$ rpki-client -vvf rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft File: 40IvTt5eaM7JqqfjxuMnjHMOHnw.mft (raw, json) Hash identifier: hBr8EfhVa68GO7p778XEWmMPL4WS3TKjz7JUjwRPyEc= Subject key identifier: 97:71:B0:5A:BF:60:FC:CE:F5:53:35:5F:E1:4F:1B:C6:A5:67:BF:D3 Authority key identifier: E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C Certificate issuer: /CN=A9180DA4/serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Certificate serial: 34A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft Manifest number: 34A5 Signing time: Wed 06 Aug 2025 14:41:28 +0000 Manifest this update: Wed 06 Aug 2025 14:41:27 +0000 Manifest next update: Wed 13 Aug 2025 14:41:27 +0000 Files and hashes: 1: 40IvTt5eaM7JqqfjxuMnjHMOHnw.crl (hash: F+BjfiSpVrIA7H8FZc9k4zR4SL6BTk0IAdM80y4vqgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 14:41:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13477 (0x34a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180DA4, serialNumber=E3422F4EDE5E68CEC9AAA7E3C6E3278C730E1E7C Validity Not Before: Aug 6 14:41:27 2025 GMT Not After : Aug 13 14:41:27 2025 GMT Subject: CN=68936997-b511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3f:b1:f2:e7:3c:8c:f8:39:75:f9:7f:ee:ce: 9d:0c:6a:ba:4e:90:c8:9f:09:9d:ac:ac:62:b4:55: 2e:9d:b1:6b:69:63:1f:8d:51:5a:33:71:22:61:f8: 66:76:ea:98:ce:f2:8e:31:5f:e5:6f:22:dd:2d:4d: 9d:4c:ec:0b:30:2e:5b:4d:d9:bc:09:66:5f:68:3c: b3:41:2d:98:b7:2e:c5:59:eb:9c:c4:4a:65:c6:07: c5:67:9b:90:75:ec:df:fd:e4:16:cb:65:56:d7:84: 0d:c4:f4:a9:65:3c:94:48:d5:ef:9d:d6:c1:e3:82: 84:f7:17:8b:43:23:c7:47:73:31:06:db:6b:c6:14: a2:43:e6:c2:22:aa:8a:e5:34:9f:d6:80:af:4e:41: e4:be:ba:c9:07:13:db:7d:13:aa:ec:03:bf:01:84: fc:6e:53:ca:b2:7c:74:04:12:ed:9d:4c:0d:50:a9: a8:31:00:db:2a:73:b3:e5:69:b3:f0:c6:90:07:f3: b4:02:a6:af:aa:a0:be:81:16:b8:f2:b2:01:3c:64: 3c:dd:d0:f6:e1:02:70:25:08:a1:95:19:50:1e:b4: b6:15:6a:9a:1b:e5:ee:30:dc:78:3a:31:38:c6:dc: 60:9d:ed:db:a3:09:65:17:f2:dd:52:57:dc:86:d9: bb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:71:B0:5A:BF:60:FC:CE:F5:53:35:5F:E1:4F:1B:C6:A5:67:BF:D3 X509v3 Authority Key Identifier: keyid:E3:42:2F:4E:DE:5E:68:CE:C9:AA:A7:E3:C6:E3:27:8C:73:0E:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40IvTt5eaM7JqqfjxuMnjHMOHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180DA4/473C64501D8F11E28E913DEE08B02CD2/40IvTt5eaM7JqqfjxuMnjHMOHnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:ae:a9:16:a8:8d:7e:3f:d1:b4:f7:bf:db:01:01:3d:1d:5f: