$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft File: W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft (raw, json) Hash identifier: qOKRn8x13L7TwvHHtKUkuF3ndSS9pFQeCtoav32nCbg= Subject key identifier: 39:F2:8D:C9:20:FD:33:30:44:60:5B:74:7B:F4:06:2C:D8:E8:B3:2D Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft Manifest number: F1 Signing time: Sat 19 Jul 2025 05:28:42 +0000 Manifest this update: Sat 19 Jul 2025 05:28:42 +0000 Manifest next update: Sat 26 Jul 2025 05:28:42 +0000 Files and hashes: 1: W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl (hash: e3utp81OAG06TGLo1LsQBqR98eHJKrQ6eeJf8AYx++8=) 2: FD990E7AF0B311EE9923BC84C4F9AE02.roa (hash: XWibtqlVyPdPRt9izLBx3ZYroA9isT1xxkvokh85YPE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 243 (0xf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Jul 19 05:28:42 2025 GMT Not After : Jul 26 05:28:42 2025 GMT Subject: CN=687b2d0a-7957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:83:35:65:4f:56:a1:9d:31:18:29:65:7f:c0: c7:00:fe:5e:02:bf:24:09:bd:01:13:d9:e2:e5:f0: cd:7a:d7:a2:7d:5d:f5:90:4b:a4:68:b9:5d:9f:e6: d8:12:19:1a:f3:ce:2a:59:69:2a:21:c8:c5:ff:ae: 8a:61:a1:45:48:15:94:2e:40:44:c8:55:39:e2:8d: 61:92:23:03:66:9e:4c:e7:0f:cf:8a:ad:3a:b5:3d: 30:9e:e8:52:1b:4e:32:a7:1e:4c:08:c8:de:c9:0e: 14:96:fc:eb:a1:d6:f4:31:5b:a9:f1:ee:e6:f1:2b: 10:17:e4:81:b5:a6:a8:3d:a6:0c:5d:89:1a:03:a0: 5f:14:65:b0:95:f6:5d:9d:cc:0b:67:9d:63:56:6e: d9:df:ed:fe:24:05:94:e5:02:31:e9:8d:bf:0e:e6: 80:f8:a4:19:bc:24:71:c1:d1:69:ce:f2:63:db:10: 69:3a:82:dc:e6:b1:d9:e0:3b:f8:04:2d:bf:25:88: 4f:46:b1:13:0c:9d:83:04:7c:b2:ae:b8:1f:06:c4: 59:fb:ce:0f:33:d8:29:c8:fd:1b:76:a9:81:80:41: da:10:4a:33:18:56:d9:c3:b4:19:8b:05:cd:bc:64: 24:90:09:f1:52:81:77:5b:1f:96:31:c8:f5:d0:e1: d6:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:F2:8D:C9:20:FD:33:30:44:60:5B:74:7B:F4:06:2C:D8:E8:B3:2D X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:48:9a:de:9d:eb:3e:dd:35:a2:ce:43:4a:23:a8:6d:76:00: fa:7f:2d:e0:4e:57:d4:a5:2f:26:d4:0c:e3:3c:ee:d8:d5:3a: bf:23:70:c0:f6:88:7c:35:c9:2a:41:0f:9a:d4:cc:98:ce:ec: c3:06:7b:d0:46:9e:f1:89:86:07:1f:93:b4:8b:87:bd:f8:c9: 05:3b:88:b5:f6:90:a3:e2:3e:32:88:0d:e2:95:69:8d:dc:e8: 67:7e:9c:fb:bd:99:a7:0c:e3:9e:6e:77:72:ca:d9:a2:16:06: 7e:48:83:72:02:ad:64:a6:60:6a:f3:4d:ee:f1:5c:fa:88:42: d3:8f:a7:f9:82:76:89:b1:b1:cd:6e:3d:d5:2c:d6:68:86:a5: 0c:9d:a6:a4:89:7c:c3:ad:29:32:c4:53:50:b3:4c:2d:92:37: 46:47:7d:34:ad:ff:a5:92:4e:05:a0:54:4e:fe:74:44:0b:eb: 25:99:93:8d:a2:4b:8d:3f:61:73:8c:a4:f8:52:a9:2f:a1:74: c3:ec:ed:14:40:fc:f3:11:9c:78:35:c1:c6:24:9b:ce:3d:e7: 35:4e:43:1c:a8:ab:16:aa:8b:f9:f6:c4:f1:c1:09:44:3d:55: aa:e2:36:40:f7:35:10:9d:95:8a:2e:b1:7a:2c:f4:28:75:8b: 64:44:71:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDVCQzQ5NEU4OUQwQTQxNTVCNTUyNTM2M0QxMjM1QzVF REMwRkRFMkYwHhcNMjUwNzE5MDUyODQyWhcNMjUwNzI2MDUyODQyWjAYMRYwFAYD VQQDEw02ODdiMmQwYS03OTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4M1ZU9WoZ0xGCllf8DHAP5eAr8kCb0BE9ni5fDNeteifV31kEukaLldn+bY Ehka884qWWkqIcjF/66KYaFFSBWULkBEyFU54o1hkiMDZp5M5w/Piq06tT0wnuhS G04ypx5MCMjeyQ4Ulvzrodb0MVup8e7m8SsQF+SBtaaoPaYMXYkaA6BfFGWwlfZd ncwLZ51jVm7Z3+3+JAWU5QIx6Y2/DuaA+KQZvCRxwdFpzvJj2xBpOoLc5rHZ4Dv4 BC2/JYhPRrETDJ2DBHyyrrgfBsRZ+84PM9gpyP0bdqmBgEHaEEozGFbZw7QZiwXN vGQkkAnxUoF3Wx+WMcj10OHWAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDnyjckg /TMwRGBbdHv0BizY6LMtMB8GA1UdIwQYMBaAFFvElOidCkFVtVJTY9EjXF7cD94v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9BOEMyNTFFQUYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FWVzFVbE5qMFNOY1h0d1Az aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTg4Mi9BOEMyNTFFQUYwQjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FW VzFVbE5qMFNOY1h0d1AzaTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDSJrenes+3TWizkNKI6htdgD6fy3gTlfUpS8m1AzjPO7Y1Tq/I3DA 9oh8NckqQQ+a1MyYzuzDBnvQRp7xiYYHH5O0i4e9+MkFO4i19pCj4j4yiA3ilWmN 3Ohnfpz7vZmnDOOebndyytmiFgZ+SINyAq1kpmBq803u8Vz6iELTj6f5gnaJsbHN bj3VLNZohqUMnaakiXzDrSkyxFNQs0wtkjdGR300rf+lkk4FoFRO/nREC+slmZON okuNP2FzjKT4UqkvoXTD7O0UQPzzEZx4NcHGJJvOPec1TkMcqKsWqov59sTxwQlE PVWq4jZA9zUQnZWKLrF6LPQodYtkRHFO -----END CERTIFICATE-----Generated at Sun Jul 20 20:40:44 2025 by rpki-client