$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft File: cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft (raw, json) Hash identifier: vNoeAYLX1yu1KvO5npcojV9ongQhoKNjdh6awJ/wA3A= Subject key identifier: 75:EF:EC:C0:67:B2:A4:F9:94:59:6B:DF:C7:21:2E:CA:36:0C:3D:C2 Authority key identifier: 70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 Certificate issuer: /CN=A9130F21/serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Certificate serial: 4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft Manifest number: 48 Signing time: Sat 23 Aug 2025 07:38:22 +0000 Manifest this update: Sat 23 Aug 2025 07:38:21 +0000 Manifest next update: Sat 30 Aug 2025 07:38:21 +0000 Files and hashes: 1: cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl (hash: hwp2lsNH3jx5IeUImHAeS8cT3wp55756qocUpYe/BPc=) 2: 42CFB44C141411F0BAD16274C4F9AE02.roa (hash: SIbGv61TK6nlTBlpPzTxiHyFUxN8Qwjf/RzPAJKF8+o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:38:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74 (0x4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F21, serialNumber=70D2601CB0D0FA4F9C5F0E0286D8B6AFD9235A06 Validity Not Before: Aug 23 07:38:21 2025 GMT Not After : Aug 30 07:38:21 2025 GMT Subject: CN=68a96fee-4820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e1:9c:18:4c:b9:a3:66:03:7e:b5:74:34:17: 1c:f4:3f:68:56:61:7b:5c:6c:c0:af:55:42:26:41: b9:e5:db:0a:75:7d:d7:73:f7:7e:e0:cc:f5:99:14: a4:82:9a:be:10:8e:d3:74:e1:1f:a8:72:cb:ff:9c: 98:28:24:4e:dc:08:56:b2:fe:6b:c9:51:9d:4e:be: 93:93:3a:35:3e:e6:eb:af:76:ae:a9:73:14:1d:16: a2:b2:9c:5d:24:3f:ee:73:58:e1:88:9e:f0:6a:82: a4:9e:7f:4d:99:89:d9:07:ef:85:07:88:3d:b3:f0: 55:fd:ff:0b:e4:d1:9c:42:db:4e:ef:61:da:31:a7: 79:3e:8f:dd:57:a7:69:a4:62:42:ce:e5:02:1b:9f: 6e:be:85:4b:45:99:5c:3c:52:79:a4:bb:f2:1c:10: 9e:0a:0e:bd:03:5c:90:ac:1d:85:f7:98:43:38:ff: 0f:7c:62:6b:d3:70:0f:3e:f8:00:2a:3d:bb:66:34: c3:1b:15:3b:83:0f:6c:05:ae:d8:f0:bc:d8:a4:28: 6b:76:be:07:5d:ee:12:f6:94:4b:7a:2a:54:4c:e7: f7:6f:25:2d:54:7f:3f:c5:ec:fd:ad:56:b4:ba:02: 53:2d:c0:5a:3e:85:0e:f5:53:26:37:1a:64:ac:9d: c9:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:EF:EC:C0:67:B2:A4:F9:94:59:6B:DF:C7:21:2E:CA:36:0C:3D:C2 X509v3 Authority Key Identifier: keyid:70:D2:60:1C:B0:D0:FA:4F:9C:5F:0E:02:86:D8:B6:AF:D9:23:5A:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNJgHLDQ-k-cXw4Chti2r9kjWgY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F21/8517FB08141311F08F1A1D73C4F9AE02/cNJgHLDQ-k-cXw4Chti2r9kjWgY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:cd:ac:49:96:94:e6:fd:64:1a:ff:7b:29:a3:1d:52:c3:bc: 