$ rpki-client -vvf rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft File: 4W5PZeLjl-n84FeFomXGGXyCIMk.mft (raw, json) Hash identifier: pq1bbI9fVzH04/Wk2W/QzA2scP4z+QHEDWciLOf5Ong= Subject key identifier: D1:B5:3E:50:71:B9:22:AD:52:B8:87:67:59:92:F6:25:2B:84:28:33 Authority key identifier: E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 Certificate issuer: /CN=A916DED9/serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Certificate serial: 014B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft Manifest number: 0149 Signing time: Sat 23 Aug 2025 04:23:12 +0000 Manifest this update: Sat 23 Aug 2025 04:23:12 +0000 Manifest next update: Sat 30 Aug 2025 04:23:12 +0000 Files and hashes: 1: 4W5PZeLjl-n84FeFomXGGXyCIMk.crl (hash: GnoKZALXMHTiVeVKYx2Gx+hM9ReI8rSEkP9Vc6e381w=) 2: 880E53BC852A11EE8B988A85C4F9AE02.roa (hash: SuIwbjVFIiO//MYlkWAI7JLL+Gi6my0EIFtFpMkp/oM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DED9, serialNumber=E16E4F65E2E397E9FCE05785A265C6197C8220C9 Validity Not Before: Aug 23 04:23:12 2025 GMT Not After : Aug 30 04:23:12 2025 GMT Subject: CN=68a94230-0202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7c:63:7d:ca:7c:8c:55:9f:4a:28:c5:3d:77: 92:08:6b:58:3e:25:ed:22:b3:63:a6:11:36:ef:77: ee:a1:a3:4c:8a:55:50:0d:47:2d:2d:73:c4:ac:61: 0a:53:2c:89:57:25:63:6c:f4:c2:34:8e:e3:7f:7c: f3:0b:31:6e:2d:76:99:74:d8:39:22:e9:27:b7:c8: 58:a5:90:50:47:0f:66:01:6c:08:0e:cd:1e:e4:58: a4:be:82:73:8d:b9:84:f3:16:95:59:63:b2:a4:db: 90:0e:19:34:ee:f9:4b:4a:d3:8e:98:e8:1f:b6:88: 50:d1:11:03:16:cb:97:8d:e6:bf:42:9a:81:85:1d: fc:8a:b1:d4:52:bc:e8:83:a1:c9:9c:8a:07:54:cc: a9:e0:f2:80:5e:54:91:de:52:20:fb:2a:0d:fc:08: 20:b7:b0:4f:a1:a5:16:ba:16:c7:99:62:39:03:30: 78:45:34:32:a4:93:88:67:f7:50:1c:45:5e:0b:bf: fc:fb:5c:63:ca:ac:b3:f6:f8:88:46:88:45:68:12: 98:ce:d0:ec:2d:1f:f6:38:74:ad:74:58:6a:cf:74: 8c:00:c1:20:e9:10:7b:6f:60:1f:42:9b:d8:ce:7d: f2:a9:3d:7a:8d:4d:83:03:eb:36:8d:48:62:80:fb: b1:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:B5:3E:50:71:B9:22:AD:52:B8:87:67:59:92:F6:25:2B:84:28:33 X509v3 Authority Key Identifier: keyid:E1:6E:4F:65:E2:E3:97:E9:FC:E0:57:85:A2:65:C6:19:7C:82:20:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4W5PZeLjl-n84FeFomXGGXyCIMk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DED9/DF15B3B8852911EEAFD04C84C4F9AE02/4W5PZeLjl-n84FeFomXGGXyCIMk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:95:35:22:be:d4:7b:44:fb:be:bd:d3:10:08:7f:3f:a9:62: 