$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: RI/YRZR7TIN6MUjpXqHxDDMHTrq0YBM879ckLDyVHKE= Subject key identifier: 62:9B:DD:C3:4C:47:0B:ED:32:03:10:6C:61:56:00:14:0E:36:FD:F9 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 1D Signing time: Sat 23 Aug 2025 08:07:34 +0000 Manifest this update: Sat 23 Aug 2025 08:07:34 +0000 Manifest next update: Sat 30 Aug 2025 08:07:34 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: bbCR697644mCiAZGp02l/p8ygOyjOHwq4b3QDKsCKzs=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:07:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Aug 23 08:07:34 2025 GMT Not After : Aug 30 08:07:34 2025 GMT Subject: CN=68a976c6-4a4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3a:49:d3:ec:6b:98:9f:81:06:30:02:7b:0b: d7:a8:f5:99:3f:c9:8a:0a:c0:32:68:42:72:3c:70: 8c:6a:4a:db:db:ea:74:71:5e:00:8f:6b:fa:a9:c8: 72:00:9d:25:87:fb:d0:0e:7e:28:2a:fd:4a:24:b1: 44:3f:d4:ca:19:a5:77:25:cc:dd:6f:72:bd:20:2e: 56:0d:85:3b:4f:3e:74:2a:c6:2d:46:c8:92:1c:4c: 91:f7:0d:e8:4d:67:67:db:d6:ca:f1:14:26:a4:20: 75:99:9d:76:14:aa:9c:78:ef:4b:c5:b9:c4:e5:27: 08:43:c2:61:6d:60:fb:ab:2f:a8:c6:f8:e9:29:25: 3d:c3:4f:37:f5:76:c9:77:2a:f3:6b:26:25:ff:8b: d1:c7:68:13:23:d3:aa:94:d1:4b:64:ab:ff:4d:79: 84:6d:2d:d1:12:41:34:00:bb:16:5f:e8:b3:25:3b: 39:ee:ef:19:9c:d7:27:7b:bb:1e:ca:55:61:cf:b5: c0:5c:ab:94:43:90:de:e8:d9:51:f1:d0:1e:3b:58: 02:64:36:c5:a8:11:dd:c5:60:c0:b3:15:26:a1:04: 22:f9:94:84:18:a4:af:08:30:ef:f0:6a:c2:3b:84: 91:51:9a:48:83:01:9c:8d:13:e0:ba:6d:cb:d1:c9: 26:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:9B:DD:C3:4C:47:0B:ED:32:03:10:6C:61:56:00:14:0E:36:FD:F9 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:42:4f:3c:ea:e3:6e:66:9c:15:21:25:ca:79:04:81:42:45: e3:54:55:5a:e3:9a:e2:d6:5e:32:39:4a:43:bd:da:aa:b0:2b: 45:d2:4b:d1:9c:f9:0b:e8:91:b4:50:d6:f7:03:1f:f6:ed:44: e0:a3:19:18:74:34:e0:29:dc:36:88:c4:a7:ee:80:c0:b0:a9: ac:cc:85:f4:d1:95:3e:79:89:2a:4a:2f:64:01:33:1b:d2:a0: 1f:48:c4:be:1f:ed:83:83:de:8d:55:31:f5:74:a4:12:df:2b: 53:31:83:7f:19:86:57:42:40:43:53:a4:9e:ba:85:34:e6:6e: 95:a0:9d:1e:90:41:02:dd:79:05:3a:ba:05:9b:b5:38:0d:d2: 3c:bd:05:ee:68:3c:5a:f7:2d:ed:58:36:2e:03:3e:0c:66:fe: 4e:d5:a9:7e:78:08:24:9f:0b:a0:cd:f4:ad:58:48:15:db:30: 53:24:fb:26:d0:42:65:ea:6c:fd:e9:3e:bf:e3:90:bc:b9:66: fb:fc:8b:7f:43:f3:03:38:98:77:25:21:55:07:68:cc:41:de: a7:10:d8:75:39:e9:c9:b3:47:67:39:97:7e:5f:02:a8:2d:95: a0:25:3b:cb:df:d5:26:64:f9:a5:c2:4e:31:3f:cd:20:43:86: 4e:94:e8:8a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTA4MjMwODA3MzRaFw0yNTA4MzAwODA3MzRaMBgxFjAUBgNV BAMTDTY4YTk3NmM2LTRhNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAOknT7GuYn4EGMAJ7C9eo9Zk/yYoKwDJoQnI8cIxqStvb6nRxXgCPa/qpyHIA nSWH+9AOfigq/UoksUQ/1MoZpXclzN1vcr0gLlYNhTtPPnQqxi1GyJIcTJH3DehN Z2fb1srxFCakIHWZnXYUqpx470vFucTlJwhDwmFtYPurL6jG+OkpJT3DTzf1dsl3 KvNrJiX/i9HHaBMj06qU0Utkq/9NeYRtLdESQTQAuxZf6LMlOznu7xmc1yd7ux7K VWHPtcBcq5RDkN7o2VHx0B47WAJkNsWoEd3FYMCzFSahBCL5lIQYpK8IMO/wasI7 hJFRmkiDAZyNE+C6bcvRySZJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUYpvdw0xH C+0yAxBsYVYAFA42/fkwHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADBCTzzq425mnBUhJcp5BIFCReNUVVrjmuLWXjI5SkO92qqwK0XSS9Gc +QvokbRQ1vcDH/btROCjGRh0NOAp3DaIxKfugMCwqazMhfTRlT55iSpKL2QBMxvS oB9IxL4f7YOD3o1VMfV0pBLfK1Mxg38ZhldCQENTpJ66hTTmbpWgnR6QQQLdeQU6 ugWbtTgN0jy9Be5oPFr3Le1YNi4DPgxm/k7VqX54CCSfC6DN9K1YSBXbMFMk+ybQ QmXqbP3pPr/jkLy5Zvv8i39D8wM4mHclIVUHaMxB3qcQ2HU56cmzR2c5l35fAqgt laAlO8vf1SZk+aXCTjE/zSBDhk6U6Io= -----END CERTIFICATE-----Generated at Sat Aug 23 12:35:58 2025 by rpki-client