$ rpki-client -vvf rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft File: 489F-AUQY7vbMX_dFREyqUAE_Vs.mft (raw, json) Hash identifier: xtzlrhBTK6N7X2HQymDsgE4ref/AKnJ7+S4Pvh7WI30= Subject key identifier: 48:2F:2E:AC:83:04:9F:29:28:6B:CB:F3:42:BC:E8:2D:7C:DC:9A:6B Authority key identifier: E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B Certificate issuer: /CN=A9197202/serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Certificate serial: 030C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft Manifest number: 02F4 Signing time: Sat 23 Aug 2025 01:34:30 +0000 Manifest this update: Sat 23 Aug 2025 01:34:29 +0000 Manifest next update: Sat 30 Aug 2025 01:34:29 +0000 Files and hashes: 1: 489F-AUQY7vbMX_dFREyqUAE_Vs.crl (hash: yWyT+R59FouVCXg7vzA7wEoVI1mSpCC5zd+fcLdSXDQ=) 2: 920E981CCAAA11ED8371524CC4F9AE02.roa (hash: +6obkqNFt0tnKMRz6dRit6ArMoN+fxhvRElw6ROUx6U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197202, serialNumber=E3CF45F8051063BBDB317FDD151132A94004FD5B Validity Not Before: Aug 23 01:34:29 2025 GMT Not After : Aug 30 01:34:29 2025 GMT Subject: CN=68a91aa6-f03c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ea:4d:87:83:a6:4b:8a:d0:69:83:27:a7:1e: ca:51:8b:86:60:de:a6:92:6c:f2:a0:36:3b:d7:33: 16:ee:81:75:34:f2:47:e7:55:18:d4:b5:ab:6d:4b: 6f:10:15:d1:b5:e5:94:f7:65:e3:bb:ea:1f:40:c8: fb:10:a7:e0:23:31:6d:2d:f6:f3:34:f9:de:b4:62: 21:51:c4:9d:a0:b1:3c:8f:48:f1:22:52:84:f8:98: cc:3f:c3:df:f0:52:ab:07:9e:69:ef:0b:7e:e4:15: aa:42:40:dd:a3:5a:f3:38:b4:9d:5e:d5:83:b5:26: a9:d1:98:c2:b3:68:02:bd:2b:32:0d:de:13:b0:39: 99:aa:bc:7e:79:55:91:09:c5:f6:92:30:5a:b7:22: 3c:29:36:62:43:f2:74:19:c8:2d:c0:16:a7:8d:39: 82:7d:31:9e:64:31:40:2e:32:e9:22:94:15:f4:63: 73:b1:1d:dd:ce:86:11:7f:22:43:40:65:98:aa:17: 7f:53:89:19:81:a0:1a:a1:52:c9:66:bc:b5:82:c5: fd:83:a9:a4:6c:59:f1:33:2c:b5:aa:a2:08:68:d4: e7:e6:ee:d6:54:51:c4:a9:9c:81:0c:62:45:54:df: 51:20:94:1c:4c:30:18:09:73:5c:0d:4f:c9:2c:0a: 53:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:2F:2E:AC:83:04:9F:29:28:6B:CB:F3:42:BC:E8:2D:7C:DC:9A:6B X509v3 Authority Key Identifier: keyid:E3:CF:45:F8:05:10:63:BB:DB:31:7F:DD:15:11:32:A9:40:04:FD:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/489F-AUQY7vbMX_dFREyqUAE_Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197202/0AFECA70F70811EC9849F35EC4F9AE02/489F-AUQY7vbMX_dFREyqUAE_Vs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:44:ec:be:15:d8:89:22:ef:88:66:a7:f4:4b:28:25:d4:9d: 