$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: NfmtrOTn4LmcO8QnCxUVNc03YZvfbGhsTH26gWyyiDY= Subject key identifier: 56:8A:81:BD:7E:2B:40:F4:65:DD:FE:38:48:4B:EE:93:CB:B6:25:D1 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 21F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 21D6 Signing time: Wed 20 Aug 2025 15:56:54 +0000 Manifest this update: Wed 20 Aug 2025 15:56:53 +0000 Manifest next update: Wed 27 Aug 2025 15:56:53 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: Ieo92YCaFSTSzJZT02te6VNp/7Nw1UEmcndObaVdqYo=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 15:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8695 (0x21f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Aug 20 15:56:53 2025 GMT Not After : Aug 27 15:56:53 2025 GMT Subject: CN=68a5f046-79f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:85:9b:65:df:28:8f:90:18:89:b7:26:56:1d: 39:5c:05:8d:d5:95:4e:ae:ae:ac:6c:17:78:a2:3b: 52:41:09:17:7c:18:dd:6e:2e:eb:d7:f6:bb:09:47: eb:0d:38:38:f3:87:5a:16:c3:8d:95:69:cd:6d:3d: 7a:03:33:c5:bd:77:e0:51:63:b7:59:e6:89:5e:88: 1e:e1:a1:79:1b:43:35:3b:84:c2:81:da:41:57:ff: d0:58:48:50:b0:8c:43:d8:ad:be:fe:71:86:37:59: ce:9d:5a:3d:88:8a:ea:f1:91:3c:7b:16:43:6b:1f: 56:5b:19:c1:bb:86:bb:cc:8f:5c:98:5d:40:24:47: 57:d4:c0:2e:6d:fa:c1:ba:84:84:3d:2c:f3:38:47: cc:43:f8:4e:58:0f:c6:e9:4b:2e:7e:66:e8:de:26: 5f:29:d7:1c:f8:b7:52:7e:4c:76:6a:db:a6:f2:0a: 87:15:33:41:dd:a7:c3:69:26:1c:fd:c7:f1:cf:70: e7:d6:ec:82:44:6b:a4:26:d1:ed:d9:1b:97:8d:81: 59:c6:f0:fb:c8:1a:40:75:f2:b1:e6:ae:14:58:ee: ea:e7:35:ae:40:98:a4:ba:1f:f2:02:57:3f:fe:a0: 72:c0:66:4b:99:53:08:86:71:4b:2f:95:ef:ad:2b: 6f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8A:81:BD:7E:2B:40:F4:65:DD:FE:38:48:4B:EE:93:CB:B6:25:D1 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:e1:d2:63:07:1d:ed:fc:46:e3:9a:f1:d3:d5:fe:64:0e:d0: 6d:6b:2a:99:8f:1a:7c:64:51:34:06:7a:43:e2:e6:d4:68:18: c9:e8:26:19:fe:cd:50:bf:60:c0:22:3a:07:1e:88:b5:d6:b3: da:76:83:ed:a1:14:2c:33:f4:46:aa:c6:47:f5:48:e8:09:7d: f1:96:92:4e:94:4b:bc:f4:0f:48:6d:1d:66:29:06:9a:15:93: 6b:18:7c:b1:7b:19:ee:93:97:83:09:e7:fe:f6:b5:e4:5e:8e: 45:bd:17:03:03:19:77:9a:73:52:4e:69:8b:3d:a2:5e:10:2d: 48:d2:44:0b:de:d8:f4:99:f0:16:59:33:ef:a4:1e:4a:6d:bd: 6f:d1:ad:f0:53:bf:fc:58:8d:0e:47:2c:e2:5a:b7:bf:a5:5c: 84:9c:e1:c1:15:a1:58:00:4b:b1:e5:28:fc:1b:0e:07:32:a1: 4b:ac:e1:e5:81:7a:6a:d9:37:a3:b4:37:5f:20:70:2e:c9:34: fc:67:d1:6e:f5:92:c1:5b:99:66:f8:39:61:6e:48:55:64:21: a8:f3:0e:49:08:54:3f:34:2f:f7:1d:5a:d1:e5:b1:2e:9b:13: 0e:6c:58:be:49:d3:46:27:f0:34:ad:e7:f0:65:71:c7:12:1f: fc:5f:7c:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUwODIwMTU1NjUzWhcNMjUwODI3MTU1NjUzWjAYMRYwFAYD VQQDEw02OGE1ZjA0Ni03OWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0YWbZd8oj5AYibcmVh05XAWN1ZVOrq6sbBd4ojtSQQkXfBjdbi7r1/a7CUfr DTg484daFsONlWnNbT16AzPFvXfgUWO3WeaJXoge4aF5G0M1O4TCgdpBV//QWEhQ sIxD2K2+/nGGN1nOnVo9iIrq8ZE8exZDax9WWxnBu4a7zI9cmF1AJEdX1MAubfrB uoSEPSzzOEfMQ/hOWA/G6Usufmbo3iZfKdcc+LdSfkx2atum8gqHFTNB3afDaSYc /cfxz3Dn1uyCRGukJtHt2RuXjYFZxvD7yBpAdfKx5q4UWO7q5zWuQJikuh/yAlc/ /qBywGZLmVMIhnFLL5XvrStvTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaKgb1+ K0D0Zd3+OEhL7pPLtiXRMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP4dJjBx3t/EbjmvHT1f5kDtBtayqZjxp8ZFE0BnpD4ubUaBjJ6CYZ /s1Qv2DAIjoHHoi11rPadoPtoRQsM/RGqsZH9UjoCX3xlpJOlEu89A9IbR1mKQaa FZNrGHyxexnuk5eDCef+9rXkXo5FvRcDAxl3mnNSTmmLPaJeEC1I0kQL3tj0mfAW WTPvpB5Kbb1v0a3wU7/8WI0ORyziWre/pVyEnOHBFaFYAEux5Sj8Gw4HMqFLrOHl gXpq2TejtDdfIHAuyTT8Z9Fu9ZLBW5lm+DlhbkhVZCGo8w5JCFQ/NC/3HVrR5bEu mxMObFi+SdNGJ/A0refwZXHHEh/8X3wE -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:09 2025 by rpki-client