$ rpki-client -vvf rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft File: 0aHv0iQTWusJg56ovbjNxZnOZX8.mft (raw, json) Hash identifier: W+6rKUwjJHoXaFNGD21vvqEu+NQFUpuErj4yQNZpIb8= Subject key identifier: EE:1B:84:44:69:D5:D0:32:73:8A:9B:F5:CC:5A:26:31:ED:23:D6:9E Authority key identifier: D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F Certificate issuer: /CN=A917D9FC/serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Certificate serial: 04B9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft Manifest number: 04B4 Signing time: Fri 22 Aug 2025 16:37:58 +0000 Manifest this update: Fri 22 Aug 2025 16:37:57 +0000 Manifest next update: Fri 29 Aug 2025 16:37:57 +0000 Files and hashes: 1: 0aHv0iQTWusJg56ovbjNxZnOZX8.crl (hash: 6Vfjuj3TD0wV8kjmgns/6fX3Qh+1aDh7bw0ctlWTDAM=) 2: AD94C92242BA11ECB1E8FF11C4F9AE02.roa (hash: v+UfHJBNUMJhgU+Hq/Ni7UlIWeTPSw4kY7gKtnOeoHo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:37:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1209 (0x4b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D9FC, serialNumber=D1A1EFD224135AEB09839EA8BDB8CDC599CE657F Validity Not Before: Aug 22 16:37:57 2025 GMT Not After : Aug 29 16:37:57 2025 GMT Subject: CN=68a89ce6-bd88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8a:dd:d2:af:92:17:d0:3f:4b:69:70:10:14: a0:17:36:03:58:90:ce:0a:66:e5:8a:08:f8:49:53: 5b:46:75:8d:5f:51:32:80:2d:b4:0e:2b:2e:df:6a: 55:d2:1a:7b:cb:76:17:be:71:52:90:37:e8:91:b4: f4:53:3e:d4:80:09:6a:48:64:04:79:69:b3:5d:b5: f4:06:78:48:ed:c5:d6:ad:90:40:19:ef:d6:25:7d: 94:0d:31:92:ab:b4:26:9a:a9:8a:fd:bb:a9:a9:2a: fa:f1:fe:81:86:90:d7:60:6b:3a:92:c7:a6:ca:41: 9e:91:5c:45:a5:32:ba:71:b9:f1:df:7b:eb:91:09: 36:dc:7c:0b:6a:d5:b2:7b:06:23:fa:22:d9:ef:e0: ba:92:60:af:2b:03:93:1e:27:0a:8f:87:24:75:0d: a4:94:cc:50:cd:71:3e:55:1e:4d:5b:9b:2a:28:4f: 13:a4:ba:46:c3:f7:c4:bf:4d:7d:cc:db:c3:70:c5: 2c:7f:f5:d1:46:c2:ff:92:8b:dc:c6:4b:c4:91:01: 17:7c:a0:61:88:dd:b0:f1:06:8d:e7:60:5f:33:9d: 8d:f4:1e:51:81:0b:cd:a7:a7:61:6e:a9:92:6f:c8: dc:66:6e:bf:7e:ba:57:27:2b:1c:3a:bf:91:ee:9f: 52:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1B:84:44:69:D5:D0:32:73:8A:9B:F5:CC:5A:26:31:ED:23:D6:9E X509v3 Authority Key Identifier: keyid:D1:A1:EF:D2:24:13:5A:EB:09:83:9E:A8:BD:B8:CD:C5:99:CE:65:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0aHv0iQTWusJg56ovbjNxZnOZX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D9FC/7A302D0042B111EC9F24A06EC4F9AE02/0aHv0iQTWusJg56ovbjNxZnOZX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:7d:95:ca:7a:32:f5:36:a3:a5:dd:8b:b0:e0:c4:cc:3a:97: 