8c:79:5d:d3:99:26:aa:54:6d:1f:9c:4b:00:f0:fe:57:42:c9: a0:75:c1:99:80:fd:e0:a4:d2:8c:2e:dc:4f:df:4e:7b:68:7c: 90:cd:24:b7:1e:97:77:fd:80:e7:cd:0c:1e:fe:d7:35:32:6d: 6f:94:aa:a1:af:04:be:66:cc:69:9a:81:6e:ca:55:8b:ea:3a: 0d:ba:ce:73:87:28:c3:d2:26:a9:6d:0b:d8:30:a2:01:43:ed: 3b:75:78:70:0c:3a:49:db:bb:9f:66:23:46:ba:92:ae:dc:b5: 1c:e0:13:33:f0:21:22:45:f8:9b:d4:b5:9a:d4:9c:09:fb:0b: 18:ba:4c:b9:52:bc:a4:ae:8a:05:2e:14:af:b3:eb:03:85:48: bd:84:e7:15:72:16:43:92:02:d0:d7:9a:7b:df:58:f6:d4:c1: de:bc:5f:2c:e7:bc:de:19:58:35:f0:3b:74:8d:f8:72:40:d9: fb:b5:fa:bc:15:55:eb:ce:16:8e:f7:cc:1f:1a:b5:d8:45:f5: 51:b2:a8:18:9c:2d:40:c5:02:d3:2c:74:6e:21:b4:0c:60:26: 85:7e:a7:73:19:5c:56:4c:ba:67:b8:ea:36:d5:c9:f3:cd:27: ff:2a:f7:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMDIxMTAvBgNVBAUTKEUzQ0Y0NUY4MDUxMDYzQkJEQjMxN0ZERDE1MTEzMkE5 NDAwNEZENUIwHhcNMjUwODIzMDEzNDI5WhcNMjUwODMwMDEzNDI5WjAYMRYwFAYD VQQDEw02OGE5MWFhNi1mMDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+pNh4OmS4rQaYMnpx7KUYuGYN6mkmzyoDY71zMW7oF1NPJH51UY1LWrbUtv EBXRteWU92Xju+ofQMj7EKfgIzFtLfbzNPnetGIhUcSdoLE8j0jxIlKE+JjMP8Pf 8FKrB55p7wt+5BWqQkDdo1rzOLSdXtWDtSap0ZjCs2gCvSsyDd4TsDmZqrx+eVWR CcX2kjBatyI8KTZiQ/J0GcgtwBanjTmCfTGeZDFALjLpIpQV9GNzsR3dzoYRfyJD QGWYqhd/U4kZgaAaoVLJZry1gsX9g6mkbFnxMyy1qqIIaNTn5u7WVFHEqZyBDGJF VN9RIJQcTDAYCXNcDU/JLApTUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgvLqyD BJ8pKGvL80K86C183JprMB8GA1UdIwQYMBaAFOPPRfgFEGO72zF/3RURMqlABP1b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIwMi8wQUZFQ0E3MEY3 MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3dmJNWF9kRlJFeXFVQUVf VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ4OUYtQVVRWTd2Yk1YX2RGUkV5cVVBRV9Wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzIwMi8wQUZFQ0E3MEY3MDgxMUVDOTg0OUYzNUVDNEY5QUUwMi80ODlGLUFVUVk3 dmJNWF9kRlJFeXFVQUVfVnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrROy+FdiJIu+IZqf0Sygl1J2MeV3TmSaqVG0fnEsA8P5XQsmgdcGZ gP3gpNKMLtxP3057aHyQzSS3Hpd3/YDnzQwe/tc1Mm1vlKqhrwS+ZsxpmoFuylWL 6joNus5zhyjD0iapbQvYMKIBQ+07dXhwDDpJ27ufZiNGupKu3LUc4BMz8CEiRfib 1LWa1JwJ+wsYuky5UrykrooFLhSvs+sDhUi9hOcVchZDkgLQ15p731j21MHevF8s 57zeGVg18Dt0jfhyQNn7tfq8FVXrzhaO98wfGrXYRfVRsqgYnC1AxQLTLHRuIbQM YCaFfqdzGVxWTLpnuOo21cnzzSf/Kvfz -----END CERTIFICATE-----Generated at Sat Aug 23 17:17:13 2025 by rpki-client