$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft File: 64P0iA8jV15XUXhcbgqyvgskm8M.mft (raw, json) Hash identifier: RRoREAp0sxYQIKDYQ3nzVo7tKL3jKj1huC+Q23t1iVk= Subject key identifier: 60:83:AA:41:D0:C9:B0:D0:92:A4:CA:EB:40:A0:41:FD:ED:86:B1:17 Authority key identifier: EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3 Certificate issuer: /CN=A917C0F3/serialNumber=EB83F4880F23575E5751785C6E0AB2BE0B249BC3 Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft Manifest number: 7A Signing time: Fri 05 Sep 2025 07:13:55 +0000 Manifest this update: Fri 05 Sep 2025 07:13:55 +0000 Manifest next update: Fri 12 Sep 2025 07:13:55 +0000 Files and hashes: 1: 64P0iA8jV15XUXhcbgqyvgskm8M.crl (hash: xhY8QJ0J4ZYcS9H3gIWrF8icxhaanMIgl0qqPqLEPKU=) 2: 028452F0D0BA11EFA8B5A526C4F9AE02.roa (hash: IREGMcYzyBbo6wcvGexVHMAjLf7W6LD1j2SfUrLribg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:13:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F3, serialNumber=EB83F4880F23575E5751785C6E0AB2BE0B249BC3 Validity Not Before: Sep 5 07:13:55 2025 GMT Not After : Sep 12 07:13:55 2025 GMT Subject: CN=68ba8db3-a917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5f:c0:7c:fa:40:d5:b1:bb:a8:81:8f:7b:80: 53:38:2a:38:9c:8b:38:02:47:ed:5c:ea:65:30:d1: 61:46:16:4f:3e:24:0e:27:3d:31:2f:11:33:92:d8: d4:a5:7b:58:7f:79:d0:c6:ff:77:e8:09:f4:6f:f4: 9f:ac:98:bc:a8:36:de:fe:12:ed:4f:fb:7e:68:ae: 5f:3e:d4:88:16:c2:23:fb:82:2c:ce:e1:7e:57:7c: 5f:cc:78:5e:a6:e0:dc:21:49:ec:20:5b:e4:d7:f7: 38:fe:2e:51:35:61:4c:f8:31:19:b9:1c:15:00:84: 9b:63:d0:70:09:39:21:1d:de:8c:07:39:f4:57:11: 86:47:ef:69:4d:c8:64:b4:cd:14:04:cf:d7:f1:7a: 38:96:2c:48:4b:25:b9:03:be:5e:0f:08:19:5b:82: c4:39:49:61:43:4a:e5:15:d2:38:2f:b6:8b:78:9b: 37:91:85:f3:3a:10:5d:db:bf:f9:b9:f7:43:91:dc: 36:03:3e:18:8d:ab:b9:e6:af:62:43:10:b9:f9:92: 33:de:b4:16:33:23:d5:8e:36:21:ad:90:d8:26:e9: dc:ac:90:3b:8a:80:74:ac:06:af:40:77:e2:4b:97: 3f:85:36:3d:71:97:b0:01:d7:e6:f0:6a:80:80:d5: 7b:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:83:AA:41:D0:C9:B0:D0:92:A4:CA:EB:40:A0:41:FD:ED:86:B1:17 X509v3 Authority Key Identifier: keyid:EB:83:F4:88:0F:23:57:5E:57:51:78:5C:6E:0A:B2:BE:0B:24:9B:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/64P0iA8jV15XUXhcbgqyvgskm8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F3/58FE74AED0B911EFA0848825C4F9AE02/64P0iA8jV15XUXhcbgqyvgskm8M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:b8:00:73:6c:03:2c:c7:ec:af:51:1e:1a:d7:32:68:73:d8: