$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: xWGEw+J03Q8E3WE9xw6Lg9CPXvqNvRC3hurkltSNIxg= Subject key identifier: A7:E3:3C:6E:A8:8B:65:0C:91:4D:61:E9:F0:19:38:2E:A3:CE:1B:88 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 1338 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 12BA Signing time: Sun 10 Aug 2025 17:05:41 +0000 Manifest this update: Sun 10 Aug 2025 17:05:41 +0000 Manifest next update: Sun 17 Aug 2025 17:05:41 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: Wqw+m4qiuQw5x+9G+E3otTdWPtvaZlxzM61ktJTCl+c=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: jk5NfHi6Ak10G3qvwwRLBuA+9+MuEQTJVNCIOpp4ijc=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: o0TBqHxczgW2iXEBGTx5nw86Q8zs7jfB/2ZiH2tcXBM=) 4: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: J5LxjosxnnfdXaMAoaZ/PL1BfkizkN1e40crDyxzXgM=) 5: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GdNQEvmzlHfA6Ec8mmP8z6x+jIWG7iAnHlvJMuf8oD8=) 6: F6EBC724B24211EF99C46E64C4F9AE02.roa (hash: q2Nqb/hrcV90WNVexwR/NHfj/Q0Tv7rC0yL9DHC6X3M=) 7: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 08uSCXwlwYJnGMem9e+DAMnS4EN8A9/G3dvb9XlzVbk=) 8: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: 21MmIK/xKiS7JETWE4m4JFsmki6dx7l2EGE0grkpOo4=) 9: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: RAc63GKSag+ebIvPIiKjuswG8wAgmCrcqifdzue1EA8=) 10: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: pyXuQQMaaHpRKrd64JzrpDvcZINK8BGOr87BtX8mKCw=) 11: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: duhPOulpnnqLJOw021zARLEkW5qMCDlozjaUuWOU1CE=) 12: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: RBZSewamTngEQkgjLa0OkH4nQrMAppxSjX91nS2Wpzo=) 13: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: PiSgVIn+A3YVcVJ8J1LY1Q9+m55+zt9vsCjTvJtZIKc=) 14: 0038D872072E11EB8914E540C4F9AE02.roa (hash: bM9HkA9Kov8pVlsp7/+B8Lhib1zUTj1baRTYw1iNq78=) 15: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4920 (0x1338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Aug 10 17:05:41 2025 GMT Not After : Aug 17 17:05:41 2025 GMT Subject: CN=6898d165-7763 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f0:99:72:d7:76:fa:1d:3e:02:dd:8d:9a:0c: 1c:5f:07:ba:85:ae:fb:eb:49:22:13:e1:0a:1f:a6: ff:a9:0c:50:c9:81:b1:0a:c1:59:4e:0c:be:b6:8a: 0d:e6:2f:62:fd:cb:1f:2f:31:62:67:7e:99:e1:d3: 29:27:5a:1f:36:24:2b:4c:4d:61:b2:56:ae:eb:02: 0c:99:c4:8f:10:a4:99:83:ef:78:99:82:9d:6d:17: 60:74:c0:d3:18:5a:b3:8f:ed:f0:94:2c:71:6b:b0: 