$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: FuWLtd1ebEbkNxmbi23YiyfGl40WeUFVrTTTrFRH8GU= Subject key identifier: 2C:E5:F8:CB:A3:45:98:8B:14:63:3A:C9:CC:96:FD:CB:8D:8C:AC:8D Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 2227 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 2217 Signing time: Sun 10 Aug 2025 15:50:17 +0000 Manifest this update: Sun 10 Aug 2025 15:50:17 +0000 Manifest next update: Sun 17 Aug 2025 15:50:17 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: W9yFZ1nSyxPbuOEkMFlwEs9ZTFcaTWLy7sKrxpt8vgo=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8743 (0x2227) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Aug 10 15:50:17 2025 GMT Not After : Aug 17 15:50:17 2025 GMT Subject: CN=6898bfb9-230b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d0:d5:cd:d1:56:82:23:d1:ab:60:1d:05:63: cd:7b:e5:94:9a:c0:cf:7e:41:70:6c:82:22:20:15: c0:f9:2b:64:db:8e:b9:cc:32:2d:de:dd:85:93:5b: 92:79:45:01:ca:c6:b7:16:4c:fb:be:ea:4f:12:4e: 9e:bc:ac:8e:3d:46:46:7f:50:e6:a2:d0:0d:1e:69: fb:3e:ee:e5:bc:45:34:01:77:f0:e6:7e:a6:b7:b1: 73:43:93:07:e0:63:22:5d:c6:bb:94:08:54:0b:86: c9:9b:fa:56:62:8d:f5:65:aa:ff:9b:9c:5f:1d:aa: 3e:ce:b1:99:26:3d:96:52:0e:73:61:83:0f:05:f8: 9b:7c:1b:3b:82:89:7a:c2:68:4c:7f:ac:32:01:6f: a2:14:4c:24:03:d6:14:a4:0b:cb:17:52:a9:9a:54: 27:cd:ab:7c:78:04:25:96:5c:df:b4:99:28:13:0f: 46:17:5e:f0:5d:a1:d4:8b:f8:d7:4d:06:e8:94:9e: 36:23:cf:25:c4:7a:0c:4c:ff:1a:37:b4:ca:87:d2: 1f:d0:b2:c5:93:b0:68:6e:7b:91:71:d8:9b:1a:ec: 04:de:d5:6e:f0:6b:82:3d:a9:12:f2:0d:62:e9:48: 13:c8:f9:dd:58:fa:31:43:47:d3:42:1d:3d:40:29: cc:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E5:F8:CB:A3:45:98:8B:14:63:3A:C9:CC:96:FD:CB:8D:8C:AC:8D X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:80:ee:56:d2:92:83:d4:7c:68:fa:14:90:5c:d2:31:88:23: 9d:e0:92:aa:7c:7a:6b:94:86:93:ff:55:48:22:5c:65:69:c4: 5a:c3:73:c5:49:00:d2:5e:77:aa:fe:e6:a5:59:db:b1:51:3d: 5c:61:d8:04:1d:e7:ad:57:7f:de:ee:a2:f2:fb:35:df:30:a4: 8f:e9:f1:14:f7:c2:97:e4:6a:5a:31:b9:1b:bf:81:b2:0e:33: 0c:a8:cb:7c:fe:d9:17:94:35:0a:14:86:c0:09:1a:c9:25:f8: df:0f:f9:79:53:1e:a3:ca:f2:1f:5a:ca:b6:df:de:19:0d:11: e2:52:dc:68:da:35:13:41:ab:0b:c5:b5:f2:8e:a6:a6:2c:11: 95:ea:e1:ed:ba:55:41:9b:e1:dd:bd:20:73:01:8a:3d:0b:f2: ab:9b:0c:6a:4d:75:48:a8:8f:bf:af:15:0d:a6:8e:28:1e:9a: 71:21:fb:3e:2a:33:ce:e3:94:7d:b2:38:51:aa:d8:bb:3a:9d: d4:3a:f2:94:1e:5b:cb:75:97:7f:d8:e8:21:46:5e:ca:56:e4: 6b:1e:37:0f:09:ee:ab:db:02:66:fb:ba:30:8e:21:9f:d6:e3: 84:9e:0c:cb:bb:eb:79:bc:f3:f3:08:69:c1:1e:2d:38:db:6f: fb:05:1a:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIicwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUwODEwMTU1MDE3WhcNMjUwODE3MTU1MDE3WjAYMRYwFAYD VQQDEw02ODk4YmZiOS0yMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9DVzdFWgiPRq2AdBWPNe+WUmsDPfkFwbIIiIBXA+Stk2465zDIt3t2Fk1uS eUUBysa3Fkz7vupPEk6evKyOPUZGf1DmotANHmn7Pu7lvEU0AXfw5n6mt7FzQ5MH 4GMiXca7lAhUC4bJm/pWYo31Zar/m5xfHao+zrGZJj2WUg5zYYMPBfibfBs7gol6 wmhMf6wyAW+iFEwkA9YUpAvLF1KpmlQnzat8eAQlllzftJkoEw9GF17wXaHUi/jX TQbolJ42I88lxHoMTP8aN7TKh9If0LLFk7BobnuRcdibGuwE3tVu8GuCPakS8g1i 6UgTyPndWPoxQ0fTQh09QCnM8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzl+Muj RZiLFGM6ycyW/cuNjKyNMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNgO5W0pKD1Hxo+hSQXNIxiCOd4JKqfHprlIaT/1VIIlxlacRaw3PF SQDSXneq/ualWduxUT1cYdgEHeetV3/e7qLy+zXfMKSP6fEU98KX5GpaMbkbv4Gy DjMMqMt8/tkXlDUKFIbACRrJJfjfD/l5Ux6jyvIfWsq2394ZDRHiUtxo2jUTQasL xbXyjqamLBGV6uHtulVBm+HdvSBzAYo9C/KrmwxqTXVIqI+/rxUNpo4oHppxIfs+ KjPO45R9sjhRqti7Op3UOvKUHlvLdZd/2OghRl7KVuRrHjcPCe6r2wJm+7owjiGf 1uOEngzLu+t5vPPzCGnBHi0422/7BRpt -----END CERTIFICATE-----Generated at Mon Aug 11 04:09:06 2025 by rpki-client