$ rpki-client -vvf rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft File: 4dFD2djqAiJMHLDJFey4TuKLWqo.mft (raw, json) Hash identifier: EUmeCOhrsVOUjfDX5K7lcpREfwXQ9tZ125SBZbMDOGs= Subject key identifier: 5B:49:72:19:3A:F9:23:A4:1E:50:E2:65:57:65:93:7F:AC:86:95:CE Authority key identifier: E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA Certificate issuer: /CN=A9170C53/serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Certificate serial: 01C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft Manifest number: 01B6 Signing time: Sat 09 Aug 2025 03:29:18 +0000 Manifest this update: Sat 09 Aug 2025 03:29:17 +0000 Manifest next update: Sat 16 Aug 2025 03:29:17 +0000 Files and hashes: 1: 4dFD2djqAiJMHLDJFey4TuKLWqo.crl (hash: YAQhgB8VChyqxnEm+WsiTbNCQfBDlxUfCtbED3MFtl0=) 2: 916EFEE0DA6011ED9BC6175FC4F9AE02.roa (hash: RDPi47SZcDAz4xmQe0PzevESUJOCnp77k9KEsG3kOPw=) 3: 9283C1F8DA6011ED9BC6175FC4F9AE02.roa (hash: 4ZxnpGjaykPQCM8pL2N1CRQo3+QNzrfE6n7zpJytINg=) 4: 90AE648CDA6011ED9BC6175FC4F9AE02.roa (hash: +lHlOLbl/5RnNOcPx8/sJld2TYpyfZTtFIxadDBZYdU=) 5: 91FAB1ECDA6011ED9BC6175FC4F9AE02.roa (hash: v8W7oHHzaQTWG5Q9zg44OzZnUjsO7rk1vnHeE+xeDvw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170C53, serialNumber=E1D143D9D8EA02224C1CB0C915ECB84EE28B5AAA Validity Not Before: Aug 9 03:29:17 2025 GMT Not After : Aug 16 03:29:17 2025 GMT Subject: CN=6896c08e-c46e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:37:77:17:2e:a8:b9:32:0d:a3:5a:90:8d:2e: b0:a7:b8:e6:59:9b:5f:a1:98:74:54:61:64:50:c8: a1:41:fe:b9:5e:de:81:f9:a7:a9:bd:10:8d:df:f0: f4:f1:38:ed:84:a9:6d:37:92:5d:c9:67:d0:fc:82: 1c:5f:1a:a4:f2:21:10:2f:25:a5:bd:00:48:22:ff: fd:52:9f:e5:16:be:bd:f2:c6:49:23:d8:57:fa:15: c9:1a:75:27:d5:dc:1a:08:0c:49:bf:47:09:4b:c9: 9a:d1:24:57:3b:03:a6:a6:16:d3:07:51:e6:d3:32: e7:42:38:50:0b:8e:41:3d:40:6a:fb:ad:34:ce:6b: a7:ba:59:b0:50:9d:b3:85:e2:4f:8c:9b:88:18:f7: ff:a0:24:04:74:87:bd:1e:70:27:59:cc:10:60:09: 38:40:7e:0c:52:23:e2:a1:ba:20:cf:2e:db:9f:11: 00:f6:a1:a3:3a:b1:ab:19:8d:bd:04:b4:87:ce:49: 98:b4:69:d1:34:51:31:1d:43:35:a4:6b:4b:3d:48: 7a:fe:f9:9d:cf:f1:17:f8:dd:9b:b5:9f:70:cb:df: d8:20:3c:e4:0f:25:cd:d2:01:41:69:cc:5e:3b:84: 7d:bb:dc:8b:0d:6a:41:6e:6f:66:1f:91:09:e9:b9: c1:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:49:72:19:3A:F9:23:A4:1E:50:E2:65:57:65:93:7F:AC:86:95:CE X509v3 Authority Key Identifier: