$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft File: 40tPgNnj9wC8rExSxasj61t-37s.mft (raw, json) Hash identifier: kjuUGHh/PrVM8MHSccBIxd86uogvi9wzcWStFoFQ8So= Subject key identifier: F7:EE:62:29:B2:B7:5C:24:7D:CC:C0:9C:7C:A5:24:64:B9:9C:37:DD Authority key identifier: E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB Certificate issuer: /CN=A918E4B7/serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Certificate serial: 015E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft Manifest number: 015A Signing time: Fri 22 Aug 2025 23:50:49 +0000 Manifest this update: Fri 22 Aug 2025 23:50:49 +0000 Manifest next update: Fri 29 Aug 2025 23:50:49 +0000 Files and hashes: 1: 40tPgNnj9wC8rExSxasj61t-37s.crl (hash: IxoB1qsSTW8AqN54mAa1X5mkU5qP+3EJ0O3lf5uu0KE=) 2: 1E4ABC8C50C111EFA64C2437C4F9AE02.roa (hash: +idkc0Y+TplJvB7T7xrVzyMgw/UlYDqH1h1gbH9ycfU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:50:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=E34B4F80D9E3F700BCAC4C52C5AB23EB5B7EDFBB Validity Not Before: Aug 22 23:50:49 2025 GMT Not After : Aug 29 23:50:49 2025 GMT Subject: CN=68a90259-a231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:f6:e7:2a:34:11:4d:91:09:7b:02:07:f5: 46:46:6d:a4:56:33:67:31:7f:ae:9e:86:1b:65:15: b6:48:64:89:dd:25:7b:c8:25:d0:0c:b2:d2:14:6b: dd:5d:d7:e5:1a:ed:45:a5:d2:6a:86:1a:40:5f:70: dd:dd:52:fb:5b:5f:c4:51:cd:df:95:7e:2f:db:31: ea:39:02:02:58:34:9b:2b:1b:4f:06:19:da:61:2c: dc:b9:da:16:20:87:ff:de:43:26:c1:7b:e3:3f:31: e7:0d:93:b7:ce:b7:a0:86:50:da:5d:6b:95:62:92: c9:5c:fa:39:60:53:de:0c:5f:f4:f6:b1:43:f3:4a: bd:e3:88:c7:57:3d:77:2d:32:16:55:8a:30:c2:0b: c4:12:3f:ac:02:27:17:a1:20:64:15:88:9a:a4:06: 99:74:84:d3:e7:61:d6:7e:d0:a3:ab:c3:68:ee:05: a5:94:e8:1b:04:0f:e5:21:ec:45:12:c2:c1:c5:e5: 34:e7:bf:5c:2e:7d:4f:c4:e1:ad:10:b5:00:93:2e: df:42:ae:6b:f0:1f:a0:e5:2c:8d:20:78:0e:0f:e0: 52:b3:99:bc:c1:63:aa:24:44:80:c3:2f:20:0c:f9: 69:75:f0:d1:23:a9:74:51:99:23:8d:4f:95:02:55: 16:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:EE:62:29:B2:B7:5C:24:7D:CC:C0:9C:7C:A5:24:64:B9:9C:37:DD X509v3 Authority Key Identifier: keyid:E3:4B:4F:80:D9:E3:F7:00:BC:AC:4C:52:C5:AB:23:EB:5B:7E:DF:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/40tPgNnj9wC8rExSxasj61t-37s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/96E6675A784E11EEB19AD34DC4F9AE02/40tPgNnj9wC8rExSxasj61t-37s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:61:24:02:5f:25:a1:68:bd:e2:8e:dd:b6:bb:4b:93:34:8b: 