$ rpki-client -vvf rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft File: CF4MUA89R900skS9OSnO_a3ZbD0.mft (raw, json) Hash identifier: PTR8PWgh5zLDXOwZK7EVQKUsoO18GqXzVrAb3fAfALo= Subject key identifier: 0E:A8:C3:A5:7A:13:38:49:5F:D9:EA:6F:69:08:73:17:09:BC:12:1F Authority key identifier: 08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D Certificate issuer: /CN=A919D118/serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Certificate serial: 0AB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft Manifest number: 0A9C Signing time: Fri 22 Aug 2025 19:41:36 +0000 Manifest this update: Fri 22 Aug 2025 19:41:35 +0000 Manifest next update: Fri 29 Aug 2025 19:41:35 +0000 Files and hashes: 1: CF4MUA89R900skS9OSnO_a3ZbD0.crl (hash: thvqnSyGoqvBb0jH2hK+FAg3SB86L8Vd8oi6jjiH6Vc=) 2: 676A2DE2564911F08353B443C4F9AE02.roa (hash: YM/jqlM3yjwQowPEPNTW8kWHF+17BJwpa8g+tmnEC0w=) 3: 5FFA4BEC3C0B11ED89AD755FC4F9AE02.roa (hash: +qdSnSMI4Cq6GPacx1y6troGvfBHeu8mDwsrgTG91us=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:41:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2736 (0xab0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D118, serialNumber=085E0C500F3D47DD34B244BD3929CEFDADD96C3D Validity Not Before: Aug 22 19:41:35 2025 GMT Not After : Aug 29 19:41:35 2025 GMT Subject: CN=68a8c7f0-949a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:12:8e:d6:e9:ee:86:89:35:2d:26:00:69:3f: 59:f9:d3:14:cc:cb:da:89:eb:8e:6c:e1:66:40:82: 4c:c1:c2:dd:42:b1:8e:37:8a:67:19:0f:9d:05:d5: be:ae:b0:52:47:12:09:40:f1:97:91:2a:1c:87:b3: 75:02:74:79:0c:63:64:9a:13:fa:68:0c:08:5a:af: 31:d8:13:85:9b:8f:60:10:22:43:64:35:8a:bb:26: 9c:e2:45:fb:c5:fc:cf:2b:d1:af:ef:74:bc:6c:b7: 50:53:14:17:05:fd:de:a6:30:1b:fe:b5:44:c5:34: 66:30:2f:ab:e1:e4:3e:67:69:07:8a:98:13:db:94: 24:d4:6b:58:2a:f3:f0:44:5d:b5:52:42:e6:96:b3: a8:28:9f:11:28:7e:b8:d9:f5:f0:de:9c:11:4e:4b: 27:00:af:28:80:bb:cd:04:09:0e:72:5d:4a:36:dd: 86:f8:18:76:d1:f4:6c:49:65:3f:c5:2e:40:58:de: 94:f3:f5:ee:d5:dc:65:bd:5e:40:40:ce:28:be:14: d8:97:b9:d4:43:d8:8b:3e:8d:fa:19:6f:b1:96:65: 38:1e:89:e2:05:da:ea:82:d3:02:c1:d1:f9:bb:46: 0f:9e:dd:60:a9:b6:5d:1f:7c:eb:65:e1:2c:8e:87: 81:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A8:C3:A5:7A:13:38:49:5F:D9:EA:6F:69:08:73:17:09:BC:12:1F X509v3 Authority Key Identifier: