$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: niGxKigkP67Ra1MzWabMOOeM7eylHciBAZ/cLK6uPK0= Subject key identifier: C7:C3:11:CB:54:59:3D:5D:40:77:CD:25:13:3E:F9:6A:0D:7D:F0:DB Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0522 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 051E Signing time: Wed 13 Aug 2025 00:01:32 +0000 Manifest this update: Wed 13 Aug 2025 00:01:31 +0000 Manifest next update: Wed 20 Aug 2025 00:01:31 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: K0ZOy8m4lxt0W0HtVlG7q96mLF4V9BiIVbkwdBjIaWY=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:01:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1314 (0x522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Aug 13 00:01:31 2025 GMT Not After : Aug 20 00:01:31 2025 GMT Subject: CN=689bd5dc-e41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:27:86:19:ee:43:a4:1e:68:10:ac:55:f4: c4:b8:a2:3e:6b:a5:74:1f:15:72:d6:c8:89:39:ac: ae:f9:e4:ed:a5:da:1b:18:b7:b1:bf:ab:fe:db:48: ad:94:b3:17:76:ee:d7:68:6a:e2:59:fc:e7:df:e4: bd:1a:57:e8:0c:f0:de:b8:10:5a:b1:58:9e:81:e1: a4:8e:3d:2a:4b:fb:fd:0b:c0:af:ad:59:8f:84:18: cb:b5:a0:99:c8:a1:28:57:07:a9:6b:e4:9d:7e:82: 17:40:b8:6a:19:9b:a4:2c:c3:17:56:e7:61:e2:1c: 2c:90:25:a6:83:c6:50:b4:b3:3d:2e:07:9c:f9:4c: 08:1f:6b:84:a1:94:8b:3a:73:38:3e:64:6d:ed:1a: bd:6e:1a:28:17:4d:fd:a5:20:0b:dd:37:56:7a:89: 86:95:64:da:d8:ed:02:5e:da:83:cd:24:05:2c:f4: b6:58:bd:39:51:c1:a5:56:1f:69:f6:f1:97:8f:de: bd:47:dc:f1:72:bd:31:10:52:e6:bf:d7:a4:e6:d9: 56:5a:f4:33:17:1b:08:2d:14:f5:2a:09:f9:93:c4: 6b:12:20:0b:24:09:e2:1d:24:5e:26:aa:d3:a0:a2: 4d:eb:ea:c3:e3:02:42:55:3c:d7:89:2c:0e:47:f5: b2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C3:11:CB:54:59:3D:5D:40:77:CD:25:13:3E:F9:6A:0D:7D:F0:DB X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:4a:31:d4:34:31:5d:cd:3c:f6:3a:11:05:10:b1:f5:8c:44: e8:fb:9a:8e:25:fe:ae:14:58:f5:4b:7d:4d:49:18:a9:ed:db: 1d:51:d1:74:01:a9:3e:18:c8:ea:73:41:8f:22:91:0b:97:01: 32:f4:41:1b:13:61:a5:00:95:ef:2c:21:b8:dc:3f:d1:fa:30: f8:2d:76:ed:41:4c:df:2a:a5:3e:2a:3e:28:8b:f5:57:ca:72: 22:2a:5c:12:34:5b:5f:07:41:f0:21:83:61:de:6c:ac:8e:f2: c6:b9:33:ab:6d:cf:f6:ac:7f:f3:30:fc:a6:9a:78:5b:c9:49: 98:81:da:be:7d:5c:d3:19:35:8c:2e:1e:ec:4f:44:97:d0:58: 01:fe:94:0f:d7:87:e5:39:cb:08:66:bb:75:f0:12:d8:22:37: ee:44:e3:a1:04:31:0a:e7:7a:6f:af:6c:93:8c:89:1b:ff:38: fe:88:1a:38:08:56:68:11:58:8f:3c:2a:39:75:4b:5b:a9:b6: 0e:d2:25:34:c0:0e:91:a2:a8:97:c5:6c:cd:b2:d8:6a:5c:21: 5a:e9:50:52:16:73:51:98:f6:4c:8a:1b:90:db:58:06:c0:9b: c0:0a:57:75:39:38:e2:f1:00:84:e1:8c:b8:00:e7:39:a9:e6: 23:5d:59:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwODEzMDAwMTMxWhcNMjUwODIwMDAwMTMxWjAYMRYwFAYD VQQDEw02ODliZDVkYy1lNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaQnhhnuQ6QeaBCsVfTEuKI+a6V0HxVy1siJOayu+eTtpdobGLexv6v+20it lLMXdu7XaGriWfzn3+S9GlfoDPDeuBBasViegeGkjj0qS/v9C8CvrVmPhBjLtaCZ yKEoVwepa+SdfoIXQLhqGZukLMMXVudh4hwskCWmg8ZQtLM9Lgec+UwIH2uEoZSL OnM4PmRt7Rq9bhooF039pSAL3TdWeomGlWTa2O0CXtqDzSQFLPS2WL05UcGlVh9p 9vGXj969R9zxcr0xEFLmv9ek5tlWWvQzFxsILRT1Kgn5k8RrEiALJAniHSReJqrT oKJN6+rD4wJCVTzXiSwOR/WyHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfDEctU WT1dQHfNJRM++WoNffDbMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHSjHUNDFdzTz2OhEFELH1jETo+5qOJf6uFFj1S31NSRip7dsdUdF0 Aak+GMjqc0GPIpELlwEy9EEbE2GlAJXvLCG43D/R+jD4LXbtQUzfKqU+Kj4oi/VX ynIiKlwSNFtfB0HwIYNh3mysjvLGuTOrbc/2rH/zMPymmnhbyUmYgdq+fVzTGTWM Lh7sT0SX0FgB/pQP14flOcsIZrt18BLYIjfuROOhBDEK53pvr2yTjIkb/zj+iBo4 CFZoEViPPCo5dUtbqbYO0iU0wA6RoqiXxWzNsthqXCFa6VBSFnNRmPZMihuQ21gG wJvACld1OTji8QCE4Yy4AOc5qeYjXVkd -----END CERTIFICATE-----Generated at Wed Aug 13 09:51:08 2025 by rpki-client