$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft File: 4bgHrCt0Vfux4xYGjR0BcSYLscc.mft (raw, json) Hash identifier: awiwQ2HBH5J0N0/vxTxMOK/1COBlpwxvnSvTz0PH5Ck= Subject key identifier: 58:B5:1E:EE:CF:28:82:53:C6:53:F4:CE:78:09:0A:F7:F4:1C:C0:B5 Authority key identifier: E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 Certificate issuer: /CN=A9157DAE/serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Certificate serial: 132C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft Manifest number: 12AE Signing time: Fri 18 Jul 2025 17:15:26 +0000 Manifest this update: Fri 18 Jul 2025 17:15:25 +0000 Manifest next update: Fri 25 Jul 2025 17:15:25 +0000 Files and hashes: 1: 4bgHrCt0Vfux4xYGjR0BcSYLscc.crl (hash: 8GO2Ew7o23/tR1hjo0a2VFwhEPZv9wg+MCBfzb5hlBE=) 2: A6A4A20E89B911EC8FDB572DC4F9AE02.roa (hash: jk5NfHi6Ak10G3qvwwRLBuA+9+MuEQTJVNCIOpp4ijc=) 3: A8949F64D86E11E982BA0712C4F9AE02.roa (hash: o0TBqHxczgW2iXEBGTx5nw86Q8zs7jfB/2ZiH2tcXBM=) 4: 1F8378E6BCBD11EBAC9A4744C4F9AE02.roa (hash: J5LxjosxnnfdXaMAoaZ/PL1BfkizkN1e40crDyxzXgM=) 5: 9EE31802996B11E9B3FEED46C4F9AE02.roa (hash: GdNQEvmzlHfA6Ec8mmP8z6x+jIWG7iAnHlvJMuf8oD8=) 6: F6EBC724B24211EF99C46E64C4F9AE02.roa (hash: q2Nqb/hrcV90WNVexwR/NHfj/Q0Tv7rC0yL9DHC6X3M=) 7: D17E9426B24211EFBBDC2164C4F9AE02.roa (hash: 08uSCXwlwYJnGMem9e+DAMnS4EN8A9/G3dvb9XlzVbk=) 8: 161983C2B9EB11EDB53AC21BC4F9AE02.roa (hash: 21MmIK/xKiS7JETWE4m4JFsmki6dx7l2EGE0grkpOo4=) 9: C2E189AC7F8C11EF94FCB676C4F9AE02.roa (hash: RAc63GKSag+ebIvPIiKjuswG8wAgmCrcqifdzue1EA8=) 10: FDB29514452511E98F23AE4FC4F9AE02.roa (hash: pyXuQQMaaHpRKrd64JzrpDvcZINK8BGOr87BtX8mKCw=) 11: 8E6CF9C8E59911E98D355932C4F9AE02.roa (hash: duhPOulpnnqLJOw021zARLEkW5qMCDlozjaUuWOU1CE=) 12: F99AFAFE1D5411EA921E0351C4F9AE02.roa (hash: RBZSewamTngEQkgjLa0OkH4nQrMAppxSjX91nS2Wpzo=) 13: C21FA1CE080511EAA9457C67C4F9AE02.roa (hash: PiSgVIn+A3YVcVJ8J1LY1Q9+m55+zt9vsCjTvJtZIKc=) 14: 0038D872072E11EB8914E540C4F9AE02.roa (hash: bM9HkA9Kov8pVlsp7/+B8Lhib1zUTj1baRTYw1iNq78=) 15: D8E0EC82927711E985E0423AC4F9AE02.roa (hash: +fJoTern1FEL3hWeQl1ij5UIzJGzXQGhkR014UlHjWU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:15:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4908 (0x132c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DAE, serialNumber=E1B807AC2B7455FBB1E316068D1D0171260BB1C7 Validity Not Before: Jul 18 17:15:25 2025 GMT Not After : Jul 25 17:15:25 2025 GMT Subject: CN=687a812d-c136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a5:2b:46:a2:a0:a5:9f:b8:ca:18:a6:91:1b: cd:76:d6:ab:a9:60:4b:4e:fc:e3:f9:3f:b5:28:51: 40:9c:30:26:45:37:9a:7b:79:69:98:ae:07:7b:15: ca:03:e1:f7:4f:78:a8:57:1b:e0:aa:3d:51:45:c7: 25:8d:81:0a:1d:55:9c:7a:ab:fe:55:4c:3f:42:d9: 0f:88:d7:21:25:06:91:1b:79:1c:db:24:f7:b5:8b: 06:c5:4b:23:79:39:72:e5:d5:24:20:b7:5d:94:de: da:be:49:0a:01:40:a4:22:84:99:a8:6f:d3:72:62: 93:f9:02:2d:df:6f:0f:5a:d2:d4:28:9d:f7:a8:be: a2:2e:cd:7c:c0:c0:a0:8c:81:e4:c8:7b:d5:f4:b9: 08:3b:eb:f0:75:87:f3:a4:21:52:84:94:95:f6:d7: 65:5e:29:e1:c3:69:89:dc:97:38:27:52:4f:be:fa: 