$ rpki-client -vvf rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft File: 4JlhFVCKOtWZFdurzLaW26C0zHI.mft (raw, json) Hash identifier: RmjIluWYdNAV/lVjv+C4M/GL62UOWS+lm8wqEPqPnFM= Subject key identifier: 56:1D:12:AB:DF:62:F2:91:AC:0E:34:FA:C0:C1:50:B2:40:F5:97:CE Authority key identifier: E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 Certificate issuer: /CN=A9153CE9/serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Certificate serial: 05A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft Manifest number: 0585 Signing time: Thu 04 Sep 2025 23:34:51 +0000 Manifest this update: Thu 04 Sep 2025 23:34:50 +0000 Manifest next update: Thu 11 Sep 2025 23:34:50 +0000 Files and hashes: 1: 4JlhFVCKOtWZFdurzLaW26C0zHI.crl (hash: pDHQWpiIx2uZ6BJGrHGRKWf9Va+Xi+G50VlxBnhEC9M=) 2: BA758AE2212711F0A7DCCB5BC4F9AE02.roa (hash: m8lEVsnh3DvG0KEPCp4MW7Ow9L5MLhKDggw4WLNqc68=) 3: 03C7AA80F01111ED9C345840C4F9AE02.roa (hash: Am8OlNfTP5V8Kx5g/Dv+15S2O7P9HWujy6NfIY4x9VA=) 4: 04E8D402F01111ED9C345840C4F9AE02.roa (hash: aw0GsE7/msiXwaZd5f0HibklFhBHtqZY6llDRI4HTZY=) 5: F650791EF01411ED9210D060C4F9AE02.roa (hash: 4IZfBEYxdxWId8yUiHx63z7AlPcjMCqr2gmuQDYBUpU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 23:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1444 (0x5a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153CE9, serialNumber=E0996115508A3AD59915DBABCCB696DBA0B4CC72 Validity Not Before: Sep 4 23:34:50 2025 GMT Not After : Sep 11 23:34:50 2025 GMT Subject: CN=68ba221a-b78a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3f:0b:78:5c:5a:5f:82:bd:5a:9e:d6:70:b5: 69:ae:8f:b9:96:69:83:c0:e4:ae:8c:85:98:57:5b: b7:44:04:9b:e6:a4:e9:43:d3:68:a6:00:db:26:d1: 8b:8f:a5:87:68:f9:a4:eb:1d:bb:33:4d:4e:bf:44: 3b:67:99:f8:43:09:e4:0e:8a:3f:8f:2d:b1:f5:97: 61:d6:41:07:b0:a3:16:ce:b1:0b:8a:8d:eb:2e:88: 6e:5e:a9:35:57:d6:7d:9c:2e:af:c9:aa:58:46:9c: 8e:04:41:f9:cd:7d:5d:17:e2:1b:d7:3d:10:df:b3: f1:e5:43:e2:52:a7:e3:7b:53:e9:b1:82:ee:43:f6: f8:9d:d6:78:da:18:db:af:14:5b:de:e9:26:f9:df: d0:ae:a9:c8:50:18:4c:58:e4:15:ce:19:ef:bb:d6: bf:10:ce:9e:a1:b1:9b:8c:f6:d9:fc:f6:4b:c1:47: 89:51:f6:4a:3f:7d:1e:2b:33:96:13:b8:61:28:49: bd:52:83:d0:6a:8b:18:52:03:66:37:5a:68:9a:64: e5:9c:3a:42:a5:e9:9d:5a:8d:7c:2c:9a:01:8a:6f: 51:ca:a7:13:17:ea:a7:99:08:b4:09:90:1f:1c:29: f5:09:85:7a:08:09:13:5a:94:53:95:3b:d5:b7:48: 1d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1D:12:AB:DF:62:F2:91:AC:0E:34:FA:C0:C1:50:B2:40:F5:97:CE X509v3 Authority Key Identifier: