$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft File: 1AwbOf4FNm7Ysj4IgLaet198kOI.mft (raw, json) Hash identifier: LF7ETGCH5HYCcx+uKU7NkZyhHAssB5FeEn8YIs+eB3Q= Subject key identifier: D1:A2:B2:EF:40:64:33:3D:68:4D:28:22:B0:65:8B:D2:05:78:B6:C4 Authority key identifier: D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 Certificate issuer: /CN=A9171A26/serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Certificate serial: 0B29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft Manifest number: 0B22 Signing time: Sun 24 Aug 2025 19:16:48 +0000 Manifest this update: Sun 24 Aug 2025 19:16:47 +0000 Manifest next update: Sun 31 Aug 2025 19:16:47 +0000 Files and hashes: 1: 1AwbOf4FNm7Ysj4IgLaet198kOI.crl (hash: 4/5mgcHOCPo7rnFuoLOL1HYK8a7GMwiFxIkutpS4HNY=) 2: 5C9BC9D045C311EA9DE6F237C4F9AE02.roa (hash: ZtnYKrh+yDnEIQelTNQoTzDHev59ss72beEWQRcR3+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2857 (0xb29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A26, serialNumber=D40C1B39FE05366ED8B23E0880B69EB75F7C90E2 Validity Not Before: Aug 24 19:16:47 2025 GMT Not After : Aug 31 19:16:47 2025 GMT Subject: CN=68ab6520-8406 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e7:4d:02:07:91:7d:ae:eb:28:31:fa:08:7b: fb:f4:d5:14:99:c3:f8:e9:eb:14:52:fc:61:85:7c: 34:8d:9c:1c:ba:cb:b9:75:d7:70:ce:21:26:cc:cb: 9a:c4:77:9e:56:e2:03:07:dc:0c:bc:f4:8d:f4:c8: 72:60:aa:13:5a:35:01:02:82:50:1e:84:b9:2d:5b: 2d:04:3b:25:a1:b6:5c:60:b5:eb:6c:5f:b3:e9:34: d7:79:7e:70:42:ab:77:46:f8:b8:1f:8a:ab:85:bd: 68:9e:21:9e:7d:6a:6b:83:a8:69:05:46:25:95:4b: bc:b0:f6:ca:85:9f:98:d2:04:13:99:6f:a9:d2:02: 0e:80:fd:1b:cc:bd:db:dd:68:c3:09:73:77:92:af: 72:2a:1b:13:bc:e7:ba:af:c1:d6:83:05:7f:38:92: 96:84:25:26:de:ad:49:ef:c4:42:be:ec:07:cf:21: 59:de:ef:59:b5:44:5d:73:82:c8:e4:93:86:df:67: 4a:98:6d:f9:ab:d9:07:48:72:c1:94:a1:ac:8b:7a: b2:1b:c2:8c:6b:09:34:d5:bb:60:30:cd:65:bb:69: 34:e7:a0:ca:a0:a0:74:5f:b5:82:89:0a:a9:4a:66: 3f:ec:0c:20:54:a8:a0:68:c9:57:bf:fa:28:88:45: 12:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:A2:B2:EF:40:64:33:3D:68:4D:28:22:B0:65:8B:D2:05:78:B6:C4 X509v3 Authority Key Identifier: keyid:D4:0C:1B:39:FE:05:36:6E:D8:B2:3E:08:80:B6:9E:B7:5F:7C:90:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AwbOf4FNm7Ysj4IgLaet198kOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A26/BE5312A245C111EA8D0BDD34C4F9AE02/1AwbOf4FNm7Ysj4IgLaet198kOI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:89:35:2c:c7:db:bf:c4:fb:8a:08:7f:06:26:b7:f6:59:21: 