$ rpki-client -vvf rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft File: -AoX4Y4_OhL3UjNnLorGf4DlL98.mft (raw, json) Hash identifier: 4AqGZ02/3TvD/Incowf9wiH4lb1Lar3m9OKnvOgpQ64= Subject key identifier: B8:86:C5:F0:94:15:03:72:43:7C:C6:AE:35:AC:17:2E:46:17:AA:4D Authority key identifier: F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF Certificate issuer: /CN=A916423B/serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft Manifest number: 019A Signing time: Sat 23 Aug 2025 03:29:01 +0000 Manifest this update: Sat 23 Aug 2025 03:29:00 +0000 Manifest next update: Sat 30 Aug 2025 03:29:00 +0000 Files and hashes: 1: -AoX4Y4_OhL3UjNnLorGf4DlL98.crl (hash: mbJ/QqaBd3Jgxh0nNfztFGa4Dt9BEOHn40tgLe+z6FQ=) 2: 593888C40AB811EE97CC7A32C4F9AE02.roa (hash: Hgvy/rbsLEaWAnrB/PMoMX/RB2XdkdZAeykYpDBMbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916423B, serialNumber=F80A17E18E3F3A12F75233672E8AC67F80E52FDF Validity Not Before: Aug 23 03:29:00 2025 GMT Not After : Aug 30 03:29:00 2025 GMT Subject: CN=68a9357c-6e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:7b:4a:cd:bd:e2:f3:5f:ee:d7:ff:ca:cf:cf: 7c:b9:f2:da:01:ad:c0:72:0d:96:a5:5c:0f:79:cd: c5:09:e2:31:81:1e:fc:2c:16:cd:62:1a:f7:b8:a5: a4:7b:33:94:d2:0a:75:f4:18:9c:fd:9c:ec:76:80: 15:f1:0c:84:e4:61:36:07:bf:ec:46:d1:8d:aa:92: 64:6f:5f:6f:52:7a:e8:f3:f3:02:bc:9b:16:e2:ae: a2:68:c7:a5:0a:fd:2d:4f:6a:61:8d:98:a3:b1:5c: 9c:a6:78:52:3f:3e:35:8d:52:68:d4:82:99:d5:38: 85:58:be:d6:f0:d1:11:cd:0b:09:6f:f3:7b:71:7a: 44:dc:3c:2a:eb:52:89:7e:98:7a:b8:03:e1:bc:cd: d8:3b:31:01:32:73:96:55:49:14:4b:85:9d:20:08: 5c:3d:17:58:17:3c:83:e2:b5:72:2e:4c:2f:42:1f: 93:e9:14:59:11:b9:1d:62:37:76:c0:d5:28:8b:d1: 7b:07:3a:40:97:81:8c:37:fc:0b:26:f9:f0:98:d1: d9:da:ec:96:01:33:38:78:41:d9:70:0e:11:f5:9d: 92:80:7e:45:61:46:b2:d5:5b:08:3a:ac:2e:dc:8e: 5f:9f:b2:4f:71:44:d9:b1:22:f9:73:e6:4a:c4:87: 75:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:86:C5:F0:94:15:03:72:43:7C:C6:AE:35:AC:17:2E:46:17:AA:4D X509v3 Authority Key Identifier: keyid:F8:0A:17:E1:8E:3F:3A:12:F7:52:33:67:2E:8A:C6:7F:80:E5:2F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-AoX4Y4_OhL3UjNnLorGf4DlL98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916423B/DC49A5FA0AB211EE80B35537C4F9AE02/-AoX4Y4_OhL3UjNnLorGf4DlL98.