98:99:6a:9b:7e:6d:a2:ee:51:5a:8b:f7:f6:ed:44: c5:3d:d2:cc:e2:a6:a0:c0:3f:21:d0:fd:11:a2:b2: 95:2c:ec:63:d9:f4:d3:f6:ce:3e:d8:4c:94:a3:81: 6f:24:6b:b1:f5:b9:dd:7d:97:79:e2:a3:1f:de:af: e7:80:69:82:99:45:bb:54:8f:e2:ce:8b:e4:f8:9e: e8:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:B5:1E:EE:CF:28:82:53:C6:53:F4:CE:78:09:0A:F7:F4:1C:C0:B5 X509v3 Authority Key Identifier: keyid:E1:B8:07:AC:2B:74:55:FB:B1:E3:16:06:8D:1D:01:71:26:0B:B1:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bgHrCt0Vfux4xYGjR0BcSYLscc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DAE/61666C0ED68911E8B6811433C4F9AE02/4bgHrCt0Vfux4xYGjR0BcSYLscc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:6e:fb:c1:4d:5f:62:c2:13:34:73:78:a5:22:57:aa:d2:f1: c4:a1:87:62:7d:e6:1d:6e:d3:ad:10:22:12:77:16:9b:07:fa: 86:e8:99:75:22:3b:32:21:a2:16:80:48:ea:7c:9d:d9:be:64: 01:d8:06:71:02:dc:3f:67:a9:50:0a:9a:bd:4f:c2:2c:61:41: ca:70:e0:a1:39:a1:e6:92:7b:f6:20:49:76:7e:f2:fb:bb:d5: ee:1d:ec:eb:d8:f2:ee:dc:8d:e1:e6:e9:0c:f6:c1:4c:70:a0: 39:79:f7:3e:2d:b3:97:04:29:a5:9e:cf:84:ce:3c:02:95:70: 02:b3:16:f0:12:fa:27:fb:f1:eb:6f:91:1a:97:6f:4c:bc:14: b1:ff:ab:60:92:29:8a:f7:9a:8c:fb:5f:7a:80:32:3f:f9:7e: c5:ba:d7:f4:4c:0f:ec:2d:23:98:5c:bd:c6:ff:c2:32:e9:ab: 50:0c:3c:fc:6f:c5:24:8d:db:dd:53:e9:6f:18:d4:04:c8:0b: cd:ed:9e:8b:04:c0:67:51:fb:02:55:0d:f0:4f:64:2d:a3:17: ce:5b:4d:aa:7e:7e:44:77:c9:d5:02:0f:78:0f:ce:04:d1:ea: 5d:ff:4d:74:ae:d5:cd:3c:2c:1a:25:5c:66:ff:d0:fd:6e:35: d8:24:cb:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQUUxMTAvBgNVBAUTKEUxQjgwN0FDMkI3NDU1RkJCMUUzMTYwNjhEMUQwMTcx MjYwQkIxQzcwHhcNMjUwNzE4MTcxNTI1WhcNMjUwNzI1MTcxNTI1WjAYMRYwFAYD VQQDEw02ODdhODEyZC1jMTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6UrRqKgpZ+4yhimkRvNdtarqWBLTvzj+T+1KFFAnDAmRTeae3lpmK4HexXK A+H3T3ioVxvgqj1RRccljYEKHVWceqv+VUw/QtkPiNchJQaRG3kc2yT3tYsGxUsj eTly5dUkILddlN7avkkKAUCkIoSZqG/TcmKT+QIt328PWtLUKJ33qL6iLs18wMCg jIHkyHvV9LkIO+vwdYfzpCFShJSV9tdlXinhw2mJ3Jc4J1JPvvqYmWqbfm2i7lFa i/f27UTFPdLM4qagwD8h0P0RorKVLOxj2fTT9s4+2EyUo4FvJGux9bndfZd54qMf 3q/ngGmCmUW7VI/izovk+J7o3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFi1Hu7P KIJTxlP0zngJCvf0HMC1MB8GA1UdIwQYMBaAFOG4B6wrdFX7seMWBo0dAXEmC7HH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBRS82MTY2NkMwRUQ2 ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZmdXg0eFlHalIwQmNTWUxz Y2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRiZ0hyQ3QwVmZ1eDR4WUdqUjBCY1NZTHNjYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBRS82MTY2NkMwRUQ2ODkxMUU4QjY4MTE0MzNDNEY5QUUwMi80YmdIckN0MFZm dXg0eFlHalIwQmNTWUxzY2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdbvvBTV9iwhM0c3ilIleq0vHEoYdifeYdbtOtECISdxabB/qG6Jl1 IjsyIaIWgEjqfJ3ZvmQB2AZxAtw/Z6lQCpq9T8IsYUHKcOChOaHmknv2IEl2fvL7 u9XuHezr2PLu3I3h5ukM9sFMcKA5efc+LbOXBCmlns+EzjwClXACsxbwEvon+/Hr b5Eal29MvBSx/6tgkimK95qM+196gDI/+X7Futf0TA/sLSOYXL3G/8Iy6atQDDz8 b8UkjdvdU+lvGNQEyAvN7Z6LBMBnUfsCVQ3wT2QtoxfOW02qfn5Ed8nVAg94D84E 0epd/010rtXNPCwaJVxm/9D9bjXYJMvU -----END CERTIFICATE-----Generated at Sun Jul 20 14:33:46 2025 by rpki-client