$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: KO1LFquYdp7IRPV7UQjdM8aHm8D/MUxplsugJbVEG8Q= Subject key identifier: 36:1D:FF:D6:31:A9:C1:0A:EA:09:D7:E9:C8:67:32:A3:C1:D0:C9:1B Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0523 Signing time: Fri 22 Aug 2025 23:44:49 +0000 Manifest this update: Fri 22 Aug 2025 23:44:48 +0000 Manifest next update: Fri 29 Aug 2025 23:44:48 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: LF3mG9jSdv3rQUY5gJVl80pAN+5vol1XgxDEqQpsWEw=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:44:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Aug 22 23:44:48 2025 GMT Not After : Aug 29 23:44:48 2025 GMT Subject: CN=68a900f1-5fab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8b:fd:4f:67:9f:ef:38:21:bc:83:f4:c6:b9: 39:12:05:d4:4d:7e:d7:2d:2c:65:24:00:1c:66:29: 6b:2e:76:12:e8:34:8c:92:3e:f7:3f:12:78:1b:41: 52:b1:6c:be:73:6b:b9:66:13:d6:ba:4d:05:6f:01: 71:c2:f0:af:be:df:4c:56:c4:5b:14:42:d6:db:ba: aa:44:1a:74:c7:53:93:9a:2e:0d:6a:a7:d0:be:4d: c7:34:25:fa:51:e1:cd:6e:5b:e1:31:5c:1e:41:0c: c5:25:e1:9f:60:db:fd:63:78:b6:02:fb:4a:ce:ed: f5:ed:10:c7:e5:0a:c0:d7:63:b9:d9:3b:83:bd:17: a5:60:be:d0:27:35:d4:b2:52:ec:43:17:d1:01:60: 63:f5:11:08:5c:a8:19:1a:c3:9f:f0:08:e9:32:8d: c1:2c:52:ac:f2:97:2c:c0:e4:76:ea:f0:2e:c7:b0: 01:b1:bf:c9:6c:16:f6:e2:ca:40:6f:73:02:05:44: b3:13:f9:76:50:24:2a:22:57:19:6e:dd:dc:98:35: 8f:a1:80:0a:8a:29:b7:ab:20:c1:16:e7:9c:3e:c0: 5e:9f:ed:9c:25:87:8d:5a:bc:75:08:6e:e7:c3:1e: 1a:d2:d9:3d:4b:e5:fb:26:3f:70:ea:d9:be:08:f9: 5c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:1D:FF:D6:31:A9:C1:0A:EA:09:D7:E9:C8:67:32:A3:C1:D0:C9:1B X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:3e:60:3c:74:ed:6b:33:62:73:a6:ba:eb:4b:19:ae:e2:a2: 6d:84:28:ec:2e:73:3c:0e:73:50:87:96:b6:79:03:8b:a1:00: 63:75:e9:7a:8a:b9:55:89:c8:48:4d:26:b0:74:73:a5:c1:32: f0:c7:38:1e:ee:18:67:1f:9e:4a:e5:94:cd:5f:a0:4b:dd:e7: 89:74:12:08:87:70:fa:6e:16:62:24:89:bd:f3:54:40:8f:09: 1e:23:e2:e9:42:04:67:cc:08:b8:0c:eb:f8:9e:86:93:6f:6f: 30:2c:b3:cd:02:4f:eb:00:02:05:f2:49:2d:51:f1:3c:ae:9c: c1:68:87:c4:cd:04:7e:8d:80:68:9b:5e:bc:d2:ef:1e:41:39: 10:91:f1:ef:b4:2f:8f:4f:48:22:f4:b7:24:39:dc:e5:16:30: 19:90:92:2f:5d:e2:ab:72:16:3d:39:a5:d8:bc:ce:22:89:c4: 6f:8c:1f:83:b9:75:ca:a8:3a:c4:d5:33:d2:2c:de:75:c3:06: a3:3c:ad:a1:2d:ba:55:98:92:83:2a:8c:a4:c3:cd:90:99:f0: 61:e8:1d:6f:65:db:cf:ac:80:4b:ff:41:dc:30:c8:6e:6f:a7: ad:8c:d3:ca:0e:74:f0:10:ef:0b:73:41:d5:9e:44:91:a9:ca: 1a:aa:91:56 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwODIyMjM0NDQ4WhcNMjUwODI5MjM0NDQ4WjAYMRYwFAYD VQQDEw02OGE5MDBmMS01ZmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYv9T2ef7zghvIP0xrk5EgXUTX7XLSxlJAAcZilrLnYS6DSMkj73PxJ4G0FS sWy+c2u5ZhPWuk0FbwFxwvCvvt9MVsRbFELW27qqRBp0x1OTmi4NaqfQvk3HNCX6 UeHNblvhMVweQQzFJeGfYNv9Y3i2AvtKzu317RDH5QrA12O52TuDvRelYL7QJzXU slLsQxfRAWBj9REIXKgZGsOf8AjpMo3BLFKs8pcswOR26vAux7ABsb/JbBb24spA b3MCBUSzE/l2UCQqIlcZbt3cmDWPoYAKiim3qyDBFuecPsBen+2cJYeNWrx1CG7n wx4a0tk9S+X7Jj9w6tm+CPlcjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDYd/9Yx qcEK6gnX6chnMqPB0MkbMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaPmA8dO1rM2JzprrrSxmu4qJthCjsLnM8DnNQh5a2eQOLoQBjdel6 irlVichITSawdHOlwTLwxzge7hhnH55K5ZTNX6BL3eeJdBIIh3D6bhZiJIm981RA jwkeI+LpQgRnzAi4DOv4noaTb28wLLPNAk/rAAIF8kktUfE8rpzBaIfEzQR+jYBo m1680u8eQTkQkfHvtC+PT0gi9LckOdzlFjAZkJIvXeKrchY9OaXYvM4iicRvjB+D uXXKqDrE1TPSLN51wwajPK2hLbpVmJKDKoykw82QmfBh6B1vZdvPrIBL/0HcMMhu b6etjNPKDnTwEO8Lc0HVnkSRqcoaqpFW -----END CERTIFICATE-----Generated at Sat Aug 23 20:38:32 2025 by rpki-client