$ rpki-client -vvf rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft File: pN7tlZPlkTA6mwOYBh_o71GGZco.mft (raw, json) Hash identifier: 71N+HpCMc0cKwrW5KUsIfm8dYpm6yvE2+9qbUev8pRI= Subject key identifier: E0:78:10:37:08:D6:77:1D:5D:60:19:9A:CC:D0:68:22:76:4A:0B:70 Authority key identifier: A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA Certificate issuer: /CN=A918CABF/serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Certificate serial: 016A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft Manifest number: 0167 Signing time: Tue 02 Sep 2025 19:28:00 +0000 Manifest this update: Tue 02 Sep 2025 19:27:59 +0000 Manifest next update: Tue 09 Sep 2025 19:27:59 +0000 Files and hashes: 1: pN7tlZPlkTA6mwOYBh_o71GGZco.crl (hash: a/g/mOGIXnC0SG/HyFHNsj/8zMxbOD+MyhN1kjdFXOQ=) 2: E12607CE6F0411EEA5298939C4F9AE02.roa (hash: 8l049HuRfYTZKVjmyHEuH/syy1lOm3iSGmRbwY8PSnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 19:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 362 (0x16a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918CABF, serialNumber=A4DEED9593E591303A9B0398061FE8EF518665CA Validity Not Before: Sep 2 19:27:59 2025 GMT Not After : Sep 9 19:27:59 2025 GMT Subject: CN=68b74540-b17c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9b:a2:43:28:04:10:95:6a:1a:7e:80:e5:1c: e1:6b:9d:54:6b:ea:87:a7:55:99:ec:11:ee:18:4c: 24:79:d6:44:d5:64:0b:7b:74:c7:f3:d4:44:db:42: f4:52:c2:5a:62:f5:c4:55:7b:8f:06:47:f2:4b:92: 4c:26:39:f0:81:90:c5:21:f6:ee:99:3d:56:1d:7c: 93:bd:68:3f:05:31:ef:fa:df:16:af:e4:14:7b:96: 7f:db:76:ab:f5:bd:0b:4d:15:6b:47:ce:de:53:a6: b8:ae:73:16:1b:6d:67:d0:3f:c4:51:d1:4e:1a:51: 4d:ce:93:0e:14:79:b2:58:12:c4:9d:79:e9:58:69: 1f:2d:5c:2c:e5:ec:8e:20:18:4b:e5:44:3a:77:f7: 97:ff:7e:cb:a8:3e:20:63:30:75:72:41:96:54:5e: 32:a3:0e:8f:ba:78:5a:f6:17:4c:d9:eb:19:fb:e3: 9f:fe:d1:97:c6:a1:b4:d1:de:88:12:bd:a5:84:31: b3:a3:09:6b:15:61:a0:f7:e3:b2:dd:97:2c:3f:4d: 11:14:b2:b3:29:db:b3:2a:4f:56:a8:9f:8a:90:36: 63:02:10:c1:3a:9c:2b:82:a2:3b:61:4e:27:57:fd: 5a:42:e8:df:d0:9a:20:36:41:8b:8a:dd:48:e2:c8: e4:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:78:10:37:08:D6:77:1D:5D:60:19:9A:CC:D0:68:22:76:4A:0B:70 X509v3 Authority Key Identifier: keyid:A4:DE:ED:95:93:E5:91:30:3A:9B:03:98:06:1F:E8:EF:51:86:65:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pN7tlZPlkTA6mwOYBh_o71GGZco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918CABF/189195AC682A11EE8A9EB82FC4F9AE02/pN7tlZPlkTA6mwOYBh_o71GGZco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:cb:06:db:89:b2:31:13:71:50:5f:e9:dd:d9:93:f9:98:89: 