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:25:b7:cb:d4:41:99:e4:dc:92:22:d6:45:9b:06:64:38:63: 58:78:fc:2b:50:d7:3f:f1:a4:2c:fa:e1:26:f4:f3:19:c0:77: c9:2b:08:d9:c3:d2:3f:ef:b9:b3:4c:97:5a:63:fd:ab:da:a3: e8:eb:34:b3:0f:d5:ba:3c:66:93:df:12:5b:97:cb:c4:ad:05: fa:42:ea:54:9e:8d:13:2a:60:50:66:29:27:c6:92:18:37:b0: 44:a2:3b:97:fd:6a:d2:b7:38:7b:6c:fc:51:82:64:4d:a7:24: 89:49:0c:69:db:43:4d:50:c5:93:1c:fd:3f:1e:f3:71:b7:79: 7a:f8:e0:a5:ad:dc:7c:6c:43:8a:71:f2:4e:40:91:81:14:3c: 2c:4b:eb:ff:3b:c6:9a:21:15:7a:4d:87:33:67:b1:ed:ee:d9: 11:b2:9c:d8:d6:5a:74:d5:7f:ee:21:ad:9d:41:e0:ca:14:64: c1:fd:da:5f:b8:67:f0:29:2c:e8:1f:c6:16:01:a1:fb:9d:b7: e1:f6:6b:51:ce:d7:ba:56:d9:ff:02:f6:d9:a7:e3:6b:6e:c7: 23:cf:bc:ac:71:b6:37:cc:32:46:c3:b5:a1:80:31:24:c8:0d: 0f:b3:9e:fe:ec:87:6a:cd:7b:8f:cf:90:7c:db:3a:e0:e2:fd: a6:b4:21:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQyM0IxMTAvBgNVBAUTKEY4MEExN0UxOEUzRjNBMTJGNzUyMzM2NzJFOEFDNjdG ODBFNTJGREYwHhcNMjUwODIzMDMyOTAwWhcNMjUwODMwMDMyOTAwWjAYMRYwFAYD VQQDEw02OGE5MzU3Yy02ZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA73tKzb3i81/u1//Kz898ufLaAa3Acg2WpVwPec3FCeIxgR78LBbNYhr3uKWk ezOU0gp19Bic/ZzsdoAV8QyE5GE2B7/sRtGNqpJkb19vUnro8/MCvJsW4q6iaMel Cv0tT2phjZijsVycpnhSPz41jVJo1IKZ1TiFWL7W8NERzQsJb/N7cXpE3Dwq61KJ fph6uAPhvM3YOzEBMnOWVUkUS4WdIAhcPRdYFzyD4rVyLkwvQh+T6RRZEbkdYjd2 wNUoi9F7BzpAl4GMN/wLJvnwmNHZ2uyWATM4eEHZcA4R9Z2SgH5FYUay1VsIOqwu 3I5fn7JPcUTZsSL5c+ZKxId1pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLiGxfCU FQNyQ3zGrjWsFy5GF6pNMB8GA1UdIwQYMBaAFPgKF+GOPzoS91IzZy6Kxn+A5S/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDIzQi9EQzQ5QTVGQTBB QjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09oTDNVak5uTG9yR2Y0RGxM OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1Bb1g0WTRfT2hMM1VqTm5Mb3JHZjREbEw5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NDIzQi9EQzQ5QTVGQTBBQjIxMUVFODBCMzU1MzdDNEY5QUUwMi8tQW9YNFk0X09o TDNVak5uTG9yR2Y0RGxMOTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4JbfL1EGZ5NySItZFmwZkOGNYePwrUNc/8aQs+uEm9PMZwHfJKwjZ w9I/77mzTJdaY/2r2qPo6zSzD9W6PGaT3xJbl8vErQX6QupUno0TKmBQZiknxpIY N7BEojuX/WrStzh7bPxRgmRNpySJSQxp20NNUMWTHP0/HvNxt3l6+OClrdx8bEOK cfJOQJGBFDwsS+v/O8aaIRV6TYczZ7Ht7tkRspzY1lp01X/uIa2dQeDKFGTB/dpf uGfwKSzoH8YWAaH7nbfh9mtRzte6Vtn/AvbZp+Nrbscjz7yscbY3zDJGw7WhgDEk yA0Ps57+7IdqzXuPz5B82zrg4v2mtCE2 -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:37 2025 by rpki-client