$ rpki-client -vvf rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft File: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft (raw, json) Hash identifier: GWcdHUgJTk0D7mPbLj4Qdwi2p4DlzHFLRlNBE7BhWiA= Subject key identifier: D9:27:14:4D:8F:A7:FD:A3:3B:2A:7E:73:ED:57:EC:18:38:0E:84:35 Authority key identifier: 32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 Certificate issuer: /CN=A9172B41/serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Certificate serial: 0491 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft Manifest number: 048B Signing time: Sun 03 Aug 2025 00:32:51 +0000 Manifest this update: Sun 03 Aug 2025 00:32:50 +0000 Manifest next update: Sun 10 Aug 2025 00:32:50 +0000 Files and hashes: 1: MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl (hash: nnbpoY5Oo63NjsVamhCSrj+loTfvOTq5wf34NPaJX4w=) 2: 5C7731E64B7111EC8E9FCB48C4F9AE02.roa (hash: VtnOs46KlpQVSJ9THDVnSS8EzLS3A9xUSm3n/4RNrWA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 00:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1169 (0x491) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172B41, serialNumber=32E0F700E3872451A1A832CD7DDE4175BFBA8369 Validity Not Before: Aug 3 00:32:50 2025 GMT Not After : Aug 10 00:32:50 2025 GMT Subject: CN=688eae32-11e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:af:bf:fc:97:be:55:b2:74:07:fc:f9:db:1e: a4:85:57:01:90:c4:16:1f:17:7c:91:30:05:53:62: 07:61:32:fb:a1:89:1f:38:43:9b:ed:3c:40:96:91: 39:c9:9d:4e:68:8d:8f:d5:af:8a:4e:3b:a5:bd:c6: 6b:11:9f:15:70:4d:73:36:14:f7:87:19:83:68:f1: 0a:a4:0b:8f:d9:07:99:cc:2c:a0:5d:fd:f9:53:c0: a8:5a:8a:a1:6f:11:b9:8b:24:86:99:75:b7:7d:9d: 90:33:e0:4c:4b:71:48:76:28:fb:92:85:28:c2:35: 68:4f:31:88:5e:81:49:88:7c:c1:d3:7f:bb:20:17: c7:e0:95:dd:aa:4d:d2:a9:5b:d6:24:4f:c4:01:76: 6f:5d:7b:47:4b:e5:87:5b:97:6b:65:1b:35:01:da: 7b:f7:fc:9a:3f:38:f0:fb:ce:d5:37:a2:47:70:d6: 57:ad:64:0c:54:b2:79:5c:0a:f1:92:ce:b1:8d:c0: 95:f8:88:02:ed:0f:b8:7d:74:1a:ad:f9:79:73:c3: fa:9b:59:d0:c2:3b:d6:4c:e3:18:9e:ca:f2:eb:af: 95:1f:6b:34:b4:b6:f4:ac:e0:85:01:57:db:96:dd: 94:2e:05:72:1f:83:06:8f:47:f0:12:08:68:bc:89: 8e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:27:14:4D:8F:A7:FD:A3:3B:2A:7E:73:ED:57:EC:18:38:0E:84:35 X509v3 Authority Key Identifier: keyid:32:E0:F7:00:E3:87:24:51:A1:A8:32:CD:7D:DE:41:75:BF:BA:83:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172B41/16C0A7164B6E11EC81DD9B3AC4F9AE02/MuD3AOOHJFGhqDLNfd5Bdb-6g2k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:9a:4e:bf:f0:12:1c:11:8b:c5:a0:43:65:2b:ea:4d:ca:f5: 