4c:7f:ce:3c:6a:25:5b:46:42:37:ef:22:9c:de:5c:21:fd:93: ad:87:d7:dc:ef:3a:7f:c2:89:dc:c1:57:c0:bf:33:3d:89:af: a7:28:d0:e5:b9:83:f2:1e:6a:49:72:c7:c9:f9:29:c3:07:72: e0:7c:65:7b:96:9a:cb:bb:e0:88:d2:37:8a:66:a9:79:14:95: bb:31:69:8f:79:16:30:6d:ab:cb:4b:30:f4:76:3e:0e:8b:42: 3d:6f:fe:9c:34:75:ae:18:c3:c2:f3:85:6a:34:a0:4e:7d:bb: bb:7f:e6:b8:d7:64:da:93:a7:e6:2b:7e:a9:8c:65:cf:df:e6: a6:50:77:ac:e3:07:93:c3:a8:77:9c:44:99:cc:9f:c0:6d:a1: 84:5c:e3:7c:9c:9d:8b:12:8f:8d:04:81:cd:94:b8:0c:b6:b7: 32:bf:94:ab:3c:b9:e1:00:6a:61:ed:f9:05:bd:e5:07:ee:c5: b5:8f:cc:31:c4:90:f2:5e:18:0c:14:97:b2:22:0a:2f:e8:4b: 4a:98:e2:61:69:e7:6b:95:83:21:eb:8d:39:b8:97:24:3e:e8: c4:7c:75:ce:10:a3:a0:6f:09:ed:eb:86:87:32:6f:1f:f2:31: 63:be:ab:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OENBQkYxMTAvBgNVBAUTKEE0REVFRDk1OTNFNTkxMzAzQTlCMDM5ODA2MUZFOEVG NTE4NjY1Q0EwHhcNMjUwOTAyMTkyNzU5WhcNMjUwOTA5MTkyNzU5WjAYMRYwFAYD VQQDEw02OGI3NDU0MC1iMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5uiQygEEJVqGn6A5Rzha51Ua+qHp1WZ7BHuGEwkedZE1WQLe3TH89RE20L0 UsJaYvXEVXuPBkfyS5JMJjnwgZDFIfbumT1WHXyTvWg/BTHv+t8Wr+QUe5Z/23ar 9b0LTRVrR87eU6a4rnMWG21n0D/EUdFOGlFNzpMOFHmyWBLEnXnpWGkfLVws5eyO IBhL5UQ6d/eX/37LqD4gYzB1ckGWVF4yow6Punha9hdM2esZ++Of/tGXxqG00d6I Er2lhDGzowlrFWGg9+Oy3ZcsP00RFLKzKduzKk9WqJ+KkDZjAhDBOpwrgqI7YU4n V/1aQujf0JogNkGLit1I4sjkuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOB4EDcI 1ncdXWAZmszQaCJ2SgtwMB8GA1UdIwQYMBaAFKTe7ZWT5ZEwOpsDmAYf6O9RhmXK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Q0FCRi8xODkxOTVBQzY4 MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtUQTZtd09ZQmhfbzcxR0da Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BON3RsWlBsa1RBNm13T1lCaF9vNzFHR1pjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Q0FCRi8xODkxOTVBQzY4MkExMUVFOEE5RUI4MkZDNEY5QUUwMi9wTjd0bFpQbGtU QTZtd09ZQmhfbzcxR0daY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCywbbibIxE3FQX+nd2ZP5mIlMf848aiVbRkI37yKc3lwh/ZOth9fc 7zp/woncwVfAvzM9ia+nKNDluYPyHmpJcsfJ+SnDB3LgfGV7lprLu+CI0jeKZql5 FJW7MWmPeRYwbavLSzD0dj4Oi0I9b/6cNHWuGMPC84VqNKBOfbu7f+a412Tak6fm K36pjGXP3+amUHes4weTw6h3nESZzJ/AbaGEXON8nJ2LEo+NBIHNlLgMtrcyv5Sr PLnhAGph7fkFveUH7sW1j8wxxJDyXhgMFJeyIgov6EtKmOJhaedrlYMh6405uJck PujEfHXOEKOgbwnt64aHMm8f8jFjvqv1 -----END CERTIFICATE-----Generated at Thu Sep 4 14:01:35 2025 by rpki-client