$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: F4ub8XGxSSYZ2CMBZNaTr6RyFMvb1LjqbuSi+pLERhY= Subject key identifier: 93:33:0F:17:94:68:26:7E:72:2F:8B:ED:B6:4E:06:5A:71:62:D8:D4 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 16A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 165E Signing time: Fri 08 Aug 2025 16:54:46 +0000 Manifest this update: Fri 08 Aug 2025 16:54:45 +0000 Manifest next update: Fri 15 Aug 2025 16:54:45 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: 7LYJ7nstsQP7QMhmhMbM+frAMXz0Smd1/eDRnNgMyyc=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 3RtBD83ZJNmQpXwmbagiYu3nHPOh0MloLGGIQPhUGxM=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: J0L9nDFdFV6ZiImc3zHe9UUNBLYublvIh0RA4SsVHPQ=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: Oe+nCjRXmGLUG9jUiGqdGqfQAZRPEdEXa9ffB5a1tlY=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: XuW38uZAfeN4keo/onpljpRS5BHBZ8INJxFDXHjJZ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5792 (0x16a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Aug 8 16:54:45 2025 GMT Not After : Aug 15 16:54:45 2025 GMT Subject: CN=68962bd5-1194 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f5:35:71:37:06:3a:81:c1:f7:85:29:4e:f2: 43:2d:14:61:b7:4d:3c:5a:30:66:ab:3b:1e:b0:9c: 63:a1:b9:be:f0:51:c8:6f:2b:62:c7:db:1c:ca:d5: d1:f9:84:db:bc:f2:b7:62:ce:1c:24:12:86:55:4c: 0f:0b:00:b2:70:51:52:72:2c:2c:b5:42:e5:61:87: db:d7:95:cc:06:3b:52:3c:5b:06:39:87:02:7e:55: fd:49:28:47:cd:77:29:d8:1c:14:34:99:74:10:7f: b8:b6:a2:e0:0a:a4:b0:e7:4d:08:a2:61:ca:c6:d5: dc:a8:d0:a2:60:35:c9:bb:4d:6d:a2:e6:06:90:95: d0:f0:24:30:a6:63:03:81:b9:0e:e8:1a:63:f5:5e: b2:ad:55:05:d4:82:c0:b3:55:72:0f:15:26:bb:b4: 5c:7b:92:4e:d6:17:a0:59:b4:97:09:41:0e:45:f2: 3b:5d:3a:05:15:a5:4e:3f:a1:7e:0d:64:5c:1e:31: 60:c6:f4:44:6d:f3:31:9c:b9:ef:84:d3:47:59:12: 97:0a:5d:33:2c:0e:eb:52:aa:9c:12:7b:07:7a:8e: 59:a4:11:e1:f8:6c:26:b7:19:94:b9:67:33:66:10: e4:ca:87:5c:d9:bc:16:28:1c:17:87:e1:00:60:c2: 5d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:33:0F:17:94:68:26:7E:72:2F:8B:ED:B6:4E:06:5A:71:62:D8:D4 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:dc:1a:65:43:1d:e9:67:70:32:9b:1a:fd:1c:b2:b2:57:dc: 31:c4:00:ef:b9:fd:c0:c0:0a:6e:8a:45:23:99:d4:b1:74:d9: ba:e5:d2:63:39:9f:37:a6:4e:3c:9f:af:8d:5a:69:0a:00:3a: eb:8c:bb:1c:e5:12:43:1d:50:7d:6d:b0:38:ac:e9:79:59:bb: 12:a9:d7:ec:b2:cc:c9:04:19:23:0f:c6:24:19:fc:ea:bf:c0: 16:6f:4c:9f:26:f1:f1:ad:d1:bb:d6:2e:de:e7:3d:ff:ca:53: 89:03:a3:d0:29:1c:33:47:0b:91:42:f7:5a:71:b6:8e:fd:81: d3:54:82:4e:1d:20:fc:d2:9d:63:8f:cc:24:3d:0b:28:9c:ec: 54:86:ad:0f:5d:37:b7:89:c5:ef:5b:d2:c8:57:68:c0:3a:34: 97:94:20:48:ce:96:db:72:c3:b3:ad:0d:be:b0:7b:5a:64:fc: 0e:6e:34:e1:0d:10:f2:93:04:91:c8:ce:bc:99:b2:cd:07:62: af:18:d6:05:3e:1c:56:a2:79:9a:04:09:a4:6d:d3:7d:c7:0e: 52:82:ca:36:ff:be:18:c3:45:86:41:88:5d:3a:dd:11:8f:f6: 88:0e:a6:6c:4f:fe:e2:79:75:a7:c3:1d:1c:8c:7f:ff:f1:2a: fc:0e:ca:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUwODA4MTY1NDQ1WhcNMjUwODE1MTY1NDQ1WjAYMRYwFAYD VQQDEw02ODk2MmJkNS0xMTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvU1cTcGOoHB94UpTvJDLRRht008WjBmqzsesJxjobm+8FHIbytix9scytXR +YTbvPK3Ys4cJBKGVUwPCwCycFFSciwstULlYYfb15XMBjtSPFsGOYcCflX9SShH zXcp2BwUNJl0EH+4tqLgCqSw500IomHKxtXcqNCiYDXJu01touYGkJXQ8CQwpmMD gbkO6Bpj9V6yrVUF1ILAs1VyDxUmu7Rce5JO1hegWbSXCUEORfI7XToFFaVOP6F+ DWRcHjFgxvREbfMxnLnvhNNHWRKXCl0zLA7rUqqcEnsHeo5ZpBHh+GwmtxmUuWcz ZhDkyodc2bwWKBwXh+EAYMJdfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJMzDxeU aCZ+ci+L7bZOBlpxYtjUMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBM3BplQx3pZ3Aymxr9HLKyV9wxxADvuf3AwApuikUjmdSxdNm65dJj OZ83pk48n6+NWmkKADrrjLsc5RJDHVB9bbA4rOl5WbsSqdfssszJBBkjD8YkGfzq v8AWb0yfJvHxrdG71i7e5z3/ylOJA6PQKRwzRwuRQvdacbaO/YHTVIJOHSD80p1j j8wkPQsonOxUhq0PXTe3icXvW9LIV2jAOjSXlCBIzpbbcsOzrQ2+sHtaZPwObjTh DRDykwSRyM68mbLNB2KvGNYFPhxWonmaBAmkbdN9xw5Sgso2/74Yw0WGQYhdOt0R j/aIDqZsT/7ieXWnwx0cjH//8Sr8DsoM -----END CERTIFICATE-----Generated at Sat Aug 9 14:30:49 2025 by rpki-client