keyid:08:5E:0C:50:0F:3D:47:DD:34:B2:44:BD:39:29:CE:FD:AD:D9:6C:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CF4MUA89R900skS9OSnO_a3ZbD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D118/BB81A51462BF11EAAA3A8945C4F9AE02/CF4MUA89R900skS9OSnO_a3ZbD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:f8:56:6a:f3:a4:b9:df:07:e0:fa:38:f6:16:8b:99:17:d5: 43:a5:fd:cf:12:4b:3e:5b:06:a6:c5:af:07:29:98:ba:c8:8e: c4:8d:e1:d4:62:bd:22:98:b4:c9:e4:61:14:f3:89:a1:eb:31: 05:aa:70:f4:1d:f7:31:7d:e4:13:e0:cd:84:08:88:f1:e3:20: db:ca:db:f8:14:79:17:ec:e5:83:fa:82:bb:bf:d9:a1:66:61: e6:44:43:7e:0a:d5:88:50:88:15:44:8e:e9:b4:a9:5e:02:67: 3c:2f:b0:e9:61:07:e4:c2:b9:f2:f8:18:29:26:fd:a4:ea:3b: 80:44:1c:4e:14:f0:2c:5b:49:d9:75:1a:33:72:c9:fa:4d:ce: 49:41:c6:cf:16:76:63:f4:b3:74:08:c2:77:b9:ad:a7:86:44: ea:86:4a:02:4e:f0:bf:52:55:64:d0:34:a4:28:88:16:66:f2: 7e:ff:b8:37:d7:09:ce:b8:af:17:39:94:84:13:a7:c8:45:55: 73:4b:71:a8:20:3b:76:0e:7e:95:95:f0:ea:53:28:ea:b3:85: fa:4c:ea:59:5b:27:4c:e6:ca:b3:18:13:15:e5:b2:fe:58:6a: 7d:e6:26:1d:d1:11:7e:a4:18:0c:28:2b:2a:c7:14:53:56:f8: 81:75:13:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxMTgxMTAvBgNVBAUTKDA4NUUwQzUwMEYzRDQ3REQzNEIyNDRCRDM5MjlDRUZE QUREOTZDM0QwHhcNMjUwODIyMTk0MTM1WhcNMjUwODI5MTk0MTM1WjAYMRYwFAYD VQQDEw02OGE4YzdmMC05NDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6RKO1unuhok1LSYAaT9Z+dMUzMvaieuObOFmQIJMwcLdQrGON4pnGQ+dBdW+ rrBSRxIJQPGXkSoch7N1AnR5DGNkmhP6aAwIWq8x2BOFm49gECJDZDWKuyac4kX7 xfzPK9Gv73S8bLdQUxQXBf3epjAb/rVExTRmMC+r4eQ+Z2kHipgT25Qk1GtYKvPw RF21UkLmlrOoKJ8RKH642fXw3pwRTksnAK8ogLvNBAkOcl1KNt2G+Bh20fRsSWU/ xS5AWN6U8/Xu1dxlvV5AQM4ovhTYl7nUQ9iLPo36GW+xlmU4HoniBdrqgtMCwdH5 u0YPnt1gqbZdH3zrZeEsjoeBgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6ow6V6 EzhJX9nqb2kIcxcJvBIfMB8GA1UdIwQYMBaAFAheDFAPPUfdNLJEvTkpzv2t2Ww9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDExOC9CQjgxQTUxNDYy QkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5MDBza1M5T1NuT19hM1pi RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NGNE1VQTg5UjkwMHNrUzlPU25PX2EzWmJEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDExOC9CQjgxQTUxNDYyQkYxMUVBQUEzQTg5NDVDNEY5QUUwMi9DRjRNVUE4OVI5 MDBza1M5T1NuT19hM1piRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAT+FZq86S53wfg+jj2FouZF9VDpf3PEks+Wwamxa8HKZi6yI7EjeHU Yr0imLTJ5GEU84mh6zEFqnD0HfcxfeQT4M2ECIjx4yDbytv4FHkX7OWD+oK7v9mh ZmHmREN+CtWIUIgVRI7ptKleAmc8L7DpYQfkwrny+BgpJv2k6juARBxOFPAsW0nZ dRozcsn6Tc5JQcbPFnZj9LN0CMJ3ua2nhkTqhkoCTvC/UlVk0DSkKIgWZvJ+/7g3 1wnOuK8XOZSEE6fIRVVzS3GoIDt2Dn6VlfDqUyjqs4X6TOpZWydM5sqzGBMV5bL+ WGp95iYd0RF+pBgMKCsqxxRTVviBdRNP -----END CERTIFICATE-----Generated at Sun Aug 24 05:01:53 2025 by rpki-client