$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft File: SIcH43YxSt1UXMZgreziKYZME-A.mft (raw, json) Hash identifier: JRIi7KoAkm1fljtVjGeFaEhGHcBYokOvCevEy1OWr/M= Subject key identifier: DB:D4:B4:FE:C0:66:D4:1B:A2:EA:4F:6F:82:28:89:F6:F8:7D:C2:3E Authority key identifier: 48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 Certificate issuer: /CN=A9193B7A/serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Certificate serial: 04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft Manifest number: 04 Signing time: Sat 23 Aug 2025 08:25:16 +0000 Manifest this update: Sat 23 Aug 2025 08:25:16 +0000 Manifest next update: Sat 30 Aug 2025 08:25:16 +0000 Files and hashes: 1: SIcH43YxSt1UXMZgreziKYZME-A.crl (hash: k6ioXlrL/N634E/ynHfQDhD1O9iZT3ztvZItSv1cTXs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B7A, serialNumber=488707E376314ADD545CC660ADECE229864C13E0 Validity Not Before: Aug 23 08:25:16 2025 GMT Not After : Aug 30 08:25:16 2025 GMT Subject: CN=68a97aec-f789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:41:63:18:6f:77:32:04:8d:61:75:2b:04:1f: 62:85:29:87:41:94:8f:4d:39:76:9d:24:d6:34:47: e2:0e:28:5c:c3:1a:fd:eb:2d:fe:6e:6d:d0:57:54: ee:a2:f7:19:89:19:b8:a1:f6:79:ff:66:1e:f5:16: 31:67:ad:04:79:fc:dc:b7:af:ad:c2:31:44:86:68: b7:03:68:6d:22:32:27:bd:79:de:1f:15:93:f4:08: d3:de:33:36:e4:e6:7a:f7:83:3b:f0:23:57:8d:8a: 6b:d5:8b:8d:07:70:c7:8c:8e:1e:9d:16:a8:bc:84: 40:c9:5f:8d:a4:5a:0d:76:6c:de:c0:95:3e:af:9c: 3e:65:c4:32:0a:88:62:ef:4a:f0:70:40:9a:83:27: ea:54:39:ad:43:ac:e0:f1:65:33:fb:2c:b7:ba:ee: 35:8f:9a:88:e4:d7:c8:5b:b5:48:68:26:68:e9:44: c4:a6:e1:c9:34:38:8f:ac:d1:f6:15:df:ff:84:91: b5:9c:8b:8e:58:cf:64:1d:c7:e0:dd:b0:bd:e2:ed: 1b:7d:5e:7b:50:04:eb:86:bc:7e:a2:53:e0:dd:18: 7b:28:f1:06:66:4a:9c:70:e7:c7:5d:06:eb:31:da: b7:64:70:11:38:6d:e8:86:0c:11:c7:50:cd:b8:9c: c9:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D4:B4:FE:C0:66:D4:1B:A2:EA:4F:6F:82:28:89:F6:F8:7D:C2:3E X509v3 Authority Key Identifier: keyid:48:87:07:E3:76:31:4A:DD:54:5C:C6:60:AD:EC:E2:29:86:4C:13:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIcH43YxSt1UXMZgreziKYZME-A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B7A/C98D55FA7DBB11F0BC4D7761C4F9AE02/SIcH43YxSt1UXMZgreziKYZME-A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:b6:9f:08:50:26:ad:05:59:9f:6d:67:04:f8:cb:40:f7:48: