$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: t0jQJ+g/UyJR1UE2NB+/cCtJAdvhpmJKk1/VH2A2iQ4= Subject key identifier: 90:17:65:30:45:08:EB:2B:93:3D:42:31:02:A7:E2:E8:BB:98:B6:1A Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B21 Signing time: Fri 22 Aug 2025 19:24:57 +0000 Manifest this update: Fri 22 Aug 2025 19:24:56 +0000 Manifest next update: Fri 29 Aug 2025 19:24:56 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: 2dkHz4lJOJw0iOJTnRYpdbPs1/JkxfhEllXN0Y1UZEw=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2856 (0xb28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Aug 22 19:24:56 2025 GMT Not After : Aug 29 19:24:56 2025 GMT Subject: CN=68a8c409-97a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:58:fe:fe:28:fb:98:eb:25:64:1b:25:62:23: 57:42:a5:42:49:94:d1:9f:9e:9b:54:44:c9:52:c5: c8:98:12:f9:b6:c6:d7:f1:ee:13:cc:e5:ee:99:85: 28:a0:fe:1c:39:7c:3f:78:fa:c2:9e:c6:6e:2f:83: d9:4f:61:e4:41:27:4e:00:cf:47:07:20:3f:57:92: 31:94:06:4f:bd:c1:65:19:fc:f4:5f:5f:7c:3f:ae: 4a:0e:1d:11:2b:5d:ac:45:0d:52:8e:e5:b9:70:a0: 8f:61:4a:6f:85:e4:ac:d2:94:7b:73:ca:1f:9b:f7: 81:2f:a8:ee:30:c9:fe:1c:54:25:ce:0a:74:e4:f2: 22:77:8e:bc:f5:6a:51:c7:a8:3a:1f:83:74:6d:09: 1e:4d:97:b3:a1:b9:78:9f:1f:32:31:22:a8:5f:42: f1:45:d3:70:a4:fa:77:bd:95:26:78:c8:d0:80:05: 9d:6d:30:f3:53:02:33:b0:ae:fb:ec:d9:8f:7f:d3: fe:1d:72:8e:d3:ff:89:0d:cb:e6:75:8a:10:b9:b0: 47:d7:78:d2:85:47:89:f8:8e:3f:69:20:01:82:f3: 0f:71:50:14:93:4b:f0:ed:84:08:f5:ce:fd:60:c8: 08:0c:bd:7e:31:8d:49:22:9f:f3:1c:dc:6b:33:04: ab:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:17:65:30:45:08:EB:2B:93:3D:42:31:02:A7:E2:E8:BB:98:B6:1A X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:b0:4e:eb:e2:dd:2c:e4:b1:49:50:2e:7b:40:fb:9e:5a:ac: 54:56:f6:77:27:44:2e:4c:86:08:f4:bb:f3:1c:5d:bd:ec:7b: e0:6c:28:19:aa:a4:19:d8:ff:9b:b6:81:e5:af:38:ec:59:6a: f0:a1:ca:b3:9f:7b:05:3c:7b:58:bf:a5:57:79:0e:c6:fe:c0: 34:41:30:fe:74:53:06:fc:a6:cf:77:28:49:fa:b5:d6:68:74: b9:60:b9:18:5d:0d:a0:87:05:9d:a9:93:ec:21:ba:cd:0c:a8: c3:da:d5:a4:44:f4:2b:11:c0:e1:2f:fd:7d:a5:12:0c:40:dd: 51:ab:fd:d1:33:54:af:35:00:21:f6:e2:57:de:dd:c7:be:95: ab:a0:c9:cb:a0:1b:9c:f8:10:e6:0e:2c:0c:10:f6:cd:21:ad: b1:7f:14:a8:a2:ff:40:69:15:44:9a:a9:2f:9e:05:bc:bb:6a: ec:46:b7:f8:3a:ab:4d:e0:93:cd:a2:c1:da:35:0a:87:d8:07: 85:a2:a2:ad:fc:60:7c:11:b4:fb:74:e9:f8:5d:51:57:c2:24: bf:09:be:ac:30:e2:ed:95:58:85:2f:da:55:54:42:a5:ec:98: 2f:7a:aa:a5:f3:75:f8:a8:9a:13:c4:3d:e5:40:c2:01:bf:fc: dc:c4:1c:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwODIyMTkyNDU2WhcNMjUwODI5MTkyNDU2WjAYMRYwFAYD VQQDEw02OGE4YzQwOS05N2EyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1j+/ij7mOslZBslYiNXQqVCSZTRn56bVETJUsXImBL5tsbX8e4TzOXumYUo oP4cOXw/ePrCnsZuL4PZT2HkQSdOAM9HByA/V5IxlAZPvcFlGfz0X198P65KDh0R K12sRQ1SjuW5cKCPYUpvheSs0pR7c8ofm/eBL6juMMn+HFQlzgp05PIid4689WpR x6g6H4N0bQkeTZezobl4nx8yMSKoX0LxRdNwpPp3vZUmeMjQgAWdbTDzUwIzsK77 7NmPf9P+HXKO0/+JDcvmdYoQubBH13jShUeJ+I4/aSABgvMPcVAUk0vw7YQI9c79 YMgIDL1+MY1JIp/zHNxrMwSrswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJAXZTBF COsrkz1CMQKn4ui7mLYaMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzsE7r4t0s5LFJUC57QPueWqxUVvZ3J0QuTIYI9LvzHF297HvgbCgZ qqQZ2P+btoHlrzjsWWrwocqzn3sFPHtYv6VXeQ7G/sA0QTD+dFMG/KbPdyhJ+rXW aHS5YLkYXQ2ghwWdqZPsIbrNDKjD2tWkRPQrEcDhL/19pRIMQN1Rq/3RM1SvNQAh 9uJX3t3HvpWroMnLoBuc+BDmDiwMEPbNIa2xfxSoov9AaRVEmqkvngW8u2rsRrf4 OqtN4JPNosHaNQqH2AeFoqKt/GB8EbT7dOn4XVFXwiS/Cb6sMOLtlViFL9pVVEKl 7Jgveqql83X4qJoTxD3lQMIBv/zcxBy5 -----END CERTIFICATE-----Generated at Sat Aug 23 15:14:50 2025 by rpki-client