60:fd:a9:35:66:94:2c:35:5c:96:27:59:d4:58:90:e4:41:2c: b6:10:e3:c5:d3:5b:5f:df:7a:8d:7d:ab:b8:2d:62:ef:94:62: d3:97:f6:6c:38:ef:0f:14:f6:be:60:d2:07:b0:d9:0c:e3:e7: 48:d5:d9:e3:be:d2:bd:53:a9:44:e6:c9:aa:ad:5d:6a:90:42: 9a:9c:9f:f4:1e:e2:4f:b9:19:0c:de:d5:87:11:93:2f:da:ca: 99:1f:ed:de:8d:5a:66:b4:5e:ea:9a:5e:d8:03:03:d7:4d:8e: 52:cc:3a:1b:22:5b:60:6a:57:9f:62:fc:6f:8c:fb:40:48:08: fc:69:2a:d2:45:aa:d4:24:7c:83:f7:2f:02:39:94:26:93:df: c4:5c:42:6c:64:7b:c2:1a:d6:2d:63:86:7b:45:83:33:ad:b9: ef:c0:36:60:18:f4:d4:ee:3f:77:ff:ff:e0:f4:3f:32:4e:87: 93:bc:f5:9b:d3:d8:41:8c:85:14:94:68:1d:b5:b6:53:91:9f: bf:cd:5a:89:4b:45:14:c4:74:73:31:57:ed:21:a9:bc:74:97: 0e:59:01:3d:97:3c:38:bd:ec:bb:b2:58:ae:c0:3b:8d:e9:ce: f3:4b:42:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBMjYxMTAvBgNVBAUTKEQ0MEMxQjM5RkUwNTM2NkVEOEIyM0UwODgwQjY5RUI3 NUY3QzkwRTIwHhcNMjUwODI0MTkxNjQ3WhcNMjUwODMxMTkxNjQ3WjAYMRYwFAYD VQQDEw02OGFiNjUyMC04NDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4udNAgeRfa7rKDH6CHv79NUUmcP46esUUvxhhXw0jZwcusu5dddwziEmzMua xHeeVuIDB9wMvPSN9MhyYKoTWjUBAoJQHoS5LVstBDslobZcYLXrbF+z6TTXeX5w Qqt3Rvi4H4qrhb1oniGefWprg6hpBUYllUu8sPbKhZ+Y0gQTmW+p0gIOgP0bzL3b 3WjDCXN3kq9yKhsTvOe6r8HWgwV/OJKWhCUm3q1J78RCvuwHzyFZ3u9ZtURdc4LI 5JOG32dKmG35q9kHSHLBlKGsi3qyG8KMawk01btgMM1lu2k056DKoKB0X7WCiQqp SmY/7AwgVKigaMlXv/ooiEUSTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGisu9A ZDM9aE0oIrBli9IFeLbEMB8GA1UdIwQYMBaAFNQMGzn+BTZu2LI+CIC2nrdffJDi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUEyNi9CRTUzMTJBMjQ1 QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5tN1lzajRJZ0xhZXQxOThr T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBd2JPZjRGTm03WXNqNElnTGFldDE5OGtPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUEyNi9CRTUzMTJBMjQ1QzExMUVBOEQwQkREMzRDNEY5QUUwMi8xQXdiT2Y0Rk5t N1lzajRJZ0xhZXQxOThrT0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkiTUsx9u/xPuKCH8GJrf2WSFg/ak1ZpQsNVyWJ1nUWJDkQSy2EOPF 01tf33qNfau4LWLvlGLTl/ZsOO8PFPa+YNIHsNkM4+dI1dnjvtK9U6lE5smqrV1q kEKanJ/0HuJPuRkM3tWHEZMv2sqZH+3ejVpmtF7qml7YAwPXTY5SzDobIltgalef YvxvjPtASAj8aSrSRarUJHyD9y8COZQmk9/EXEJsZHvCGtYtY4Z7RYMzrbnvwDZg GPTU7j93///g9D8yToeTvPWb09hBjIUUlGgdtbZTkZ+/zVqJS0UUxHRzMVftIam8 dJcOWQE9lzw4vey7sliuwDuN6c7zS0Id -----END CERTIFICATE-----Generated at Sun Aug 24 21:38:48 2025 by rpki-client