0a:56:9a:0c:50:58:c5:42:db:25:ba:34:8c:b1:31:53:79:f7: f7:98:9b:e9:e4:45:a0:c9:19:13:8a:46:81:cc:9d:47:c4:8a: 5e:b8:d8:e6:ed:f2:ec:97:08:06:cf:d4:17:dd:eb:18:7a:5e: 75:af:92:58:27:a9:ff:73:9d:05:36:91:cf:e5:d5:fe:04:8a: e6:1a:c6:22:b8:a3:de:b1:66:d0:f0:9e:b9:39:32:b9:46:40: b7:34:25:2f:a6:d2:a9:90:12:6e:3c:ec:ac:4d:b6:3d:c4:8e: 20:28:16:aa:68:6d:3e:b3:c6:98:16:0b:f0:25:02:6b:c5:d8: 16:0e:77:dc:b9:5e:2c:fa:36:89:22:5b:d4:97:f6:6c:ba:f0: fa:66:46:d3:9d:f0:24:cd:73:e6:a3:67:07:ad:f9:0c:6f:3b: 64:c6:a9:3d:dd:18:94:46:08:d3:49:9a:75:56:68:f6:0b:bb: a9:f4:8d:93:7a:18:c1:6e:6e:be:4d:d4:64:c7:7e:f7:ad:0f: 16:5b:e2:99:6e:f8:28:df:22:b7:fe:99:06:de:63:b8:f0:33: ab:e7:e9:f0:b7:27:3f:22:11:a6:c2:b6:08:c0:cf:91:d1:f4: 44:22:ba:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKEUzNEI0RjgwRDlFM0Y3MDBCQ0FDNEM1MkM1QUIyM0VC NUI3RURGQkIwHhcNMjUwODIyMjM1MDQ5WhcNMjUwODI5MjM1MDQ5WjAYMRYwFAYD VQQDEw02OGE5MDI1OS1hMjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMT25yo0EU2RCXsCB/VGRm2kVjNnMX+unoYbZRW2SGSJ3SV7yCXQDLLSFGvd XdflGu1FpdJqhhpAX3Dd3VL7W1/EUc3flX4v2zHqOQICWDSbKxtPBhnaYSzcudoW IIf/3kMmwXvjPzHnDZO3zreghlDaXWuVYpLJXPo5YFPeDF/09rFD80q944jHVz13 LTIWVYowwgvEEj+sAicXoSBkFYiapAaZdITT52HWftCjq8No7gWllOgbBA/lIexF EsLBxeU0579cLn1PxOGtELUAky7fQq5r8B+g5SyNIHgOD+BSs5m8wWOqJESAwy8g DPlpdfDRI6l0UZkjjU+VAlUWQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfuYimy t1wkfczAnHylJGS5nDfdMB8GA1UdIwQYMBaAFONLT4DZ4/cAvKxMUsWrI+tbft+7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy85NkU2Njc1QTc4 NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3QzhyRXhTeGFzajYxdC0z N3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzQwdFBnTm5qOXdDOHJFeFN4YXNqNjF0LTM3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy85NkU2Njc1QTc4NEUxMUVFQjE5QUQzNERDNEY5QUUwMi80MHRQZ05uajl3 QzhyRXhTeGFzajYxdC0zN3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACYSQCXyWhaL3ijt22u0uTNIsKVpoMUFjFQtslujSMsTFTeff3mJvp 5EWgyRkTikaBzJ1HxIpeuNjm7fLslwgGz9QX3esYel51r5JYJ6n/c50FNpHP5dX+ BIrmGsYiuKPesWbQ8J65OTK5RkC3NCUvptKpkBJuPOysTbY9xI4gKBaqaG0+s8aY FgvwJQJrxdgWDnfcuV4s+jaJIlvUl/ZsuvD6ZkbTnfAkzXPmo2cHrfkMbztkxqk9 3RiURgjTSZp1Vmj2C7up9I2TehjBbm6+TdRkx373rQ8WW+KZbvgo3yK3/pkG3mO4 8DOr5+nwtyc/IhGmwrYIwM+R0fREIrpC -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:50 2025 by rpki-client