$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: g3+IbAVfLVxZDVz+fftr+VmXOyYiDjoL/AfJ/Nz+MLQ= Subject key identifier: 2F:56:C8:55:DA:F1:C4:8B:97:71:21:A1:1D:D4:92:F3:21:03:81:06 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0138 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0131 Signing time: Sat 23 Aug 2025 04:48:19 +0000 Manifest this update: Sat 23 Aug 2025 04:48:18 +0000 Manifest next update: Sat 30 Aug 2025 04:48:18 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: zPiyKNwlVN45mTxplcNFQDGD9CTx0lDJXt4G9Mv6vVc=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: rp2KgXfSmtmZKYQY55JUof6yTTeOYpzuHhK8PCwpS0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:48:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Aug 23 04:48:18 2025 GMT Not After : Aug 30 04:48:18 2025 GMT Subject: CN=68a94812-6112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:a1:c8:72:10:78:40:1c:07:21:9f:fa:23:49: 28:80:45:0c:7c:c7:56:fc:28:2d:35:c7:75:4c:b4: cd:aa:22:ac:d9:fb:a3:a6:23:7a:34:4d:6d:61:05: 3a:f6:f5:66:8c:45:7e:cc:47:97:6c:cd:d9:06:1e: b4:97:40:7b:29:8e:9b:0e:37:2d:ee:d5:5c:1f:04: a1:ff:47:79:5a:4d:06:2b:57:2b:29:fa:3a:e1:ad: 10:7d:46:ed:d6:99:87:4e:3d:58:af:07:e1:50:de: 55:8b:92:96:96:01:8c:ff:71:66:2c:e6:df:ba:ee: 9e:8b:b9:be:e2:07:7f:0f:b9:5a:e1:a9:b4:f9:9c: 9b:20:8d:8d:50:0d:a6:0b:77:f7:ec:67:12:ac:7e: 7d:9a:f4:08:de:9c:38:65:f1:9b:03:4a:b4:75:21: ac:03:ee:ba:ad:e7:d6:77:f0:1d:0a:a9:cf:3c:a5: f7:56:01:79:c6:5e:b0:4a:57:e2:da:1d:94:08:98: d7:36:86:89:3c:f7:f8:c4:81:f2:db:62:7b:dd:42: 85:a0:ba:28:14:37:2e:81:e6:d7:3c:a7:37:39:bd: 83:2c:91:7a:60:e9:52:38:0f:5b:13:88:e4:db:7b: 45:b3:de:44:34:e8:f5:29:7d:71:2e:e5:73:2f:b5: 6e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:56:C8:55:DA:F1:C4:8B:97:71:21:A1:1D:D4:92:F3:21:03:81:06 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:b9:e5:a8:c3:30:97:41:8c:7f:b0:7d:af:7d:06:9c:ce:0a: 99:8b:95:a0:43:f1:dc:cd:0f:82:c1:5d:80:92:ef:84:78:8a: cc:59:2e:4f:ac:c9:8e:a5:88:50:26:3d:38:e8:31:98:9d:fe: 65:d5:15:81:8c:d9:72:30:d4:82:ab:a2:99:b2:fc:57:d8:8d: f3:24:bb:82:ab:03:a1:14:34:03:d3:14:52:97:a6:df:25:58: 95:0a:27:40:d2:31:3b:05:2a:50:d2:91:a6:80:e0:f2:6a:5d: 03:d8:3b:61:b1:7c:aa:8c:9b:b7:8b:50:44:66:06:fb:38:bc: 87:d2:4e:f6:8a:90:8f:02:32:32:95:15:13:55:9f:25:3b:e7: 7d:d2:f1:16:89:d4:85:5c:bc:ea:22:c3:01:97:a3:3d:a5:c2: f5:97:3e:0a:2b:46:8e:62:b5:0c:80:a7:2b:84:2a:d3:0d:56: e2:15:91:f1:c6:95:20:ad:c6:cd:a6:13:b6:33:3f:39:25:f0: 96:af:8d:2b:ac:55:3f:e6:ff:38:f4:de:e8:91:c6:ca:63:7d: 79:23:c3:25:8c:5b:47:93:63:32:a5:41:e1:71:30:8a:6d:2b: db:ca:e2:df:19:f3:bd:09:d0:0b:6a:c6:bd:de:e5:d6:6e:6a: f3:4a:35:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwODIzMDQ0ODE4WhcNMjUwODMwMDQ0ODE4WjAYMRYwFAYD VQQDEw02OGE5NDgxMi02MTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA46HIchB4QBwHIZ/6I0kogEUMfMdW/CgtNcd1TLTNqiKs2fujpiN6NE1tYQU6 9vVmjEV+zEeXbM3ZBh60l0B7KY6bDjct7tVcHwSh/0d5Wk0GK1crKfo64a0QfUbt 1pmHTj1YrwfhUN5Vi5KWlgGM/3FmLObfuu6ei7m+4gd/D7la4am0+ZybII2NUA2m C3f37GcSrH59mvQI3pw4ZfGbA0q0dSGsA+66refWd/AdCqnPPKX3VgF5xl6wSlfi 2h2UCJjXNoaJPPf4xIHy22J73UKFoLooFDcugebXPKc3Ob2DLJF6YOlSOA9bE4jk 23tFs95ENOj1KX1xLuVzL7VuWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC9WyFXa 8cSLl3EhoR3UkvMhA4EGMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiueWowzCXQYx/sH2vfQaczgqZi5WgQ/HczQ+CwV2Aku+EeIrMWS5P rMmOpYhQJj046DGYnf5l1RWBjNlyMNSCq6KZsvxX2I3zJLuCqwOhFDQD0xRSl6bf JViVCidA0jE7BSpQ0pGmgODyal0D2DthsXyqjJu3i1BEZgb7OLyH0k72ipCPAjIy lRUTVZ8lO+d90vEWidSFXLzqIsMBl6M9pcL1lz4KK0aOYrUMgKcrhCrTDVbiFZHx xpUgrcbNphO2Mz85JfCWr40rrFU/5v849N7okcbKY315I8MljFtHk2MypUHhcTCK bSvbyuLfGfO9CdALasa93uXWbmrzSjUS -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:10 2025 by rpki-client