$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft File: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft (raw, json) Hash identifier: 6LITnBocqg9DXVypFpW5wy2t6qGL10T1yMZVa3CImUk= Subject key identifier: E9:46:78:02:07:0E:E3:1B:07:AD:C7:3B:64:D0:69:54:F7:4A:B7:18 Authority key identifier: 76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D Certificate issuer: /CN=A9157DAE/serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Certificate serial: 0493 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft Manifest number: 047F Signing time: Tue 02 Sep 2025 17:16:44 +0000 Manifest this update: Tue 02 Sep 2025 17:16:44 +0000 Manifest next update: Tue 09 Sep 2025 17:16:44 +0000 Files and hashes: 1: dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl (hash: BiZWYuy8VrzQyz6/pQAH/IVbx53VaLbS6fB6he46jrE=) 2: 13EE3260596A11ECB1394271C4F9AE02.roa (hash: BSTa7sI/Wxp7paF8iFEhYcOXczYzjvqpGs3tFatgPsE=) 3: F91F0C028A2E11EC98A2702CC4F9AE02.roa (hash: EM7EONiwHXhiPFzyfONkaOBX/AROwU9rjV4ETvuVQDQ=) 4: 1479C514596A11ECB1394271C4F9AE02.roa (hash: TLiIvWlCkSUznKaCtTmASc45uAF4Q8KIvn7LhcKxI18=) 5: F5A921B85BE911EF8624AA20C4F9AE02.roa (hash: HMDK7qPjAO3ncQEJzX6SKnODDt4e7glxidti8sfhV1k=) 6: D36F0B6ECF4411ECB6B61825C4F9AE02.roa (hash: Z/SQA8GAHBj69mDXnfsLMK8qu+tlZ5LxlzdXDGduFGo=) 7: 9CD16392309711F09EFD0C4CC4F9AE02.roa (hash: AfGxVPGE0X5aiSEnPrV13VcxuUAvslUoJjsgWW+PD9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 17:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=760E6A7F08B72FF80EB56F6750323B164A70DA1D Validity Not Before: Sep 2 17:16:44 2025 GMT Not After : Sep 9 17:16:44 2025 GMT Subject: CN=68b7267c-7721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cd:2b:64:62:0f:d3:3b:f7:7e:94:1f:04:cd: 9a:1a:dc:1b:22:66:3f:a5:3f:d1:62:a1:b2:6c:17: 88:24:9e:7e:61:b0:23:9f:b9:78:0b:de:06:fe:57: d2:70:37:c1:b9:0b:a5:9b:ad:f3:17:7c:c8:fc:d7: c8:c1:0b:ca:7b:b5:4b:fe:79:66:80:b4:fc:14:a5: 75:7e:92:82:d2:e2:c9:07:8c:c9:bf:76:0d:65:44: 8f:38:fb:c0:6e:fa:6e:fa:15:14:ec:43:da:86:d1: 88:83:87:32:c1:62:54:59:23:28:73:bc:92:a3:4e: 8f:86:21:4d:51:c3:6d:84:ad:c5:a7:da:44:c2:17: e2:03:3e:f0:1e:3e:0e:8c:0a:1c:ec:83:0c:f6:8d: ba:86:89:a9:f3:03:e9:0d:2f:00:55:65:c0:56:18: af:9f:5d:59:62:4f:2a:e3:d7:51:7c:9f:ec:14:49: a1:fb:08:5e:9e:c3:08:6e:4d:8d:f6:9a:62:4f:99: 5d:12:d1:a7:d6:d1:fc:d1:2d:92:3f:0e:cd:6f:08: f8:4d:b5:5b:56:99:54:c2:d2:8e:b9:dd:37:9c:89: b7:6d:a8:8e:31:27:60:dd:3f:e0:53:17:c9:c0:55: 02:29:8a:fe:fb:c9:d5:18:a8:eb:5e:1b:c1:4f:78: ee:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:46:78:02:07:0E:E3:1B:07:AD:C7:3B:64:D0:69:54:F7:4A:B7:18 