$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft File: G395gdniwsMPbyw0hxophthfiQ4.mft (raw, json) Hash identifier: RT5Kh4MjjJfsoQ6kzoZkr5tRa0589NFJghq5yrIpE20= Subject key identifier: 89:B0:7C:9A:17:82:35:3F:2C:E9:6D:C1:8C:15:E5:7C:8D:B1:44:4B Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft Manifest number: 0522 Signing time: Wed 20 Aug 2025 23:39:07 +0000 Manifest this update: Wed 20 Aug 2025 23:39:07 +0000 Manifest next update: Wed 27 Aug 2025 23:39:07 +0000 Files and hashes: 1: G395gdniwsMPbyw0hxophthfiQ4.crl (hash: 3pwrXMd9GYAHeYNpLkwiuThN687nZ4lz3j69xQQYFCg=) 2: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (hash: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:39:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9, serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Aug 20 23:39:07 2025 GMT Not After : Aug 27 23:39:07 2025 GMT Subject: CN=68a65c9b-7895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b0:94:ed:a5:d8:e3:b3:72:38:30:a3:82:ec: f0:1a:38:ec:2f:a0:91:59:13:f4:14:0c:5c:54:47: 9b:21:c6:f8:79:ba:f9:b8:f6:b7:5d:65:32:5f:11: ea:cd:43:a3:fe:f3:25:3a:08:d8:7a:91:26:d6:0e: 3a:0d:4a:57:54:f0:3c:b5:c9:fa:a2:73:07:31:b3: 1e:c2:be:bf:6f:2d:96:29:e5:de:73:96:20:e0:71: 2b:ae:4b:27:06:72:76:59:c6:de:c9:a8:6d:2a:c8: 32:61:1c:4d:19:79:84:b0:2a:87:bd:1b:87:9f:98: 96:ff:41:49:a6:2a:50:16:51:99:78:04:24:29:c9: 19:9c:2c:8a:db:b1:e0:5e:af:d9:f9:af:06:be:ef: 61:b5:75:c2:9e:f1:8e:6e:b6:30:cc:c8:93:87:17: 4e:1b:ca:11:a0:e7:3a:1e:a4:75:69:18:b1:ad:28: 35:a9:e4:f0:fb:39:f6:66:63:6f:c1:70:a6:93:de: 72:8d:0f:28:e2:84:5b:68:14:41:22:b2:2d:f8:e2: c5:1b:5f:c7:8c:bf:b4:b6:b6:8f:c0:be:e7:4e:a2: 0e:4e:70:04:c2:73:1a:b3:f5:4d:88:1e:2c:00:02: 53:a3:5e:d1:86:ed:57:93:b4:49:23:66:0d:eb:aa: d0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B0:7C:9A:17:82:35:3F:2C:E9:6D:C1:8C:15:E5:7C:8D:B1:44:4B X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:dc:0c:6c:6f:84:bd:fc:04:05:cf:29:70:24:83:75:e0:04: 7f:04:24:ad:32:47:d7:e2:e9:d1:14:c8:2a:9e:c1:4e:42:5b: c4:a8:03:ec:5f:9f:60:5d:fb:e2:1b:82:36:e3:40:74:a1:1a: df:1b:62:23:d9:54:80:54:5e:48:49:cc:3a:67:e9:f9:a0:8c: ba:4b:30:ad:98:7a:10:74:5a:ce:21:90:86:3c:99:26:8e:8b: 2f:58:bc:ed:45:44:44:42:68:c4:cb:38:26:8b:fd:6b:c5:4a: 73:43:f2:3e:86:9a:b6:c7:6f:75:ad:81:b1:0b:a2:f5:c7:08: 06:e3:2a:10:42:e8:4a:20:d7:e5:f7:f7:e7:96:4b:2d:52:87: 64:49:c5:4e:8d:b2:e2:74:b1:d6:e8:86:1a:61:4f:3e:05:11: 8c:08:b1:84:43:53:14:96:ac:c8:b6:a3:eb:07:a2:4b:52:5f: e7:4c:59:22:53:46:95:3a:c6:09:59:e6:01:72:7d:71:1d:1b: 73:4c:74:60:a3:d7:89:04:bb:5d:c2:23:99:ff:d7:1e:0a:1b: 65:bf:bd:47:f8:78:62:60:90:ec:81:03:54:08:00:f6:d7:0c: 41:88:32:5a:ad:9b:b0:65:d2:c3:ae:8b:21:e0:4a:48:79:b8: aa:cc:20:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjUwODIwMjMzOTA3WhcNMjUwODI3MjMzOTA3WjAYMRYwFAYD VQQDEw02OGE2NWM5Yi03ODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbCU7aXY47NyODCjguzwGjjsL6CRWRP0FAxcVEebIcb4ebr5uPa3XWUyXxHq zUOj/vMlOgjYepEm1g46DUpXVPA8tcn6onMHMbMewr6/by2WKeXec5Yg4HErrksn BnJ2WcbeyahtKsgyYRxNGXmEsCqHvRuHn5iW/0FJpipQFlGZeAQkKckZnCyK27Hg Xq/Z+a8Gvu9htXXCnvGObrYwzMiThxdOG8oRoOc6HqR1aRixrSg1qeTw+zn2ZmNv wXCmk95yjQ8o4oRbaBRBIrIt+OLFG1/HjL+0traPwL7nTqIOTnAEwnMas/VNiB4s AAJTo17Rhu1Xk7RJI2YN66rQ+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFImwfJoX gjU/LOltwYwV5XyNsURLMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFFOS8wOTEyMDM4MDEwODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdz TVBieXcwaHhvcGh0aGZpUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM3Axsb4S9/AQFzylwJIN14AR/BCStMkfX4unRFMgqnsFOQlvEqAPs X59gXfviG4I240B0oRrfG2Ij2VSAVF5IScw6Z+n5oIy6SzCtmHoQdFrOIZCGPJkm josvWLztRUREQmjEyzgmi/1rxUpzQ/I+hpq2x291rYGxC6L1xwgG4yoQQuhKINfl 9/fnlkstUodkScVOjbLidLHW6IYaYU8+BRGMCLGEQ1MUlqzItqPrB6JLUl/nTFki U0aVOsYJWeYBcn1xHRtzTHRgo9eJBLtdwiOZ/9ceChtlv71H+HhiYJDsgQNUCAD2 1wxBiDJarZuwZdLDrosh4EpIebiqzCCc -----END CERTIFICATE-----Generated at Fri Aug 22 16:38:19 2025 by rpki-client