87:30:24:1d:a0:12:57:e8:76:b8:f4:58:1a:f5:c2:81:ec:7a: ff:27:74:bc:b6:ed:54:b8:4e:24:3f:c3:19:2a:5a:92:02:4d: 0c:b7:99:a4:19:77:05:26:3d:a9:83:74:8b:0f:46:17:04:47: f2:d8:5a:ee:2a:bd:f3:80:a8:09:fe:7f:56:1d:bf:af:54:97: af:98:95:21:f0:b7:c1:a2:3e:c6:bc:4b:4d:89:5a:e3:d7:5d: 47:ab:69:6f:2b:72:1e:df:af:64:ed:c6:a3:ae:f9:7e:35:a7: a7:07:a1:66:51:ee:02:c0:5a:fc:f3:9f:74:d8:8d:2e:5e:a9: 56:b9:32:88:58:6b:35:cb:6a:ff:03:3b:da:c2:5d:2e:35:94: b3:de:f7:a5:66:25:f4:f6:53:a4:81:56:49:10:6d:7d:d9:af: cb:f3:e7:43:16:d0:0e:6f:b4:c3:d4:5f:8e:57:42:81:f7:2c: 70:3a:6a:e8:be:2e:ac:d8:1d:90:ab:1b:5e:21:0d:f8:53:9f: bc:3c:94:bc:ef:37:b8:40:e7:b9:ea:59:35:65:1c:53:b2:5b: 93:6a:4c:01:62:7b:5c:63:cc:ad:b1:01:59:12:7e:a6:b0:8e: 66:b3:08:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRFRDkxMTAvBgNVBAUTKEUxNkU0RjY1RTJFMzk3RTlGQ0UwNTc4NUEyNjVDNjE5 N0M4MjIwQzkwHhcNMjUwODIzMDQyMzEyWhcNMjUwODMwMDQyMzEyWjAYMRYwFAYD VQQDEw02OGE5NDIzMC0wMjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHxjfcp8jFWfSijFPXeSCGtYPiXtIrNjphE273fuoaNMilVQDUctLXPErGEK UyyJVyVjbPTCNI7jf3zzCzFuLXaZdNg5Iuknt8hYpZBQRw9mAWwIDs0e5FikvoJz jbmE8xaVWWOypNuQDhk07vlLStOOmOgftohQ0REDFsuXjea/QpqBhR38irHUUrzo g6HJnIoHVMyp4PKAXlSR3lIg+yoN/Aggt7BPoaUWuhbHmWI5AzB4RTQypJOIZ/dQ HEVeC7/8+1xjyqyz9viIRohFaBKYztDsLR/2OHStdFhqz3SMAMEg6RB7b2AfQpvY zn3yqT16jU2DA+s2jUhigPuxrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNG1PlBx uSKtUriHZ1mS9iUrhCgzMB8GA1UdIwQYMBaAFOFuT2Xi45fp/OBXhaJlxhl8giDJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REVEOS9ERjE1QjNCODg1 MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwtbjg0RmVGb21YR0dYeUNJ TWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRXNVBaZUxqbC1uODRGZUZvbVhHR1h5Q0lNay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 REVEOS9ERjE1QjNCODg1MjkxMUVFQUZEMDRDODRDNEY5QUUwMi80VzVQWmVMamwt bjg0RmVGb21YR0dYeUNJTWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+lTUivtR7RPu+vdMQCH8/qWKHMCQdoBJX6Ha49Fga9cKB7Hr/J3S8 tu1UuE4kP8MZKlqSAk0Mt5mkGXcFJj2pg3SLD0YXBEfy2FruKr3zgKgJ/n9WHb+v VJevmJUh8LfBoj7GvEtNiVrj111Hq2lvK3Ie369k7cajrvl+NaenB6FmUe4CwFr8 85902I0uXqlWuTKIWGs1y2r/Azvawl0uNZSz3velZiX09lOkgVZJEG192a/L8+dD FtAOb7TD1F+OV0KB9yxwOmrovi6s2B2QqxteIQ34U5+8PJS87ze4QOe56lk1ZRxT sluTakwBYntcY8ytsQFZEn6msI5mswhu -----END CERTIFICATE-----Generated at Sat Aug 23 19:25:41 2025 by rpki-client