X509v3 Authority Key Identifier: keyid:76:0E:6A:7F:08:B7:2F:F8:0E:B5:6F:67:50:32:3B:16:4A:70:DA:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/5B4C4E36596911EC94A3E770C4F9AE02/dg5qfwi3L_gOtW9nUDI7Fkpw2h0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:69:29:67:aa:24:15:68:75:94:48:b0:01:4d:cc:f9:12:41: d4:f4:e9:ac:62:74:cd:8d:c7:fa:e9:f6:62:b8:6d:93:e9:7b: 10:49:e3:41:5d:80:79:b6:f5:57:40:88:41:88:f0:c3:bf:45: 84:8c:3f:16:68:f7:02:1d:da:b0:a8:cd:fe:13:24:9a:70:d1: 4e:28:7e:2d:93:8f:a1:37:69:c2:1c:35:dd:f7:e3:e7:b5:ef: 72:16:59:1c:8d:10:c3:9e:5d:d4:70:ca:31:06:ac:34:e5:f0: 7d:1d:40:9d:07:b6:1f:a3:a5:c7:fd:3c:14:b0:2f:1d:e8:e6: 11:3b:8c:29:a9:cb:c9:58:e1:97:dc:8d:63:d9:6b:fb:f4:91: 44:09:fc:4c:16:36:cf:43:1a:a2:bc:4f:90:40:87:c5:f4:71: 42:05:5d:91:5e:58:55:67:4f:74:66:95:79:ea:4d:93:b8:4f: b8:e3:d2:03:3e:ca:68:bb:8c:00:0c:a1:de:3b:b1:84:df:33: 20:73:64:a5:80:d7:7a:60:dc:1a:84:ac:51:01:ae:89:de:60: 86:0f:08:72:71:6d:87:1e:f6:7c:9b:b3:a6:6c:54:64:cb:c4: a8:d0:44:1b:62:e0:bd:35:a2:c1:9f:34:31:22:55:d0:23:fa: 78:c1:03:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKDc2MEU2QTdGMDhCNzJGRjgwRUI1NkY2NzUwMzIzQjE2 NEE3MERBMUQwHhcNMjUwOTAyMTcxNjQ0WhcNMjUwOTA5MTcxNjQ0WjAYMRYwFAYD VQQDEw02OGI3MjY3Yy03NzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc0rZGIP0zv3fpQfBM2aGtwbImY/pT/RYqGybBeIJJ5+YbAjn7l4C94G/lfS cDfBuQulm63zF3zI/NfIwQvKe7VL/nlmgLT8FKV1fpKC0uLJB4zJv3YNZUSPOPvA bvpu+hUU7EPahtGIg4cywWJUWSMoc7ySo06PhiFNUcNthK3Fp9pEwhfiAz7wHj4O jAoc7IMM9o26homp8wPpDS8AVWXAVhivn11ZYk8q49dRfJ/sFEmh+whensMIbk2N 9ppiT5ldEtGn1tH80S2SPw7Nbwj4TbVbVplUwtKOud03nIm3baiOMSdg3T/gUxfJ wFUCKYr++8nVGKjrXhvBT3jurwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOlGeAIH DuMbB63HO2TQaVT3SrcYMB8GA1UdIwQYMBaAFHYOan8Ity/4DrVvZ1AyOxZKcNod MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS81QjRDNEUzNjU5 NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xfZ090VzluVURJN0ZrcHcy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RnNXFmd2kzTF9nT3RXOW5VREk3RmtwdzJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS81QjRDNEUzNjU5NjkxMUVDOTRBM0U3NzBDNEY5QUUwMi9kZzVxZndpM0xf Z090VzluVURJN0ZrcHcyaDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNaSlnqiQVaHWUSLABTcz5EkHU9OmsYnTNjcf66fZiuG2T6XsQSeNB XYB5tvVXQIhBiPDDv0WEjD8WaPcCHdqwqM3+EySacNFOKH4tk4+hN2nCHDXd9+Pn te9yFlkcjRDDnl3UcMoxBqw05fB9HUCdB7Yfo6XH/TwUsC8d6OYRO4wpqcvJWOGX 3I1j2Wv79JFECfxMFjbPQxqivE+QQIfF9HFCBV2RXlhVZ090ZpV56k2TuE+449ID Pspou4wADKHeO7GE3zMgc2SlgNd6YNwahKxRAa6J3mCGDwhycW2HHvZ8m7OmbFRk y8So0EQbYuC9NaLBnzQxIlXQI/p4wQMR -----END CERTIFICATE-----Generated at Thu Sep 4 14:02:17 2025 by rpki-client