$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: C5sMthezdBZTS8pFju3SGX//qfIoYX8kF0pelK0S7D0= Subject key identifier: C0:F0:C8:1C:38:A2:A0:B6:FF:73:9E:B3:D5:5A:43:17:25:FB:33:F9 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 013C Signing time: Tue 09 Sep 2025 04:38:20 +0000 Manifest this update: Tue 09 Sep 2025 04:38:19 +0000 Manifest next update: Tue 16 Sep 2025 04:38:19 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: CoikM9dEtrKaZSSTyxr8ljdOZGmmYViEeA0uqxe9+zw=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: phqylkhfGei3IojXYcRRdYxObeB6TnyHw6jd5mx17zE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:38:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Sep 9 04:38:19 2025 GMT Not After : Sep 16 04:38:19 2025 GMT Subject: CN=68bfaf3c-77c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3e:b4:24:15:cd:52:9f:e1:ab:60:c3:5e:aa: 4b:f8:58:ff:99:b2:7f:14:e7:e1:94:0a:ee:de:43: 89:7e:fb:17:d2:b5:fb:eb:0f:34:64:71:dd:38:87: 1a:59:ca:55:25:02:ac:de:f7:07:98:08:06:80:ea: 3d:e0:d0:df:a7:4c:6a:51:b1:ec:9c:cd:b4:6a:60: 96:9c:bf:e1:19:df:54:1c:07:57:cd:a6:dd:69:4c: a0:67:fa:e5:b9:a5:16:e9:2d:1a:60:89:49:73:27: c0:64:dc:ed:f0:f7:2a:b7:96:d5:5a:e3:47:d8:42: d0:d2:08:9c:f4:8f:98:2d:57:17:e1:31:b9:f8:c5: af:b6:bc:f0:17:51:ac:f7:88:cd:17:da:c9:9f:eb: 9a:ea:07:c6:aa:6d:77:af:ab:dc:ed:6f:7c:f9:cc: c7:e1:7f:3b:0f:e9:0b:eb:e4:3a:da:4a:9b:ad:aa: be:fe:35:87:78:74:44:96:46:1b:07:d6:47:95:0f: ab:4f:8d:b7:2b:b4:64:09:cd:43:10:dc:98:d7:7c: 02:9e:89:28:10:e9:06:ca:8c:76:fa:da:c8:30:2f: ce:75:82:32:08:7e:f4:e8:a3:51:5a:d8:67:9d:57: ba:72:91:b3:01:36:15:b5:10:23:3f:ab:76:52:ed: 0e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F0:C8:1C:38:A2:A0:B6:FF:73:9E:B3:D5:5A:43:17:25:FB:33:F9 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:3e:22:54:79:9d:fb:e2:c0:44:13:e3:82:92:bb:02:c5:d0: b2:94:20:29:04:84:43:ed:b3:27:cd:72:93:e8:f7:c0:d7:dd: 41:9e:df:25:69:07:c7:51:bb:74:71:fc:b0:13:28:ca:5c:ca: f3:7a:02:93:76:1e:7a:84:af:e7:d3:27:70:ca:ee:02:f4:03: 5b:8a:b4:05:d2:5b:8d:46:db:53:b8:6c:1f:7a:58:34:12:b3: d9:c2:e7:a0:8f:90:56:e1:60:c1:e0:81:3b:61:8e:66:df:10: 2f:b8:da:94:1a:66:0f:2f:34:4f:27:0a:bf:aa:19:19:55:79: 95:38:b8:b2:b2:96:dc:91:50:d5:32:09:34:97:e8:73:60:29: 83:cd:8a:ac:dd:bb:63:6b:eb:16:88:a3:67:db:7c:f0:ef:91: e7:aa:32:84:8d:8f:81:05:a0:de:29:55:f2:3f:f4:82:55:01: 4f:dd:8c:d2:f1:12:f9:1a:9a:7f:09:c7:2a:1e:32:ed:aa:7f: 87:15:f1:d7:49:20:b9:2b:5f:ca:47:d2:14:bd:fc:1b:b0:da: 0d:ab:22:cd:2c:fd:5c:e0:1a:73:ac:f1:76:94:50:64:08:6a: a4:be:e7:b9:83:26:c4:20:41:30:d9:76:23:9d:44:96:63:96: f2:45:e8:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwOTA5MDQzODE5WhcNMjUwOTE2MDQzODE5WjAYMRYwFAYD VQQDEw02OGJmYWYzYy03N2M2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArj60JBXNUp/hq2DDXqpL+Fj/mbJ/FOfhlAru3kOJfvsX0rX76w80ZHHdOIca WcpVJQKs3vcHmAgGgOo94NDfp0xqUbHsnM20amCWnL/hGd9UHAdXzabdaUygZ/rl uaUW6S0aYIlJcyfAZNzt8Pcqt5bVWuNH2ELQ0gic9I+YLVcX4TG5+MWvtrzwF1Gs 94jNF9rJn+ua6gfGqm13r6vc7W98+czH4X87D+kL6+Q62kqbraq+/jWHeHRElkYb B9ZHlQ+rT423K7RkCc1DENyY13wCnokoEOkGyox2+trIMC/OdYIyCH706KNRWthn nVe6cpGzATYVtRAjP6t2Uu0OQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDwyBw4 oqC2/3Oes9VaQxcl+zP5MB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArPiJUeZ374sBEE+OCkrsCxdCylCApBIRD7bMnzXKT6PfA191Bnt8l aQfHUbt0cfywEyjKXMrzegKTdh56hK/n0ydwyu4C9ANbirQF0luNRttTuGwfelg0 ErPZwuegj5BW4WDB4IE7YY5m3xAvuNqUGmYPLzRPJwq/qhkZVXmVOLiyspbckVDV Mgk0l+hzYCmDzYqs3btja+sWiKNn23zw75HnqjKEjY+BBaDeKVXyP/SCVQFP3YzS 8RL5Gpp/CccqHjLtqn+HFfHXSSC5K1/KR9IUvfwbsNoNqyLNLP1c4BpzrPF2lFBk CGqkvue5gybEIEEw2XYjnUSWY5byReh6 -----END CERTIFICATE-----Generated at Tue Sep 9 18:26:30 2025 by rpki-client