c1:28:7a:6a:52:84:c7:45:27:f2:4b:f9:96:9c:2f:4d:ab:6e: d2:7a:05:73:cb:90:25:6e:a7:b8:e3:b3:b1:f7:35:b0:e0:b3: 34:ac:61:00:20:54:9d:cc:89:12:40:f1:0f:03:ed:0e:c1:99: 25:e1:83:4f:8c:f3:d5:76:a4:b8:b6:a2:65:8d:69:04:7f:28: cf:7a:e3:ae:c2:61:c9:a3:5e:a2:72:f1:d5:d6:8b:55:d3:f5: ac:11:f2:a0:df:b1:ff:fd:e0:01:c5:25:27:00:4e:6e:fa:fb: 82:ef:a7:b7:c2:5e:99:6f:0f:85:e5:7d:75:5c:6f:d3:96:a1: da:c0:fa:38:7e:d9:db:df:29:a7:6f:63:62:08:23:bf:b4:2e: 6e:6e:6a:79:15:f7:63:df:be:26:b3:e8:41:e4:c9:e6:0b:09: 24:23:f0:76:1d:f3:84:3d:07:b1:30:ee:6d:e3:fb:43:76:3c: 13:98:e3:46:6d:10:f2:28:a2:57:9f:d9:54:e3:30:69:e1:c8: 6e:d8:9d:6c:d3:2f:94:5b:75:75:f3:00:d3:51:21:6c:fd:ad: fc:b2:da:02:49:ef:cf:7d:4e:6e:f0:09:16:e0:45:86:d6:3d: 16:a2:5b:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBEQTQxMTAvBgNVBAUTKEUzNDIyRjRFREU1RTY4Q0VDOUFBQTdFM0M2RTMyNzhD NzMwRTFFN0MwHhcNMjUwODA2MTQ0MTI3WhcNMjUwODEzMTQ0MTI3WjAYMRYwFAYD VQQDEw02ODkzNjk5Ny1iNTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmz+x8uc8jPg5dfl/7s6dDGq6TpDInwmdrKxitFUunbFraWMfjVFaM3EiYfhm duqYzvKOMV/lbyLdLU2dTOwLMC5bTdm8CWZfaDyzQS2Yty7FWeucxEplxgfFZ5uQ dezf/eQWy2VW14QNxPSpZTyUSNXvndbB44KE9xeLQyPHR3MxBttrxhSiQ+bCIqqK 5TSf1oCvTkHkvrrJBxPbfROq7AO/AYT8blPKsnx0BBLtnUwNUKmoMQDbKnOz5Wmz 8MaQB/O0AqavqqC+gRa48rIBPGQ83dD24QJwJQihlRlQHrS2FWqaG+XuMNx4OjE4 xtxgne3bowllF/LdUlfchtm72QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJdxsFq/ YPzO9VM1X+FPG8alZ7/TMB8GA1UdIwQYMBaAFONCL07eXmjOyaqn48bjJ4xzDh58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MERBNC80NzNDNjQ1MDFE OEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFNN0pxcWZqeHVNbmpITU9I bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwSXZUdDVlYU03SnFxZmp4dU1uakhNT0hudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MERBNC80NzNDNjQ1MDFEOEYxMUUyOEU5MTNERUUwOEIwMkNEMi80MEl2VHQ1ZWFN N0pxcWZqeHVNbmpITU9IbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALrqkWqI1+P9G097/bAQE9HV/BKHpqUoTHRSfyS/mWnC9Nq27SegVz y5Albqe447Ox9zWw4LM0rGEAIFSdzIkSQPEPA+0OwZkl4YNPjPPVdqS4tqJljWkE fyjPeuOuwmHJo16icvHV1otV0/WsEfKg37H//eABxSUnAE5u+vuC76e3wl6Zbw+F 5X11XG/TlqHawPo4ftnb3ymnb2NiCCO/tC5ubmp5Ffdj374ms+hB5MnmCwkkI/B2 HfOEPQexMO5t4/tDdjwTmONGbRDyKKJXn9lU4zBp4chu2J1s0y+UW3V18wDTUSFs /a38stoCSe/PfU5u8AkW4EWG1j0WolvM -----END CERTIFICATE-----Generated at Thu Aug 7 03:32:02 2025 by rpki-client