$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft File: 4AJb-TLnFuGh-K-QECEcQRCE_J0.mft (raw, json) Hash identifier: NigRsnfLDEgiSgKdBM9VjVIZuziprYMIcVA8qjyR13M= Subject key identifier: 1E:84:CD:EB:27:44:9B:0E:E6:2C:75:64:FF:C5:1F:1B:0E:EE:D5:E9 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 05B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft Manifest number: 05A9 Signing time: Mon 04 Aug 2025 23:36:48 +0000 Manifest this update: Mon 04 Aug 2025 23:36:47 +0000 Manifest next update: Mon 11 Aug 2025 23:36:47 +0000 Files and hashes: 1: 4AJb-TLnFuGh-K-QECEcQRCE_J0.crl (hash: 1EWuuEuiMB6a8HOadQetydch0pc5kiLzEwKBdNtpoBk=) 2: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (hash: +Nf3CbeJiQCKoMqVOr8fCtBhRD9vFNzRUGK/YqqHHSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 23:36:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1456 (0x5b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB, serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Aug 4 23:36:47 2025 GMT Not After : Aug 11 23:36:47 2025 GMT Subject: CN=6891440f-0e86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3f:d3:e2:90:5f:a8:c8:fc:a6:10:69:77:7a: 8b:25:22:5b:97:55:e9:05:96:d7:19:c3:9f:cd:29: 17:d2:dc:de:d9:fb:1b:0e:69:85:03:de:7e:9f:15: ff:64:5c:44:c7:e7:e0:fd:b3:c4:f3:42:2d:b5:b8: 3c:8a:ef:8f:d9:01:b2:d1:9c:0e:c2:55:7c:e5:39: 1e:41:3f:4c:7f:f2:e2:0f:fe:50:56:c2:54:91:32: fa:e5:33:0a:ee:84:d7:df:73:cc:f2:50:c9:72:55: 17:f0:e8:d7:9a:c4:af:f6:96:18:a9:58:30:97:73: d0:14:ae:1b:fc:5b:8f:b0:bc:89:5d:3e:e8:30:c4: 73:5a:15:e5:7f:60:71:1d:7a:62:5e:66:90:98:6b: 9f:24:6f:1b:68:0b:35:bd:5a:59:0a:df:85:58:a0: ca:50:35:82:ab:5c:44:7c:a8:db:88:5e:df:4b:53: 14:ac:8b:41:36:93:2d:b1:52:3b:f3:a0:77:b3:e9: 6d:82:ac:cc:9a:0a:03:09:7a:97:ce:26:dc:4f:bf: 19:f5:5f:ea:5e:b3:61:b5:47:95:a3:5d:f8:35:1a: 9b:1e:96:a9:ea:d3:c8:78:18:3b:c8:dd:30:d0:1d: d3:e0:ae:f0:15:bd:a1:50:4d:b3:85:43:65:72:7c: ee:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:84:CD:EB:27:44:9B:0E:E6:2C:75:64:FF:C5:1F:1B:0E:EE:D5:E9 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:1f:d3:86:a8:89:e8:c8:51:d7:42:0f:30:4b:1d:34:98:f1: 2f:e3:f3:61:86:0e:8a:ac:f1:2d:4a:72:b2:8f:c8:2d:b1:0b: 91:ba:d0:cf:68:93:76:62:56:a3:3d:17:35:5a:43:b7:a0:56: aa:45:42:e3:cc:32:db:13:15:6d:78:09:8c:d4:1b:70:21:06: 25:fc:a2:33:e7:e2:c3:38:e6:ff:b5:b6:04:10:1a:75:70:b2: cc:10:bf:09:50:b6:c6:82:1f:90:e9:51:f0:6f:90:a5:f0:ac: 84:f2:0d:0b:41:5e:35:f5:a7:e6:80:4f:5e:fa:ac:43:20:42: 65:ec:7b:d3:55:2b:c0:d6:ac:05:5d:07:99:a9:7d:4a:83:38: 8b:58:f1:48:5e:b1:66:d1:92:f3:c9:77:8d:97:36:60:e3:56: 9b:43:41:23:74:64:b3:b5:c7:f5:58:b7:59:48:b7:63:29:dd: d0:17:dd:d7:ad:94:63:8e:5b:10:93:63:65:1d:6e:ca:9b:3a: af:49:89:a2:c9:2a:8d:37:46:06:45:ee:6b:30:fd:71:5f:7c: 80:18:7e:ef:d8:a4:da:60:ce:0a:0b:25:b7:e4:de:b9:ff:c5: a9:8e:6b:fd:ab:d1:de:ad:1d:c3:a2:c3:6e:82:d0:fe:38:e3: db:f9:97:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjUwODA0MjMzNjQ3WhcNMjUwODExMjMzNjQ3WjAYMRYwFAYD VQQDEw02ODkxNDQwZi0wZTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsT/T4pBfqMj8phBpd3qLJSJbl1XpBZbXGcOfzSkX0tze2fsbDmmFA95+nxX/ ZFxEx+fg/bPE80Ittbg8iu+P2QGy0ZwOwlV85TkeQT9Mf/LiD/5QVsJUkTL65TMK 7oTX33PM8lDJclUX8OjXmsSv9pYYqVgwl3PQFK4b/FuPsLyJXT7oMMRzWhXlf2Bx HXpiXmaQmGufJG8baAs1vVpZCt+FWKDKUDWCq1xEfKjbiF7fS1MUrItBNpMtsVI7 86B3s+ltgqzMmgoDCXqXzibcT78Z9V/qXrNhtUeVo134NRqbHpap6tPIeBg7yN0w 0B3T4K7wFb2hUE2zhUNlcnzuLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6Ezesn RJsO5ix1ZP/FHxsO7tXpMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0ZEQi82NTdFNDA3NERBMzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1 R2gtSy1RRUNFY1FSQ0VfSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBeH9OGqInoyFHXQg8wSx00mPEv4/Nhhg6KrPEtSnKyj8gtsQuRutDP aJN2YlajPRc1WkO3oFaqRULjzDLbExVteAmM1BtwIQYl/KIz5+LDOOb/tbYEEBp1 cLLMEL8JULbGgh+Q6VHwb5Cl8KyE8g0LQV419afmgE9e+qxDIEJl7HvTVSvA1qwF XQeZqX1KgziLWPFIXrFm0ZLzyXeNlzZg41abQ0EjdGSztcf1WLdZSLdjKd3QF93X rZRjjlsQk2NlHW7KmzqvSYmiySqNN0YGRe5rMP1xX3yAGH7v2KTaYM4KCyW35N65 /8Wpjmv9q9HerR3DosNugtD+OOPb+ZfW -----END CERTIFICATE-----Generated at Wed Aug 6 13:03:30 2025 by rpki-client