$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: k8U+SovE3J3D3Oy3RFzFK7xI/Np7KLr/GzJeflPsnyQ= Subject key identifier: 1A:29:86:64:55:B4:17:88:27:34:93:52:83:19:02:A5:0A:12:B4:48 Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01BD Signing time: Sat 23 Aug 2025 03:10:12 +0000 Manifest this update: Sat 23 Aug 2025 03:10:11 +0000 Manifest next update: Sat 30 Aug 2025 03:10:11 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: +ktfuqKIzj7lCO48Kv2+R77gxfeIybvktMzZdVtxS+Y=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:10:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 458 (0x1ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Aug 23 03:10:11 2025 GMT Not After : Aug 30 03:10:11 2025 GMT Subject: CN=68a93114-df5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3b:1e:e3:25:59:cc:f7:5e:01:10:e6:36:e6: 47:3a:27:2c:61:ad:82:f7:4b:32:db:ba:57:73:76: 37:b4:1d:ea:d4:9e:f1:9d:6e:c2:9e:bf:e6:2c:73: 5b:d4:5d:a2:8f:ec:21:66:4d:5d:cc:e6:5f:7f:52: 04:84:de:ac:ab:07:85:09:a5:f5:c8:d8:94:81:5c: bf:86:da:a5:1c:e0:fb:39:5e:07:9b:8b:6a:3d:b3: 62:e5:08:a4:30:68:92:5a:e5:76:3e:81:37:5d:a8: e4:3c:97:8c:22:d5:5e:43:2f:1d:20:ed:9b:1c:d4: 07:59:df:4f:c8:84:3f:b9:7f:ab:45:31:71:20:29: a6:0c:15:38:92:c6:0b:5f:5a:38:3b:26:8c:1e:fe: 8c:05:21:52:38:bd:76:8d:5a:6d:72:a7:e0:46:53: 71:d3:62:08:9a:53:99:ee:83:9e:40:cb:5b:4e:75: 2e:9d:d8:63:30:4c:bc:85:04:35:3f:d5:e4:2a:07: 4d:94:f3:b7:70:96:39:e4:a6:a1:be:20:95:3f:40: 2a:13:1a:61:29:62:7f:71:7b:ce:73:80:73:bc:d0: be:f5:06:bd:39:54:eb:76:d6:23:78:15:f3:0a:5a: 86:de:ef:f0:04:7f:00:02:ec:79:76:9c:6a:83:26: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:29:86:64:55:B4:17:88:27:34:93:52:83:19:02:A5:0A:12:B4:48 X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:b0:90:65:e2:4d:66:bb:cc:12:cc:bd:ae:27:37:7c:e3:68: ae:45:bc:48:62:f5:b7:14:18:2e:df:c7:95:12:b1:68:31:03: 63:43:a4:0c:e7:20:22:ac:3f:ea:42:98:a1:45:55:38:7a:39: 65:be:ae:ef:18:91:b2:a2:8b:92:74:42:4a:6a:99:75:02:41: 04:19:ac:94:f7:74:3b:35:99:bf:57:29:7c:97:8a:48:b9:02: 05:a9:5d:64:ba:b5:06:36:36:03:4b:8c:67:ac:06:fa:9b:32: 7b:f1:c3:83:c1:ca:62:4f:20:51:64:19:2d:6f:63:77:53:5e: fa:72:d0:12:33:71:6e:c9:cc:3c:c0:51:10:43:a5:44:b2:d9: ec:93:3e:b8:d4:84:5e:d1:86:23:47:49:77:6d:87:39:4b:4a: ec:af:3a:69:5d:7e:cb:9f:1d:3c:df:6f:af:f7:7c:93:22:22: fa:93:9e:d0:5a:9b:87:20:d9:46:01:a6:9d:c0:12:41:e5:f2: a0:c3:93:26:67:18:cb:88:96:29:92:ad:d4:b5:5d:26:58:12: 7b:8b:92:88:8b:90:6b:06:d8:0a:36:4c:54:36:5f:17:fe:c1: 7a:11:08:ba:d9:64:6a:f0:3b:cb:a7:ce:04:68:c6:89:bf:1a: f0:f1:b6:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwODIzMDMxMDExWhcNMjUwODMwMDMxMDExWjAYMRYwFAYD VQQDEw02OGE5MzExNC1kZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzse4yVZzPdeARDmNuZHOicsYa2C90sy27pXc3Y3tB3q1J7xnW7Cnr/mLHNb 1F2ij+whZk1dzOZff1IEhN6sqweFCaX1yNiUgVy/htqlHOD7OV4Hm4tqPbNi5Qik MGiSWuV2PoE3XajkPJeMItVeQy8dIO2bHNQHWd9PyIQ/uX+rRTFxICmmDBU4ksYL X1o4OyaMHv6MBSFSOL12jVptcqfgRlNx02IImlOZ7oOeQMtbTnUundhjMEy8hQQ1 P9XkKgdNlPO3cJY55KahviCVP0AqExphKWJ/cXvOc4BzvNC+9Qa9OVTrdtYjeBXz ClqG3u/wBH8AAux5dpxqgyayPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBophmRV tBeIJzSTUoMZAqUKErRIMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5sJBl4k1mu8wSzL2uJzd842iuRbxIYvW3FBgu38eVErFoMQNjQ6QM 5yAirD/qQpihRVU4ejllvq7vGJGyoouSdEJKapl1AkEEGayU93Q7NZm/Vyl8l4pI uQIFqV1kurUGNjYDS4xnrAb6mzJ78cODwcpiTyBRZBktb2N3U176ctASM3Fuycw8 wFEQQ6VEstnskz641IRe0YYjR0l3bYc5S0rsrzppXX7Lnx0832+v93yTIiL6k57Q WpuHINlGAaadwBJB5fKgw5MmZxjLiJYpkq3UtV0mWBJ7i5KIi5BrBtgKNkxUNl8X /sF6EQi62WRq8DvLp84EaMaJvxrw8bbq -----END CERTIFICATE-----Generated at Sun Aug 24 05:02:43 2025 by rpki-client