$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft File: 03yc1lDAIKNQDtybQKVGqEw_Jgs.mft (raw, json) Hash identifier: liKIyuJ2ADkUr9lnB5a6lz08ipNMf2z1b0c/VGqJdQ8= Subject key identifier: E9:92:9A:69:0E:51:B1:B4:99:74:2B:EE:60:0C:08:52:97:82:B6:F8 Authority key identifier: D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B Certificate issuer: /CN=A9153C50/serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Certificate serial: 04EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft Manifest number: 04E4 Signing time: Fri 22 Aug 2025 23:57:34 +0000 Manifest this update: Fri 22 Aug 2025 23:57:33 +0000 Manifest next update: Fri 29 Aug 2025 23:57:33 +0000 Files and hashes: 1: 03yc1lDAIKNQDtybQKVGqEw_Jgs.crl (hash: BIabLZVVRLaJzASncxAbzb1JmvqWXkGkiT8xf+LM+74=) 2: 8B97D7A22CD911ECA528B744C4F9AE02.roa (hash: ejQetAzLgqVtDolBJZWz4Zc5LEXRfg3VkvX111clMEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:57:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C50, serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Validity Not Before: Aug 22 23:57:33 2025 GMT Not After : Aug 29 23:57:33 2025 GMT Subject: CN=68a903ed-28fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:01:f4:3e:4f:83:c3:5b:f5:7f:41:2a:28:24: bb:66:12:a7:0d:0a:d1:c9:c8:06:2f:26:56:73:7d: ec:72:88:a2:c5:44:0e:d6:4b:af:74:ab:da:d0:e2: 72:71:af:3e:7e:02:9d:14:b9:de:23:61:7e:fb:a1: 39:36:d8:cd:86:4b:53:db:ca:0d:e0:4f:2b:b4:fe: f7:d0:44:89:06:ea:26:d9:64:1c:9a:28:ac:11:e2: 84:96:70:08:ea:41:8f:b5:b7:b5:27:5d:28:fe:6f: 29:5c:2c:b8:1b:be:b2:2c:c3:49:cb:6d:d7:9b:f3: d5:32:32:a5:53:aa:85:45:83:a4:7a:07:a0:09:7e: 0f:3b:d7:ac:be:31:93:93:e3:7a:a3:7e:3e:2c:fa: 01:92:bf:d4:81:9e:64:42:da:59:aa:56:6f:08:60: 69:87:7f:4e:6e:f3:d7:a9:00:43:da:91:ef:3e:85: 90:e7:74:92:2f:ff:a7:25:f1:dd:af:53:7c:9d:09: d5:77:d7:39:b6:22:4a:30:e7:aa:30:76:41:95:eb: ce:d9:8d:8f:ab:f0:e8:ae:f4:5a:58:a5:15:b6:4c: 9f:d0:71:04:6c:65:58:87:39:28:4e:da:d1:9e:6b: 27:8e:95:17:f8:b7:02:92:4b:6c:68:29:5d:a8:21: d2:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:92:9A:69:0E:51:B1:B4:99:74:2B:EE:60:0C:08:52:97:82:B6:F8 X509v3 Authority Key Identifier: keyid:D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:fd:9f:ee:de:8d:52:e3:df:47:15:80:ca:e6:06:7f:76:4f: 29:08:e4:9d:cf:55:a2:14:60:dc:6e:fa:d2:57:86:51:a8:1d: 63:4a:d5:63:3d:14:aa:39:d7:1e:e8:8c:02:ea:1c:b6:99:21: 27:48:8c:b4:20:2d:d2:bc:e6:ba:09:26:b5:83:75:75:7a:07: 10:e5:f5:a6:51:ed:9e:c1:26:5d:59:77:d4:cf:5f:81:9d:0e: d6:4e:7a:4d:70:dc:e5:5d:03:fa:e9:80:0e:5e:06:53:54:66: 2e:73:82:7a:5a:f7:53:32:45:6c:4a:c7:eb:97:04:e6:db:0d: ed:28:d8:3f:25:f9:e3:4f:bb:b2:22:43:8e:93:9a:42:21:70: 2a:68:1c:c9:a8:c9:5d:f4:29:0c:ba:ec:1a:ed:3c:09:1d:37: a6:5a:43:20:71:dc:a0:64:03:24:ce:62:a1:f6:a7:e7:df:ed: f7:97:9e:47:82:b4:40:6a:14:75:0e:26:91:7f:65:68:5e:ee: 1c:bf:ff:fd:c9:45:82:58:b7:6d:b7:4a:e9:43:d7:b5:f9:a1: 5a:f6:3e:17:f9:f5:1b:22:41:43:0b:7d:4f:a0:9b:e0:b2:d5: 27:82:d8:00:c6:be:98:ae:28:d9:b2:c2:30:ea:c3:b2:20:b3: 78:01:30:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDNTAxMTAvBgNVBAUTKEQzN0M5Q0Q2NTBDMDIwQTM1MDBFREM5QjQwQTU0NkE4 NEMzRjI2MEIwHhcNMjUwODIyMjM1NzMzWhcNMjUwODI5MjM1NzMzWjAYMRYwFAYD VQQDEw02OGE5MDNlZC0yOGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1QH0Pk+Dw1v1f0EqKCS7ZhKnDQrRycgGLyZWc33scoiixUQO1kuvdKva0OJy ca8+fgKdFLneI2F++6E5NtjNhktT28oN4E8rtP730ESJBuom2WQcmiisEeKElnAI 6kGPtbe1J10o/m8pXCy4G76yLMNJy23Xm/PVMjKlU6qFRYOkegegCX4PO9esvjGT k+N6o34+LPoBkr/UgZ5kQtpZqlZvCGBph39ObvPXqQBD2pHvPoWQ53SSL/+nJfHd r1N8nQnVd9c5tiJKMOeqMHZBlevO2Y2Pq/DorvRaWKUVtkyf0HEEbGVYhzkoTtrR nmsnjpUX+LcCkktsaCldqCHS5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmSmmkO UbG0mXQr7mAMCFKXgrb4MB8GA1UdIwQYMBaAFNN8nNZQwCCjUA7cm0ClRqhMPyYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0M1MC80QjkwNjMwMjJD RDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlLTlFEdHliUUtWR3FFd19K Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzeWMxbERBSUtOUUR0eWJRS1ZHcUV3X0pncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0M1MC80QjkwNjMwMjJDRDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlL TlFEdHliUUtWR3FFd19KZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8/Z/u3o1S499HFYDK5gZ/dk8pCOSdz1WiFGDcbvrSV4ZRqB1jStVj PRSqOdce6IwC6hy2mSEnSIy0IC3SvOa6CSa1g3V1egcQ5fWmUe2ewSZdWXfUz1+B nQ7WTnpNcNzlXQP66YAOXgZTVGYuc4J6WvdTMkVsSsfrlwTm2w3tKNg/JfnjT7uy IkOOk5pCIXAqaBzJqMld9CkMuuwa7TwJHTemWkMgcdygZAMkzmKh9qfn3+33l55H grRAahR1DiaRf2VoXu4cv//9yUWCWLdtt0rpQ9e1+aFa9j4X+fUbIkFDC31PoJvg stUngtgAxr6YrijZssIw6sOyILN4ATBP -----END CERTIFICATE-----Generated at Sun Aug 24 00:16:34 2025 by rpki-client