d5:e9:a3:5d:1a:3b:a0:68:3f:e0:5a:b6:9b:fe:46:c8:d0:f7: 42:f2:36:6d:63:99:63:70:08:5a:64:8d:22:96:c3:6a:11:fd: 87:8e:47:cc:6d:6e:47:72:80:43:a9:6c:fd:4d:fd:3e:bf:37: 35:11:26:f2:1a:f5:fd:42:65:f9:4a:f3:e9:92:1a:3e:24:a8: 1b:c5:cc:f4:23:f3:e0:e5:55:f4:13:a0:49:c2:cb:d1:50:37: 6c:9c:79:4e:0e:a1:5f:d5:99:83:2c:16:02:cc:e2:dd:92:b9: 3f:ec:18:6c:9d:d7:42:60:b3:01:ec:c9:d3:ec:2d:98:34:1d: 9d:b0:3c:ce:32:86:19:3a:9a:99:44:4c:6e:47:78:c4:dc:b9: d5:93:10:a7:64:06:2e:5f:c2:12:76:d9:86:8c:fe:ec:5e:fa: 62:60:46:6e:a5:28:d4:95:17:1a:47:f3:da:bc:15:64:da:bc: 51:3b:ff:01:f9:d6:d7:d7:ce:af:00:64:54:f4:db:de:49:01: 61:b9:48:5f:64:fa:a2:59:f4:ce:4f:2a:03:fd:6b:71:fc:f2: f4:a7:c4:83:f4:6d:01:1e:05:9c:49:fe:97:9e:4f:d9:fa:93: 32:52:77:7d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzBGMzExMC8GA1UEBRMoRUI4M0Y0ODgwRjIzNTc1RTU3NTE3ODVDNkUwQUIyQkUw QjI0OUJDMzAeFw0yNTA5MDUwNzEzNTVaFw0yNTA5MTIwNzEzNTVaMBgxFjAUBgNV BAMTDTY4YmE4ZGIzLWE5MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpX8B8+kDVsbuogY97gFM4KjicizgCR+1c6mUw0WFGFk8+JA4nPTEvETOS2NSl e1h/edDG/3foCfRv9J+smLyoNt7+Eu1P+35orl8+1IgWwiP7gizO4X5XfF/MeF6m 4NwhSewgW+TX9zj+LlE1YUz4MRm5HBUAhJtj0HAJOSEd3owHOfRXEYZH72lNyGS0 zRQEz9fxejiWLEhLJbkDvl4PCBlbgsQ5SWFDSuUV0jgvtot4mzeRhfM6EF3bv/m5 90OR3DYDPhiNq7nmr2JDELn5kjPetBYzI9WONiGtkNgm6dyskDuKgHSsBq9Ad+JL lz+FNj1xl7AB1+bwaoCA1XshAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYIOqQdDJ sNCSpMrrQKBB/e2GsRcwHwYDVR0jBBgwFoAU64P0iA8jV15XUXhcbgqyvgskm8Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMEYzLzU4RkU3NEFFRDBC OTExRUZBMDg0ODgyNUM0RjlBRTAyLzY0UDBpQThqVjE1WFVYaGNiZ3F5dmdza204 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNjRQMGlBOGpWMTVYVVhoY2JncXl2Z3NrbThNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdD MEYzLzU4RkU3NEFFRDBCOTExRUZBMDg0ODgyNUM0RjlBRTAyLzY0UDBpQThqVjE1 WFVYaGNiZ3F5dmdza204TS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACu4AHNsAyzH7K9RHhrXMmhz2NXpo10aO6BoP+Batpv+RsjQ90LyNm1j mWNwCFpkjSKWw2oR/YeOR8xtbkdygEOpbP1N/T6/NzURJvIa9f1CZflK8+mSGj4k qBvFzPQj8+DlVfQToEnCy9FQN2yceU4OoV/VmYMsFgLM4t2SuT/sGGyd10JgswHs ydPsLZg0HZ2wPM4yhhk6mplETG5HeMTcudWTEKdkBi5fwhJ22YaM/uxe+mJgRm6l KNSVFxpH89q8FWTavFE7/wH51tfXzq8AZFT0295JAWG5SF9k+qJZ9M5PKgP9a3H8 8vSnxIP0bQEeBZxJ/peeT9n6kzJSd30= -----END CERTIFICATE-----Generated at Sat Sep 6 21:10:11 2025 by rpki-client