$ rpki-client -vvf rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft File: 4bseYl2967MiD_kjzWoRos4kUZY.mft (raw, json) Hash identifier: 5H5rXV+O8MqDaAcAFSQb2PVgDSsGm5aaIXN0DWD59pA= Subject key identifier: 90:55:91:16:98:A9:DE:C1:DE:59:49:58:9A:02:91:97:E8:D9:01:D3 Authority key identifier: E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 Certificate issuer: /CN=A916A31E/serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Certificate serial: 1825 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft Manifest number: 17EB Signing time: Tue 12 Aug 2025 16:39:23 +0000 Manifest this update: Tue 12 Aug 2025 16:39:22 +0000 Manifest next update: Tue 19 Aug 2025 16:39:22 +0000 Files and hashes: 1: 4bseYl2967MiD_kjzWoRos4kUZY.crl (hash: 7iG5KLa4Wh3/Twl2Jwu96y6JR6k9CSMGk6LUc8YIRp8=) 2: FA2CCDCCDE6111E88BFD7810C4F9AE02.roa (hash: wcQu6qDmYL8RSwTWQdHq8swDuqsLZ/b+WksTXiVZeUI=) 3: 2B04CC143D9F11EEACFF646FC4F9AE02.roa (hash: ukI4z4ZMWUWet1XkTlAm00Pda4+ffxxraVEq+pStj8k=) 4: 2A3161763D9F11EEACFF646FC4F9AE02.roa (hash: mm0VJeRGh/+0foB6ENfn+0Td2KUkG+rfML9gCL5EGhk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 16:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6181 (0x1825) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A31E, serialNumber=E1BB1E625DBDEBB3220FF923CD6A11A2CE245196 Validity Not Before: Aug 12 16:39:22 2025 GMT Not After : Aug 19 16:39:22 2025 GMT Subject: CN=689b6e3a-8312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fa:a9:46:29:2e:1b:1d:71:bf:70:36:01:39: 02:4d:bd:c7:db:26:09:73:90:e4:4d:28:5f:a5:88: e1:6d:33:75:dd:a2:85:f8:47:d4:26:1d:2c:ef:6c: f2:4c:14:d8:97:5b:83:44:12:47:40:32:0c:a4:dc: 66:ab:c3:4d:7f:fc:57:31:f4:7e:f7:44:64:09:f7: a7:46:1e:df:ff:f4:e2:dc:fd:06:9f:4f:dc:d6:6e: 62:d4:ad:40:b1:1f:c1:75:9f:89:92:89:56:b5:1e: 05:30:0b:99:7b:fa:5f:fd:c5:05:0f:29:bb:46:20: 54:c8:e1:a8:8d:c5:02:61:03:54:98:f5:f5:5e:7e: f1:ff:8b:99:36:3c:12:65:7f:37:90:cf:33:3e:f9: 05:9e:48:31:f4:22:68:cf:6e:ef:2d:4f:e9:4b:84: 61:4f:54:e3:86:3a:74:f3:e8:c1:6c:b9:e7:97:9e: 79:e8:e3:4a:9e:04:2b:01:76:0b:6d:48:b7:0e:5b: e3:8b:ab:52:24:0e:52:f9:b3:70:68:5b:15:30:b9: 3d:e4:79:83:d3:eb:c5:25:4d:66:05:eb:50:90:b6: 6c:29:68:df:8f:f2:e1:a0:01:fb:7b:3c:92:0a:cb: 4b:a0:5f:63:e5:bf:60:ca:ef:5e:57:f7:f1:8a:fc: ca:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:55:91:16:98:A9:DE:C1:DE:59:49:58:9A:02:91:97:E8:D9:01:D3 X509v3 Authority Key Identifier: keyid:E1:BB:1E:62:5D:BD:EB:B3:22:0F:F9:23:CD:6A:11:A2:CE:24:51:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bseYl2967MiD_kjzWoRos4kUZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A31E/C1FA082CC8CB11E790A88138C4F9AE02/4bseYl2967MiD_kjzWoRos4kUZY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:ab:db:60:d4:bf:75:13:f4:02:7b:1f:59:43:06:a0:db:1c: d4:08:f3:86:66:09:2c:8f:5f:93:03:eb:2f:29:57:00:5b:14: 1f:d9:2a:fb:37:06:f7:57:f4:42:e3:9c:ca:db:b5:7b:dc:69: 71:12:27:17:ce:20:11:59:ee:99:50:54:36:07:38:95:64:4b: f7:d0:6f:b3:74:9b:9b:04:67:b0:02:15:87:ee:f7:99:85:96: f9:39:6f:30:be:4f:35:01:05:f0:47:78:be:cb:96:d8:08:7c: fe:17:4f:da:e8:dc:b5:94:6b:46:24:e5:7e:d8:2a:cc:08:41: ff:1e:dd:53:ce:99:90:c5:90:ef:91:1d:fb:dd:af:f8:09:10: 43:8f:3f:e6:70:c1:c1:d7:1f:57:8d:38:37:be:e5:4c:8f:90: 14:73:cb:d2:f0:4b:60:07:40:f6:19:09:bf:8b:9d:80:01:52: 79:ad:a4:7c:6a:55:d7:57:f3:4d:10:bf:8d:bb:a3:89:a3:a0: da:e5:67:57:5d:16:52:bd:f9:e8:c3:47:31:c3:d6:f4:89:fe: 9c:a9:92:2d:ba:02:0b:ef:29:4f:75:9f:8a:46:5d:e8:3e:9b: a1:d5:4d:ff:8e:f6:71:3d:67:7d:86:74:aa:96:12:a2:93:57: ba:06:e2:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEzMUUxMTAvBgNVBAUTKEUxQkIxRTYyNURCREVCQjMyMjBGRjkyM0NENkExMUEy Q0UyNDUxOTYwHhcNMjUwODEyMTYzOTIyWhcNMjUwODE5MTYzOTIyWjAYMRYwFAYD VQQDEw02ODliNmUzYS04MzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/qpRikuGx1xv3A2ATkCTb3H2yYJc5DkTShfpYjhbTN13aKF+EfUJh0s72zy TBTYl1uDRBJHQDIMpNxmq8NNf/xXMfR+90RkCfenRh7f//Ti3P0Gn0/c1m5i1K1A sR/BdZ+JkolWtR4FMAuZe/pf/cUFDym7RiBUyOGojcUCYQNUmPX1Xn7x/4uZNjwS ZX83kM8zPvkFnkgx9CJoz27vLU/pS4RhT1Tjhjp08+jBbLnnl5556ONKngQrAXYL bUi3Dlvji6tSJA5S+bNwaFsVMLk95HmD0+vFJU1mBetQkLZsKWjfj/LhoAH7ezyS CstLoF9j5b9gyu9eV/fxivzKhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJBVkRaY qd7B3llJWJoCkZfo2QHTMB8GA1UdIwQYMBaAFOG7HmJdveuzIg/5I81qEaLOJFGW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTMxRS9DMUZBMDgyQ0M4 Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3TWlEX2tqeldvUm9zNGtV WlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRic2VZbDI5NjdNaURfa2p6V29Sb3M0a1VaWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTMxRS9DMUZBMDgyQ0M4Q0IxMUU3OTBBODgxMzhDNEY5QUUwMi80YnNlWWwyOTY3 TWlEX2tqeldvUm9zNGtVWlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3q9tg1L91E/QCex9ZQwag2xzUCPOGZgksj1+TA+svKVcAWxQf2Sr7 Nwb3V/RC45zK27V73GlxEicXziARWe6ZUFQ2BziVZEv30G+zdJubBGewAhWH7veZ hZb5OW8wvk81AQXwR3i+y5bYCHz+F0/a6Ny1lGtGJOV+2CrMCEH/Ht1TzpmQxZDv kR373a/4CRBDjz/mcMHB1x9XjTg3vuVMj5AUc8vS8EtgB0D2GQm/i52AAVJ5raR8 alXXV/NNEL+Nu6OJo6Da5WdXXRZSvfnow0cxw9b0if6cqZItugIL7ylPdZ+KRl3o Ppuh1U3/jvZxPWd9hnSqlhKik1e6BuLB -----END CERTIFICATE-----Generated at Wed Aug 13 00:34:51 2025 by rpki-client