$ rpki-client -vvf rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft File: piPcBe58I3DKREMQhN5RMh83pwQ.mft (raw, json) Hash identifier: Q3w+VeKZVx00xBFYSg33AIOoiJsJM79xz/IjvxBFdcI= Subject key identifier: C8:65:17:44:91:FE:F2:93:EE:B6:9A:76:DB:F8:ED:BF:8D:79:7B:FF Authority key identifier: A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 Certificate issuer: /CN=A9146179/serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft Manifest number: 8C Signing time: Mon 25 Aug 2025 07:01:49 +0000 Manifest this update: Mon 25 Aug 2025 07:01:48 +0000 Manifest next update: Mon 01 Sep 2025 07:01:48 +0000 Files and hashes: 1: piPcBe58I3DKREMQhN5RMh83pwQ.crl (hash: ARNSm04/YZVjSvE8WGeuoQqnz/nKobXEP4yEDJ/QXDM=) 2: B93E11C0AA7C11EFA2125D79C4F9AE02.roa (hash: L6gwOkLW0S9oSXFYmJ2NgzIUWM0zCt+FTxcWMzfbAlo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 07:01:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146179, serialNumber=A623DC05EE7C2370CA44431084DE51321F37A704 Validity Not Before: Aug 25 07:01:48 2025 GMT Not After : Sep 1 07:01:48 2025 GMT Subject: CN=68ac0a5c-dde8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:42:fe:37:ef:03:6b:d3:70:f1:93:87:75:6a: cc:31:07:30:8c:12:14:01:c8:76:90:2d:90:c9:8b: f5:6e:5b:f9:4d:fd:6b:dc:5e:3e:74:68:c8:67:10: c2:bf:ba:3d:f1:92:3c:0c:d7:2f:7d:29:ae:0e:94: 22:b3:07:59:11:27:8d:d6:0f:e9:c9:35:f0:42:2b: 6b:17:06:5e:9c:e8:51:ba:73:35:f8:47:7c:eb:2f: b2:46:2b:fc:8e:12:37:3b:ca:c9:54:8a:a8:09:78: a3:3e:a7:fd:ac:b4:74:b3:36:b8:dc:3f:9b:83:7b: b5:de:05:01:9d:3c:52:71:e8:8d:c3:be:93:9f:1a: 53:1a:13:b2:e6:bf:08:c5:66:37:73:0e:89:71:ef: 00:2a:ba:d3:53:65:09:ff:ed:bc:00:ee:7c:09:da: df:23:b4:2d:32:46:f1:ef:57:30:d2:79:5c:95:c9: c6:d4:0f:5e:ec:c6:60:1d:53:dc:89:49:88:d5:5b: 25:39:02:56:4e:28:f9:48:8f:93:45:05:f3:9d:61: 0c:8a:92:94:55:64:69:ac:41:06:d5:47:0e:2e:02: ea:c1:c6:4c:07:cd:79:a6:fe:60:cb:cc:be:e2:22: a4:2f:61:b4:7d:31:b0:2d:da:af:61:92:f8:21:bf: 4e:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:65:17:44:91:FE:F2:93:EE:B6:9A:76:DB:F8:ED:BF:8D:79:7B:FF X509v3 Authority Key Identifier: keyid:A6:23:DC:05:EE:7C:23:70:CA:44:43:10:84:DE:51:32:1F:37:A7:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/piPcBe58I3DKREMQhN5RMh83pwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146179/4BFD9BBCAA7C11EFA33BFD77C4F9AE02/piPcBe58I3DKREMQhN5RMh83pwQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:94:12:e9:e9:1e:7f:0f:ab:23:ab:ad:cc:f5:43:c2:86:5e: 