keyid:E0:99:61:15:50:8A:3A:D5:99:15:DB:AB:CC:B6:96:DB:A0:B4:CC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4JlhFVCKOtWZFdurzLaW26C0zHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153CE9/0AB1D396F51511EB9EFE0750C4F9AE02/4JlhFVCKOtWZFdurzLaW26C0zHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:e2:02:d0:a6:da:4f:9d:0a:a8:a8:41:8c:8e:26:81:ed:44: 31:4e:ef:e1:97:44:20:60:2a:48:75:82:2b:75:40:dc:8c:1c: ca:61:85:06:65:a5:b4:46:6c:2e:e1:f6:e0:56:84:8e:97:21: 22:13:be:88:71:9d:b5:20:ab:0b:d3:7b:7e:b0:0e:2f:6d:9f: 06:1b:3a:5b:36:13:a2:05:13:f8:25:1e:02:0e:f0:42:d8:c9: 9f:48:10:bc:5a:bc:44:52:77:4e:f4:91:2f:bd:84:9c:8c:9e: 16:80:fd:eb:6b:e3:1f:57:0f:62:a3:7e:ac:e1:20:74:b1:87: 08:d0:91:b0:18:bf:d9:4d:6a:5e:3b:09:51:44:b3:d5:d0:a8: f4:02:43:e2:65:34:84:22:84:14:3f:bf:f1:3a:2a:ec:b9:53: a5:b8:cf:18:89:0d:2c:73:c9:b6:0e:da:8d:9c:d0:1d:25:24: 09:13:b3:8c:87:08:92:65:df:80:db:7d:51:b4:75:18:34:13: e2:e1:3c:ed:61:7e:5d:a7:d0:d2:87:ac:5a:a7:06:c6:16:45: 7f:48:56:59:53:fa:dd:e6:c9:28:19:93:8b:39:08:ca:6c:ae: 4f:41:ab:f9:ec:68:79:44:1d:f5:2e:ff:db:0f:de:1b:82:ea: 30:cd:99:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDRTkxMTAvBgNVBAUTKEUwOTk2MTE1NTA4QTNBRDU5OTE1REJBQkNDQjY5NkRC QTBCNENDNzIwHhcNMjUwOTA0MjMzNDUwWhcNMjUwOTExMjMzNDUwWjAYMRYwFAYD VQQDEw02OGJhMjIxYS1iNzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArD8LeFxaX4K9Wp7WcLVpro+5lmmDwOSujIWYV1u3RASb5qTpQ9NopgDbJtGL j6WHaPmk6x27M01Ov0Q7Z5n4QwnkDoo/jy2x9Zdh1kEHsKMWzrELio3rLohuXqk1 V9Z9nC6vyapYRpyOBEH5zX1dF+Ib1z0Q37Px5UPiUqfje1PpsYLuQ/b4ndZ42hjb rxRb3ukm+d/QrqnIUBhMWOQVzhnvu9a/EM6eobGbjPbZ/PZLwUeJUfZKP30eKzOW E7hhKEm9UoPQaosYUgNmN1pommTlnDpCpemdWo18LJoBim9RyqcTF+qnmQi0CZAf HCn1CYV6CAkTWpRTlTvVt0gdXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFYdEqvf YvKRrA40+sDBULJA9ZfOMB8GA1UdIwQYMBaAFOCZYRVQijrVmRXbq8y2ltugtMxy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0NFOS8wQUIxRDM5NkY1 MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090V1pGZHVyekxhVzI2QzB6 SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRKbGhGVkNLT3RXWkZkdXJ6TGFXMjZDMHpISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0NFOS8wQUIxRDM5NkY1MTUxMUVCOUVGRTA3NTBDNEY5QUUwMi80SmxoRlZDS090 V1pGZHVyekxhVzI2QzB6SEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB54gLQptpPnQqoqEGMjiaB7UQxTu/hl0QgYCpIdYIrdUDcjBzKYYUG ZaW0Rmwu4fbgVoSOlyEiE76IcZ21IKsL03t+sA4vbZ8GGzpbNhOiBRP4JR4CDvBC 2MmfSBC8WrxEUndO9JEvvYScjJ4WgP3ra+MfVw9io36s4SB0sYcI0JGwGL/ZTWpe OwlRRLPV0Kj0AkPiZTSEIoQUP7/xOirsuVOluM8YiQ0sc8m2DtqNnNAdJSQJE7OM hwiSZd+A231RtHUYNBPi4TztYX5dp9DSh6xapwbGFkV/SFZZU/rd5skoGZOLOQjK bK5PQav57Gh5RB31Lv/bD94bguowzZmS -----END CERTIFICATE-----Generated at Sat Sep 6 06:01:54 2025 by rpki-client