$ rpki-client -vvf rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft File: aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft (raw, json) Hash identifier: lO9Mi9zj1oqiZA5PumvrZ6hgAvP8pSqSl+ztA+R6MBo= Subject key identifier: FB:C0:E1:20:D9:39:58:D6:F9:52:23:CE:9B:A9:C6:F8:D8:0A:8A:A5 Authority key identifier: 68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 Certificate issuer: /CN=A9174125/serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Certificate serial: 14D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft Manifest number: 14D2 Signing time: Fri 22 Aug 2025 16:58:21 +0000 Manifest this update: Fri 22 Aug 2025 16:58:21 +0000 Manifest next update: Fri 29 Aug 2025 16:58:21 +0000 Files and hashes: 1: aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl (hash: wLq96Ul1R3UOW/yUOu74odYaQwPxZ4eJaNlm3eq2ssU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5330 (0x14d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174125, serialNumber=68C61197EBA41A64D85F2559E1D40D6E75FCB710 Validity Not Before: Aug 22 16:58:21 2025 GMT Not After : Aug 29 16:58:21 2025 GMT Subject: CN=68a8a1ad-f032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:18:02:67:b8:fa:6c:d9:44:d1:85:62:31: 32:b1:4d:f5:f5:1e:a6:6b:1c:9f:e0:9f:ec:16:9e: e7:5d:2f:86:f6:af:06:23:51:da:d9:31:47:e6:bb: c3:55:e2:48:65:33:a5:4b:ee:a1:a7:ff:73:ab:50: 09:d6:e7:97:21:94:68:ac:5b:28:27:41:e8:20:46: 3d:cf:ec:74:fb:69:9e:03:fb:2e:41:5f:51:07:25: 3c:1f:44:66:d3:72:bb:56:3a:12:5e:9f:4a:65:16: ee:58:35:28:7d:82:69:07:6a:90:e7:85:18:19:e5: ae:cd:04:2e:d7:a5:44:a1:72:05:da:f7:06:69:2c: 92:f7:01:62:e7:7d:fc:b6:e1:3e:e8:8a:fd:6a:01: 5f:60:e2:63:e6:45:cb:52:7a:4c:cb:bd:b0:48:f4: 50:d7:68:5f:04:72:9b:71:2f:91:e6:97:bf:74:4e: cd:98:75:7a:07:15:fe:50:97:0c:1f:bb:c3:70:4b: 7b:cd:87:1f:6b:6f:7d:38:d9:c0:d9:ca:4d:0f:82: 72:56:23:aa:5d:e8:7e:ee:54:6f:fc:ac:69:2b:61: 47:7c:01:f3:78:e4:33:58:fb:48:e3:b2:92:05:30: 96:19:b0:8a:81:b4:a2:77:91:aa:ba:98:63:f5:c5: 9d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C0:E1:20:D9:39:58:D6:F9:52:23:CE:9B:A9:C6:F8:D8:0A:8A:A5 X509v3 Authority Key Identifier: keyid:68:C6:11:97:EB:A4:1A:64:D8:5F:25:59:E1:D4:0D:6E:75:FC:B7:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aMYRl-ukGmTYXyVZ4dQNbnX8txA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174125/FAB6BE885D6011E8B349A80FC4F9AE02/aMYRl-ukGmTYXyVZ4dQNbnX8txA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:77:30:88:61:8c:c4:77:45:7e:6c:1f:11:18:b6:ea:84:58: bf:a1:a7:f4:c4:1d:60:ba:53:21:51:3c:d3:9d:81:c0:94:c8: 9b:25:3c:09:f9:b7:7c:8b:09:72:c8:6d:7e:3a:eb:68:93:7c: fc:8f:73:5c:ca:2d:77:d8:27:56:91:17:c0:d3:dd:bd:08:3a: 31:33:2d:08:ae:65:3f:51:80:83:84:9a:b8:2a:66:44:49:c1: 65:0d:42:ad:50:c8:cb:23:25:67:30:dc:21:89:a1:91:8a:38: eb:de:e0:32:da:e9:59:c7:7c:60:6b:b5:db:02:52:b0:36:1f: ff:6f:d5:e6:fa:87:28:cc:8a:19:a4:45:12:12:78:73:19:07: aa:b2:97:b4:3f:db:7e:dd:d2:78:93:a6:e0:bf:cc:9c:c9:04: 00:3f:cc:71:e1:84:48:39:19:7c:e6:6e:20:0c:9c:0b:5f:92: a1:67:6b:b8:a3:2f:6f:b7:bd:fc:00:70:1f:3d:02:75:62:44: a8:8f:51:87:17:f9:23:f8:d5:98:be:13:93:da:3b:43:b9:16: 56:41:f7:a7:a4:81:8b:22:99:57:b8:49:2b:cc:ce:53:52:1e: cf:1f:ec:d8:29:75:b0:c5:db:dd:ff:6f:36:12:db:cf:02:8b: fd:18:b2:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFNIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQxMjUxMTAvBgNVBAUTKDY4QzYxMTk3RUJBNDFBNjREODVGMjU1OUUxRDQwRDZF NzVGQ0I3MTAwHhcNMjUwODIyMTY1ODIxWhcNMjUwODI5MTY1ODIxWjAYMRYwFAYD VQQDEw02OGE4YTFhZC1mMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoC4YAme4+mzZRNGFYjEysU319R6maxyf4J/sFp7nXS+G9q8GI1Ha2TFH5rvD VeJIZTOlS+6hp/9zq1AJ1ueXIZRorFsoJ0HoIEY9z+x0+2meA/suQV9RByU8H0Rm 03K7VjoSXp9KZRbuWDUofYJpB2qQ54UYGeWuzQQu16VEoXIF2vcGaSyS9wFi5338 tuE+6Ir9agFfYOJj5kXLUnpMy72wSPRQ12hfBHKbcS+R5pe/dE7NmHV6BxX+UJcM H7vDcEt7zYcfa299ONnA2cpND4JyViOqXeh+7lRv/KxpK2FHfAHzeOQzWPtI47KS BTCWGbCKgbSid5Gquphj9cWdqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPvA4SDZ OVjW+VIjzpupxvjYCoqlMB8GA1UdIwQYMBaAFGjGEZfrpBpk2F8lWeHUDW51/LcQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDEyNS9GQUI2QkU4ODVE NjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dtVFlYeVZaNGRRTmJuWDh0 eEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FNWVJsLXVrR21UWVh5Vlo0ZFFOYm5YOHR4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDEyNS9GQUI2QkU4ODVENjAxMUU4QjM0OUE4MEZDNEY5QUUwMi9hTVlSbC11a0dt VFlYeVZaNGRRTmJuWDh0eEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcdzCIYYzEd0V+bB8RGLbqhFi/oaf0xB1gulMhUTzTnYHAlMibJTwJ +bd8iwlyyG1+Outok3z8j3Ncyi132CdWkRfA0929CDoxMy0IrmU/UYCDhJq4KmZE ScFlDUKtUMjLIyVnMNwhiaGRijjr3uAy2ulZx3xga7XbAlKwNh//b9Xm+ocozIoZ pEUSEnhzGQeqspe0P9t+3dJ4k6bgv8ycyQQAP8xx4YRIORl85m4gDJwLX5KhZ2u4 oy9vt738AHAfPQJ1YkSoj1GHF/kj+NWYvhOT2jtDuRZWQfenpIGLIplXuEkrzM5T Uh7PH+zYKXWwxdvd/282EtvPAov9GLI4 -----END CERTIFICATE-----Generated at Sun Aug 24 00:50:20 2025 by rpki-client