fd:98:5e:5d:23:63:f3:87:d9:f4:8c:12:4c:ed:1f:42:54:5d: 48:12:3b:85:48:b8:36:3f:37:25:d1:0d:dd:c7:a5:e8:be:73: dd:d0:6e:6c:68:b2:fc:92:ee:21:61:c6:c9:b1:5c:2c:0a:36: 4c:9d:95:42:0e:23:e3:09:a9:9d:62:f7:65:c6:c5:b4:1d:d6: 8d:b4:92:cd:c8:a3:0c:e3:0d:a1:d0:c1:8e:fe:25:8f:29:e8: a8:e4:e0:45:d8:ab:c3:38:51:be:ee:9f:f2:a0:35:aa:c6:bf: 48:e8:d6:76:63:d2:c3:0c:6a:a1:85:b2:64:eb:02:a8:51:c2: 7c:99:a9:52:f9:da:4d:46:2e:9e:6d:71:67:1a:ce:96:5a:f8: b2:d8:69:f1:7b:aa:2c:bb:8b:66:0e:5b:b4:88:9e:d5:53:eb: 61:fa:77:6d:b3:05:fd:2e:d0:23:19:a8:7a:67:ee:6c:50:6b: 32:48:17:32:73:92:2d:de:10:b4:ae:ec:ec:80:19:04:80:b2: e3:13:7e:97:b2:63:07:65:89:9f:d3:0a:bf:e0:84:3d:53:be: a7:98:f1:c8:eb:dd:82:8e:d8:8b:72:d4:a4:7e:37:ba:3b:42: 29:19:c8:a4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0I3QTExMC8GA1UEBRMoNDg4NzA3RTM3NjMxNEFERDU0NUNDNjYwQURFQ0UyMjk4 NjRDMTNFMDAeFw0yNTA4MjMwODI1MTZaFw0yNTA4MzAwODI1MTZaMBgxFjAUBgNV BAMTDTY4YTk3YWVjLWY3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWQWMYb3cyBI1hdSsEH2KFKYdBlI9NOXadJNY0R+IOKFzDGv3rLf5ubdBXVO6i 9xmJGbih9nn/Zh71FjFnrQR5/Ny3r63CMUSGaLcDaG0iMie9ed4fFZP0CNPeMzbk 5nr3gzvwI1eNimvVi40HcMeMjh6dFqi8hEDJX42kWg12bN7AlT6vnD5lxDIKiGLv SvBwQJqDJ+pUOa1DrODxZTP7LLe67jWPmojk18hbtUhoJmjpRMSm4ck0OI+s0fYV 3/+EkbWci45Yz2Qdx+DdsL3i7Rt9XntQBOuGvH6iU+DdGHso8QZmSpxw58ddBusx 2rdkcBE4beiGDBHHUM24nMmBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU29S0/sBm 1Bui6k9vgiiJ9vh9wj4wHwYDVR0jBBgwFoAUSIcH43YxSt1UXMZgreziKYZME+Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQjdBL0M5OEQ1NUZBN0RC QjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3QxVVhNWmdyZXppS1laTUUt QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0ljSDQzWXhTdDFVWE1aZ3JlemlLWVpNRS1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkz QjdBL0M5OEQ1NUZBN0RCQjExRjBCQzRENzc2MUM0RjlBRTAyL1NJY0g0M1l4U3Qx VVhNWmdyZXppS1laTUUtQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJu2nwhQJq0FWZ9tZwT4y0D3SP2YXl0jY/OH2fSMEkztH0JUXUgSO4VI uDY/NyXRDd3Hpei+c93QbmxosvyS7iFhxsmxXCwKNkydlUIOI+MJqZ1i92XGxbQd 1o20ks3IowzjDaHQwY7+JY8p6Kjk4EXYq8M4Ub7un/KgNarGv0jo1nZj0sMMaqGF smTrAqhRwnyZqVL52k1GLp5tcWcazpZa+LLYafF7qiy7i2YOW7SIntVT62H6d22z Bf0u0CMZqHpn7mxQazJIFzJzki3eELSu7OyAGQSAsuMTfpeyYwdliZ/TCr/ghD1T vqeY8cjr3YKO2Ity1KR+N7o7QikZyKQ= -----END CERTIFICATE-----Generated at Sun Aug 24 04:35:19 2025 by rpki-client