a:6a:a6:14:ba:2a:f6:bc:d1:80:f7:39: 91:8c:ea:8d:fa:94:62:44:6c:7c:f0:27:c6:86:70: 84:d8:00:0d:9f:65:db:3c:c9:c5:44:b5:e8:3f:0a: 81:71:f9:8b:0a:eb:6a:a3:3e:bb:01:50:8e:2d:44: ed:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:54:86:BF:26:20:0D:0D:BA:79:C0:B8:F7:14:F3:AD:03:DC:E5:D7 X509v3 Authority Key Identifier: keyid:B4:8E:40:73:B8:10:BC:F9:C7:94:81:9C:80:FD:E7:1D:53:F2:DE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C95/DE2FF1F4BAC711EBAF2E6813C4F9AE02/tI5Ac7gQvPnHlIGcgP3nHVPy3iw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:30:f3:ab:50:75:14:51:d0:98:e0:a5:7f:74:0c:c1:69:b2: 04:0f:4a:9f:bb:bd:39:24:97:5e:68:45:6c:e6:4a:08:63:e9: 33:31:e8:19:f9:b1:66:d5:e8:a2:5b:7d:31:04:6f:82:6f:13: 6c:21:3f:cf:41:54:73:53:ea:23:a1:22:a9:97:3e:f6:2a:60: 17:15:15:ca:78:bd:02:aa:f5:61:ae:41:54:14:99:f4:c2:ad: 87:e3:47:f8:c6:b6:61:88:07:f8:a3:3c:01:2f:c8:5f:68:71: 4b:93:08:1d:79:39:75:3a:b8:bd:c2:b3:61:bc:98:9c:a4:11: b7:1f:69:bd:17:72:af:6f:cb:ea:14:88:c9:91:de:1a:7c:f8: 3c:09:3f:7d:a1:f5:2e:4f:f0:00:3a:11:56:54:0d:a2:63:fa: 63:f4:29:05:57:17:23:ad:3e:bd:e2:1d:3d:3b:9a:e0:b7:52: 08:7a:00:f9:80:36:71:79:ce:69:c2:71:46:f1:57:48:6c:78: d3:22:40:44:bb:3b:a9:00:c9:6b:62:f8:d1:82:81:02:fa:bd: 08:16:e4:d9:c4:c0:7e:b7:a9:d2:a2:05:43:61:2e:15:9d:90: 0d:58:b1:6e:cf:1d:8f:6b:b0:99:ef:35:c5:c1:58:91:55:51: 6b:d6:3d:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBDOTUxMTAvBgNVBAUTKEI0OEU0MDczQjgxMEJDRjlDNzk0ODE5QzgwRkRFNzFE NTNGMkRFMkMwHhcNMjUwNzE4MjMxNjA3WhcNMjUwNzI1MjMxNjA3WjAYMRYwFAYD VQQDEw02ODdhZDViNy1lMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3UuLVI0vJs6vWx8ujzDVfcY3czqX83u7k6gwzJ30BNn0WoKNQtFb56PP4FR Iwu9i4eho3woJG0k+0V7/UtbOxMa8EqqvG906K/mPMgNhm6J/SidTX5Z3ZTsvWyQ JslxUND3gpJ8JMos7tNM4Xj2ya/XXz0atfN1YtVzW+g9zH6LfD6qtOxZXQuktU6H Em8/GzPgZdOIYhfNLh1p/cFSxdiY4+pOFiZYXgFxrcqMbSLISAgeoSZoWCzB/Dfx sq6wXnz62mI6aqYUuir2vNGA9zmRjOqN+pRiRGx88CfGhnCE2AANn2XbPMnFRLXo PwqBcfmLCutqoz67AVCOLUTt/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNUhr8m IA0NunnAuPcU860D3OXXMB8GA1UdIwQYMBaAFLSOQHO4ELz5x5SBnID95x1T8t4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEM5NS9ERTJGRjFGNEJB QzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQbkhsSUdjZ1AzbkhWUHkz aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJNUFjN2dRdlBuSGxJR2NnUDNuSFZQeTNpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5NS9ERTJGRjFGNEJBQzcxMUVCQUYyRTY4MTNDNEY5QUUwMi90STVBYzdnUXZQ bkhsSUdjZ1AzbkhWUHkzaXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUMPOrUHUUUdCY4KV/dAzBabIED0qfu705JJdeaEVs5koIY+kzMegZ +bFm1eiiW30xBG+CbxNsIT/PQVRzU+ojoSKplz72KmAXFRXKeL0CqvVhrkFUFJn0 wq2H40f4xrZhiAf4ozwBL8hfaHFLkwgdeTl1Ori9wrNhvJicpBG3H2m9F3Kvb8vq FIjJkd4afPg8CT99ofUuT/AAOhFWVA2iY/pj9CkFVxcjrT694h09O5rgt1IIegD5 gDZxec5pwnFG8VdIbHjTIkBEuzupAMlrYvjRgoEC+r0IFuTZxMB+t6nSogVDYS4V nZANWLFuzx2Pa7CZ7zXFwViRVVFr1j3P -----END CERTIFICATE-----Generated at Sun Jul 20 11:37:41 2025 by rpki-client