$ rpki-client -vvf rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft File: ID0eLahSvltkOpm-9WTXdL3cx_Q.mft (raw, json) Hash identifier: vfAtj2b/vXQGSFe4JM1GP1NPyuLSRsx01WHjJ4qM9QI= Subject key identifier: BC:9F:B2:7D:C9:71:D8:84:79:51:42:52:97:3C:5B:9E:48:2E:8F:47 Authority key identifier: 20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 Certificate issuer: /CN=A917E832/serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Certificate serial: 0AF4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft Manifest number: 0AED Signing time: Sun 24 Aug 2025 19:22:52 +0000 Manifest this update: Sun 24 Aug 2025 19:22:52 +0000 Manifest next update: Sun 31 Aug 2025 19:22:52 +0000 Files and hashes: 1: ID0eLahSvltkOpm-9WTXdL3cx_Q.crl (hash: OOus0i8wqz4tivL8PoOdwr009/RuaUGJEVu7shfLJjw=) 2: E869880C500511EA98307A59C4F9AE02.roa (hash: vj3M9GWIecNQbzYctkTLvK5haUmE73bb2B+bBqSBJ9A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2804 (0xaf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E832, serialNumber=203D1E2DA852BE5B643A99BEF564D774BDDCC7F4 Validity Not Before: Aug 24 19:22:52 2025 GMT Not After : Aug 31 19:22:52 2025 GMT Subject: CN=68ab668c-db18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d3:b1:99:a3:59:dc:5a:7f:15:d3:cf:8c:9f: 39:22:f6:95:40:9a:4d:d2:29:13:48:f8:72:59:55: 6c:85:27:d0:5a:53:78:42:bc:e8:b7:35:3a:ee:ff: ca:68:17:78:65:f4:b6:1b:11:91:cc:a9:bf:03:74: bb:f5:41:be:93:b0:59:e4:0d:93:6c:62:2a:cd:4a: 3d:bb:4c:b3:8a:85:07:4c:63:b4:1c:7e:e5:19:e9: 2f:30:8c:b7:ee:f8:64:f4:d0:1b:c1:76:7e:90:5e: 61:cf:9f:57:51:0a:26:fa:49:62:89:7d:f9:83:34: e4:ce:82:e7:27:d2:e0:cc:77:c5:72:04:a7:21:9a: f7:4b:a1:9c:28:34:2e:39:44:7a:50:41:2e:89:71: 82:7d:95:6f:19:7f:f6:58:25:48:05:4d:e7:dc:6d: c6:05:5d:67:b2:96:7d:cd:21:e1:2e:60:fb:00:43: e0:a1:40:56:d5:66:89:20:0f:91:be:e6:80:02:cd: f2:0f:09:58:82:ee:05:56:78:e0:a2:f2:6a:61:62: c9:48:ba:ac:3d:3a:ab:b1:1a:00:02:90:0a:c2:bc: cc:93:60:28:14:b3:ee:51:e2:b8:06:83:5a:19:60: 2c:c2:66:2c:0b:24:ff:b6:62:f2:79:07:9c:d8:62: 08:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:9F:B2:7D:C9:71:D8:84:79:51:42:52:97:3C:5B:9E:48:2E:8F:47 X509v3 Authority Key Identifier: keyid:20:3D:1E:2D:A8:52:BE:5B:64:3A:99:BE:F5:64:D7:74:BD:DC:C7:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ID0eLahSvltkOpm-9WTXdL3cx_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E832/3B47108C500411EAA6D93054C4F9AE02/ID0eLahSvltkOpm-9WTXdL3cx_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ff:e6:37:4e:3d:ed:59:3f:ed:c4:6b:a5:ee:47:07:43:90: 