$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: Hc6Z4wf4JDUcGS2IlZjK5+UqrFneGuzFbUdrmpSronw= Subject key identifier: 2F:2D:C4:82:19:CC:C6:FB:BC:B6:79:B5:09:76:A6:46:20:95:DF:97 Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 4E Signing time: Sat 23 Aug 2025 07:33:38 +0000 Manifest this update: Sat 23 Aug 2025 07:33:38 +0000 Manifest next update: Sat 30 Aug 2025 07:33:38 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: wnDKBeuAEypBJyG1DyLdtSQ+BXXg0ZdoPePph8JNWlE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Validity Not Before: Aug 23 07:33:38 2025 GMT Not After : Aug 30 07:33:38 2025 GMT Subject: CN=68a96ed2-a841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:76:d3:ba:f2:64:9c:35:b7:9c:63:2e:c6:f4: f8:bb:aa:af:52:84:95:c8:5b:89:ef:a9:6e:b3:9b: 23:aa:16:1f:15:b9:67:1d:b1:95:53:2f:18:33:bb: ce:ca:2f:3c:8a:d0:18:04:76:3e:48:d4:92:d0:74: 97:7c:1b:79:76:22:5a:41:e2:7b:0e:18:e9:fc:95: e5:ba:bb:27:95:4a:28:8d:47:66:e7:7a:a3:cf:49: e4:c2:20:ad:39:20:e1:d4:a0:e2:16:1d:37:11:21: 52:e8:71:4f:86:c5:7a:fb:da:79:aa:0d:f4:39:0e: a7:47:05:ee:16:a1:b7:cf:47:6f:67:fc:87:64:27: 0a:c7:8a:1c:95:b4:2a:d8:7b:fc:74:28:d9:68:ae: 0b:d8:be:8b:21:96:9a:ad:85:26:74:5c:e7:07:9f: c7:31:ff:d1:4c:e4:c2:00:8f:8c:85:06:1a:02:cf: 96:e6:31:6a:23:c3:28:13:c3:9f:1d:c7:ac:fa:93: 6f:65:1e:7b:a0:ac:ae:20:72:d3:33:62:d8:69:54: 2d:89:f5:42:24:46:2d:85:ef:38:8f:6c:35:f1:eb: 28:19:de:d2:8d:e9:dc:02:30:62:11:e1:e0:ef:1f: 12:2e:4e:c7:6c:17:5b:fb:44:32:89:9d:97:6b:2e: 83:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2D:C4:82:19:CC:C6:FB:BC:B6:79:B5:09:76:A6:46:20:95:DF:97 X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:92:bb:83:4c:24:39:0f:ad:c3:e8:5f:59:b5:1c:73:39:80: 56:f1:23:3f:54:e0:89:86:12:92:38:ef:16:c1:4d:04:a4:d0: 52:04:c0:ac:5a:a6:48:9c:2a:8a:67:ae:11:32:22:1d:93:78: 80:30:99:e8:46:54:02:fa:01:76:e0:94:a6:a2:f7:6e:95:db: 92:a9:8e:27:7f:c2:62:ab:12:2b:79:7a:16:6c:83:11:90:a8: 4f:68:bc:5d:cb:fb:56:70:c4:12:01:8d:a2:76:5b:1f:3e:25: 77:c4:69:7c:0c:62:47:98:12:c1:61:0c:02:0b:be:e4:05:71: e8:e3:43:03:9c:b2:5c:74:b4:80:b7:1a:5a:52:ff:2c:5c:e9: 5f:31:46:01:f3:11:92:f2:6a:f3:05:28:33:da:77:87:ab:d7: 9b:0a:80:ba:16:b4:a2:c5:bc:04:11:69:9b:f7:54:41:0d:80: d6:f1:2a:87:8d:9d:0b:4e:13:53:a8:0e:2a:96:16:ac:77:e1: 41:be:4a:78:8e:2a:8a:97:95:3b:73:b1:e3:ad:1e:5a:69:20: 95:3f:97:af:80:39:73:61:ab:5b:09:a6:24:0b:e9:e3:3d:48: 43:ce:57:73:02:3b:a2:0d:8c:59:97:a1:f5:f1:4f:f9:a3:1b: 4d:ce:bf:8e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMTczRUE5M0RBNkU1RUY1MjhGQTczMzA5NzM4ODQ4ODNE REE1MjdFRTAeFw0yNTA4MjMwNzMzMzhaFw0yNTA4MzAwNzMzMzhaMBgxFjAUBgNV BAMTDTY4YTk2ZWQyLWE4NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCdtO68mScNbecYy7G9Pi7qq9ShJXIW4nvqW6zmyOqFh8VuWcdsZVTLxgzu87K LzyK0BgEdj5I1JLQdJd8G3l2IlpB4nsOGOn8leW6uyeVSiiNR2bneqPPSeTCIK05 IOHUoOIWHTcRIVLocU+GxXr72nmqDfQ5DqdHBe4WobfPR29n/IdkJwrHihyVtCrY e/x0KNlorgvYvoshlpqthSZ0XOcHn8cx/9FM5MIAj4yFBhoCz5bmMWojwygTw58d x6z6k29lHnugrK4gctMzYthpVC2J9UIkRi2F7ziPbDXx6ygZ3tKN6dwCMGIR4eDv HxIuTsdsF1v7RDKJnZdrLoNlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULy3EghnM xvu8tnm1CXamRiCV35cwHwYDVR0jBBgwFoAUFz6pPabl71KPpzMJc4hIg92lJ+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5LzhGNjI1QzRFMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEot NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRno2cFBhYmw3MUtQcHpNSmM0aElnOTJsSi00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5LzhGNjI1QzRFMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFL UHB6TUpjNGhJZzkybEotNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKGSu4NMJDkPrcPoX1m1HHM5gFbxIz9U4ImGEpI47xbBTQSk0FIEwKxa pkicKopnrhEyIh2TeIAwmehGVAL6AXbglKai926V25Kpjid/wmKrEit5ehZsgxGQ qE9ovF3L+1ZwxBIBjaJ2Wx8+JXfEaXwMYkeYEsFhDAILvuQFcejjQwOcslx0tIC3 GlpS/yxc6V8xRgHzEZLyavMFKDPad4er15sKgLoWtKLFvAQRaZv3VEENgNbxKoeN nQtOE1OoDiqWFqx34UG+SniOKoqXlTtzseOtHlppIJU/l6+AOXNhq1sJpiQL6eM9 SEPOV3MCO6INjFmXofXxT/mjG03Ov44= -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:44 2025 by rpki-client