$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft File: 5muokllQFHlLtkUdFCgchAAgYgM.mft (raw, json) Hash identifier: P+LB4GLZs2sWfzg0/1c3wufL7mGEctbeOBN/mOVDh0g= Subject key identifier: 36:D2:AC:A0:22:BB:64:17:F4:C1:6B:27:88:D1:92:FF:55:B6:83:87 Authority key identifier: E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 Certificate issuer: /CN=A9140BA4/serialNumber=E66BA892595014794BB6451D14281C8400206203 Certificate serial: 1494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft Manifest number: 1491 Signing time: Fri 08 Aug 2025 17:03:19 +0000 Manifest this update: Fri 08 Aug 2025 17:03:19 +0000 Manifest next update: Fri 15 Aug 2025 17:03:19 +0000 Files and hashes: 1: 5muokllQFHlLtkUdFCgchAAgYgM.crl (hash: 65ZJdbmB4KD2lBled16vBabod4Sk2LCxEnQxlM45LIM=) 2: 3FF298D41AFF11EFB20C2648C4F9AE02.roa (hash: K3UhQQDhvIK9kiqYEaaLUGkHSXsQC8El8DjsvYMTmMc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5268 (0x1494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BA4, serialNumber=E66BA892595014794BB6451D14281C8400206203 Validity Not Before: Aug 8 17:03:19 2025 GMT Not After : Aug 15 17:03:19 2025 GMT Subject: CN=68962dd7-e8bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a9:79:07:e1:f3:26:b7:b9:b2:75:ba:75:50: 6f:1b:40:da:ad:fc:91:cf:53:14:d0:a6:ca:36:73: 57:b5:64:5c:1c:95:22:33:99:e1:e8:e4:e5:b6:8d: 7f:6f:b8:ec:f5:8e:06:2a:f6:0a:64:50:d7:83:64: 8a:00:1d:28:fd:6e:f8:ff:24:a4:bf:5a:4d:50:3c: 7c:27:7d:c4:1d:41:10:f0:fa:05:f3:b7:6c:1e:18: b0:5a:a3:10:87:e6:39:cb:28:6c:49:8d:cd:6a:be: cb:14:8b:e6:26:0b:b6:56:ec:5c:d7:52:c3:6b:78: b6:95:05:78:31:29:72:e7:fb:15:cb:ba:e2:4b:2d: 34:84:7f:d4:ee:8f:3f:91:c3:79:36:83:eb:13:f9: 2c:46:45:20:bb:0d:d4:24:ef:e0:48:84:d4:e5:59: bd:2f:d2:a3:e3:6d:c0:24:fc:49:40:d3:3d:6a:66: 35:04:80:32:c8:db:35:97:7c:ef:59:84:11:b8:cc: da:ce:41:d6:f5:c8:f1:8d:aa:8c:bc:75:ee:61:12: c4:4c:c8:de:ac:c2:40:98:fb:16:c3:48:60:76:d4: 65:94:4b:67:3b:33:2e:4b:a6:79:86:fd:14:ef:60: 73:ae:bf:69:ff:fc:2a:db:16:5b:7a:8c:13:83:4b: ae:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:D2:AC:A0:22:BB:64:17:F4:C1:6B:27:88:D1:92:FF:55:B6:83:87 X509v3 Authority Key Identifier: keyid:E6:6B:A8:92:59:50:14:79:4B:B6:45:1D:14:28:1C:84:00:20:62:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5muokllQFHlLtkUdFCgchAAgYgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BA4/47E9268668ED11E890E39549C4F9AE02/5muokllQFHlLtkUdFCgchAAgYgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e8:7b:2d:2f:a3:75:91:05:36:10:2a:5d:c9:ba:0d:c5:85:e4: 