$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: sJxU1ft0T2dIwrWsAB3qquEbscsOE5psCnapITyqWjM= Subject key identifier: CA:B5:0D:7B:E7:83:22:0A:AC:9F:2C:F8:16:16:57:CC:E7:FC:4E:7C Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 34AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 34AE Signing time: Fri 22 Aug 2025 14:41:13 +0000 Manifest this update: Fri 22 Aug 2025 14:41:12 +0000 Manifest next update: Fri 29 Aug 2025 14:41:12 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: MxCK7d+e6+ciNB2hlagjSf8H9t0Xn6zqCvlBsJtIa44=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:41:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13486 (0x34ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Aug 22 14:41:12 2025 GMT Not After : Aug 29 14:41:12 2025 GMT Subject: CN=68a88188-0b51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b9:a7:14:0b:42:35:6b:9c:59:b9:37:4f:c7: fd:f6:88:e9:65:df:b7:03:7c:78:2e:13:40:e8:0c: 52:2b:ae:14:af:64:80:91:5c:b5:df:28:84:76:06: 35:49:a3:9c:e5:35:4b:d4:7e:7e:11:ad:ea:8e:9f: a8:a9:e3:c9:16:ca:55:03:a0:78:af:81:f5:75:fc: 04:50:0f:03:56:dc:3f:72:42:d8:45:aa:7c:26:eb: f1:17:6c:83:c6:e9:ae:be:9a:ef:07:e8:f8:47:d7: c3:b5:1e:d3:a8:94:00:61:52:02:d8:01:2d:63:1e: 79:ef:d5:d6:56:fd:98:78:9f:d8:f3:92:ca:28:b6: 81:7e:e8:5f:8f:b4:5d:ca:c0:f4:8b:f5:0b:f2:20: 94:b5:f6:f8:41:b3:d0:8e:bb:0a:7a:ea:6c:0d:6a: ac:c6:ed:c7:ec:26:44:f6:5d:63:21:2c:0b:15:3f: 3b:60:b8:3f:d9:38:f8:3a:4b:03:16:b0:ae:9a:89: 3d:14:a3:bb:18:a2:bd:24:45:3e:0c:25:9c:c0:3e: ba:dc:bd:77:64:da:31:d4:24:8e:32:ca:74:78:81: cf:30:b9:ee:de:41:b8:21:3f:4f:db:68:7f:e6:75: cb:81:7c:1c:0c:28:40:42:67:9d:43:bd:36:bf:2e: 83:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:B5:0D:7B:E7:83:22:0A:AC:9F:2C:F8:16:16:57:CC:E7:FC:4E:7C X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:cb:f8:49:fa:25:ef:c6:fa:0c:e2:e3:5c:bf:bc:47:ff:71: c1:8f:d1:4d:19:e9:e7:97:36:fe:8a:cb:46:2b:4f:fd:a7:ac: ed:3e:b8:11:37:c4:18:6c:4b:0f:9d:18:de:a4:46:61:87:3c: bc:ba:df:3c:f0:76:e0:e4:0a:cf:69:55:9f:4b:f2:c6:36:18: 2b:26:d3:35:77:1a:96:18:c7:1f:14:80:9b:21:a2:2d:e1:7b: 41:a9:6d:29:13:a9:87:43:4a:91:4b:06:a5:11:66:aa:d2:c6: 0e:7c:90:46:dd:9b:14:56:1e:28:7e:74:52:71:1c:b0:09:4c: 0e:65:70:bb:77:ff:d5:b1:46:ba:3c:ad:cc:00:ae:4a:95:1f: 0c:57:ab:7a:2e:4f:6a:c2:fe:99:90:de:8f:14:6a:bc:29:4a: 7c:d5:3b:17:e6:37:ca:ae:52:ef:e7:d2:56:9c:ef:17:0e:4c: d9:49:b8:5c:2e:7b:b6:08:80:07:f0:b5:4e:12:f9:29:ee:2d: c6:49:7f:5a:f5:85:d2:cb:2e:3c:76:e3:32:2d:ff:02:90:68: d6:d8:1e:34:fa:0e:88:19:25:f9:47:7b:ab:4a:46:06:b5:b9: a6:69:57:6a:be:f6:04:f3:db:b8:b0:33:d2:77:f4:d2:dc:dd: 8a:58:35:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUwODIyMTQ0MTEyWhcNMjUwODI5MTQ0MTEyWjAYMRYwFAYD VQQDEw02OGE4ODE4OC0wYjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLmnFAtCNWucWbk3T8f99ojpZd+3A3x4LhNA6AxSK64Ur2SAkVy13yiEdgY1 SaOc5TVL1H5+Ea3qjp+oqePJFspVA6B4r4H1dfwEUA8DVtw/ckLYRap8JuvxF2yD xumuvprvB+j4R9fDtR7TqJQAYVIC2AEtYx5579XWVv2YeJ/Y85LKKLaBfuhfj7Rd ysD0i/UL8iCUtfb4QbPQjrsKeupsDWqsxu3H7CZE9l1jISwLFT87YLg/2Tj4OksD FrCumok9FKO7GKK9JEU+DCWcwD663L13ZNox1CSOMsp0eIHPMLnu3kG4IT9P22h/ 5nXLgXwcDChAQmedQ702vy6DQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMq1DXvn gyIKrJ8s+BYWV8zn/E58MB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3y/hJ+iXvxvoM4uNcv7xH/3HBj9FNGennlzb+istGK0/9p6ztPrgR N8QYbEsPnRjepEZhhzy8ut888Hbg5ArPaVWfS/LGNhgrJtM1dxqWGMcfFICbIaIt 4XtBqW0pE6mHQ0qRSwalEWaq0sYOfJBG3ZsUVh4ofnRScRywCUwOZXC7d//VsUa6 PK3MAK5KlR8MV6t6Lk9qwv6ZkN6PFGq8KUp81TsX5jfKrlLv59JWnO8XDkzZSbhc Lnu2CIAH8LVOEvkp7i3GSX9a9YXSyy48duMyLf8CkGjW2B40+g6IGSX5R3urSkYG tbmmaVdqvvYE89u4sDPSd/TS3N2KWDVP -----END CERTIFICATE-----Generated at Sat Aug 23 18:39:31 2025 by rpki-client