$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: wN+bzIq/Z9O2tRpiFOGJcQMcbPM2OwuTMEv8aFzOeRU= Subject key identifier: F0:14:51:96:DA:4D:5B:26:FA:2E:D3:DC:2A:C3:6B:C5:13:FE:C4:58 Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: 30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: 2F Signing time: Sat 23 Aug 2025 07:53:44 +0000 Manifest this update: Sat 23 Aug 2025 07:53:44 +0000 Manifest next update: Sat 30 Aug 2025 07:53:44 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: Zojuu06V1pUxSOww0/aFQehe2IGosE3fDUzzDSMYTVw=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: lVHhBj6K1C48l+j8zLFa7FZ7WGKYKz6QlN3fyLSlK7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:53:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Aug 23 07:53:44 2025 GMT Not After : Aug 30 07:53:44 2025 GMT Subject: CN=68a97388-f27f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:33:be:21:8d:33:e8:44:f9:d7:2d:cf:84:dd: 9d:d8:a8:4a:08:48:41:3a:7f:8e:6f:c2:0d:29:37: c1:0b:c7:19:69:52:c8:41:0b:f8:6f:34:fa:11:19: 58:f4:ff:90:5f:e3:bd:2b:43:14:24:07:f8:a9:4f: f7:d1:1a:e2:5e:67:f0:72:c4:09:64:b8:be:82:46: 01:84:fe:f0:3e:00:65:3b:ef:2b:c9:fc:1f:92:1a: 7a:b3:2e:61:77:f7:02:ef:4d:5f:8f:aa:f9:89:20: bf:b0:08:fe:f9:8b:b7:ed:f4:bc:61:14:a7:34:ab: 6f:44:23:b3:cc:1e:6f:7c:41:a8:31:fc:59:32:42: 6a:cc:cf:f2:1b:e4:4f:aa:a5:78:d9:c2:35:b0:ba: 80:7b:7e:9b:11:f0:19:a2:5d:e2:87:94:5c:04:41: 6f:13:44:c1:6c:81:ef:3c:c0:13:6b:49:b2:ca:f0: 0b:07:4b:86:95:70:fd:af:31:e2:44:ef:cf:32:09: c9:0f:c2:aa:7c:37:8d:5d:e1:14:23:57:aa:57:68: 2f:3c:4c:6e:ea:ac:6a:ee:f2:4a:22:a1:91:46:ab: 60:5c:97:96:5b:33:2f:ea:25:28:e1:6d:f1:a1:ea: 48:c1:f2:e0:36:5c:bc:53:8b:7d:24:15:70:0b:78: 6c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:14:51:96:DA:4D:5B:26:FA:2E:D3:DC:2A:C3:6B:C5:13:FE:C4:58 X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:36:50:83:f3:6f:8a:30:5c:fc:9b:42:02:a3:16:ce:b5:38: 05:41:60:1e:91:91:65:cf:f7:13:c3:49:61:51:f6:42:3c:90: 6c:6f:63:ac:6f:e8:4e:cb:6b:fc:53:a6:5d:78:61:15:7d:a5: cb:dc:af:04:25:5c:9a:ca:e0:85:33:a0:d6:2a:c9:d1:34:c0: 2b:ec:6b:db:cc:7b:73:0d:44:42:7d:08:e6:94:73:cf:74:07: f9:2f:77:f9:db:d9:34:a4:44:61:c3:ad:fe:29:04:10:5f:61: a7:cf:66:0b:dd:cb:8b:db:65:a0:58:f9:64:e8:0d:ba:98:c1: b0:9c:1a:a2:d1:16:5c:4a:76:4f:a5:b6:c3:28:3a:1c:c9:78: c7:ca:39:f2:54:93:01:b5:20:ba:9f:23:23:58:c7:a6:0b:b4: 50:92:90:6d:17:ca:fe:b3:25:8d:c7:0e:5e:ab:30:c6:5c:02: 44:71:e4:e3:fd:9c:19:85:57:7e:b7:57:99:aa:82:2b:06:69: 96:dd:06:86:04:6d:1a:44:8b:6e:ab:81:70:5c:81:d9:ad:56: 17:82:9d:cf:66:04:56:5c:f1:04:68:ce:cb:c5:c5:17:ee:0c: d1:22:2a:29:c1:35:f1:79:c9:b4:20:a3:7b:47:2a:c4:aa:94: f2:c1:fd:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoRTJDQjk2RjNCMDVBNjNFOUU1NDc5NjUyNkVDQ0U5NEEz NTkxRTVGQzAeFw0yNTA4MjMwNzUzNDRaFw0yNTA4MzAwNzUzNDRaMBgxFjAUBgNV BAMTDTY4YTk3Mzg4LWYyN2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEM74hjTPoRPnXLc+E3Z3YqEoISEE6f45vwg0pN8ELxxlpUshBC/hvNPoRGVj0 /5Bf470rQxQkB/ipT/fRGuJeZ/ByxAlkuL6CRgGE/vA+AGU77yvJ/B+SGnqzLmF3 9wLvTV+PqvmJIL+wCP75i7ft9LxhFKc0q29EI7PMHm98Qagx/FkyQmrMz/Ib5E+q pXjZwjWwuoB7fpsR8BmiXeKHlFwEQW8TRMFsge88wBNrSbLK8AsHS4aVcP2vMeJE 788yCckPwqp8N41d4RQjV6pXaC88TG7qrGru8koioZFGq2Bcl5ZbMy/qJSjhbfGh 6kjB8uA2XLxTi30kFXALeGw9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8BRRltpN Wyb6LtPcKsNrxRP+xFgwHwYDVR0jBBgwFoAU4suW87BaY+nlR5ZSbszpSjWR5fww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0FGNjRFNTEwM0JB QTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNHN1Vzg3QmFZLW5sUjVaU2JzenBTaldSNWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0FGNjRFNTEwM0JBQTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1u bFI1WlNic3pwU2pXUjVmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACk2UIPzb4owXPybQgKjFs61OAVBYB6RkWXP9xPDSWFR9kI8kGxvY6xv 6E7La/xTpl14YRV9pcvcrwQlXJrK4IUzoNYqydE0wCvsa9vMe3MNREJ9COaUc890 B/kvd/nb2TSkRGHDrf4pBBBfYafPZgvdy4vbZaBY+WToDbqYwbCcGqLRFlxKdk+l tsMoOhzJeMfKOfJUkwG1ILqfIyNYx6YLtFCSkG0Xyv6zJY3HDl6rMMZcAkRx5OP9 nBmFV363V5mqgisGaZbdBoYEbRpEi26rgXBcgdmtVheCnc9mBFZc8QRozsvFxRfu DNEiKinBNfF5ybQgo3tHKsSqlPLB/ac= -----END CERTIFICATE-----Generated at Sat Aug 23 22:16:57 2025 by rpki-client