$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft File: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft (raw, json) Hash identifier: 7h8eVq5UESk8UL+HCJpFdOeJPP7NDYKIKil6TuzJV2o= Subject key identifier: 7B:57:67:46:35:CA:1A:7E:D7:ED:41:C7:02:FC:7A:49:58:43:71:5F Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 04B8 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft Manifest number: 04B2 Signing time: Tue 19 Aug 2025 00:17:14 +0000 Manifest this update: Tue 19 Aug 2025 00:17:14 +0000 Manifest next update: Tue 26 Aug 2025 00:17:14 +0000 Files and hashes: 1: q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl (hash: lLfFe6IKazQKW4IkmXB5FCYE/7miSMCrA/RCbg77Yfg=) 2: 887BE0D0405D11ECA642D813C4F9AE02.roa (hash: qxVcUGlCZn4SUG82SOAXq9RSMSYslC+bAGjT3ytadTQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Aug 2025 00:17:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1208 (0x4b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3, serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Aug 19 00:17:14 2025 GMT Not After : Aug 26 00:17:14 2025 GMT Subject: CN=68a3c28a-91d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:21:2b:99:1f:7a:18:8d:ef:f8:a1:07:8b:82: 94:7f:4c:b4:ad:3c:b4:58:d7:f8:6e:f2:95:5f:80: a0:e6:67:ed:02:41:f9:15:e1:8e:90:67:ed:5c:05: 22:5d:17:f5:a9:4b:38:66:ea:49:b9:d7:23:90:b9: af:16:60:f7:d5:f2:e4:41:04:c6:f0:1a:7c:fe:ab: c4:de:a1:6f:fd:96:71:07:a9:8c:a9:f7:e6:32:81: 12:1b:9a:99:29:f5:6e:42:93:eb:db:ba:8e:13:dd: 8f:95:62:ff:80:83:9f:39:8c:c8:b5:b8:67:30:8b: df:fd:9e:96:43:49:ba:70:e5:a4:ec:dd:86:20:60: 05:25:7e:1b:7a:bc:eb:98:7e:de:a6:18:5a:45:fc: 7d:8c:9f:3b:c1:4b:10:d2:5d:27:5e:ca:e3:cd:c0: ce:ca:50:f8:49:84:f9:19:fd:91:8c:66:bd:a6:fb: 2e:f4:95:10:52:3e:0e:0d:87:32:e7:96:ac:32:df: 83:a0:1d:cf:50:3f:e3:5f:e5:ce:db:75:14:97:b1: 71:67:ac:15:69:e5:ae:5d:d8:56:1a:b7:ca:ff:5c: 10:c7:4b:e6:2f:ae:0c:ac:1f:a9:b2:51:c8:32:a2: 67:bd:c9:0d:12:29:f1:9c:f7:6e:d3:e0:d7:53:46: f1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:57:67:46:35:CA:1A:7E:D7:ED:41:C7:02:FC:7A:49:58:43:71:5F X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:33:35:26:46:c3:23:29:15:2e:62:ef:a9:35:f4:d0:83:5a: c4:dd:fa:fa:15:d0:65:03:f4:98:76:43:b6:84:23:f1:30:e4: 65:05:50:ef:87:54:e3:e0:01:9b:1f:58:68:bc:e9:c9:4d:ee: 44:35:74:ba:42:c8:a7:4c:ae:ae:f9:da:63:8f:31:47:8a:c8: 9a:00:3a:da:5e:ae:a3:0b:b2:b2:69:0d:0c:8e:a6:14:b5:09: 35:fd:45:88:60:19:73:1f:56:c9:45:18:32:27:b5:0d:ac:0c: 56:6c:05:04:22:9e:71:88:e4:89:c6:40:9d:2f:f7:36:27:68: 58:e3:73:a2:03:a8:cf:78:74:02:a7:cb:15:d3:7c:b6:e7:58: 45:ef:33:49:05:7f:8c:4e:20:bf:4c:b0:49:7b:e6:15:a6:9a: ed:5a:4d:e5:e6:fa:09:c5:d7:27:a7:cd:16:2a:40:19:d4:a0: 3f:9b:02:dd:2c:c8:b7:e8:ea:3a:8b:26:9d:df:0c:dd:40:89: 05:0d:43:83:b7:bd:03:0d:ef:f6:08:d9:e7:4b:8d:10:99:f1: 07:28:89:de:24:d3:1d:04:99:30:28:12:5b:60:13:91:9e:dd: 52:e8:57:b4:e8:a4:77:9f:d7:f8:b3:d6:5f:3a:cf:9a:3c:e2: 0d:2b:6d:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjUwODE5MDAxNzE0WhcNMjUwODI2MDAxNzE0WjAYMRYwFAYD VQQDEw02OGEzYzI4YS05MWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9SErmR96GI3v+KEHi4KUf0y0rTy0WNf4bvKVX4Cg5mftAkH5FeGOkGftXAUi XRf1qUs4ZupJudcjkLmvFmD31fLkQQTG8Bp8/qvE3qFv/ZZxB6mMqffmMoESG5qZ KfVuQpPr27qOE92PlWL/gIOfOYzItbhnMIvf/Z6WQ0m6cOWk7N2GIGAFJX4berzr mH7ephhaRfx9jJ87wUsQ0l0nXsrjzcDOylD4SYT5Gf2RjGa9pvsu9JUQUj4ODYcy 55asMt+DoB3PUD/jX+XO23UUl7FxZ6wVaeWuXdhWGrfK/1wQx0vmL64MrB+pslHI MqJnvckNEinxnPdu0+DXU0bxswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHtXZ0Y1 yhp+1+1BxwL8eklYQ3FfMB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkNFMy81RDc4OTlGNDQwNTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtE aDVHUTNIRi1OTFROaUMyZ2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEMzUmRsMjKRUuYu+pNfTQg1rE3fr6FdBlA/SYdkO2hCPxMORlBVDv h1Tj4AGbH1hovOnJTe5ENXS6QsinTK6u+dpjjzFHisiaADraXq6jC7KyaQ0MjqYU tQk1/UWIYBlzH1bJRRgyJ7UNrAxWbAUEIp5xiOSJxkCdL/c2J2hY43OiA6jPeHQC p8sV03y251hF7zNJBX+MTiC/TLBJe+YVpprtWk3l5voJxdcnp80WKkAZ1KA/mwLd LMi36Oo6iyad3wzdQIkFDUODt70DDe/2CNnnS40QmfEHKIneJNMdBJkwKBJbYBOR nt1S6Fe06KR3n9f4s9ZfOs+aPOINK20w -----END CERTIFICATE-----Generated at Tue Aug 19 22:38:27 2025 by rpki-client