$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: VDRpYrDthUowr/3QyJameNpDdOEkUZDfQHomkEfywtw= Subject key identifier: 92:F3:E8:23:33:29:4A:9E:5D:96:B8:B0:B9:70:15:06:4F:20:B6:D6 Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: C4 Signing time: Sat 23 Aug 2025 05:57:46 +0000 Manifest this update: Sat 23 Aug 2025 05:57:45 +0000 Manifest next update: Sat 30 Aug 2025 05:57:45 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: BZNU+JDec67SmGgYcmvbmC/Xz/HZ1LGzd8anbdt5Y+c=) 2: 335E880A5A1811EFB08E4F38C4F9AE02.roa (hash: jtzgN1MOOr070vNZYtooFlK21goBoXbnFmu7OIsIw2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Aug 23 05:57:45 2025 GMT Not After : Aug 30 05:57:45 2025 GMT Subject: CN=68a95859-ca23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:df:30:d1:11:7f:3f:f2:3a:78:0e:ff:fb:51: 2c:10:ca:78:6c:a3:10:26:99:ca:b3:ae:ed:ce:56: 71:67:1e:f0:5c:ef:70:14:bd:f0:58:18:07:fd:83: 0e:e2:54:e1:dd:99:90:29:ee:b2:6e:5e:8c:94:6b: ad:3f:8c:0f:df:0d:6a:81:b2:4b:7b:2d:46:81:81: 93:59:5e:bb:ef:bd:80:34:76:8f:fb:ee:21:bc:f2: 6d:ee:de:b0:7e:09:02:02:dc:97:bc:5b:1e:d0:b2: 28:e0:2c:2f:37:7e:1f:4d:ee:8d:24:79:41:39:e5: fa:4a:b5:26:8b:f3:5a:ad:f2:74:77:2d:10:49:fd: 9b:ae:fa:fb:a0:34:13:9f:d4:a8:05:f9:f8:38:8a: 16:a8:16:32:60:56:32:de:39:7f:5b:4a:6c:73:da: e8:71:a0:50:51:18:e0:61:de:c1:c6:a7:2a:28:20: 6d:41:47:06:b1:05:38:57:af:12:46:9a:e3:53:f3: 6a:ce:ad:ee:51:ca:19:83:7b:c1:31:0a:ad:a4:4f: 0c:e3:24:dd:bc:eb:fe:b9:dd:2d:74:56:86:42:22: bd:05:4d:f8:c4:ef:7d:6c:31:b2:00:29:e2:19:16: 2b:f3:72:d8:c1:b2:fb:27:84:41:42:70:4d:e4:63: 6c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:F3:E8:23:33:29:4A:9E:5D:96:B8:B0:B9:70:15:06:4F:20:B6:D6 X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:0d:9b:c9:b8:74:0c:0f:08:20:2e:ef:34:2d:ec:2b:29:3b: 6d:4f:47:81:22:b9:9a:22:74:82:ac:44:b1:91:5a:ac:68:b2: 93:99:3c:00:d1:9b:80:20:92:3b:17:fd:92:1e:52:4a:06:9d: 4b:5c:69:d4:7a:b9:d5:f9:04:88:8e:98:7b:22:ce:29:6e:1b: ce:ca:3b:82:fb:dd:7e:ec:6a:6f:c4:ff:8a:bb:55:27:99:27: 88:ef:17:e5:73:ae:42:ae:90:f3:22:95:5d:4f:8e:96:59:e3: 65:d5:8b:27:93:c1:26:59:41:bd:17:80:e7:b7:71:d2:47:f3: ee:79:24:2b:5d:83:23:e1:ef:9a:2a:06:ca:51:00:d8:79:f4: 31:a5:c8:ca:75:6d:5a:5b:0b:3c:80:42:02:27:b6:a7:4d:b6: 03:5c:d3:d5:64:eb:ff:d3:21:72:ed:5c:f4:d1:29:09:f8:26: e3:1b:6d:7e:dc:49:c3:e1:ae:38:af:60:c0:6c:b9:59:19:78: 01:b6:1e:76:87:72:34:d7:c1:fd:1d:04:53:0f:f2:97:91:a2: e7:80:eb:72:93:ac:f8:bd:7d:1d:c1:d8:23:dd:82:f3:be:b9: fb:aa:bb:87:91:ab:a0:d0:6a:c9:5e:83:76:ee:47:9c:f8:9b: 33:40:6c:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjUwODIzMDU1NzQ1WhcNMjUwODMwMDU1NzQ1WjAYMRYwFAYD VQQDEw02OGE5NTg1OS1jYTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw98w0RF/P/I6eA7/+1EsEMp4bKMQJpnKs67tzlZxZx7wXO9wFL3wWBgH/YMO 4lTh3ZmQKe6ybl6MlGutP4wP3w1qgbJLey1GgYGTWV67772ANHaP++4hvPJt7t6w fgkCAtyXvFse0LIo4CwvN34fTe6NJHlBOeX6SrUmi/NarfJ0dy0QSf2brvr7oDQT n9SoBfn4OIoWqBYyYFYy3jl/W0psc9rocaBQURjgYd7BxqcqKCBtQUcGsQU4V68S RprjU/Nqzq3uUcoZg3vBMQqtpE8M4yTdvOv+ud0tdFaGQiK9BU34xO99bDGyACni GRYr83LYwbL7J4RBQnBN5GNsLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJLz6CMz KUqeXZa4sLlwFQZPILbWMB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARDZvJuHQMDwggLu80LewrKTttT0eBIrmaInSCrESxkVqsaLKTmTwA 0ZuAIJI7F/2SHlJKBp1LXGnUernV+QSIjph7Is4pbhvOyjuC+91+7GpvxP+Ku1Un mSeI7xflc65CrpDzIpVdT46WWeNl1Ysnk8EmWUG9F4Dnt3HSR/PueSQrXYMj4e+a KgbKUQDYefQxpcjKdW1aWws8gEICJ7anTbYDXNPVZOv/0yFy7Vz00SkJ+CbjG21+ 3EnD4a44r2DAbLlZGXgBth52h3I018H9HQRTD/KXkaLngOtyk6z4vX0dwdgj3YLz vrn7qruHkaug0GrJXoN27kec+JszQGxG -----END CERTIFICATE-----Generated at Sun Aug 24 01:00:27 2025 by rpki-client