81:47:f9:7c:4a:77:cc:0c:3a:49:2f:96:08:ab:cc: 56:5d:77:74:d7:21:b4:6c:0c:b7:32:e3:ba:85:72: 53:56:e1:52:bf:13:92:b2:ff:3a:13:c3:58:f4:3e: f5:35:05:9c:e7:1a:3e:93:a4:a9:15:ba:36:71:b4: 80:35:a8:34:b0:c6:4a:9a:af:30:73:88:63:f6:98: 97:7c:66:ed:1b:23:09:f0:7c:7a:7a:f6:68:ae:50: 58:8d:ab:9b:d3:fa:c9:4b:ac:30:b5:13:85:01:62: 1c:37:a2:d5:16:de:52:f3:49:3b:ea:c2:35:f9:3a: a5:d0:b6:39:b3:0c:22:d9:00:29:56:f4:d4:4e:35: 04:41:71:6a:1f:7b:d1:76:a8:ac:2b:ec:20:6f:1b: a5:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E3:3C:6E:A8:8B:65:0C:91:4D:61:E9:F0:19:38:2E:A3:CE:1B:88 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:9c:67:51:72:9a:83:b4:34:e3:61:22:87:a8:ad:8e:58:79: cd:f3:35:f9:9c:17:87:b7:3f:30:e9:17:f5:54:1a:17:f8:d7: 3a:86:b2:96:37:a0:a2:3f:32:66:a4:a3:b2:b7:cc:63:f1:24: 54:ed:c3:14:47:57:c9:f2:7c:06:01:a7:8d:35:87:65:44:0a: fd:83:b5:49:a8:be:47:c0:3d:92:16:9d:07:0d:bb:f5:23:7f: a9:c1:08:49:42:59:1f:55:df:ec:c7:06:39:01:92:70:25:3a: 73:15:a7:e7:6e:05:6a:45:f4:d5:d5:bf:66:a8:79:4d:65:30: 30:13:03:f8:c2:66:6a:fc:e7:bf:58:38:3e:4a:e5:2c:e9:97: e9:55:e9:5d:1e:39:6a:a5:24:a5:de:d7:2d:07:30:d1:63:e1: a2:ff:9c:7b:61:84:bc:56:19:b7:2b:30:1d:79:d2:55:c8:c7: b0:52:e2:af:14:a9:3f:1a:9e:b9:ba:1e:71:ac:49:18:63:d0: 23:66:e5:ef:a3:1e:04:3a:17:29:5a:98:9e:ff:bb:b3:45:8d: 82:5c:2f:3e:a8:e2:53:8e:9b:95:b1:96:ab:d8:79:b6:ff:39: 3a:1c:8e:38:f1:fe:b7:99:74:e9:29:96:83:c0:ca:71:f5:90: e5:f2:de:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUwODEwMTcwNTQxWhcNMjUwODE3MTcwNTQxWjAYMRYwFAYD VQQDEw02ODk4ZDE2NS03NzYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/CZctd2+h0+At2NmgwcXwe6ha7760kiE+EKH6b/qQxQyYGxCsFZTgy+tooN 5i9i/csfLzFiZ36Z4dMpJ1ofNiQrTE1hslau6wIMmcSPEKSZg+94mYKdbRdgdMDT GFqzj+3wlCxxa7CBR/l8SnfMDDpJL5YIq8xWXXd01yG0bAy3MuO6hXJTVuFSvxOS sv86E8NY9D71NQWc5xo+k6SpFbo2cbSANag0sMZKmq8wc4hj9piXfGbtGyMJ8Hx6 evZorlBYjaub0/rJS6wwtROFAWIcN6LVFt5S80k76sI1+Tql0LY5swwi2QApVvTU TjUEQXFqH3vRdqisK+wgbxul+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKfjPG6o i2UMkU1h6fAZOC6jzhuIMB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQnGdRcpqDtDTjYSKHqK2OWHnN8zX5nBeHtz8w6Rf1VBoX+Nc6hrKW N6CiPzJmpKOyt8xj8SRU7cMUR1fJ8nwGAaeNNYdlRAr9g7VJqL5HwD2SFp0HDbv1 I3+pwQhJQlkfVd/sxwY5AZJwJTpzFafnbgVqRfTV1b9mqHlNZTAwEwP4wmZq/Oe/ WDg+SuUs6ZfpVeldHjlqpSSl3tctBzDRY+Gi/5x7YYS8Vhm3KzAdedJVyMewUuKv FKk/Gp65uh5xrEkYY9AjZuXvox4EOhcpWpie/7uzRY2CXC8+qOJTjpuVsZar2Hm2 /zk6HI448f63mXTpKZaDwMpx9ZDl8t4/ -----END CERTIFICATE-----Generated at Sun Aug 10 18:26:37 2025 by rpki-client