$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: YAU9OLmRCi2IABybYMz410qV/eCBhbuwl+WEtDL76/k= Subject key identifier: 9E:62:B7:7A:9C:59:48:EE:D7:28:51:6B:CE:CF:48:50:C8:95:45:08 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 049B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 0495 Signing time: Sat 23 Aug 2025 00:13:04 +0000 Manifest this update: Sat 23 Aug 2025 00:13:03 +0000 Manifest next update: Sat 30 Aug 2025 00:13:03 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: STteak6uLJ7vWNiFRDls+ynIn8mKvAOuMsJY/Fer2Ik=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:13:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1179 (0x49b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Aug 23 00:13:03 2025 GMT Not After : Aug 30 00:13:03 2025 GMT Subject: CN=68a9078f-fbeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d5:c3:6b:3d:f2:f5:84:7a:6d:af:be:0d:a0: e3:5f:cb:fb:6a:a1:b4:80:fb:f0:90:e9:1a:b9:ed: 27:1a:54:da:ae:f5:fa:a7:86:7d:22:aa:ab:5e:51: 7e:17:e0:94:63:32:16:47:7e:6a:18:40:b4:28:2e: 61:f7:e2:9f:6c:b9:88:d7:fa:1b:b9:ef:34:0f:be: 85:b2:e1:d8:67:80:f8:68:0d:fa:e5:32:4d:3a:7d: b7:b9:0e:2d:03:61:32:ab:39:47:4b:b5:e1:70:51: c5:dd:e3:78:49:ed:d5:f2:64:8a:16:27:b7:19:bc: 61:53:d3:6b:8b:a8:50:8e:d9:3f:cf:75:bf:6f:fd: 7b:9b:17:74:71:bb:e8:64:e8:0e:ab:f7:17:fb:72: 35:17:84:52:6f:b9:f7:fb:ad:95:e5:91:ff:d5:7f: 5a:f9:3d:65:73:df:76:f4:11:b5:96:f3:2f:f2:ec: b7:20:cc:fc:29:43:37:cc:9f:d8:92:fb:da:97:eb: a8:c3:de:3c:9c:1c:9f:4c:76:2e:fb:36:12:4b:44: b5:74:06:29:71:25:85:dc:93:c5:3b:05:9d:40:5d: 73:dd:36:0a:d8:9f:e5:fb:0d:68:a8:86:b2:5d:de: fa:03:a8:48:4c:86:98:e5:9a:85:d2:20:69:0a:a0: 9a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:62:B7:7A:9C:59:48:EE:D7:28:51:6B:CE:CF:48:50:C8:95:45:08 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:1f:bc:9c:c3:13:1b:0d:b9:6c:a9:d9:22:6e:11:8b:81:ab: 85:76:e7:28:cd:41:b3:6a:7d:02:8a:4b:fc:eb:b8:e4:b0:e4: 82:7b:76:cb:7b:70:a7:13:0a:47:db:89:e0:b2:2f:13:3a:7b: 90:7d:e0:f1:b3:f0:87:c5:31:86:00:09:ee:94:b3:a0:7b:40: bb:8d:a9:f4:98:97:c0:e2:1c:60:d7:db:9a:95:c6:1e:2e:9e: 93:1f:bc:20:d9:90:13:ff:ec:13:2e:c1:f2:8e:a3:9b:54:ac: 49:b5:97:08:45:57:0c:11:80:58:fd:0c:f6:d6:e6:a5:7e:a7: 5c:cb:ae:59:3f:84:ab:c2:9e:d5:cf:99:9d:d2:d7:99:44:f6: 31:26:eb:c2:ce:02:79:73:9c:70:40:96:dd:94:a9:d0:59:7a: 0d:57:e6:66:42:25:28:77:f9:a4:07:fb:bf:3d:a9:ff:6e:b6: 31:07:68:a6:b8:14:03:72:08:16:f0:99:c0:1a:4e:ed:c8:2c: d4:4e:0c:46:f0:8b:4e:41:73:44:24:e9:a4:02:bc:cd:77:5a: c3:fa:b9:31:dc:94:ab:12:55:00:d7:cc:4c:d7:ba:6d:d7:77: 9e:db:09:04:79:37:84:e9:c8:a4:a7:8e:cb:6d:ba:fa:0e:80: d6:14:f1:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUwODIzMDAxMzAzWhcNMjUwODMwMDAxMzAzWjAYMRYwFAYD VQQDEw02OGE5MDc4Zi1mYmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtXDaz3y9YR6ba++DaDjX8v7aqG0gPvwkOkaue0nGlTarvX6p4Z9IqqrXlF+ F+CUYzIWR35qGEC0KC5h9+KfbLmI1/obue80D76FsuHYZ4D4aA365TJNOn23uQ4t A2EyqzlHS7XhcFHF3eN4Se3V8mSKFie3GbxhU9Nri6hQjtk/z3W/b/17mxd0cbvo ZOgOq/cX+3I1F4RSb7n3+62V5ZH/1X9a+T1lc9929BG1lvMv8uy3IMz8KUM3zJ/Y kvval+uow948nByfTHYu+zYSS0S1dAYpcSWF3JPFOwWdQF1z3TYK2J/l+w1oqIay Xd76A6hITIaY5ZqF0iBpCqCaewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ5it3qc WUju1yhRa87PSFDIlUUIMB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiH7ycwxMbDblsqdkibhGLgauFducozUGzan0Cikv867jksOSCe3bL e3CnEwpH24ngsi8TOnuQfeDxs/CHxTGGAAnulLOge0C7jan0mJfA4hxg19ualcYe Lp6TH7wg2ZAT/+wTLsHyjqObVKxJtZcIRVcMEYBY/Qz21ualfqdcy65ZP4Srwp7V z5md0teZRPYxJuvCzgJ5c5xwQJbdlKnQWXoNV+ZmQiUod/mkB/u/Pan/brYxB2im uBQDcggW8JnAGk7tyCzUTgxG8ItOQXNEJOmkArzNd1rD+rkx3JSrElUA18xM17pt 13ee2wkEeTeE6cikp47Lbbr6DoDWFPHe -----END CERTIFICATE-----Generated at Sat Aug 23 15:35:28 2025 by rpki-client