$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft File: rwJRH3yA38Do7VBvZjD2e9ZADgk.mft (raw, json) Hash identifier: yDO5LleZNI/sNjeK6jU2psEcAm0NwnaR/gbZSya6Dbg= Subject key identifier: 91:21:D5:CE:F1:6A:FF:07:12:93:D7:7F:CE:DC:A4:AB:F8:AE:FC:BF Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 1468 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft Manifest number: 1447 Signing time: Thu 04 Sep 2025 17:02:44 +0000 Manifest this update: Thu 04 Sep 2025 17:02:43 +0000 Manifest next update: Thu 11 Sep 2025 17:02:43 +0000 Files and hashes: 1: rwJRH3yA38Do7VBvZjD2e9ZADgk.crl (hash: SadTWDNEEtf2ZJaCiaZkxk09EVEN+1BRZ8FzCB9EdqM=) 2: A83ECFAE791B11F0B7D48969C4F9AE02.roa (hash: FOnoWXzG/xzvG2wY9SEKlskrDJv5q/5MAP/jyysv8e0=) 3: 4C6227D2B69B11EFA181E00AC4F9AE02.roa (hash: iaZ3s82xkjY2XfRTWiPnjnqnF2ySFKKm+AeAW0yRT+E=) 4: 983A5536450611F093EC3A65C4F9AE02.roa (hash: jXDJFKBYyl2AMr2aBeeaX3dJKta1vZTtNnECUVWIxl8=) 5: 26F19BD2EFFE11EDA34BD84DC4F9AE02.roa (hash: Z27ILnU+TOqVLLhIyXtiXXV0PlnGYmkYaaio5+3e2ug=) 6: 97A9C872450611F093EC3A65C4F9AE02.roa (hash: U8BSX2DX6JtfXzvuoqYA9Tm3bqF1pxPrmS12/E0gdmw=) 7: 7F444842C3A411ED8EFA6F13C4F9AE02.roa (hash: 8uWfW9Bx2UJleM0TwlNLkikjSTgRwN2eIHzYdV+mzGQ=) 8: 98A0F2BE450611F093EC3A65C4F9AE02.roa (hash: mH5FkT85wXX1fDkYIcXzDeEU3PHEwchgtocWPplcMrs=) 9: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (hash: 3SvNLk7hW+Uo3wG2xJFv1wsrHQt1APNp92391QdFtgI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 17:02:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5224 (0x1468) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Sep 4 17:02:43 2025 GMT Not After : Sep 11 17:02:43 2025 GMT Subject: CN=68b9c634-8dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d1:d6:44:36:9e:30:4f:87:5e:b8:a2:4a:da: 53:bd:b6:f9:83:ba:85:d5:d5:ca:f7:30:1d:7f:8d: d3:49:b5:77:bb:3a:f6:92:5f:cc:a3:c6:8c:33:ca: b9:f3:86:46:b2:23:b6:ca:cb:df:4f:f5:11:56:20: c6:ec:91:06:09:d4:df:24:b2:a5:9d:a8:cc:65:61: 0e:a6:a2:58:44:51:57:0e:fd:f6:28:f2:98:b9:38: 21:35:6a:5a:db:4b:0f:b0:e9:ef:6d:07:e6:85:1d: 97:a4:d9:0c:cf:4d:54:07:1a:a2:16:62:8d:81:56: fe:d5:2b:f0:ac:02:e4:d8:f7:fa:b1:02:eb:75:4e: 58:ac:5f:56:fe:10:4d:65:f9:be:2e:c0:f9:16:96: d7:3b:32:bd:b5:0f:7d:bd:15:ad:e7:93:ef:bd:3b: 78:6f:0b:4f:82:03:c1:bf:b4:a7:59:7c:06:c9:ea: cd:c5:09:90:14:57:5c:fc:ca:25:eb:b0:08:c6:0d: 9d:f7:d9:c5:82:00:90:34:fa:2a:ff:d5:5a:50:dc: 