$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: +3tLRfSMAkxonCdfOQG9PSdmXzBjXv6HlAmHA7zxt18= Subject key identifier: 3A:44:2A:6A:63:76:31:23:42:BC:80:09:86:53:10:27:64:DF:D6:F6 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 21F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 21D7 Signing time: Fri 22 Aug 2025 15:56:30 +0000 Manifest this update: Fri 22 Aug 2025 15:56:30 +0000 Manifest next update: Fri 29 Aug 2025 15:56:30 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: kluPB0t2IoCFJnBwd9DsTU4QJfA0Num6GUiwhM6MUK0=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8696 (0x21f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Aug 22 15:56:30 2025 GMT Not After : Aug 29 15:56:30 2025 GMT Subject: CN=68a8932e-3290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:61:59:b6:09:b1:56:ac:0c:c7:7f:0e:41:5a: 76:33:c1:af:83:17:d7:2c:aa:a5:57:00:74:a3:d7: 68:87:f0:e3:e0:f8:d4:70:c3:3f:6a:2d:5c:74:c3: a4:83:14:f3:b6:7d:16:a7:66:66:b2:0d:a9:6a:18: b9:9e:26:5c:3c:b7:3d:37:2f:31:8c:79:07:cd:fe: 38:4b:b1:ca:07:9c:bd:79:d0:f9:3a:2b:82:8f:c8: 99:b8:34:5c:4a:4a:8c:12:52:93:7d:06:c4:a8:0e: 62:c6:25:94:20:78:e9:d8:e4:6e:ad:9b:8f:5d:56: 4c:92:35:3c:8a:d2:ce:51:69:20:82:5c:11:db:65: 7d:9b:dc:03:cf:7a:c6:81:56:19:f5:62:de:11:11: 3e:aa:7d:05:e0:d7:25:3f:3b:17:ae:e4:93:bf:e1: 22:c2:d3:b7:09:a7:20:01:3a:9c:43:b4:1f:50:42: c9:8a:02:18:39:03:c1:f3:4d:69:25:16:90:d1:7e: 69:7d:5e:35:cc:12:5c:7c:66:b7:09:e1:62:04:fd: 8f:b2:2d:a5:b2:45:d4:8b:c8:65:9f:96:42:10:a7: 0a:24:9f:aa:f9:17:9e:ed:6d:42:66:74:4b:52:4f: d2:40:c2:8f:95:6e:de:85:c3:ff:fa:b6:23:52:0b: 3b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:44:2A:6A:63:76:31:23:42:BC:80:09:86:53:10:27:64:DF:D6:F6 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:75:80:40:05:89:b4:ef:68:3d:9b:76:83:32:b1:38:c0:fd: 63:2f:f9:2e:1f:d8:43:cc:12:6d:de:12:be:1c:a7:65:83:18: 93:1a:f2:dd:01:04:e5:a1:7b:43:dc:92:98:e6:c7:c5:e9:d9: 21:9c:87:77:fe:7c:34:08:c4:19:24:c3:2c:ab:cd:74:55:32: ce:2c:da:99:59:0a:c6:1e:a5:9f:d8:e6:19:a4:2a:6c:14:1d: c3:c5:18:71:71:78:ac:7e:fa:33:35:19:81:13:4c:7a:83:f9: 42:1f:5a:4d:e2:80:8b:60:f4:09:07:e6:9a:0c:9b:f5:69:ca: d3:d5:45:d4:c8:1c:34:71:fb:de:0e:ec:5c:78:ba:18:a0:7a: 57:18:31:f3:75:c6:80:21:2b:ad:ac:2f:5a:8d:46:6f:9a:a0: 86:34:a0:f2:4d:b6:9e:ea:fd:f9:45:12:7c:5f:d2:13:2d:7c: be:a2:4a:d2:41:92:1c:f4:bf:cb:58:e0:81:74:d7:49:55:eb: da:08:84:46:b1:e1:36:f9:1f:4e:ab:96:8b:39:39:ad:e5:89: 36:0b:db:a5:c2:0c:b7:9f:3b:bb:73:ea:1e:7f:b4:28:37:e6: a5:1f:cc:ec:1d:67:62:6e:13:f0:10:5c:65:26:13:8b:7b:6f: 0d:a4:d4:f2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUwODIyMTU1NjMwWhcNMjUwODI5MTU1NjMwWjAYMRYwFAYD VQQDEw02OGE4OTMyZS0zMjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8WFZtgmxVqwMx38OQVp2M8GvgxfXLKqlVwB0o9doh/Dj4PjUcMM/ai1cdMOk gxTztn0Wp2Zmsg2pahi5niZcPLc9Ny8xjHkHzf44S7HKB5y9edD5OiuCj8iZuDRc SkqMElKTfQbEqA5ixiWUIHjp2ORurZuPXVZMkjU8itLOUWkgglwR22V9m9wDz3rG gVYZ9WLeERE+qn0F4NclPzsXruSTv+EiwtO3CacgATqcQ7QfUELJigIYOQPB801p JRaQ0X5pfV41zBJcfGa3CeFiBP2Psi2lskXUi8hln5ZCEKcKJJ+q+Ree7W1CZnRL Uk/SQMKPlW7ehcP/+rYjUgs7NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDpEKmpj djEjQryACYZTECdk39b2MB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAdYBABYm072g9m3aDMrE4wP1jL/kuH9hDzBJt3hK+HKdlgxiTGvLd AQTloXtD3JKY5sfF6dkhnId3/nw0CMQZJMMsq810VTLOLNqZWQrGHqWf2OYZpCps FB3DxRhxcXisfvozNRmBE0x6g/lCH1pN4oCLYPQJB+aaDJv1acrT1UXUyBw0cfve DuxceLoYoHpXGDHzdcaAISutrC9ajUZvmqCGNKDyTbae6v35RRJ8X9ITLXy+okrS QZIc9L/LWOCBdNdJVevaCIRGseE2+R9Oq5aLOTmt5Yk2C9ulwgy3nzu7c+oef7Qo N+alH8zsHWdibhPwEFxlJhOLe28NpNTy -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:12 2025 by rpki-client