$ rpki-client -vvf rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft File: R1MAyW65ok4zHQs5AHDEWinJXmk.mft (raw, json) Hash identifier: oxFSv3NVVxZfyx9gjmM5kC25n3yBiWWAxgDFbb3d8Cw= Subject key identifier: B7:85:5D:85:F4:09:23:4A:FC:5B:00:D5:F5:1E:66:78:65:CF:3F:CF Authority key identifier: 47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 Certificate issuer: /CN=A917C36A/serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Certificate serial: 01D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft Manifest number: 01CE Signing time: Sat 23 Aug 2025 03:01:55 +0000 Manifest this update: Sat 23 Aug 2025 03:01:55 +0000 Manifest next update: Sat 30 Aug 2025 03:01:55 +0000 Files and hashes: 1: R1MAyW65ok4zHQs5AHDEWinJXmk.crl (hash: dZ12siOgbk5HVBdiO003IW+kIuoe0scp8u0hCWpSQb4=) 2: 9CB879ECC7B511ED9411183FC4F9AE02.roa (hash: vTjIWL+7U0681ZWCBVmHMtqcTBbPy9kNb1m5t3OENUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:01:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C36A, serialNumber=475300C96EB9A24E331D0B390070C45A29C95E69 Validity Not Before: Aug 23 03:01:55 2025 GMT Not After : Aug 30 03:01:55 2025 GMT Subject: CN=68a92f23-bfd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:00:99:07:b1:b6:9b:74:2e:28:02:fa:09:62: 9b:7d:a7:05:6a:87:b7:f6:04:c6:88:53:1a:0c:6b: e5:fe:aa:92:16:75:0c:df:91:f4:97:82:78:8f:5f: 48:37:a4:ce:0c:b4:44:0a:f9:73:2d:19:e6:9c:e1: 30:9b:db:14:36:2c:ba:fc:bc:13:7d:4d:3f:39:55: de:f6:a2:0b:c0:54:22:48:1a:c8:14:1b:ed:77:b6: 57:f4:16:8c:76:a8:58:80:a9:f8:67:0a:d3:ab:d1: c3:a5:e8:35:e0:01:36:ce:27:fd:2d:92:4c:4b:40: 1b:50:c4:5e:71:a0:2c:67:38:ba:ac:79:ac:52:51: d7:c7:db:51:e3:2c:ca:d9:13:57:ed:1c:05:53:72: 31:82:47:e3:4a:82:81:ba:e3:f2:50:41:00:d7:cf: 7a:e1:fc:a4:97:db:4b:04:59:57:51:f9:95:56:81: 31:10:5f:49:be:c7:c1:07:59:bd:2d:ea:55:1b:5f: 9e:53:a0:60:e6:fb:fa:d3:fa:22:14:d8:32:85:f6: 73:51:54:14:84:dd:f4:e8:68:76:ae:3f:cc:d7:fc: 4f:0f:4e:75:8e:94:e3:ea:08:97:61:be:a8:9f:2b: f0:1d:7a:4e:b2:0d:50:21:3c:fe:bc:d2:87:62:db: 7b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:85:5D:85:F4:09:23:4A:FC:5B:00:D5:F5:1E:66:78:65:CF:3F:CF X509v3 Authority Key Identifier: keyid:47:53:00:C9:6E:B9:A2:4E:33:1D:0B:39:00:70:C4:5A:29:C9:5E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1MAyW65ok4zHQs5AHDEWinJXmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C36A/40934280C7B211ED9357A23CC4F9AE02/R1MAyW65ok4zHQs5AHDEWinJXmk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:00:92:6d:13:be:10:f7:dc:db:2b:1b:91:94:cb:ec:1a:bd: fe:96:42:b0:4b:24:db:7f:04:a8:00:72:bb:09:c3:74:2c:62: ae:71:7b:36:93:49:cd:20:2e:a4:c6:f9:4e:86:37:a0:62:a9: 00:db:0b:69:3f:28:1d:47:64:9f:58:e4:ad:db:4c:2e:d0:35: 76:d5:03:1a:b1:da:58:66:21:a1:07:f6:44:8d:bc:2e:83:52: 9a:25:60:d8:f7:40:73:92:6d:87:e4:16:90:82:b8:26:fa:55: 9f:53:e0:2c:83:34:e8:85:4f:a9:47:a1:a4:5a:9e:e9:a3:ea: 3d:0b:d7:43:ef:3e:17:89:0d:76:6b:76:93:3f:1e:04:61:93: cd:83:6c:3c:96:45:9e:98:00:ad:4d:9f:98:c0:77:03:d6:26: d4:4d:b5:dd:77:c3:fd:55:fa:49:99:01:c2:0d:62:9f:82:3d: a7:24:47:11:14:d1:bb:08:ce:f0:40:a4:61:b9:b2:3b:0e:f2: 93:63:c7:6a:c7:da:f5:fe:ce:c2:63:9a:05:73:c8:00:ef:83: f7:e6:94:95:ea:91:e5:bc:09:63:4d:86:29:0f:9d:5f:29:53: cf:25:7c:e4:e3:21:41:88:dc:91:75:30:55:89:28:c7:0c:21: b6:bc:ed:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNkExMTAvBgNVBAUTKDQ3NTMwMEM5NkVCOUEyNEUzMzFEMEIzOTAwNzBDNDVB MjlDOTVFNjkwHhcNMjUwODIzMDMwMTU1WhcNMjUwODMwMDMwMTU1WjAYMRYwFAYD VQQDEw02OGE5MmYyMy1iZmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gCZB7G2m3QuKAL6CWKbfacFaoe39gTGiFMaDGvl/qqSFnUM35H0l4J4j19I N6TODLRECvlzLRnmnOEwm9sUNiy6/LwTfU0/OVXe9qILwFQiSBrIFBvtd7ZX9BaM dqhYgKn4ZwrTq9HDpeg14AE2zif9LZJMS0AbUMRecaAsZzi6rHmsUlHXx9tR4yzK 2RNX7RwFU3IxgkfjSoKBuuPyUEEA18964fykl9tLBFlXUfmVVoExEF9JvsfBB1m9 LepVG1+eU6Bg5vv60/oiFNgyhfZzUVQUhN306Gh2rj/M1/xPD051jpTj6giXYb6o nyvwHXpOsg1QITz+vNKHYtt7+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLeFXYX0 CSNK/FsA1fUeZnhlzz/PMB8GA1UdIwQYMBaAFEdTAMluuaJOMx0LOQBwxFopyV5p MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM2QS80MDkzNDI4MEM3 QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9rNHpIUXM1QUhERVdpbkpY bWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxTUF5VzY1b2s0ekhRczVBSERFV2luSlhtay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzM2QS80MDkzNDI4MEM3QjIxMUVEOTM1N0EyM0NDNEY5QUUwMi9SMU1BeVc2NW9r NHpIUXM1QUhERVdpbkpYbWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqAJJtE74Q99zbKxuRlMvsGr3+lkKwSyTbfwSoAHK7CcN0LGKucXs2 k0nNIC6kxvlOhjegYqkA2wtpPygdR2SfWOSt20wu0DV21QMasdpYZiGhB/ZEjbwu g1KaJWDY90Bzkm2H5BaQgrgm+lWfU+AsgzTohU+pR6GkWp7po+o9C9dD7z4XiQ12 a3aTPx4EYZPNg2w8lkWemACtTZ+YwHcD1ibUTbXdd8P9VfpJmQHCDWKfgj2nJEcR FNG7CM7wQKRhubI7DvKTY8dqx9r1/s7CY5oFc8gA74P35pSV6pHlvAljTYYpD51f KVPPJXzk4yFBiNyRdTBViSjHDCG2vO2g -----END CERTIFICATE-----Generated at Sat Aug 23 13:17:44 2025 by rpki-client