10:1e:1e:5a:39:35:80:11:e6:e0:2d:ab:e6:1b:e3:e0:02:3b: 06:02:7e:bb:f6:44:03:15:9e:06:dc:81:3e:f8:c0:17:81:f8: 94:d4:7a:be:5c:a1:5b:fd:ed:9f:70:69:49:4a:9a:cd:c1:52: 4d:89:5c:0f:28:78:bc:a5:7a:e6:a6:c8:e4:67:35:12:b1:45: b2:95:2f:fe:1c:7f:e4:9a:a9:68:76:db:4f:ef:5e:09:e9:5d: 2d:8f:25:de:a6:ff:f5:75:e6:db:d5:20:ac:92:e6:41:85:79: 02:2d:cd:1e:5c:52:66:10:18:b7:ad:ea:1e:cd:67:4c:3a:64: d2:84:df:a4:24:02:0a:13:f3:69:fa:04:1b:ca:fc:19:16:7d: 08:98:c3:30:6c:fa:a2:63:da:ee:32:d5:f5:aa:0b:ff:9a:14: 4a:06:81:bf:68:1a:40:4a:67:31:2a:d2:d5:6c:ec:ba:93:8b: ac:d8:5b:ab:e8:af:45:2f:8f:db:fb:ad:e6:2d:89:75:18:de: d3:ee:b2:ac:a0:05:73:68:b2:3a:a4:7d:6a:1c:1c:13:66:94: e3:0e:29:91:ed:a1:11:d2:31:92:3b:e8:33:84:15:47:82:27: 5e:84:fa:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCQTQxMTAvBgNVBAUTKEU2NkJBODkyNTk1MDE0Nzk0QkI2NDUxRDE0MjgxQzg0 MDAyMDYyMDMwHhcNMjUwODA4MTcwMzE5WhcNMjUwODE1MTcwMzE5WjAYMRYwFAYD VQQDEw02ODk2MmRkNy1lOGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06l5B+HzJre5snW6dVBvG0DarfyRz1MU0KbKNnNXtWRcHJUiM5nh6OTlto1/ b7js9Y4GKvYKZFDXg2SKAB0o/W74/ySkv1pNUDx8J33EHUEQ8PoF87dsHhiwWqMQ h+Y5yyhsSY3Nar7LFIvmJgu2Vuxc11LDa3i2lQV4MSly5/sVy7riSy00hH/U7o8/ kcN5NoPrE/ksRkUguw3UJO/gSITU5Vm9L9Kj423AJPxJQNM9amY1BIAyyNs1l3zv WYQRuMzazkHW9cjxjaqMvHXuYRLETMjerMJAmPsWw0hgdtRllEtnOzMuS6Z5hv0U 72Bzrr9p//wq2xZbeowTg0uuHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDbSrKAi u2QX9MFrJ4jRkv9VtoOHMB8GA1UdIwQYMBaAFOZrqJJZUBR5S7ZFHRQoHIQAIGID MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJBNC80N0U5MjY4NjY4 RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZIbEx0a1VkRkNnY2hBQWdZ Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVtdW9rbGxRRkhsTHRrVWRGQ2djaEFBZ1lnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJBNC80N0U5MjY4NjY4RUQxMUU4OTBFMzk1NDlDNEY5QUUwMi81bXVva2xsUUZI bEx0a1VkRkNnY2hBQWdZZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDoey0vo3WRBTYQKl3Jug3FheQQHh5aOTWAEebgLavmG+PgAjsGAn67 9kQDFZ4G3IE++MAXgfiU1Hq+XKFb/e2fcGlJSprNwVJNiVwPKHi8pXrmpsjkZzUS sUWylS/+HH/kmqlodttP714J6V0tjyXepv/1debb1SCskuZBhXkCLc0eXFJmEBi3 reoezWdMOmTShN+kJAIKE/Np+gQbyvwZFn0ImMMwbPqiY9ruMtX1qgv/mhRKBoG/ aBpASmcxKtLVbOy6k4us2Fur6K9FL4/b+63mLYl1GN7T7rKsoAVzaLI6pH1qHBwT ZpTjDimR7aER0jGSO+gzhBVHgidehPpg -----END CERTIFICATE-----Generated at Sat Aug 9 23:26:21 2025 by rpki-client