$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft File: CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft (raw, json) Hash identifier: YsjZ3gc58YHx2aI4Rez3OgD9G05LcUwj2UGIJjYN3fc= Subject key identifier: 32:33:C5:51:2A:88:01:6C:9C:17:09:C3:61:DF:60:B8:48:15:36:94 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 04CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft Manifest number: 04B2 Signing time: Fri 05 Sep 2025 00:14:40 +0000 Manifest this update: Fri 05 Sep 2025 00:14:39 +0000 Manifest next update: Fri 12 Sep 2025 00:14:39 +0000 Files and hashes: 1: CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl (hash: hKn9RekRB6tC1cQmEGjVI87+bVbWZCxpQK6S6yF0xvo=) 2: 02F57BD252E711EC931DB95CC4F9AE02.roa (hash: TGHGZPpqAj2jmtX8lTQMi8kBaI8ojiWWIFj1IWycEgs=) 3: 413AD9F852E411EC9E19AA2FC4F9AE02.roa (hash: Y2Z1jehKepnssjRVP8joGvXLmK9adM98wErhHrOtaeg=) 4: 41E32C9852E411EC9E19AA2FC4F9AE02.roa (hash: i1mD+r6XwMu6On3/bUlN+PaLdP6khHenZ0Z0HUab9AI=) 5: 0517C4F0470311EC9E6FA71DC4F9AE02.roa (hash: o+VIx3yy8oMDW/C3RImP2D9X9JrFefZYlsNOIecQzAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Sep 5 00:14:39 2025 GMT Not After : Sep 12 00:14:39 2025 GMT Subject: CN=68ba2b70-146d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:93:69:34:73:0e:b5:96:53:e0:33:7a:0e:71: b9:71:9e:05:11:b6:b5:cc:85:86:87:15:5e:44:74: 37:e5:c6:d5:be:f7:56:a0:31:d7:4f:00:77:f6:5e: 2a:fc:af:02:0c:00:8d:eb:e9:5a:02:01:92:2c:bc: e0:e3:dd:f9:33:74:b8:52:dd:63:25:a4:0e:a7:f8: 58:76:bd:ce:98:b1:f1:fa:ef:d1:c8:22:ac:5a:4c: ad:78:d7:0d:2f:38:48:bf:7f:5f:03:af:7e:a1:30: e9:d4:5b:54:0e:db:16:9d:04:d0:2d:88:4a:9b:a3: fe:99:92:5c:97:78:3e:a6:af:83:2b:76:35:1d:a1: fd:a1:7c:ab:34:75:64:b8:55:7e:8d:18:1d:95:e0: 1c:28:17:3f:2b:30:35:01:93:98:42:75:df:a5:a8: 74:f7:2e:16:09:2a:5c:6d:22:d3:14:b3:01:95:0a: 85:5b:17:a1:8e:92:7a:93:5c:50:24:7c:f5:26:b8: a1:c8:fb:d0:41:e5:3d:6b:6e:e6:f6:69:e7:ba:49: fb:b9:95:7e:12:97:a6:2e:48:09:21:c2:e7:c1:dc: 44:b0:84:cb:bb:1c:d9:e8:02:b3:16:a1:0c:0e:bd: 0f:21:d7:dd:0f:90:49:bf:ec:a9:40:5d:4c:a4:67: 92:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:33:C5:51:2A:88:01:6C:9C:17:09:C3:61:DF:60:B8:48:15:36:94 X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:f0:c8:54:29:88:c7:c8:b2:04:80:29:9b:10:0e:c9:90:31: cf:be:71:2d:0d:74:e3:70:25:c2:84:c5:e6:d5:29:d0:e9:c0: a3:e5:80:79:9f:98:1b:8d:d7:14:1e:b6:37:75:35:fe:cb:e6: 01:4b:e7:39:f0:ce:12:dc:22:fa:e5:bc:a6:af:93:d0:aa:7e: 07:34:31:5b:5e:b6:f6:b7:79:6e:a9:ab:f8:96:7d:a7:ac:d5: 0a:2f:28:8c:7c:d3:56:5a:de:4d:75:f5:3c:a0:4c:9a:65:bb: 88:fa:33:cf:94:a6:7a:cc:03:ac:3f:7f:52:61:15:e7:af:92: 50:7f:e2:85:32:51:bd:6c:7b:09:0d:8e:f3:45:b4:c7:6f:eb: 66:a5:f1:51:92:44:9c:1a:a2:9f:91:8a:40:1f:05:dd:a7:a9: a7:ce:e5:3d:35:d4:d5:c3:4d:19:9c:9c:d4:13:d1:3a:ea:ac: 29:49:7f:d0:50:c3:e9:83:aa:f4:41:1e:58:46:4b:e6:f5:d2: f4:2d:f6:76:0d:7e:8e:4e:a7:9f:72:3e:fb:33:8b:80:74:6c: 0a:c6:e4:b8:25:92:a8:8a:19:77:50:fb:e1:71:4b:46:65:a2: 30:94:46:b4:4a:27:49:a9:48:2d:5c:98:f1:12:22:2f:fc:a3: 89:09:9c:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUwOTA1MDAxNDM5WhcNMjUwOTEyMDAxNDM5WjAYMRYwFAYD VQQDEw02OGJhMmI3MC0xNDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5NpNHMOtZZT4DN6DnG5cZ4FEba1zIWGhxVeRHQ35cbVvvdWoDHXTwB39l4q /K8CDACN6+laAgGSLLzg4935M3S4Ut1jJaQOp/hYdr3OmLHx+u/RyCKsWkyteNcN LzhIv39fA69+oTDp1FtUDtsWnQTQLYhKm6P+mZJcl3g+pq+DK3Y1HaH9oXyrNHVk uFV+jRgdleAcKBc/KzA1AZOYQnXfpah09y4WCSpcbSLTFLMBlQqFWxehjpJ6k1xQ JHz1JrihyPvQQeU9a27m9mnnukn7uZV+EpemLkgJIcLnwdxEsITLuxzZ6AKzFqEM Dr0PIdfdD5BJv+ypQF1MpGeSuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDIzxVEq iAFsnBcJw2HfYLhIFTaUMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0NGRi85QTVFQzE2QzQ2RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpY S1BKUHF0akxHbDhaQUhGZTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQ8MhUKYjHyLIEgCmbEA7JkDHPvnEtDXTjcCXChMXm1SnQ6cCj5YB5 n5gbjdcUHrY3dTX+y+YBS+c58M4S3CL65bymr5PQqn4HNDFbXrb2t3luqav4ln2n rNUKLyiMfNNWWt5NdfU8oEyaZbuI+jPPlKZ6zAOsP39SYRXnr5JQf+KFMlG9bHsJ DY7zRbTHb+tmpfFRkkScGqKfkYpAHwXdp6mnzuU9NdTVw00ZnJzUE9E66qwpSX/Q UMPpg6r0QR5YRkvm9dL0LfZ2DX6OTqefcj77M4uAdGwKxuS4JZKoihl3UPvhcUtG ZaIwlEa0SidJqUgtXJjxEiIv/KOJCZzd -----END CERTIFICATE-----Generated at Sat Sep 6 12:54:31 2025 by rpki-client