38:8f:60:e0:2a:89:eb:c5:bb:38:2d:0d:7c:01:f5:e2:53:10: 50:02:6c:10:5a:33:f3:35:ca:d9:51:1d:07:68:36:07:47:e6: c2:38:8b:63:6f:e0:fc:ac:dc:f1:d3:db:70:04:cb:e7:09:6a: df:ca:37:41:05:fd:50:30:2b:16:cc:3f:7b:b2:a9:5d:9a:b0: 7e:73:0d:0b:aa:34:c4:b1:0a:df:af:d7:8e:2d:3c:88:87:1a: c6:71:4b:05:0d:0f:e3:fa:d4:fe:dd:0b:19:12:5d:64:c6:92: f8:1a:15:0c:d1:fe:e8:1c:a9:1c:44:71:5d:a6:83:96:fe:97: cc:8b:50:4b:5a:9f:1d:46:47:69:8f:b3:13:4a:86:4e:09:69: fd:bb:1c:ef:a9:0d:eb:4e:c2:f2:b6:80:12:ac:86:c7:d5:7b: 7c:a1:ae:ee:52:d7:41:2e:82:f5:e0:3d:d6:a9:40:e1:1a:f6: 0b:43:6e:34:ce:28:74:c9:57:f6:a8:d4:7e:3f:09:a7:e7:9b: 06:b9:d5:36:0a:34:d2:ee:fd:4f:85:88:9c:9f:11:b1:62:56: 80:fd:49:88:d5:78:17:81:ab:f3:7c:fd:a9:c7:cb:ad:2e:4c: f4:d3:04:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U4MzIxMTAvBgNVBAUTKDIwM0QxRTJEQTg1MkJFNUI2NDNBOTlCRUY1NjRENzc0 QkREQ0M3RjQwHhcNMjUwODI0MTkyMjUyWhcNMjUwODMxMTkyMjUyWjAYMRYwFAYD VQQDEw02OGFiNjY4Yy1kYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9OxmaNZ3Fp/FdPPjJ85IvaVQJpN0ikTSPhyWVVshSfQWlN4QrzotzU67v/K aBd4ZfS2GxGRzKm/A3S79UG+k7BZ5A2TbGIqzUo9u0yzioUHTGO0HH7lGekvMIy3 7vhk9NAbwXZ+kF5hz59XUQom+kliiX35gzTkzoLnJ9LgzHfFcgSnIZr3S6GcKDQu OUR6UEEuiXGCfZVvGX/2WCVIBU3n3G3GBV1nspZ9zSHhLmD7AEPgoUBW1WaJIA+R vuaAAs3yDwlYgu4FVnjgovJqYWLJSLqsPTqrsRoAApAKwrzMk2AoFLPuUeK4BoNa GWAswmYsCyT/tmLyeQec2GIIKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLyfsn3J cdiEeVFCUpc8W55ILo9HMB8GA1UdIwQYMBaAFCA9Hi2oUr5bZDqZvvVk13S93Mf0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTgzMi8zQjQ3MTA4QzUw MDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3ZsdGtPcG0tOVdUWGRMM2N4 X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lEMGVMYWhTdmx0a09wbS05V1RYZEwzY3hfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTgzMi8zQjQ3MTA4QzUwMDQxMUVBQTZEOTMwNTRDNEY5QUUwMi9JRDBlTGFoU3Zs dGtPcG0tOVdUWGRMM2N4X1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAN/+Y3Tj3tWT/txGul7kcHQ5A4j2DgKonrxbs4LQ18AfXiUxBQAmwQ WjPzNcrZUR0HaDYHR+bCOItjb+D8rNzx09twBMvnCWrfyjdBBf1QMCsWzD97sqld mrB+cw0LqjTEsQrfr9eOLTyIhxrGcUsFDQ/j+tT+3QsZEl1kxpL4GhUM0f7oHKkc RHFdpoOW/pfMi1BLWp8dRkdpj7MTSoZOCWn9uxzvqQ3rTsLytoASrIbH1Xt8oa7u UtdBLoL14D3WqUDhGvYLQ240zih0yVf2qNR+Pwmn55sGudU2CjTS7v1PhYicnxGx YlaA/UmI1XgXgavzfP2px8utLkz00wTL -----END CERTIFICATE-----Generated at Sun Aug 24 21:42:42 2025 by rpki-client