$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft File: AiMNlU5PPWqtRJXXTNs-4PKHygc.mft (raw, json) Hash identifier: TQch6xFsF6QdWtzlmlhgmPkJ8AbC4LotousWN6r6kZc= Subject key identifier: 95:1F:CD:55:0C:6C:6D:0D:AA:AE:72:48:2B:DA:6E:71:D9:99:93:72 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft Manifest number: 23C0 Signing time: Wed 20 Aug 2025 15:52:07 +0000 Manifest this update: Wed 20 Aug 2025 15:52:06 +0000 Manifest next update: Wed 27 Aug 2025 15:52:06 +0000 Files and hashes: 1: AiMNlU5PPWqtRJXXTNs-4PKHygc.crl (hash: XCFzE+83RpdPo+8hqe8LBkDzgZdwDKffiCEqf//MgXg=) 2: 32B76C00562411E79589C739C4F9AE02.roa (hash: kqhMnfAhDmR4IZ0Axmi5T1EoQ78FgGAVuc9AOLKd1P0=) 3: 7DBDA87C561A11E79F98831DC4F9AE02.roa (hash: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 15:52:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9199 (0x23ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Aug 20 15:52:06 2025 GMT Not After : Aug 27 15:52:06 2025 GMT Subject: CN=68a5ef26-bf3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e1:f5:fe:77:c5:84:24:a7:fd:0b:be:4d:c9: 7e:ab:f5:ad:25:b6:d5:a7:eb:a9:f8:7a:07:ee:a0: 06:db:d9:66:ff:52:51:a1:17:1f:89:91:1a:af:12: 1f:e1:44:3a:5c:a7:05:57:7a:65:2f:14:39:f8:7f: f4:63:f0:64:14:34:98:41:2a:bd:a3:a1:8c:0a:59: 9e:5c:c2:81:93:71:b4:2a:69:ef:e3:d1:76:17:a1: ed:da:31:33:4f:3e:bd:fd:5f:a0:d2:ef:6e:24:98: 7b:ed:38:7c:07:95:e7:8f:51:1a:ea:ee:1d:e0:05: bd:58:1f:12:c1:f7:41:9e:4e:1f:04:de:50:d8:af: 56:19:34:f6:a8:34:f9:b9:2f:fc:86:56:8e:33:0d: 05:da:46:1d:be:95:c8:2b:8c:df:94:01:da:8a:25: 52:98:25:9a:92:c1:6f:89:d7:db:2f:41:e1:e0:a8: b0:e4:d6:c9:2c:20:17:c3:63:90:94:24:c5:d7:0f: 71:8c:c0:a2:f6:a3:2e:9d:11:39:07:c8:f4:93:09: ca:a2:d3:13:5c:52:53:23:82:f8:49:b6:40:60:87: 5d:ee:e8:2c:96:79:94:0f:bd:fc:74:ba:53:ba:0a: 11:44:e6:ba:9f:5d:9d:06:a8:93:91:a6:28:ee:5e: c9:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:1F:CD:55:0C:6C:6D:0D:AA:AE:72:48:2B:DA:6E:71:D9:99:93:72 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:0e:a3:c5:17:f4:83:46:d7:a5:06:73:8b:65:36:5b:88:51: a1:76:db:f3:aa:e8:10:eb:68:7c:7b:7d:e7:8a:6d:bd:f2:7c: 9c:96:24:82:02:cf:d4:7b:66:48:8d:45:da:00:d8:4e:cf:1b: 51:91:9f:3c:51:f9:32:65:ed:40:c3:61:a9:fb:a9:c3:9f:1c: 18:ea:90:35:c8:45:bb:47:9f:d7:4a:10:62:f4:05:e2:b3:f9: 26:6b:5e:ed:d2:44:a9:e1:c3:ff:4d:0b:c0:ef:c7:a2:42:19: 89:97:66:5c:a5:fe:6c:0e:74:46:fc:ef:ce:23:43:f0:86:73: 29:8b:d0:6f:3b:a9:49:25:fd:fc:30:8a:64:fc:0f:9f:c4:71: 3b:55:7f:26:66:34:1d:4e:23:30:59:61:bd:30:fa:ac:34:6a: 8c:8f:6d:c7:df:9f:a0:03:a2:6d:79:64:43:d9:44:59:3e:33: 2f:ac:e7:8d:37:98:f6:63:96:02:a2:dd:28:76:0d:03:2c:48: ca:e1:af:a7:e6:61:3c:6c:f4:c9:8a:f3:e6:a5:cc:ac:8e:69: d0:85:c8:08:26:bd:1f:2c:de:86:c9:cb:30:ef:5b:f8:f9:31: 25:a5:82:2c:2d:69:90:15:de:9b:62:7b:73:90:d8:9b:16:f0: 48:39:fd:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICI+8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwODIwMTU1MjA2WhcNMjUwODI3MTU1MjA2WjAYMRYwFAYD VQQDEw02OGE1ZWYyNi1iZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+H1/nfFhCSn/Qu+Tcl+q/WtJbbVp+up+HoH7qAG29lm/1JRoRcfiZEarxIf 4UQ6XKcFV3plLxQ5+H/0Y/BkFDSYQSq9o6GMClmeXMKBk3G0Kmnv49F2F6Ht2jEz Tz69/V+g0u9uJJh77Th8B5Xnj1Ea6u4d4AW9WB8SwfdBnk4fBN5Q2K9WGTT2qDT5 uS/8hlaOMw0F2kYdvpXIK4zflAHaiiVSmCWaksFvidfbL0Hh4Kiw5NbJLCAXw2OQ lCTF1w9xjMCi9qMunRE5B8j0kwnKotMTXFJTI4L4SbZAYIdd7ugslnmUD738dLpT ugoRROa6n12dBqiTkaYo7l7JKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJUfzVUM bG0Nqq5ySCvabnHZmZNyMB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QjRDNi84REZFNjI4ODc4QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBX cXRSSlhYVE5zLTRQS0h5Z2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbDqPFF/SDRtelBnOLZTZbiFGhdtvzqugQ62h8e33nim298nycliSC As/Ue2ZIjUXaANhOzxtRkZ88UfkyZe1Aw2Gp+6nDnxwY6pA1yEW7R5/XShBi9AXi s/kma17t0kSp4cP/TQvA78eiQhmJl2Zcpf5sDnRG/O/OI0PwhnMpi9BvO6lJJf38 MIpk/A+fxHE7VX8mZjQdTiMwWWG9MPqsNGqMj23H35+gA6JteWRD2URZPjMvrOeN N5j2Y5YCot0odg0DLEjK4a+n5mE8bPTJivPmpcysjmnQhcgIJr0fLN6Gycsw71v4 +TElpYIsLWmQFd6bYntzkNibFvBIOf26 -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:09 2025 by rpki-client