$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: G7MGoau80h4o3SccVzrDbf6Z4FdxqlO+tXLCTUuilKc= Subject key identifier: AD:98:10:75:AB:0E:4B:3D:98:AA:C0:EA:9D:F2:55:75:3D:E0:CE:C7 Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 223B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 222B Signing time: Thu 18 Sep 2025 15:58:00 +0000 Manifest this update: Thu 18 Sep 2025 15:58:00 +0000 Manifest next update: Thu 25 Sep 2025 15:58:00 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: 960WsSwxLuL7zpXOnV8CyS1v4rLJcwqAzGa4Az28cVU=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8763 (0x223b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Sep 18 15:58:00 2025 GMT Not After : Sep 25 15:58:00 2025 GMT Subject: CN=68cc2c08-eeb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:aa:9f:1e:3f:a1:4c:87:32:1c:79:1c:7a:a4: ec:55:86:67:66:09:4d:aa:e2:01:f9:37:c2:dd:1a: 02:86:2a:f9:25:27:e0:17:fa:be:b4:0a:94:de:9c: a3:e8:e0:02:d6:8e:97:ea:b1:d3:95:2d:0f:29:86: 3d:df:8d:60:4d:90:b0:df:2e:5c:35:42:65:26:ed: bd:31:7f:87:4c:52:df:c8:ac:d5:0c:5d:10:10:b2: 72:8a:56:5b:59:1e:91:0c:f4:75:9e:01:3e:08:be: 6f:c9:6e:b8:c4:a3:99:d0:46:f5:00:10:09:8a:1f: 3c:b5:1f:0a:b8:bf:51:46:71:94:a5:63:bb:28:cf: 95:eb:22:d4:db:36:e8:8e:e7:8b:a5:40:eb:83:28: 38:7b:d9:e0:f9:a5:df:4d:bd:89:ed:b0:34:e9:58: 0e:a4:ea:ef:e9:64:b7:be:76:7c:7b:93:9f:df:ed: 39:a9:d0:2d:d4:f8:3e:b5:06:93:33:25:8b:33:25: f6:5d:72:ab:be:8b:d0:da:d5:0f:43:17:df:01:14: c4:d5:2a:bd:d7:a5:d3:3b:96:88:38:d6:0a:58:2d: b2:95:84:4e:72:97:99:38:2f:04:1f:83:64:b7:03: a1:a2:17:03:d7:15:40:8f:91:2f:7c:72:01:e1:8b: 7b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:98:10:75:AB:0E:4B:3D:98:AA:C0:EA:9D:F2:55:75:3D:E0:CE:C7 X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:5e:fd:e5:d0:f9:db:bc:d6:23:05:6a:61:6b:1d:09:af:5a: 36:00:07:29:71:bf:b7:d9:0b:30:6e:8b:87:dc:52:a6:32:61: ba:f3:90:bf:11:47:95:71:6d:6e:2b:3f:1f:6c:0b:00:5d:01: 16:38:72:62:d7:d9:20:81:de:31:46:e2:1c:f7:a1:8a:72:53: 86:f7:04:40:e4:cb:1e:54:98:c5:74:d6:45:ed:fd:4f:d7:b4: a6:d3:3e:da:38:92:74:65:72:c9:e9:b9:97:d0:cb:e7:38:b1: 0d:11:8c:2e:e6:98:66:95:3d:6b:e4:c3:0f:d5:32:ce:0e:e8: 98:46:3f:06:32:11:71:a2:13:24:e0:2c:8c:62:5b:31:d0:25: 32:05:c1:42:44:01:82:8e:8c:27:57:03:73:c9:ed:41:1e:aa: 39:96:75:79:dd:69:55:08:33:c7:9f:91:d6:76:7e:e1:9c:a4: db:4a:2c:0d:d2:e7:c8:21:59:e2:9e:8c:49:1a:50:88:1e:ab: 78:9f:a2:e5:a0:b2:81:10:83:36:56:30:26:a5:96:fc:38:5c: c4:5a:c9:2d:5f:41:13:cc:00:3f:d7:1f:fe:18:6b:d5:b2:54: 75:12:46:31:ad:c3:d8:64:19:27:f6:a1:ee:60:d2:ff:81:31: 20:15:da:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUwOTE4MTU1ODAwWhcNMjUwOTI1MTU1ODAwWjAYMRYwFAYD VQQDEw02OGNjMmMwOC1lZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2KqfHj+hTIcyHHkceqTsVYZnZglNquIB+TfC3RoChir5JSfgF/q+tAqU3pyj 6OAC1o6X6rHTlS0PKYY9341gTZCw3y5cNUJlJu29MX+HTFLfyKzVDF0QELJyilZb WR6RDPR1ngE+CL5vyW64xKOZ0Eb1ABAJih88tR8KuL9RRnGUpWO7KM+V6yLU2zbo jueLpUDrgyg4e9ng+aXfTb2J7bA06VgOpOrv6WS3vnZ8e5Of3+05qdAt1Pg+tQaT MyWLMyX2XXKrvovQ2tUPQxffARTE1Sq916XTO5aIONYKWC2ylYROcpeZOC8EH4Nk twOhohcD1xVAj5EvfHIB4Yt7wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK2YEHWr Dks9mKrA6p3yVXU94M7HMB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJXv3l0PnbvNYjBWphax0Jr1o2AAcpcb+32QswbouH3FKmMmG685C/ EUeVcW1uKz8fbAsAXQEWOHJi19kggd4xRuIc96GKclOG9wRA5MseVJjFdNZF7f1P 17Sm0z7aOJJ0ZXLJ6bmX0MvnOLENEYwu5phmlT1r5MMP1TLODuiYRj8GMhFxohMk 4CyMYlsx0CUyBcFCRAGCjownVwNzye1BHqo5lnV53WlVCDPHn5HWdn7hnKTbSiwN 0ufIIVninoxJGlCIHqt4n6LloLKBEIM2VjAmpZb8OFzEWsktX0ETzAA/1x/+GGvV slR1EkYxrcPYZBkn9qHuYNL/gTEgFdrf -----END CERTIFICATE-----Generated at Fri Sep 19 02:32:54 2025 by rpki-client