$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft File: 4YMttqUeSiWekP7IHkfFRpxSpok.mft (raw, json) Hash identifier: Fw40GVXrQWTJNqLxEiQYQBaf1Enb6sel6DwnR93DR64= Subject key identifier: 55:61:AF:CD:DD:1E:A0:07:01:1B:E0:C2:AD:1E:60:F9:74:A1:19:60 Authority key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 Certificate issuer: /CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Certificate serial: 163F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft Manifest number: 1633 Signing time: Fri 22 Aug 2025 16:49:54 +0000 Manifest this update: Fri 22 Aug 2025 16:49:53 +0000 Manifest next update: Fri 29 Aug 2025 16:49:53 +0000 Files and hashes: 1: 4YMttqUeSiWekP7IHkfFRpxSpok.crl (hash: uCreiYSaSh4pgYDm4JK9j4pXXIy1HcA5jd2yGSXRmf8=) 2: B4FED5FC8E5311EBB81E6C70C4F9AE02.roa (hash: kDacZR8moKTX56aD4xPOhhoyt0qIcn1U0w7VaT9wQjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5695 (0x163f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B, serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Validity Not Before: Aug 22 16:49:53 2025 GMT Not After : Aug 29 16:49:53 2025 GMT Subject: CN=68a89fb2-21a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ff:55:70:b7:1c:c4:7b:44:17:1c:bd:b8:c5: 5a:b7:e8:cb:75:80:e7:f6:c9:66:89:49:a8:c1:50: 6d:73:27:68:e6:94:c7:a4:2f:4a:17:79:60:08:ae: ad:e3:58:3f:15:a9:30:54:45:ad:15:33:a0:90:25: 37:75:b6:e9:b8:6f:5c:33:8d:15:ac:9d:29:25:76: e4:cc:ef:47:b0:52:11:00:ba:dd:12:ac:47:12:32: 21:ae:f8:36:f4:7e:64:d8:84:89:0c:6d:55:f0:73: 99:1d:4f:86:86:45:28:99:82:fa:6a:98:53:28:de: 4a:c9:cd:3e:e4:56:84:5a:92:e2:90:c2:8b:c2:e5: 1a:1f:65:00:67:a5:49:0b:c9:40:b6:45:93:d8:f7: 8b:15:36:69:26:2d:c8:db:b4:22:78:9f:c1:d4:ae: ba:30:fd:8a:cd:c3:4b:d2:e0:85:ef:16:2b:16:ca: 05:04:1d:0b:1f:31:69:f1:a7:95:bf:92:2c:c1:9a: 5d:b0:9f:8b:22:95:a2:3c:10:d8:1f:4f:77:a8:3c: 54:12:5d:85:62:d6:5e:31:cc:4d:72:39:72:20:89: 68:d0:8a:79:9c:98:fa:e7:0a:81:7e:02:0b:d3:03: ff:32:03:fa:f2:01:2a:35:e8:04:f7:2a:2d:90:b7: b4:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:61:AF:CD:DD:1E:A0:07:01:1B:E0:C2:AD:1E:60:F9:74:A1:19:60 X509v3 Authority Key Identifier: keyid:E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:f0:04:26:5a:98:27:bf:5a:d3:8b:eb:b1:dd:8e:36:50:fa: f0:83:79:2d:7a:10:68:08:03:3c:0f:ff:6a:43:43:61:a2:60: 09:3f:02:8a:4b:37:f5:b4:f1:89:a7:28:1e:b9:51:e3:d3:87: e3:f1:18:d7:cf:eb:76:b8:e5:c2:a5:ae:08:a7:4d:5f:a7:d8: 5d:15:ea:75:4d:38:48:7e:b1:61:25:5d:1c:05:8d:97:88:fd: 69:d7:f5:10:bc:b1:27:2d:71:9e:20:d3:62:48:12:e3:2e:e3: 6d:f4:7a:ec:d4:d2:15:c7:88:9b:dc:8d:4e:20:51:06:e4:fd: 81:f7:bf:9a:b8:51:87:49:27:f7:de:36:59:9a:2b:b5:bb:f8: a1:bd:3f:56:6c:03:e3:8f:b1:20:46:8f:ae:d6:6f:f7:d4:29: a1:02:85:c1:d0:2f:e2:22:9b:4d:a3:ac:df:1d:24:78:f4:d5: 6a:c1:6d:4f:58:98:e7:b1:1d:c1:80:5c:98:0a:48:4f:ab:c5: 79:9e:68:03:65:86:29:43:1a:3d:e6:dc:49:52:2b:7f:80:78: f8:24:1e:0f:f8:fd:be:71:83:97:84:77:c9:3b:df:05:6c:08: 77:68:3a:ce:d3:f7:32:c4:0e:ef:0a:c4:33:a9:c5:aa:c6:ba: 27:3c:99:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKEUxODMyREI2QTUxRTRBMjU5RTkwRkVDODFFNDdDNTQ2 OUM1MkE2ODkwHhcNMjUwODIyMTY0OTUzWhcNMjUwODI5MTY0OTUzWjAYMRYwFAYD VQQDEw02OGE4OWZiMi0yMWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf9VcLccxHtEFxy9uMVat+jLdYDn9slmiUmowVBtcydo5pTHpC9KF3lgCK6t 41g/FakwVEWtFTOgkCU3dbbpuG9cM40VrJ0pJXbkzO9HsFIRALrdEqxHEjIhrvg2 9H5k2ISJDG1V8HOZHU+GhkUomYL6aphTKN5Kyc0+5FaEWpLikMKLwuUaH2UAZ6VJ C8lAtkWT2PeLFTZpJi3I27QieJ/B1K66MP2KzcNL0uCF7xYrFsoFBB0LHzFp8aeV v5IswZpdsJ+LIpWiPBDYH093qDxUEl2FYtZeMcxNcjlyIIlo0Ip5nJj65wqBfgIL 0wP/MgP68gEqNegE9yotkLe0/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVhr83d HqAHARvgwq0eYPl0oRlgMB8GA1UdIwQYMBaAFOGDLbalHkolnpD+yB5HxUacUqaJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi8wMkEyRDk3MDE2 MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNpV2VrUDdJSGtmRlJweFNw b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTXR0cVVlU2lXZWtQN0lIa2ZGUnB4U3Bvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODE0Qi8wMkEyRDk3MDE2MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNp V2VrUDdJSGtmRlJweFNwb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC68AQmWpgnv1rTi+ux3Y42UPrwg3ktehBoCAM8D/9qQ0NhomAJPwKK Szf1tPGJpygeuVHj04fj8RjXz+t2uOXCpa4Ip01fp9hdFep1TThIfrFhJV0cBY2X iP1p1/UQvLEnLXGeINNiSBLjLuNt9Hrs1NIVx4ib3I1OIFEG5P2B97+auFGHSSf3 3jZZmiu1u/ihvT9WbAPjj7EgRo+u1m/31CmhAoXB0C/iIptNo6zfHSR49NVqwW1P WJjnsR3BgFyYCkhPq8V5nmgDZYYpQxo95txJUit/gHj4JB4P+P2+cYOXhHfJO98F bAh3aDrO0/cyxA7vCsQzqcWqxronPJne -----END CERTIFICATE-----Generated at Sat Aug 23 17:21:50 2025 by rpki-client