08:49:39:cf:b4:a0:39:b2:ef:dd:7e:0e:3c:ec:c4:d2:f5:2f: ee:77:4a:a6:4c:1f:5c:1f:f4:31:e0:74:ec:23:56:34:2f:83: 5b:89:14:3a:6d:a1:f6:90:ba:94:31:f7:9a:c9:e9:7a:3b:ac: 24:12:d6:c5:c3:81:e0:0e:b0:37:d5:b9:73:99:4e:97:b6:99: 05:3b:9f:3b:51:73:fd:3a:37:95:45:6a:22:fc:3c:a2:0f:ad: 35:9d:74:18:c7:2a:45:72:eb:da:52:c3:b4:7d:ad:f2:31:cb: ce:62:d9:10:b4:c3:b4:2d:51:06:5e:0d:90:6f:a2:66:f9:0c: 57:97:34:54:25:c4:56:a4:9b:b1:db:3a:85:10:1a:c1:01:44: 56:b1:9d:62:fb:62:0e:b5:99:17:b2:96:35:fc:19:59:1a:e1: 12:08:ef:e2:8e:64:04:4a:a3:d5:08:fa:f7:86:f2:82:1e:dc: 95:26:3f:e7:63:cb:c1:b6:dc:ff:83:5d:ef:01:cc:13:52:38: 07:dd:a2:5f:13:27:6c:9f:50:f2:a9:ec:91:a1:0b:c3:24:91: da:c0:cc:87:8c:69:63:8d:b7:c8:82:54:af:d2:e1:5e:16:3b: c3:77:9c:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCNDExMTAvBgNVBAUTKDMyRTBGNzAwRTM4NzI0NTFBMUE4MzJDRDdEREU0MTc1 QkZCQTgzNjkwHhcNMjUwODAzMDAzMjUwWhcNMjUwODEwMDAzMjUwWjAYMRYwFAYD VQQDEw02ODhlYWUzMi0xMWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq+//Je+VbJ0B/z52x6khVcBkMQWHxd8kTAFU2IHYTL7oYkfOEOb7TxAlpE5 yZ1OaI2P1a+KTjulvcZrEZ8VcE1zNhT3hxmDaPEKpAuP2QeZzCygXf35U8CoWoqh bxG5iySGmXW3fZ2QM+BMS3FIdij7koUowjVoTzGIXoFJiHzB03+7IBfH4JXdqk3S qVvWJE/EAXZvXXtHS+WHW5drZRs1Adp79/yaPzjw+87VN6JHcNZXrWQMVLJ5XArx ks6xjcCV+IgC7Q+4fXQarfl5c8P6m1nQwjvWTOMYnsry66+VH2s0tLb0rOCFAVfb lt2ULgVyH4MGj0fwEghovImOdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNknFE2P p/2jOyp+c+1X7Bg4DoQ1MB8GA1UdIwQYMBaAFDLg9wDjhyRRoagyzX3eQXW/uoNp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkI0MS8xNkMwQTcxNjRC NkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpGR2hxRExOZmQ1QmRiLTZn MmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL011RDNBT09ISkZHaHFETE5mZDVCZGItNmcyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkI0MS8xNkMwQTcxNjRCNkUxMUVDODFERDlCM0FDNEY5QUUwMi9NdUQzQU9PSEpG R2hxRExOZmQ1QmRiLTZnMmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGmk6/8BIcEYvFoENlK+pNyvUISTnPtKA5su/dfg487MTS9S/ud0qm TB9cH/Qx4HTsI1Y0L4NbiRQ6baH2kLqUMfeayel6O6wkEtbFw4HgDrA31blzmU6X tpkFO587UXP9OjeVRWoi/DyiD601nXQYxypFcuvaUsO0fa3yMcvOYtkQtMO0LVEG Xg2Qb6Jm+QxXlzRUJcRWpJux2zqFEBrBAURWsZ1i+2IOtZkXspY1/BlZGuESCO/i jmQESqPVCPr3hvKCHtyVJj/nY8vBttz/g13vAcwTUjgH3aJfEydsn1DyqeyRoQvD JJHawMyHjGljjbfIglSv0uFeFjvDd5ye -----END CERTIFICATE-----Generated at Mon Aug 4 11:16:05 2025 by rpki-client