$ rpki-client -vvf rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft File: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft (raw, json) Hash identifier: edI/xDiICw6WscuT7TXneliKJ2F18HKgv7ONwAworKE= Subject key identifier: 9C:F2:2D:AF:F4:04:3C:A8:62:8A:47:DF:7B:2A:5B:51:44:E2:15:1A Authority key identifier: E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 Certificate issuer: /CN=A9139220/serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Certificate serial: 078D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft Manifest number: 0783 Signing time: Thu 18 Sep 2025 21:46:07 +0000 Manifest this update: Thu 18 Sep 2025 21:46:06 +0000 Manifest next update: Thu 25 Sep 2025 21:46:06 +0000 Files and hashes: 1: 4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl (hash: cR1fVBTsBm2ktv9TLf20ag8bF8RZ0iayV/mQzINMJQo=) 2: 7EBB570A296C11EBB7D88147C4F9AE02.roa (hash: fXQXf8N5tytPfV8xyqN1Zu7dGcPNJVrKRy7cMq29VZM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:23:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139220, serialNumber=E2CFC42B6A08150AEFEFE7189BE5AF2BE568F8C1 Validity Not Before: Sep 18 21:46:06 2025 GMT Not After : Sep 25 21:46:06 2025 GMT Subject: CN=68cc7d9f-3fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:48:b2:a0:d2:f7:80:98:37:2e:7d:27:ba:f3: c1:07:b6:84:e0:e1:41:a8:36:ee:12:06:b4:84:c0: f0:c1:f0:5b:84:2d:ec:4a:60:c3:77:bf:7d:8a:9f: e8:ef:79:49:b0:e9:90:f6:44:4a:39:98:e4:f9:ee: b2:db:59:34:cc:42:a3:0c:db:0d:25:5c:ca:34:60: 0e:15:31:89:3f:69:31:33:59:82:77:dc:45:16:1b: 5c:dc:85:60:e5:89:5b:34:9f:c1:4b:a2:79:db:7e: bf:45:0e:84:b0:d3:df:22:4c:36:e9:a9:bb:0e:67: c4:b8:f5:1a:a8:fe:5a:87:10:1b:bd:f4:57:39:5d: 03:27:4c:b3:f4:35:c0:c6:4d:d6:c7:1f:49:39:5e: 3a:ef:d1:15:56:00:7d:11:3c:26:2f:35:f4:c7:f4: 72:47:6c:9b:46:d7:54:d0:f4:89:83:98:ae:02:ac: 1f:20:82:fe:c2:b2:b1:d3:8a:0b:4e:0f:c8:89:8b: 88:80:7e:44:92:99:44:f0:1e:35:10:89:5f:bd:8a: b2:ff:b4:dd:cd:3c:a6:55:65:57:ed:a0:ef:8d:93: 9e:59:31:68:1b:1e:2c:c6:4a:37:4a:46:d2:07:44: 14:b3:df:0c:b2:c7:f4:d1:ae:b4:a8:89:1f:24:5e: c8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F2:2D:AF:F4:04:3C:A8:62:8A:47:DF:7B:2A:5B:51:44:E2:15:1A X509v3 Authority Key Identifier: keyid:E2:CF:C4:2B:6A:08:15:0A:EF:EF:E7:18:9B:E5:AF:2B:E5:68:F8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139220/15CD1C2228B011EBB4469E1EC4F9AE02/4s_EK2oIFQrv7-cYm-WvK-Vo-ME.