19:89:96:0d:40:87:04:a7:93:ed:00:1a:76:71:a1: 4e:ca:29:d6:ed:8c:34:85:5c:8b:98:4d:0e:33:3e: 4f:1f:52:1d:06:90:99:f8:1e:6d:af:74:9b:7a:ba: dd:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:21:D5:CE:F1:6A:FF:07:12:93:D7:7F:CE:DC:A4:AB:F8:AE:FC:BF X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:cd:4a:ac:33:2f:f3:28:4c:85:a1:fe:bd:5d:6f:03:e4:3d: 18:b1:c2:ad:c4:fd:f6:b8:8a:29:74:2a:c6:c7:c4:50:95:27: 2a:97:a9:e8:ef:ee:51:4d:dc:5a:b7:13:63:df:b5:ba:91:cc: 47:e7:4c:13:d4:53:6d:ee:e7:21:64:58:f8:81:3d:1a:d3:12: 3d:b6:77:22:57:83:46:57:f1:20:de:3b:f9:08:9d:3e:2d:ae: bb:e8:6c:3a:ef:b5:fd:61:37:aa:2d:d0:18:56:25:50:19:55: a2:f5:bd:99:4b:d5:72:90:29:76:43:21:e9:4c:b0:cd:5e:d8: 38:f1:70:36:be:98:ba:2d:08:b2:92:84:50:06:56:3f:40:07: ab:a3:52:28:6d:20:45:7a:7f:a2:e0:ec:64:cc:bc:27:e3:a4: f7:d2:4e:f0:07:6f:c4:60:61:f2:75:36:5e:f4:3c:e5:75:56: 43:c2:25:79:4d:1d:25:14:57:dd:ed:69:96:3d:e3:2a:76:29: 94:e0:d1:15:07:ee:ff:b0:a8:8d:8f:7b:ec:bb:5b:a8:a2:47: b6:dc:71:91:24:24:44:7c:83:7d:db:7b:be:c3:43:90:5f:94: a1:f3:78:68:81:70:78:7b:da:d6:ad:d7:6b:29:48:bf:c3:1a: 68:ae:76:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwOTA0MTcwMjQzWhcNMjUwOTExMTcwMjQzWjAYMRYwFAYD VQQDEw02OGI5YzYzNC04ZGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9HWRDaeME+HXriiStpTvbb5g7qF1dXK9zAdf43TSbV3uzr2kl/Mo8aMM8q5 84ZGsiO2ysvfT/URViDG7JEGCdTfJLKlnajMZWEOpqJYRFFXDv32KPKYuTghNWpa 20sPsOnvbQfmhR2XpNkMz01UBxqiFmKNgVb+1SvwrALk2Pf6sQLrdU5YrF9W/hBN Zfm+LsD5FpbXOzK9tQ99vRWt55PvvTt4bwtPggPBv7SnWXwGyerNxQmQFFdc/Mol 67AIxg2d99nFggCQNPoq/9VaUNwZiZYNQIcEp5PtABp2caFOyinW7Yw0hVyLmE0O Mz5PH1IdBpCZ+B5tr3SberrdOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEh1c7x av8HEpPXf87cpKv4rvy/MB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEI0QS8wQURCMTdDMDgwMEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4 RG83VkJ2WmpEMmU5WkFEZ2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbzUqsMy/zKEyFof69XW8D5D0YscKtxP32uIopdCrGx8RQlScql6no 7+5RTdxatxNj37W6kcxH50wT1FNt7uchZFj4gT0a0xI9tnciV4NGV/Eg3jv5CJ0+ La676Gw677X9YTeqLdAYViVQGVWi9b2ZS9VykCl2QyHpTLDNXtg48XA2vpi6LQiy koRQBlY/QAero1IobSBFen+i4OxkzLwn46T30k7wB2/EYGHydTZe9DzldVZDwiV5 TR0lFFfd7WmWPeMqdimU4NEVB+7/sKiNj3vsu1uooke23HGRJCREfIN923u+w0OQ X5Sh83hogXB4e9rWrddrKUi/wxpornZZ -----END CERTIFICATE-----Generated at Fri Sep 5 11:29:31 2025 by rpki-client