$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: MT1udQp4IE8wuqqpJfJqD1g58Zf4EtJKnPb1DhJ0QQU= Subject key identifier: 69:8D:12:BA:0B:06:B3:61:96:D5:BD:07:8C:8B:E7:61:3E:92:57:4B Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 15 Signing time: Thu 07 Aug 2025 08:38:27 +0000 Manifest this update: Thu 07 Aug 2025 08:38:26 +0000 Manifest next update: Thu 14 Aug 2025 08:38:26 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: P/ATTGuMQMYSg87n0Bpgm1rp3UP18t3pXmtilcgTBy0=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Aug 7 08:38:26 2025 GMT Not After : Aug 14 08:38:26 2025 GMT Subject: CN=68946603-5659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:96:08:76:d5:be:eb:d5:0c:dc:8b:f3:5a:a3: a5:2e:c7:28:02:95:66:8b:c9:7f:85:35:ab:6b:02: 0e:a8:7a:ea:c4:55:16:e5:e2:17:01:f4:ef:3f:d6: 4e:20:8f:67:8e:13:19:a8:9b:84:e0:19:7c:98:c9: d2:dd:30:39:0e:36:5f:99:29:1d:4c:3f:41:b1:22: d2:a3:47:66:88:f8:89:c9:c5:ef:2a:d9:61:3e:de: 21:47:51:14:fb:9c:1e:f7:d9:4e:4a:0b:a1:52:6e: 19:5d:33:4c:b5:98:28:0e:4c:8e:0e:eb:95:9e:f4: 17:bc:24:89:95:43:41:dd:0c:a8:6b:7a:af:f1:41: 54:f9:3d:9a:c2:4a:33:39:8f:1e:2d:08:91:a4:a5: 53:72:0f:1f:93:dd:cf:2d:d2:43:c0:97:50:0e:07: 0f:43:50:dc:35:88:4b:df:a4:14:bc:61:9b:67:3a: eb:b5:e2:ab:da:bb:f1:6f:25:90:2b:92:05:5d:c9: a4:7b:2a:c6:93:a1:f4:06:10:9e:30:b5:60:a6:5a: 55:e8:3f:34:59:fb:70:a8:16:13:ad:16:a3:2c:ce: 8e:2c:8d:59:9b:ae:19:1f:01:28:40:83:3b:a1:f5: 78:74:d6:3c:6c:56:18:93:6d:14:b7:9a:d0:a7:2c: e3:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:8D:12:BA:0B:06:B3:61:96:D5:BD:07:8C:8B:E7:61:3E:92:57:4B X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:a9:cc:a7:4d:d3:02:30:8e:7c:54:26:4c:7f:4d:87:74:fd: 91:2c:5e:3e:f7:c0:2c:5d:a9:0c:82:6b:53:96:26:08:8b:88: bd:b7:82:a9:d5:b8:23:db:78:15:3e:e1:13:3d:4b:d7:ff:35: 69:8a:80:17:88:66:90:1b:c4:00:d6:b7:f8:ec:b9:74:48:a6: 89:a1:6a:1a:c6:a1:62:7c:86:57:c1:03:48:16:f4:88:da:32: 31:cb:9c:fb:e8:3e:29:80:d1:6a:17:3a:1f:bf:b2:73:95:bf: 4a:a5:38:3f:a2:ac:ac:dc:ad:bb:e8:7f:c1:1a:9a:f3:d4:86: 26:08:cb:3f:c1:b4:2a:91:3d:ca:5a:64:48:26:4d:b1:4c:b6: 3c:66:11:c6:5b:c0:cd:83:52:d1:7f:dd:73:ab:f8:d4:58:8a: 63:4e:8b:62:a9:88:f5:44:ea:17:a2:06:b3:6a:65:ad:48:78: d0:c0:bb:63:ea:1e:76:aa:ee:91:36:87:9c:ff:9b:9e:f2:71: 68:d8:54:5f:ea:50:2b:ec:05:fe:89:c9:bc:d5:66:ae:72:c6: fa:07:c5:03:1b:de:d0:41:aa:90:6d:d1:c6:d5:f6:fc:15:3e: 1d:86:a8:e3:04:a4:8f:a6:e6:1f:d9:65:67:b5:fe:b7:44:1a: 26:51:58:21 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTA4MDcwODM4MjZaFw0yNTA4MTQwODM4MjZaMBgxFjAUBgNV BAMTDTY4OTQ2NjAzLTU2NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBlgh21b7r1Qzci/Nao6UuxygClWaLyX+FNatrAg6oeurEVRbl4hcB9O8/1k4g j2eOExmom4TgGXyYydLdMDkONl+ZKR1MP0GxItKjR2aI+InJxe8q2WE+3iFHURT7 nB732U5KC6FSbhldM0y1mCgOTI4O65We9Be8JImVQ0HdDKhreq/xQVT5PZrCSjM5 jx4tCJGkpVNyDx+T3c8t0kPAl1AOBw9DUNw1iEvfpBS8YZtnOuu14qvau/FvJZAr kgVdyaR7KsaTofQGEJ4wtWCmWlXoPzRZ+3CoFhOtFqMszo4sjVmbrhkfAShAgzuh 9Xh01jxsVhiTbRS3mtCnLOOvAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUaY0SugsG s2GW1b0HjIvnYT6SV0swHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ+pzKdN0wIwjnxUJkx/TYd0/ZEsXj73wCxdqQyCa1OWJgiLiL23gqnV uCPbeBU+4RM9S9f/NWmKgBeIZpAbxADWt/jsuXRIpomhahrGoWJ8hlfBA0gW9Ija MjHLnPvoPimA0WoXOh+/snOVv0qlOD+irKzcrbvof8EamvPUhiYIyz/BtCqRPcpa ZEgmTbFMtjxmEcZbwM2DUtF/3XOr+NRYimNOi2KpiPVE6heiBrNqZa1IeNDAu2Pq Hnaq7pE2h5z/m57ycWjYVF/qUCvsBf6JybzVZq5yxvoHxQMb3tBBqpBt0cbV9vwV Ph2GqOMEpI+m5h/ZZWe1/rdEGiZRWCE= -----END CERTIFICATE-----Generated at Sat Aug 9 01:17:39 2025 by rpki-client