$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft File: 4_FvnXPM7iaTkVokT0S1U6TbPcw.mft (raw, json) Hash identifier: bWyXNHl93XxCeNq0fKYXuqGs/QSb8OTYpqY6uZt1b74= Subject key identifier: F5:4A:C0:C2:1F:38:5F:14:80:0F:8B:40:B3:96:B3:69:17:58:4A:ED Authority key identifier: E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC Certificate issuer: /CN=A9145B13/serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft Manifest number: 87 Signing time: Sat 23 Aug 2025 06:50:22 +0000 Manifest this update: Sat 23 Aug 2025 06:50:22 +0000 Manifest next update: Sat 30 Aug 2025 06:50:22 +0000 Files and hashes: 1: 4_FvnXPM7iaTkVokT0S1U6TbPcw.crl (hash: DQfPTdgMXi0XoOdlLTXttrDi6cLhF+gEEhaRebjxHfo=) 2: 05E4CBECB12911EF993BC12DC4F9AE02.roa (hash: 6bS2IOUFxNL/dxgXXkv7hlgTjA3VB1/wSeyQ+zl4/9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Validity Not Before: Aug 23 06:50:22 2025 GMT Not After : Aug 30 06:50:22 2025 GMT Subject: CN=68a964ae-818d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:48:63:81:62:65:92:2f:ae:2f:f8:8f:33:f3: 4a:f0:66:e6:c5:47:43:57:76:50:fc:75:a5:77:99: 61:f8:a1:08:6f:83:f0:e4:16:9b:00:aa:d3:8c:b6: 1d:62:93:cf:40:8c:94:5c:be:8c:db:4c:d1:57:0b: d8:fb:25:e7:c7:a4:d3:ee:05:17:e4:92:8e:ee:02: a5:21:13:19:a1:48:6e:27:58:36:05:07:c5:b8:09: 61:62:f3:b1:f3:61:a0:e6:2a:f0:88:61:51:0b:b4: 8c:d0:14:22:57:1e:0f:c0:b8:5f:03:ab:08:7c:f8: ec:56:fe:1b:17:6b:da:a1:e6:15:a6:d1:c8:37:5c: 14:34:27:46:c0:e5:4f:52:1b:61:ef:12:9c:4e:8c: 22:e3:ab:25:5a:3a:56:7e:01:7b:39:c9:e8:4e:d3: 7e:9d:81:57:9c:1a:7e:7d:01:32:6b:40:37:9f:ae: 90:06:2e:ff:91:38:eb:ff:08:21:b2:f8:3b:bf:9f: 2e:3b:ba:62:9e:16:54:fc:22:54:10:e7:e2:ee:33: 43:0a:25:7b:c1:c8:47:30:31:71:0e:aa:45:a8:47: 77:65:0c:36:70:82:c7:ca:60:9c:68:b0:40:4a:02: e4:6b:72:3b:9e:0a:3d:c9:44:45:be:ac:c7:27:05: d6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:4A:C0:C2:1F:38:5F:14:80:0F:8B:40:B3:96:B3:69:17:58:4A:ED X509v3 Authority Key Identifier: keyid:E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:ea:72:75:65:e6:6d:ce:a6:65:8c:da:ee:fc:b9:a1:9e:bf: 77:d6:48:26:3b:2b:47:a7:ad:c2:72:a1:f4:9d:72:14:9a:57: 43:ed:2b:4b:69:91:c0:99:61:8a:2b:af:a7:ef:64:2f:d3:87: f6:6a:7a:3a:93:cc:ce:e9:53:96:3a:32:86:78:f2:32:3b:b9: ee:2f:b1:dc:c8:b5:3b:23:6a:b4:e4:ae:7f:a8:b7:7b:fe:e6: cd:d3:97:97:15:1d:99:1c:fe:f2:8b:b9:98:82:69:93:e8:6c: 9b:69:8c:00:a8:b1:72:ff:52:52:3a:32:91:82:b4:9b:b1:a8: 3e:8c:9f:ca:9d:55:64:56:2a:02:f6:74:2c:dd:d8:54:b9:4f: bf:c4:32:98:b1:0d:91:3a:da:fd:c3:6b:d5:ab:38:b5:97:9a: e3:e1:fd:3e:d5:d4:c6:40:f6:37:41:ce:08:3f:44:c8:0d:22: 2e:e8:04:21:a1:11:8e:a1:52:de:61:07:09:4c:75:c1:50:46: 85:f9:8c:57:a2:69:1b:7a:fc:00:70:83:20:b1:cc:30:eb:f3: a4:9c:e2:33:9c:16:4c:66:8b:1e:a3:66:e1:22:b0:ad:48:0b: 94:d8:b1:31:e6:39:6d:30:49:2a:33:c1:b7:0a:af:1f:84:60: bd:12:bb:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVCMTMxMTAvBgNVBAUTKEUzRjE2RjlENzNDQ0VFMjY5MzkxNUEyNDRGNDRCNTUz QTREQjNEQ0MwHhcNMjUwODIzMDY1MDIyWhcNMjUwODMwMDY1MDIyWjAYMRYwFAYD VQQDEw02OGE5NjRhZS04MThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0hjgWJlki+uL/iPM/NK8GbmxUdDV3ZQ/HWld5lh+KEIb4Pw5BabAKrTjLYd YpPPQIyUXL6M20zRVwvY+yXnx6TT7gUX5JKO7gKlIRMZoUhuJ1g2BQfFuAlhYvOx 82Gg5irwiGFRC7SM0BQiVx4PwLhfA6sIfPjsVv4bF2vaoeYVptHIN1wUNCdGwOVP Uhth7xKcTowi46slWjpWfgF7OcnoTtN+nYFXnBp+fQEya0A3n66QBi7/kTjr/wgh svg7v58uO7pinhZU/CJUEOfi7jNDCiV7wchHMDFxDqpFqEd3ZQw2cILHymCcaLBA SgLka3I7ngo9yURFvqzHJwXWswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVKwMIf OF8UgA+LQLOWs2kXWErtMB8GA1UdIwQYMBaAFOPxb51zzO4mk5FaJE9EtVOk2z3M MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUIxMy80NjM3RkJGMkIx MjgxMUVGQjc1MEE1MkJDNEY5QUUwMi80X0Z2blhQTTdpYVRrVm9rVDBTMVU2VGJQ Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRfRnZuWFBNN2lhVGtWb2tUMFMxVTZUYlBjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NUIxMy80NjM3RkJGMkIxMjgxMUVGQjc1MEE1MkJDNEY5QUUwMi80X0Z2blhQTTdp YVRrVm9rVDBTMVU2VGJQY3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL6nJ1ZeZtzqZljNru/Lmhnr931kgmOytHp63CcqH0nXIUmldD7StL aZHAmWGKK6+n72Qv04f2ano6k8zO6VOWOjKGePIyO7nuL7HcyLU7I2q05K5/qLd7 /ubN05eXFR2ZHP7yi7mYgmmT6GybaYwAqLFy/1JSOjKRgrSbsag+jJ/KnVVkVioC 9nQs3dhUuU+/xDKYsQ2ROtr9w2vVqzi1l5rj4f0+1dTGQPY3Qc4IP0TIDSIu6AQh oRGOoVLeYQcJTHXBUEaF+YxXomkbevwAcIMgscww6/OknOIznBZMZoseo2bhIrCt SAuU2LEx5jltMEkqM8G3Cq8fhGC9EruS -----END CERTIFICATE-----Generated at Sat Aug 23 20:39:52 2025 by rpki-client