$ rpki-client -vvf rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft File: 0rolH4MRa7tToMiSMQ9P963v_es.mft (raw, json) Hash identifier: M3hvah90tTuFyRpQsHKrWd7fmMuqZ9Y2qDj7jm5c2Vo= Subject key identifier: BC:00:EA:06:84:47:F5:52:19:BF:38:46:DC:7C:0C:95:3C:9F:10:18 Authority key identifier: D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB Certificate issuer: /CN=A9175B42/serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Certificate serial: 3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft Manifest number: 39 Signing time: Thu 21 Aug 2025 07:45:35 +0000 Manifest this update: Thu 21 Aug 2025 07:45:35 +0000 Manifest next update: Thu 28 Aug 2025 07:45:35 +0000 Files and hashes: 1: 0rolH4MRa7tToMiSMQ9P963v_es.crl (hash: K7aYBkQ3NeK/3nWWpdOpsHAgoPJROuYnrc0HY3iE5Es=) 2: EABFF866266511F0A3060E66C4F9AE02.roa (hash: vMnU2L7BbF2F7HptBFQtmVOzrhuM46aGtKFKK+TOQcQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 07:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175B42, serialNumber=D2BA251F83116BBB53A0C892310F4FF7ADEFFDEB Validity Not Before: Aug 21 07:45:35 2025 GMT Not After : Aug 28 07:45:35 2025 GMT Subject: CN=68a6ce9f-4c7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:26:66:c1:b2:11:94:6a:67:72:cc:53:3f:5d: 4c:2a:35:b7:0b:08:25:57:95:b6:db:4d:a9:7f:b8: 02:13:f4:1a:34:39:e3:c3:a3:83:9d:fc:39:11:a5: 12:de:35:67:2d:bf:06:3c:55:43:84:4f:bd:aa:b3: 16:0d:81:3e:60:df:3f:88:3b:76:d6:d2:9a:b8:e8: da:50:3b:da:d7:41:c8:4c:c1:0c:dd:14:97:a1:93: fd:dc:e8:30:8b:ed:94:d1:dc:5a:11:b2:00:62:17: 6b:31:5e:4c:ca:76:c3:44:48:d3:86:9c:1c:45:d6: e3:ff:05:64:b9:49:b3:c3:22:3f:c3:62:48:bd:61: 78:a5:df:37:47:e4:ef:06:66:e7:9b:41:54:f6:c4: 58:df:8a:ae:5e:46:40:a3:e1:a1:08:5f:97:29:b7: c9:25:ac:75:00:86:d0:77:9b:a9:1b:a5:1e:9a:df: b2:28:a6:d4:22:07:4e:55:af:e9:79:43:d4:07:a9: 93:95:44:ce:c8:66:8a:2b:10:0b:fc:82:12:3c:a6: 70:ec:61:6b:12:9f:bc:0d:a5:e2:30:7d:6a:27:9c: e9:30:16:1a:1a:55:1c:5c:ec:31:3d:59:2a:72:ad: da:7f:a3:6b:4f:f5:99:fa:c5:f3:75:40:d4:e4:58: ba:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:00:EA:06:84:47:F5:52:19:BF:38:46:DC:7C:0C:95:3C:9F:10:18 X509v3 Authority Key Identifier: keyid:D2:BA:25:1F:83:11:6B:BB:53:A0:C8:92:31:0F:4F:F7:AD:EF:FD:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0rolH4MRa7tToMiSMQ9P963v_es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175B42/48FEB1C0266511F08015AB62C4F9AE02/0rolH4MRa7tToMiSMQ9P963v_es.