$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft File: 1CVu3CvBHIRdtQe3wKiTVEYutj0.mft (raw, json) Hash identifier: dugnXUq8pLU4UW2jTYyvowD2VkKcv1LdlfeJGW4p/7c= Subject key identifier: 9A:4A:F1:5C:BF:98:8A:C9:3C:63:07:CB:33:FF:95:B7:08:31:E5:44 Authority key identifier: D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D Certificate issuer: /CN=A9170DA5/serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Certificate serial: 1F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft Manifest number: 1E Signing time: Mon 25 Aug 2025 08:26:31 +0000 Manifest this update: Mon 25 Aug 2025 08:26:30 +0000 Manifest next update: Mon 01 Sep 2025 08:26:30 +0000 Files and hashes: 1: 1CVu3CvBHIRdtQe3wKiTVEYutj0.crl (hash: LkVhWZlbgawTN1mVKMYufEXyK/Ce00fh5T+7PFM+EdA=) 2: F91ECAD6571B11F093AD0C10C4F9AE02.roa (hash: YCsx3bwrgpHgvu8ysYuX5SuZfquoTIQRzefkEGq5/wA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 01 Sep 2025 08:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DA5, serialNumber=D4256EDC2BC11C845DB507B7C0A89354462EB63D Validity Not Before: Aug 25 08:26:30 2025 GMT Not After : Sep 1 08:26:30 2025 GMT Subject: CN=68ac1e36-7180 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cf:85:ca:e4:85:19:a8:a9:36:48:b0:8d:9b: 5a:82:ff:c4:74:fa:cc:a1:12:70:13:7c:31:8b:0b: d7:31:c2:0c:4f:f8:cc:f8:e4:b6:48:33:9a:40:76: 1b:cb:6f:ca:a7:11:55:94:46:6c:ee:f8:dc:f1:59: 8b:e8:c9:34:04:b3:1e:b4:8d:ae:cc:68:5c:ea:d1: 31:b4:59:09:05:9d:f1:29:28:e4:84:3c:52:4f:16: ec:e6:8b:b3:e1:4b:0d:7c:44:35:95:68:2a:80:80: 22:be:51:9e:02:95:e8:cb:91:2e:98:7a:6f:bd:d3: 49:26:27:49:43:97:21:23:23:ec:af:f8:86:75:70: 4a:ed:bc:57:cb:2c:fe:cd:5e:01:d4:ae:e4:ca:b2: 46:52:6b:98:31:8f:9a:ff:9d:83:89:e9:0a:ba:cf: 5b:b7:75:7f:2a:7c:5d:4b:65:a0:60:4c:48:1e:07: af:b6:dc:69:bb:39:12:fc:a5:9e:dc:fc:44:d4:45: 4b:e6:a4:8a:86:44:c7:a9:83:89:98:89:9c:d5:40: 61:dc:d7:85:3c:ef:fe:6e:bd:b3:31:0d:83:f5:c9: 33:7c:1b:46:08:82:d1:31:1c:be:47:46:07:d2:1c: 36:ed:45:14:96:17:d4:df:5f:e8:83:31:f5:91:98: 19:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4A:F1:5C:BF:98:8A:C9:3C:63:07:CB:33:FF:95:B7:08:31:E5:44 X509v3 Authority Key Identifier: keyid:D4:25:6E:DC:2B:C1:1C:84:5D:B5:07:B7:C0:A8:93:54:46:2E:B6:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1CVu3CvBHIRdtQe3wKiTVEYutj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DA5/C559424A571A11F0B8507341C4F9AE02/1CVu3CvBHIRdtQe3wKiTVEYutj0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:f8:ed:f5:d6:2f:e1:a2:fb:bd:60:f9:c1:c7:4e:6d:ed:7b: e0:de:f0:6a:fd:ec:fe:aa:2e:9e:ac:27:da:41:e5:27:72:e3: f0:58:a3:f9:95:cd:db:38:8b:38:89:6a:1f:ca:e3:fe:bb:22: cc:69:a7:c5:6d:67:98:c8:c2:07:42:6f:ab:4d:ed:b7:20:09: 30:72:0e:07:fc:a8:f5:a2:d1:7a:25:e3:76:d5:4e:6b:59:a2: 0a:df:6e:f8:27:d9:38:42:cf:c3:a3:21:30:51:ea:84:6f:df: e1:5c:c4:71:2b:0d:77:58:80:e2:9d:c7:d0:28:6d:ae:68:14: 1b:96:e6:26:3c:1f:11:2c:de:2e:7d:8d:24:7b:2c:e0:5e:79: cf:3a:25:c7:35:51:5c:c1:29:9c:09:14:cd:68:21:98:84:5c: ee:d2:ed:df:87:a0:6a:3f:ee:ab:57:74:43:ce:20:40:a4:aa: ce:1b:a3:c2:fa:6d:bd:6e:b4:6f:a9:32:0e:cc:8c:82:fe:75: 9a:89:b3:00:41:54:96:ac:b0:dc:ef:eb:f6:3b:82:64:c4:90: e2:b2:2d:73:e7:99:4e:c3:15:76:18:92:ae:33:a7:1e:cf:53: d1:ae:1b:3a:ae:4d:24:07:63:1a:ee:96:b9:3c:71:eb:f7:54: 9f:c7:0f:82 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MERBNTExMC8GA1UEBRMoRDQyNTZFREMyQkMxMUM4NDVEQjUwN0I3QzBBODkzNTQ0 NjJFQjYzRDAeFw0yNTA4MjUwODI2MzBaFw0yNTA5MDEwODI2MzBaMBgxFjAUBgNV BAMTDTY4YWMxZTM2LTcxODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDnz4XK5IUZqKk2SLCNm1qC/8R0+syhEnATfDGLC9cxwgxP+Mz45LZIM5pAdhvL b8qnEVWURmzu+NzxWYvoyTQEsx60ja7MaFzq0TG0WQkFnfEpKOSEPFJPFuzmi7Ph Sw18RDWVaCqAgCK+UZ4ClejLkS6Yem+900kmJ0lDlyEjI+yv+IZ1cErtvFfLLP7N XgHUruTKskZSa5gxj5r/nYOJ6Qq6z1u3dX8qfF1LZaBgTEgeB6+23Gm7ORL8pZ7c /ETURUvmpIqGRMepg4mYiZzVQGHc14U87/5uvbMxDYP1yTN8G0YIgtExHL5HRgfS HDbtRRSWF9TfX+iDMfWRmBkHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUmkrxXL+Y isk8YwfLM/+Vtwgx5UQwHwYDVR0jBBgwFoAU1CVu3CvBHIRdtQe3wKiTVEYutj0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREE1L0M1NTk0MjRBNTcx QTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElSZHRRZTN3S2lUVkVZdXRq MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMUNWdTNDdkJISVJkdFFlM3dLaVRWRVl1dGowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcw REE1L0M1NTk0MjRBNTcxQTExRjBCODUwNzM0MUM0RjlBRTAyLzFDVnUzQ3ZCSElS ZHRRZTN3S2lUVkVZdXRqMC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALf47fXWL+Gi+71g+cHHTm3te+De8Gr97P6qLp6sJ9pB5Sdy4/BYo/mV zds4iziJah/K4/67Isxpp8VtZ5jIwgdCb6tN7bcgCTByDgf8qPWi0Xol43bVTmtZ ogrfbvgn2ThCz8OjITBR6oRv3+FcxHErDXdYgOKdx9Aoba5oFBuW5iY8HxEs3i59 jSR7LOBeec86Jcc1UVzBKZwJFM1oIZiEXO7S7d+HoGo/7qtXdEPOIECkqs4bo8L6 bb1utG+pMg7MjIL+dZqJswBBVJassNzv6/Y7gmTEkOKyLXPnmU7DFXYYkq4zpx7P U9GuGzquTSQHYxrulrk8cev3VJ/HD4I= -----END CERTIFICATE-----Generated at Tue Aug 26 11:39:29 2025 by rpki-client