8f:d3:5e:e0:33:3c:c0:0f:5f:fd:21:06:9c:18:cd:bc:4a:52: 41:03:f0:25:fd:c3:8e:55:7e:af:52:2a:54:ff:c4:3d:f7:6e: fd:57:4a:eb:93:85:da:79:52:2f:b1:5e:d5:c7:9a:15:7d:64: 07:23:8d:e2:1c:40:6c:44:70:4f:26:dc:d3:ac:25:e3:6c:ac: b4:91:09:d2:ce:e7:76:f8:15:14:8f:ef:ef:0c:36:92:c4:a4: 2f:ef:e2:9a:df:f1:ac:04:be:91:44:96:9e:bc:b5:4c:7f:dc: 25:08:d7:94:23:fd:60:4f:a0:2a:e5:85:6f:dd:d5:38:db:13: de:84:f4:8f:1d:4c:55:61:b1:ef:bf:5d:07:48:1e:7f:84:39: dc:30:4f:cf:17:9c:2b:3f:39:cb:77:51:c9:02:2b:dc:d8:53: e0:58:81:e2:45:8c:4d:a5:29:8b:76:6e:27:cd:1f:5a:c9:ec: e7:07:4d:db:07:fb:46:b1:5d:4e:35:d1:e9:13:d6:5c:7c:89: 6d:62:f6:ab:a0:60:f9:68:5c:c0:fd:3f:41:a2:4c:fb:ec:e7: 23:f5:06:a8:8a:71:57:b5:81:58:44:17:37:c4:60:ab:92:b9: ad:b6:ea:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYxNzkxMTAvBgNVBAUTKEE2MjNEQzA1RUU3QzIzNzBDQTQ0NDMxMDg0REU1MTMy MUYzN0E3MDQwHhcNMjUwODI1MDcwMTQ4WhcNMjUwOTAxMDcwMTQ4WjAYMRYwFAYD VQQDEw02OGFjMGE1Yy1kZGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8EL+N+8Da9Nw8ZOHdWrMMQcwjBIUAch2kC2QyYv1blv5Tf1r3F4+dGjIZxDC v7o98ZI8DNcvfSmuDpQiswdZESeN1g/pyTXwQitrFwZenOhRunM1+Ed86y+yRiv8 jhI3O8rJVIqoCXijPqf9rLR0sza43D+bg3u13gUBnTxSceiNw76TnxpTGhOy5r8I xWY3cw6Jce8AKrrTU2UJ/+28AO58CdrfI7QtMkbx71cw0nlclcnG1A9e7MZgHVPc iUmI1VslOQJWTij5SI+TRQXznWEMipKUVWRprEEG1UcOLgLqwcZMB815pv5gy8y+ 4iKkL2G0fTGwLdqvYZL4Ib9O3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhlF0SR /vKT7raadtv47b+NeXv/MB8GA1UdIwQYMBaAFKYj3AXufCNwykRDEITeUTIfN6cE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjE3OS80QkZEOUJCQ0FB N0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkzREtSRU1RaE41Uk1oODNw d1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BpUGNCZTU4STNES1JFTVFoTjVSTWg4M3B3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjE3OS80QkZEOUJCQ0FBN0MxMUVGQTMzQkZENzdDNEY5QUUwMi9waVBjQmU1OEkz REtSRU1RaE41Uk1oODNwd1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKlBLp6R5/D6sjq63M9UPChl6P017gMzzAD1/9IQacGM28SlJBA/Al /cOOVX6vUipU/8Q99279V0rrk4XaeVIvsV7Vx5oVfWQHI43iHEBsRHBPJtzTrCXj bKy0kQnSzud2+BUUj+/vDDaSxKQv7+Ka3/GsBL6RRJaevLVMf9wlCNeUI/1gT6Aq 5YVv3dU42xPehPSPHUxVYbHvv10HSB5/hDncME/PF5wrPznLd1HJAivc2FPgWIHi RYxNpSmLdm4nzR9ayeznB03bB/tGsV1ONdHpE9ZcfIltYvaroGD5aFzA/T9Bokz7 7Ocj9QaoinFXtYFYRBc3xGCrkrmttuqx -----END CERTIFICATE-----Generated at Mon Aug 25 23:33:15 2025 by rpki-client