$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft File: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft (raw, json) Hash identifier: qZTKETtbmRSVtZ2HM6XfVFZtDTH0BDLekll7dZq1D0o= Subject key identifier: E3:30:70:43:D1:CC:A4:7C:9F:9E:8C:79:E3:ED:CB:8E:46:FA:AE:FE Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft Manifest number: 03C9 Signing time: Tue 09 Sep 2025 00:42:08 +0000 Manifest this update: Tue 09 Sep 2025 00:42:07 +0000 Manifest next update: Tue 16 Sep 2025 00:42:07 +0000 Files and hashes: 1: 8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl (hash: WtpD8eFJO9Yi5LwekO02czDqxYKX8kdl5M+oxGllRuY=) 2: 688C6AC29D9D11EC958A216AC4F9AE02.roa (hash: rQCKwpVXSCN9Y75hhPwPDo9+AXfNNoLzfRi82A6bdSI=) 3: 854ACCD2DFEA11ECB7DF0A2EC4F9AE02.roa (hash: C6Z/IfRVQV8LxL1Oc2uDTt0509ENzUWPGHXpk7TwKNY=) 4: 695DB5289D9D11EC958A216AC4F9AE02.roa (hash: c9fr6KD/Ih6e5aCRy3Bruof+Va6iYKpCGv8u+/ETzK0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4, serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Sep 9 00:42:07 2025 GMT Not After : Sep 16 00:42:07 2025 GMT Subject: CN=68bf77e0-15e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f7:31:3c:a7:8b:72:82:41:2f:3d:f5:5b:fe: 23:13:9b:de:1b:ad:5a:af:3c:d9:a1:85:b6:45:c3: ed:57:82:0b:f1:1c:5e:85:ac:3a:20:ee:c3:06:83: c3:f4:dd:cf:1d:8a:e6:69:5a:90:e4:0a:0f:11:40: 77:b7:47:57:72:f4:cd:2e:aa:86:45:69:4a:97:23: 6a:14:2d:be:9d:b1:64:fe:f2:d0:60:97:5d:eb:9e: df:05:17:17:2e:cf:94:e7:96:85:0b:6a:76:d9:87: 42:16:6a:eb:a0:88:53:b4:65:71:31:8c:dc:04:11: 46:ce:ca:6c:29:fb:84:93:5c:49:cc:b1:be:33:8e: 0f:6d:7d:e9:f3:3f:7b:77:a1:45:67:e9:21:45:d1: ab:ef:50:f2:25:c3:63:ac:e7:13:b6:0d:91:8a:0e: dc:47:90:62:ce:c5:50:e0:55:fc:bd:f3:d3:82:98: ee:5e:11:f4:31:f8:9e:79:85:ff:83:a9:4d:f2:65: 24:82:6b:66:65:c2:5c:c7:26:d8:db:e8:f3:b4:0a: b8:78:b5:79:93:a7:d3:c8:d2:92:35:14:23:af:68: 9b:75:25:62:7c:d9:3e:1d:87:e5:d0:62:cb:bf:8b: 9f:da:75:ed:18:0d:96:73:c6:56:00:23:a5:c2:53: ca:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:30:70:43:D1:CC:A4:7C:9F:9E:8C:79:E3:ED:CB:8E:46:FA:AE:FE X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:8b:f5:cd:28:60:cb:d3:d4:18:30:7d:26:a6:a2:aa:14:55: 60:b4:1a:66:6b:35:59:f8:6b:7e:27:e4:7b:11:ee:6d:15:df: f1:0f:94:9d:ad:31:d1:ec:38:2f:9e:0d:f9:4a:7b:16:05:f7: 1b:c6:04:a0:6a:3c:1d:ba:63:46:ac:e6:a5:26:db:ec:71:e0: 61:94:86:9b:8a:3d:e2:dd:2e:de:c3:cf:09:13:24:5f:58:b4: c5:1e:37:5a:d3:4d:70:2c:eb:47:c2:e7:f5:a9:48:54:c5:dc: 70:cb:cc:e1:c6:dd:b3:4e:83:9e:ee:7a:e4:17:ae:4d:59:19: 16:21:b9:74:15:28:75:2e:f0:e6:a7:7d:99:a8:3b:2d:5a:55: 09:81:0c:43:57:c7:05:50:b5:18:b3:07:bb:80:f1:a7:53:31: 6b:6a:73:64:36:a1:a6:63:22:c1:03:a0:e6:d1:e6:98:a4:a5: ba:14:63:38:de:73:a0:8c:57:fd:96:cd:ee:5d:fc:9f:4f:f3: 58:e3:8c:aa:e4:41:24:67:0a:22:19:9a:e1:81:02:51:6b:da: 8e:f7:b8:85:30:09:b4:03:2f:f2:a3:18:05:63:cb:a5:27:87: d1:fc:a6:7c:2a:31:07:ac:2d:9d:dc:56:69:49:05:94:26:20: 9a:76:0a:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjUwOTA5MDA0MjA3WhcNMjUwOTE2MDA0MjA3WjAYMRYwFAYD VQQDEw02OGJmNzdlMC0xNWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvcxPKeLcoJBLz31W/4jE5veG61arzzZoYW2RcPtV4IL8Rxehaw6IO7DBoPD 9N3PHYrmaVqQ5AoPEUB3t0dXcvTNLqqGRWlKlyNqFC2+nbFk/vLQYJdd657fBRcX Ls+U55aFC2p22YdCFmrroIhTtGVxMYzcBBFGzspsKfuEk1xJzLG+M44PbX3p8z97 d6FFZ+khRdGr71DyJcNjrOcTtg2Rig7cR5BizsVQ4FX8vfPTgpjuXhH0MfieeYX/ g6lN8mUkgmtmZcJcxybY2+jztAq4eLV5k6fTyNKSNRQjr2ibdSVifNk+HYfl0GLL v4uf2nXtGA2Wc8ZWACOlwlPKrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOMwcEPR zKR8n56MeePty45G+q7+MB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NkRCNC9FODREQjk4QTlEOUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFp Ymp4WVNuQ3JQbEo3TURnWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsi/XNKGDL09QYMH0mpqKqFFVgtBpmazVZ+Gt+J+R7Ee5tFd/xD5Sd rTHR7Dgvng35SnsWBfcbxgSgajwdumNGrOalJtvsceBhlIabij3i3S7ew88JEyRf WLTFHjda001wLOtHwuf1qUhUxdxwy8zhxt2zToOe7nrkF65NWRkWIbl0FSh1LvDm p32ZqDstWlUJgQxDV8cFULUYswe7gPGnUzFranNkNqGmYyLBA6Dm0eaYpKW6FGM4 3nOgjFf9ls3uXfyfT/NY44yq5EEkZwoiGZrhgQJRa9qO97iFMAm0Ay/yoxgFY8ul J4fR/KZ8KjEHrC2d3FZpSQWUJiCadgoE -----END CERTIFICATE-----Generated at Tue Sep 9 13:22:42 2025 by rpki-client