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:3e:3f:ac:18:a1:a6:6d:65:d1:7e:2b:3c:19:3d:de:6a:7f: 20:31:fe:70:23:d6:44:ab:bf:a7:34:0d:34:0a:50:77:79:8a: c1:3d:77:9c:4a:53:c6:3e:88:2b:96:96:01:95:7d:63:70:e0: 4a:15:27:16:21:c5:0f:a2:3b:50:b9:8d:c0:24:f7:85:c4:b0: 7a:85:27:d2:31:73:5f:22:66:de:99:00:41:8b:ab:8b:1a:ec: 53:7b:64:68:f0:de:ee:57:f3:03:85:9d:16:40:be:d6:1c:86: 01:e7:24:cf:61:b8:7d:5e:18:b1:7a:f5:16:5f:79:ad:5a:36: c6:a7:e4:43:83:3c:6f:dc:dc:e5:e9:3e:60:9c:68:6a:11:4a: 78:47:0f:05:fa:49:0a:1b:5a:9c:68:90:7f:53:b9:58:91:50: bd:c9:41:30:42:58:0d:3f:5f:0a:6a:85:ac:da:dd:73:4d:9c: 2c:8e:4f:3e:43:a5:7a:ef:af:6e:b8:cf:aa:85:f3:38:a4:1c: 2b:d3:d5:cd:95:2a:c8:ad:1f:7b:b7:67:82:fb:77:a5:f3:39: 8e:50:c2:ff:58:28:a9:e5:01:39:fe:69:d7:59:04:27:36:f6: 3e:21:5d:5b:96:79:9a:50:0d:bf:61:ef:6c:ff:1b:cf:bc:86: aa:2e:86:37 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NUI0MjExMC8GA1UEBRMoRDJCQTI1MUY4MzExNkJCQjUzQTBDODkyMzEwRjRGRjdB REVGRkRFQjAeFw0yNTA4MjEwNzQ1MzVaFw0yNTA4MjgwNzQ1MzVaMBgxFjAUBgNV BAMTDTY4YTZjZTlmLTRjN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNJmbBshGUamdyzFM/XUwqNbcLCCVXlbbbTal/uAIT9Bo0OePDo4Od/DkRpRLe NWctvwY8VUOET72qsxYNgT5g3z+IO3bW0pq46NpQO9rXQchMwQzdFJehk/3c6DCL 7ZTR3FoRsgBiF2sxXkzKdsNESNOGnBxF1uP/BWS5SbPDIj/DYki9YXil3zdH5O8G ZuebQVT2xFjfiq5eRkCj4aEIX5cpt8klrHUAhtB3m6kbpR6a37IoptQiB05Vr+l5 Q9QHqZOVRM7IZoorEAv8ghI8pnDsYWsSn7wNpeIwfWonnOkwFhoaVRxc7DE9WSpy rdp/o2tP9Zn6xfN1QNTkWLqXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUvADqBoRH 9VIZvzhG3HwMlTyfEBgwHwYDVR0jBBgwFoAU0rolH4MRa7tToMiSMQ9P963v/esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1QjQyLzQ4RkVCMUMwMjY2 NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0VG9NaVNNUTlQOTYzdl9l cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMHJvbEg0TVJhN3RUb01pU01ROVA5NjN2X2VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1 QjQyLzQ4RkVCMUMwMjY2NTExRjA4MDE1QUI2MkM0RjlBRTAyLzByb2xINE1SYTd0 VG9NaVNNUTlQOTYzdl9lcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG0+P6wYoaZtZdF+KzwZPd5qfyAx/nAj1kSrv6c0DTQKUHd5isE9d5xK U8Y+iCuWlgGVfWNw4EoVJxYhxQ+iO1C5jcAk94XEsHqFJ9Ixc18iZt6ZAEGLq4sa 7FN7ZGjw3u5X8wOFnRZAvtYchgHnJM9huH1eGLF69RZfea1aNsan5EODPG/c3OXp PmCcaGoRSnhHDwX6SQobWpxokH9TuViRUL3JQTBCWA0/Xwpqhaza3XNNnCyOTz5D pXrvr264z6qF8zikHCvT1c2VKsitH3u3Z4L7d6XzOY5Qwv9YKKnlATn+addZBCc2 9j4hXVuWeZpQDb9h72z/G8+8hqouhjc= -----END CERTIFICATE-----Generated at Fri Aug 22 16:18:18 2025 by rpki-client