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:c6:ad:5e:a9:52:54:c4:a2:6c:3a:0a:d5:df:7f:4a:51:05: ac:e3:14:35:e4:8e:d9:bc:ab:b8:59:0a:42:14:70:5a:71:21: fe:09:c1:5b:bb:86:61:97:24:dd:be:30:4f:a1:24:f3:58:6e: d9:c8:9c:0c:8f:68:d9:58:54:55:01:b9:dc:88:3b:db:be:06: 23:ec:a1:e5:2a:d5:db:e7:ed:46:fb:09:6a:4e:bd:04:cf:fb: 72:af:47:ae:68:56:49:3e:2a:d6:18:91:de:6e:d0:25:ee:0a: b9:e2:cf:a0:38:0b:ff:3a:c3:08:1d:72:1c:11:91:ae:34:e9: be:20:f4:4a:90:f3:f0:3e:39:39:d1:bf:75:b2:58:97:b5:d7: 16:19:31:3a:5d:13:01:14:3d:97:af:39:02:c7:6f:99:01:5e: bf:e9:2d:2b:a3:cb:50:87:d3:14:2c:19:52:9e:2f:0f:ec:18: f1:9a:d0:fd:69:0c:9f:8a:43:15:79:f7:41:e5:2d:64:36:b2: a0:12:a8:f9:4e:b6:c7:e3:e6:f9:17:41:d2:99:30:2a:c0:ec: a4:e7:76:18:44:33:50:9b:d9:d6:08:0f:74:90:4d:3a:ce:77: 9d:43:28:30:71:0c:3b:34:1d:b5:06:f5:3a:33:db:2c:4f:3b: da:fc:6c:c8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkyMjAxMTAvBgNVBAUTKEUyQ0ZDNDJCNkEwODE1MEFFRkVGRTcxODlCRTVBRjJC RTU2OEY4QzEwHhcNMjUwOTE4MjE0NjA2WhcNMjUwOTI1MjE0NjA2WjAYMRYwFAYD VQQDEw02OGNjN2Q5Zi0zZmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0iyoNL3gJg3Ln0nuvPBB7aE4OFBqDbuEga0hMDwwfBbhC3sSmDDd799ip/o 73lJsOmQ9kRKOZjk+e6y21k0zEKjDNsNJVzKNGAOFTGJP2kxM1mCd9xFFhtc3IVg 5YlbNJ/BS6J5236/RQ6EsNPfIkw26am7DmfEuPUaqP5ahxAbvfRXOV0DJ0yz9DXA xk3Wxx9JOV4679EVVgB9ETwmLzX0x/RyR2ybRtdU0PSJg5iuAqwfIIL+wrKx04oL Tg/IiYuIgH5EkplE8B41EIlfvYqy/7TdzTymVWVX7aDvjZOeWTFoGx4sxko3SkbS B0QUs98Mssf00a60qIkfJF7ISQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzyLa/0 BDyoYopH33sqW1FE4hUaMB8GA1UdIwQYMBaAFOLPxCtqCBUK7+/nGJvlryvlaPjB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTIyMC8xNUNEMUMyMjI4 QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZRcnY3LWNZbS1XdkstVm8t TUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRzX0VLMm9JRlFydjctY1ltLVd2Sy1Wby1NRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTIyMC8xNUNEMUMyMjI4QjAxMUVCQjQ0NjlFMUVDNEY5QUUwMi80c19FSzJvSUZR cnY3LWNZbS1XdkstVm8tTUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKxq1eqVJUxKJsOgrV339KUQWs4xQ15I7ZvKu4WQpCFHBacSH+CcFb u4ZhlyTdvjBPoSTzWG7ZyJwMj2jZWFRVAbnciDvbvgYj7KHlKtXb5+1G+wlqTr0E z/tyr0euaFZJPirWGJHebtAl7gq54s+gOAv/OsMIHXIcEZGuNOm+IPRKkPPwPjk5 0b91sliXtdcWGTE6XRMBFD2XrzkCx2+ZAV6/6S0ro8tQh9MULBlSni8P7BjxmtD9 aQyfikMVefdB5S1kNrKgEqj5TrbH4+b5F0HSmTAqwOyk53YYRDNQm9nWCA90kE06 znedQygwcQw7NB21BvU6M9ssTzva/GzI -----END CERTIFICATE-----Generated at Thu Sep 18 23:28:43 2025 by rpki-client