$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft File: cI8eBxM4VcgHTu1fjIO0RmpgesI.mft (raw, json) Hash identifier: 3sWKY0rsMGjl7u010DThmC1/m7jcn3HZuAOVltZKtNs= Subject key identifier: 90:94:57:6A:B2:6B:9B:2D:B4:A0:B5:6B:06:95:23:DA:E1:8C:2A:4A Authority key identifier: 70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 Certificate issuer: /CN=A9171D16/serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Certificate serial: 013F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft Manifest number: 013B Signing time: Fri 05 Sep 2025 04:49:49 +0000 Manifest this update: Fri 05 Sep 2025 04:49:49 +0000 Manifest next update: Fri 12 Sep 2025 04:49:49 +0000 Files and hashes: 1: cI8eBxM4VcgHTu1fjIO0RmpgesI.crl (hash: gcad2OQdjhu4WdualhXsDHFUSEOApad3akR7cAJHhxw=) 2: BFC0298670DC11EF8B65D95AC4F9AE02.roa (hash: UgEzMnFdPuD9AyKqWzCGknoXwkBXShyWFB2xX76uKRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D16, serialNumber=708F1E07133855C8074EED5F8C83B4466A607AC2 Validity Not Before: Sep 5 04:49:49 2025 GMT Not After : Sep 12 04:49:49 2025 GMT Subject: CN=68ba6bed-13c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:38:7c:72:88:86:85:e9:7b:4b:8e:de:a5:57: af:11:3c:60:de:be:9c:7a:9f:49:4a:a9:d1:74:81: 88:43:6f:8f:be:57:3e:53:91:1c:dc:74:20:23:db: 2d:d7:29:fe:fd:02:90:b7:4a:ee:c2:c4:44:82:e6: 9a:07:de:02:1c:54:ce:9d:73:be:e6:6c:62:a0:bf: 3a:d4:6a:1e:ed:ed:63:66:5a:cc:e2:94:b5:01:40: a7:ca:40:56:24:a0:d5:ca:f1:6a:2b:19:d1:60:e2: ff:9f:af:83:3c:ba:1b:c3:f3:22:1d:58:30:32:15: 3d:08:58:eb:c9:c0:d6:cc:56:ae:59:7f:ae:54:3f: 7e:53:fe:56:ff:b5:fa:d4:59:d4:a6:68:7b:91:4d: 14:05:70:80:df:20:e6:ae:ed:d9:61:eb:3c:09:48: 9d:ae:4a:20:a3:cb:9c:4e:92:00:3d:3f:08:d2:64: b5:f6:87:fb:d7:d0:1e:b6:cc:7e:43:14:b8:b4:53: 96:02:21:12:b6:70:35:75:46:98:1a:f8:00:0d:a3: 45:0c:81:ed:4a:a6:36:12:48:3c:52:28:2a:ba:d4: 0e:5a:bb:2a:af:9b:07:40:26:2d:28:26:8a:98:d9: ec:db:d2:69:b3:b3:f4:33:cb:d9:84:80:0f:6e:73: d7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:94:57:6A:B2:6B:9B:2D:B4:A0:B5:6B:06:95:23:DA:E1:8C:2A:4A X509v3 Authority Key Identifier: keyid:70:8F:1E:07:13:38:55:C8:07:4E:ED:5F:8C:83:B4:46:6A:60:7A:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cI8eBxM4VcgHTu1fjIO0RmpgesI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D16/656D17A8AE9C11EE911AFB63C4F9AE02/cI8eBxM4VcgHTu1fjIO0RmpgesI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:8c:33:10:97:2e:f7:dc:5b:50:96:13:dd:eb:91:3a:46:76: aa:d1:48:19:cf:0d:ed:61:f5:c1:2f:44:be:cc:9f:29:8a:1b: b0:26:4a:58:1e:3f:3a:a1:a6:ec:77:2b:ee:57:d6:59:e8:1e: cb:fd:2d:44:71:04:6f:58:a2:64:cb:80:78:e0:fa:39:b9:65: 34:24:80:fd:f8:fa:c3:bb:41:2d:5e:4c:61:dc:0a:4a:17:29: 05:ce:7c:0c:4f:bc:93:fc:af:01:09:e3:85:64:62:20:c4:c7: 25:57:f0:5a:78:d2:91:58:6a:a1:94:47:4d:a0:d5:3c:d1:a2: dd:3b:93:36:3b:14:0e:ea:c2:6f:ea:83:3f:2c:33:e7:9f:de: cb:e5:79:f9:49:0c:a9:18:c9:d0:0a:be:b2:8a:2d:33:d8:d0: 62:8e:e1:fe:4e:07:b2:78:81:b7:de:fe:1e:03:29:96:89:82: cd:0c:74:ca:89:57:47:ab:51:b8:63:fa:33:49:75:01:45:85: a6:63:e7:eb:61:41:79:e9:28:77:af:4e:95:e1:08:17:17:a8: 46:ce:42:66:6b:cb:6f:50:f5:d8:e5:aa:29:9f:f9:51:1c:82: fe:db:64:18:61:94:e3:fc:1e:63:f2:22:e2:6f:ec:9e:51:ae: 57:a9:33:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMTYxMTAvBgNVBAUTKDcwOEYxRTA3MTMzODU1QzgwNzRFRUQ1RjhDODNCNDQ2 NkE2MDdBQzIwHhcNMjUwOTA1MDQ0OTQ5WhcNMjUwOTEyMDQ0OTQ5WjAYMRYwFAYD VQQDEw02OGJhNmJlZC0xM2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDh8coiGhel7S47epVevETxg3r6cep9JSqnRdIGIQ2+Pvlc+U5Ec3HQgI9st 1yn+/QKQt0ruwsREguaaB94CHFTOnXO+5mxioL861Goe7e1jZlrM4pS1AUCnykBW JKDVyvFqKxnRYOL/n6+DPLobw/MiHVgwMhU9CFjrycDWzFauWX+uVD9+U/5W/7X6 1FnUpmh7kU0UBXCA3yDmru3ZYes8CUidrkogo8ucTpIAPT8I0mS19of719Aetsx+ QxS4tFOWAiEStnA1dUaYGvgADaNFDIHtSqY2Ekg8UigqutQOWrsqr5sHQCYtKCaK mNns29Jps7P0M8vZhIAPbnPXVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCUV2qy a5sttKC1awaVI9rhjCpKMB8GA1UdIwQYMBaAFHCPHgcTOFXIB07tX4yDtEZqYHrC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQxNi82NTZEMTdBOEFF OUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZjZ0hUdTFmaklPMFJtcGdl c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NJOGVCeE00VmNnSFR1MWZqSU8wUm1wZ2VzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQxNi82NTZEMTdBOEFFOUMxMUVFOTExQUZCNjNDNEY5QUUwMi9jSThlQnhNNFZj Z0hUdTFmaklPMFJtcGdlc0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIjDMQly733FtQlhPd65E6Rnaq0UgZzw3tYfXBL0S+zJ8pihuwJkpY Hj86oabsdyvuV9ZZ6B7L/S1EcQRvWKJky4B44Po5uWU0JID9+PrDu0EtXkxh3ApK FykFznwMT7yT/K8BCeOFZGIgxMclV/BaeNKRWGqhlEdNoNU80aLdO5M2OxQO6sJv 6oM/LDPnn97L5Xn5SQypGMnQCr6yii0z2NBijuH+TgeyeIG33v4eAymWiYLNDHTK iVdHq1G4Y/ozSXUBRYWmY+frYUF56Sh3r06V4QgXF6hGzkJma8tvUPXY5aopn/lR HIL+22QYYZTj/B5j8iLib+yeUa5XqTOE -----END CERTIFICATE-----Generated at Sat Sep 6 21:28:24 2025 by rpki-client