11:02:b4:44:87:37:84:e6:1a:5f:b5:9f:db:da:3d:40:01:83: 21:5e:5e:45:5f:18:ad:57:70:ed:0f:93:42:35:c3:bf:3c:cb: d5:55:dd:81:75:79:82:fd:5d:f2:09:ed:c2:e9:1c:17:d1:e4: 04:5b:b9:eb:9b:b9:2a:0f:88:f4:46:da:63:59:f3:67:30:37: ef:af:83:3b:4b:9c:6d:7e:b8:fc:95:5b:47:73:b5:2a:c0:8a: 47:d3:80:56:f3:62:5b:67:37:3b:ac:d4:f0:6f:fb:59:d4:c9: 48:af:af:b3:b9:f9:a2:ec:97:9f:3e:5e:5f:3a:3b:70:93:26: 83:54:ca:1b:d9:5e:67:e7:8e:01:5b:43:d4:a3:9c:a6:13:67: 0c:9e:f0:17:1b:8e:0b:33:31:3d:af:2b:f8:75:b6:4e:fa:d1: c5:7d:ae:4e:3b:5d:f4:e5:4b:a0:82:2a:20:2b:dd:b6:84:02: 8d:2b:3a:98:c7:f9:5e:19:0c:6c:61:6a:74:c5:97:1a:9d:c2: d1:b1:31:d5:0a:65:4c:b1:c2:13:45:06:64:20:4a:f7:bf:4f: 10:03:98:b2:25:be:6a:be:97:65:fb:8b:67:71:7d:74:77:02: 18:32:b5:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q5RkMxMTAvBgNVBAUTKEQxQTFFRkQyMjQxMzVBRUIwOTgzOUVBOEJEQjhDREM1 OTlDRTY1N0YwHhcNMjUwODIyMTYzNzU3WhcNMjUwODI5MTYzNzU3WjAYMRYwFAYD VQQDEw02OGE4OWNlNi1iZDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoord0q+SF9A/S2lwEBSgFzYDWJDOCmbligj4SVNbRnWNX1EygC20Disu32pV 0hp7y3YXvnFSkDfokbT0Uz7UgAlqSGQEeWmzXbX0BnhI7cXWrZBAGe/WJX2UDTGS q7QmmqmK/bupqSr68f6BhpDXYGs6ksemykGekVxFpTK6cbnx33vrkQk23HwLatWy ewYj+iLZ7+C6kmCvKwOTHicKj4ckdQ2klMxQzXE+VR5NW5sqKE8TpLpGw/fEv019 zNvDcMUsf/XRRsL/kovcxkvEkQEXfKBhiN2w8QaN52BfM52N9B5RgQvNp6dhbqmS b8jcZm6/frpXJyscOr+R7p9SgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO4bhERp 1dAyc4qb9cxaJjHtI9aeMB8GA1UdIwQYMBaAFNGh79IkE1rrCYOeqL24zcWZzmV/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDlGQy83QTMwMkQwMDQy QjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1c0pnNTZvdmJqTnhabk9a WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBhSHYwaVFUV3VzSmc1Nm92YmpOeFpuT1pYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDlGQy83QTMwMkQwMDQyQjExMUVDOUYyNEEwNkVDNEY5QUUwMi8wYUh2MGlRVFd1 c0pnNTZvdmJqTnhabk9aWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNfZXKejL1NqOl3Yuw4MTMOpcRArREhzeE5hpftZ/b2j1AAYMhXl5F XxitV3DtD5NCNcO/PMvVVd2BdXmC/V3yCe3C6RwX0eQEW7nrm7kqD4j0RtpjWfNn MDfvr4M7S5xtfrj8lVtHc7UqwIpH04BW82JbZzc7rNTwb/tZ1MlIr6+zufmi7Jef Pl5fOjtwkyaDVMob2V5n544BW0PUo5ymE2cMnvAXG44LMzE9ryv4dbZO+tHFfa5O O1305UuggiogK922hAKNKzqYx/leGQxsYWp0xZcancLRsTHVCmVMscITRQZkIEr3 v08QA5iyJb5qvpdl+4tncX10dwIYMrUF -----END CERTIFICATE-----Generated at Sun Aug 24 05:21:48 2025 by rpki-client