$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: zJN6ijZNjw4srEt5DRwlyv6M4KuwsWixutI1P4sAQKY= Subject key identifier: 66:E2:18:DC:5E:73:20:16:49:F6:D5:67:3F:8C:20:36:36:28:C1:92 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05B2 Signing time: Fri 22 Aug 2025 23:20:24 +0000 Manifest this update: Fri 22 Aug 2025 23:20:23 +0000 Manifest next update: Fri 29 Aug 2025 23:20:23 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: f7d26WkBgca+eedugYG/IJiqZ3Mwe99q4mIqu8cA3pI=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1465 (0x5b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Aug 22 23:20:23 2025 GMT Not After : Aug 29 23:20:23 2025 GMT Subject: CN=68a8fb37-013c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:40:00:51:5b:f5:d2:2e:e7:1e:8e:46:a7:59: 39:c2:70:f1:5e:c3:0e:16:6d:3a:34:98:87:c9:8a: bb:65:14:2b:e6:63:58:63:ae:f5:83:45:f2:fa:cd: 0e:dd:0c:b5:31:49:4c:f7:f3:ad:8b:96:b3:ab:95: 4b:13:3c:83:8c:01:7e:da:7d:f7:27:c6:30:d0:43: af:9f:12:1e:23:3b:38:e6:d8:b9:d6:30:82:90:2d: df:76:45:9f:cf:f0:36:fd:b0:b1:8c:04:c3:a1:ea: 9e:f8:93:f2:5f:e8:58:5b:b1:16:3c:df:4f:18:3b: f5:af:51:42:44:b7:17:a4:60:a8:39:35:76:ac:a3: e5:a0:54:09:14:36:9f:4e:cb:68:a6:b8:34:4c:fa: b7:6c:0d:98:32:4b:d6:62:73:84:fb:c2:55:cd:b6: 2e:57:0b:ae:8c:24:13:f5:7d:4a:99:3b:e0:85:db: 3f:61:26:45:b8:7a:ff:e9:43:a8:5b:fe:23:2a:f0: 56:d5:8e:81:38:af:96:67:42:7a:cf:c7:19:9b:2e: 2f:fe:5f:c4:3c:93:51:34:35:a9:44:fb:0a:a8:d1: 63:8d:8b:c6:25:b3:ab:1d:e1:f0:bc:bb:f0:4e:a5: c1:da:30:0a:b5:77:c4:db:8c:da:0e:61:9e:cf:3f: 7d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E2:18:DC:5E:73:20:16:49:F6:D5:67:3F:8C:20:36:36:28:C1:92 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:9d:e8:94:5e:32:d8:62:a9:cc:97:39:28:67:63:c8:2e:c8: 29:5f:7d:0b:6f:e1:4d:6c:ea:0e:af:db:24:06:d0:0b:31:f0: 39:b6:d8:86:91:40:1b:18:14:d0:34:0b:f5:09:7c:07:7f:a8: 5a:d6:22:95:f6:ff:21:12:0f:22:6f:1e:7d:09:97:0a:82:6f: 7d:bf:0d:ff:65:aa:60:93:18:87:f1:8d:9b:df:4b:58:28:db: e5:1f:9c:bb:39:fe:75:6e:b3:a6:24:31:7e:46:b5:11:8a:50: c0:2b:11:bc:bc:28:d0:02:b4:84:4e:fe:a6:f8:dc:70:28:cb: cd:a7:ea:f5:7b:58:33:05:ec:af:f6:6d:25:de:45:82:3c:b8: f3:a3:72:f8:c4:55:8e:a7:d6:3e:03:8f:9e:7e:9a:01:35:14: c3:65:aa:ab:38:bc:17:8f:88:17:09:32:da:01:06:1c:c0:9a: e5:8c:4e:20:0f:fd:09:e4:0b:a7:0e:f3:06:61:66:42:04:21: 8b:ec:1f:90:4f:3d:0f:25:2b:48:43:ec:fe:d5:7f:1d:35:02: 48:af:45:05:6c:de:d1:45:4f:e6:94:fe:49:e0:a6:6c:35:33: 1a:11:0d:10:22:7e:fd:7a:69:c2:02:aa:9f:05:de:12:b8:70: cd:23:af:17 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUwODIyMjMyMDIzWhcNMjUwODI5MjMyMDIzWjAYMRYwFAYD VQQDEw02OGE4ZmIzNy0wMTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7UAAUVv10i7nHo5Gp1k5wnDxXsMOFm06NJiHyYq7ZRQr5mNYY671g0Xy+s0O 3Qy1MUlM9/Oti5azq5VLEzyDjAF+2n33J8Yw0EOvnxIeIzs45ti51jCCkC3fdkWf z/A2/bCxjATDoeqe+JPyX+hYW7EWPN9PGDv1r1FCRLcXpGCoOTV2rKPloFQJFDaf Tstoprg0TPq3bA2YMkvWYnOE+8JVzbYuVwuujCQT9X1KmTvghds/YSZFuHr/6UOo W/4jKvBW1Y6BOK+WZ0J6z8cZmy4v/l/EPJNRNDWpRPsKqNFjjYvGJbOrHeHwvLvw TqXB2jAKtXfE24zaDmGezz99GwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGbiGNxe cyAWSfbVZz+MIDY2KMGSMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIneiUXjLYYqnMlzkoZ2PILsgpX30Lb+FNbOoOr9skBtALMfA5ttiG kUAbGBTQNAv1CXwHf6ha1iKV9v8hEg8ibx59CZcKgm99vw3/ZapgkxiH8Y2b30tY KNvlH5y7Of51brOmJDF+RrURilDAKxG8vCjQArSETv6m+NxwKMvNp+r1e1gzBeyv 9m0l3kWCPLjzo3L4xFWOp9Y+A4+efpoBNRTDZaqrOLwXj4gXCTLaAQYcwJrljE4g D/0J5AunDvMGYWZCBCGL7B+QTz0PJStIQ+z+1X8dNQJIr0UFbN7RRU/mlP5J4KZs NTMaEQ0QIn79emnCAqqfBd4SuHDNI68X -----END CERTIFICATE-----Generated at Sat Aug 23 15:54:30 2025 by rpki-client