keyid:E1:D1:43:D9:D8:EA:02:22:4C:1C:B0:C9:15:EC:B8:4E:E2:8B:5A:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dFD2djqAiJMHLDJFey4TuKLWqo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170C53/CE445BD0DA5B11ED96747C5AC4F9AE02/4dFD2djqAiJMHLDJFey4TuKLWqo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:d1:45:3e:34:f3:94:61:56:74:e5:84:7b:a4:72:bd:8a:9d: 92:1d:36:68:c3:c8:c9:2e:4a:ec:66:42:d4:74:20:c5:99:bc: 98:b7:79:8a:f3:4d:18:06:0f:f1:4c:d2:62:da:35:ce:7f:83: d7:a7:e5:cb:22:07:dc:eb:bd:a1:e8:93:21:da:1a:46:7e:d1: 1a:3a:f9:e0:09:d2:7d:8d:c1:86:17:5f:66:27:16:87:79:18: eb:81:d3:51:cb:f0:c3:6e:64:38:3d:98:45:49:a2:15:7d:0c: bc:c7:85:27:82:7f:a3:22:5a:57:65:42:9e:5c:27:34:00:1b: 34:cf:24:05:59:1a:23:33:a6:c9:ef:ce:44:8b:dc:5c:fb:3a: 01:24:e5:91:bc:3d:1c:05:2b:c2:47:52:6b:1c:68:08:d3:db: 72:00:b1:fc:c0:86:00:5e:b8:1b:b8:0a:da:f2:c3:37:d8:cd: b0:cb:2f:6d:be:65:50:91:81:69:cb:d9:4f:cc:21:f8:b7:19: 19:d0:18:96:06:83:3a:c7:d7:62:ab:1e:77:9c:7b:00:ef:d7: 3c:42:f1:54:43:8e:9b:6b:21:ab:92:82:8c:99:c4:af:ac:ed: a8:e9:e7:2d:2b:6d:09:60:56:ab:35:d4:4a:8c:87:73:4e:c9: d1:ed:af:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBDNTMxMTAvBgNVBAUTKEUxRDE0M0Q5RDhFQTAyMjI0QzFDQjBDOTE1RUNCODRF RTI4QjVBQUEwHhcNMjUwODA5MDMyOTE3WhcNMjUwODE2MDMyOTE3WjAYMRYwFAYD VQQDEw02ODk2YzA4ZS1jNDZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6jd3Fy6ouTINo1qQjS6wp7jmWZtfoZh0VGFkUMihQf65Xt6B+aepvRCN3/D0 8TjthKltN5JdyWfQ/IIcXxqk8iEQLyWlvQBIIv/9Up/lFr698sZJI9hX+hXJGnUn 1dwaCAxJv0cJS8ma0SRXOwOmphbTB1Hm0zLnQjhQC45BPUBq+600zmunulmwUJ2z heJPjJuIGPf/oCQEdIe9HnAnWcwQYAk4QH4MUiPiobogzy7bnxEA9qGjOrGrGY29 BLSHzkmYtGnRNFExHUM1pGtLPUh6/vmdz/EX+N2btZ9wy9/YIDzkDyXN0gFBacxe O4R9u9yLDWpBbm9mH5EJ6bnBZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFtJchk6 +SOkHlDiZVdlk3+shpXOMB8GA1UdIwQYMBaAFOHRQ9nY6gIiTBywyRXsuE7ii1qq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEM1My9DRTQ0NUJEMERB NUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFpSk1ITERKRmV5NFR1S0xX cW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkRkQyZGpxQWlKTUhMREpGZXk0VHVLTFdxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEM1My9DRTQ0NUJEMERBNUIxMUVEOTY3NDdDNUFDNEY5QUUwMi80ZEZEMmRqcUFp Sk1ITERKRmV5NFR1S0xXcW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCj0UU+NPOUYVZ05YR7pHK9ip2SHTZow8jJLkrsZkLUdCDFmbyYt3mK 800YBg/xTNJi2jXOf4PXp+XLIgfc672h6JMh2hpGftEaOvngCdJ9jcGGF19mJxaH eRjrgdNRy/DDbmQ4PZhFSaIVfQy8x4Ungn+jIlpXZUKeXCc0ABs0zyQFWRojM6bJ 785Ei9xc+zoBJOWRvD0cBSvCR1JrHGgI09tyALH8wIYAXrgbuAra8sM32M2wyy9t vmVQkYFpy9lPzCH4txkZ0BiWBoM6x9diqx53nHsA79c8QvFUQ46bayGrkoKMmcSv rO2o6ectK20JYFarNdRKjIdzTsnR7a8v -----END CERTIFICATE-----Generated at Sun Aug 10 04:47:56 2025 by rpki-client