91:74:a1:a3:30:78:6e:ad:fc:d9:36:62:cb:86:7b:1b:9f:f2: 6e:74:48:1b:48:92:09:95:89:f4:1d:8a:af:62:d0:57:af:0b: 58:59:79:3b:0e:97:ca:5a:e7:dc:2e:13:55:02:38:cb:8d:03: b3:6d:8c:1e:ea:4a:28:47:06:50:39:8a:4e:d5:ef:75:87:18: 94:84:d6:e8:4c:b3:83:c2:98:e2:a0:e1:c5:dd:8e:7b:f9:ff: 06:d1:03:f5:3f:e8:a5:6c:c5:b0:40:1d:38:a8:62:7a:bd:b7: 74:70:aa:1b:09:07:f8:95:05:d0:6a:d6:0e:bc:5d:2e:31:4b: 86:3d:57:d8:aa:9d:10:63:f4:bf:c1:d2:09:e1:83:43:6a:ae: 2a:a3:20:f9:62:a7:e0:3e:ac:35:b8:f1:3f:a8:c1:e5:2d:37: 16:64:78:a4:ae:77:bc:e5:ab:e7:f8:88:c7:96:b9:4c:83:55: a5:81:eb:99:45:ab:ce:b0:01:9e:44:a7:7b:e4:c4:9b:fe:df: ce:92:0e:0d:f3:64:71:e9:2a:94:6e:aa:d9:2a:30:e8:14:e8: c1:6d:c6:2f:7f:c8:4a:d6:40:63:0b:b7:2a:35:c5:bf:c3:dc: 07:74:1c:e6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MEYyMTExMC8GA1UEBRMoNzBEMjYwMUNCMEQwRkE0RjlDNUYwRTAyODZEOEI2QUZE OTIzNUEwNjAeFw0yNTA4MjMwNzM4MjFaFw0yNTA4MzAwNzM4MjFaMBgxFjAUBgNV BAMTDTY4YTk2ZmVlLTQ4MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDU4ZwYTLmjZgN+tXQ0Fxz0P2hWYXtcbMCvVUImQbnl2wp1fddz937gzPWZFKSC mr4QjtN04R+ocsv/nJgoJE7cCFay/mvJUZ1OvpOTOjU+5uuvdq6pcxQdFqKynF0k P+5zWOGInvBqgqSef02ZidkH74UHiD2z8FX9/wvk0ZxC207vYdoxp3k+j91Xp2mk YkLO5QIbn26+hUtFmVw8Unmku/IcEJ4KDr0DXJCsHYX3mEM4/w98YmvTcA8++AAq PbtmNMMbFTuDD2wFrtjwvNikKGt2vgdd7hL2lEt6KlRM5/dvJS1Ufz/F7P2tVrS6 AlMtwFo+hQ71UyY3GmSsncn1AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUde/swGey pPmUWWvfxyEuyjYMPcIwHwYDVR0jBBgwFoAUcNJgHLDQ+k+cXw4Chti2r9kjWgYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMwRjIxLzg1MTdGQjA4MTQx MzExRjA4RjFBMUQ3M0M0RjlBRTAyL2NOSmdITERRLWstY1h3NENodGkycjlraldn WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY05KZ0hMRFEtay1jWHc0Q2h0aTJyOWtqV2dZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMw RjIxLzg1MTdGQjA4MTQxMzExRjA4RjFBMUQ3M0M0RjlBRTAyL2NOSmdITERRLWst Y1h3NENodGkycjlraldnWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAG3NrEmWlOb9ZBr/eymjHVLDvJF0oaMweG6t/Nk2YsuGexuf8m50SBtI kgmVifQdiq9i0FevC1hZeTsOl8pa59wuE1UCOMuNA7NtjB7qSihHBlA5ik7V73WH GJSE1uhMs4PCmOKg4cXdjnv5/wbRA/U/6KVsxbBAHTioYnq9t3RwqhsJB/iVBdBq 1g68XS4xS4Y9V9iqnRBj9L/B0gnhg0NqriqjIPlip+A+rDW48T+oweUtNxZkeKSu d7zlq+f4iMeWuUyDVaWB65lFq86wAZ5Ep3vkxJv+386SDg3zZHHpKpRuqtkqMOgU 6MFtxi9/yErWQGMLtyo1xb/D3Ad0HOY= -----END CERTIFICATE-----Generated at Sat Aug 23 19:04:09 2025 by rpki-client