$ rpki-client -vvf rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft File: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft (raw, json) Hash identifier: hm2u3HAUqJ6FRNovjzjimt8pVL7rWJgIRNS9rVD6Dco= Subject key identifier: D2:60:65:9D:CF:4B:F0:CD:A0:4A:47:3C:57:88:FE:CA:BA:C0:51:BC Authority key identifier: 33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 Certificate issuer: /CN=A9171A59/serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Certificate serial: 04E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft Manifest number: 04DF Signing time: Sun 07 Sep 2025 00:08:19 +0000 Manifest this update: Sun 07 Sep 2025 00:08:19 +0000 Manifest next update: Sun 14 Sep 2025 00:08:18 +0000 Files and hashes: 1: Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl (hash: VSObQhPxwyKqYApd/ZD2rT7Tz/dwqTf+PBz8Ty5lauE=) 2: ABD9CB4630C711ECA2491515C4F9AE02.roa (hash: CoT7676o1FhYn/hTok256b21HFRTMynmtKsMLIXyZyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:08:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171A59, serialNumber=333EC503014D0674AF1674199410F9B091B8FB94 Validity Not Before: Sep 7 00:08:19 2025 GMT Not After : Sep 14 00:08:18 2025 GMT Subject: CN=68bcccf3-c2ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:28:8a:32:4a:5d:11:08:23:39:d2:97:6b:0e: ea:40:5a:21:ad:96:4a:18:b2:11:fe:cb:5f:49:4c: 1d:4d:d4:12:b4:d6:f9:4c:d1:6e:69:ea:72:23:64: 6c:9d:e8:e5:88:b5:f2:cb:b3:10:44:a5:15:51:bb: fd:73:20:c6:98:b9:d9:97:1d:02:0d:3b:22:94:9c: cb:bb:07:55:99:5e:c2:aa:3d:62:72:9f:85:89:05: 26:1b:a0:74:6d:46:8f:c8:d1:27:79:b8:22:01:1e: 61:a0:ec:64:26:f6:6c:44:39:6d:c8:36:84:ad:fc: 7f:ee:1c:33:e7:8c:2b:52:70:34:f3:34:84:fb:6f: 09:87:fe:88:49:19:07:78:df:37:da:54:59:ae:f8: bd:9c:31:eb:e1:6d:3e:7a:6e:97:63:9d:93:e1:c6: be:81:ae:72:b6:f1:39:14:ef:48:6c:c5:f4:13:cf: 2e:4f:aa:ca:76:8a:27:1a:1b:ce:d7:68:5d:ee:e4: d8:f8:cf:df:69:64:26:dd:01:72:ca:00:44:02:f2: 87:71:ea:13:34:58:5a:de:c9:88:60:f0:e5:cc:95: b3:a2:41:d0:ea:2d:cf:9a:cb:fe:41:f0:ba:dd:f8: 09:fe:fa:55:9b:ed:96:47:7b:8f:d6:9d:7b:42:f9: 67:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:60:65:9D:CF:4B:F0:CD:A0:4A:47:3C:57:88:FE:CA:BA:C0:51:BC X509v3 Authority Key Identifier: keyid:33:3E:C5:03:01:4D:06:74:AF:16:74:19:94:10:F9:B0:91:B8:FB:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171A59/8AB933EA30C511EC8A67AA7CC4F9AE02/Mz7FAwFNBnSvFnQZlBD5sJG4-5Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:9b:e6:da:e1:9b:01:db:84:f3:12:cd:64:c5:96:a9:e3:db: b1:8f:eb:19:cf:eb:6d:dc:ab:90:27:b6:c6:28:9b:79:e6:eb: 10:3f:d2:df:00:24:cf:c6:d5:4f:fe:18:77:e2:55:02:23:9a: 03:e9:e9:54:12:fe:37:85:8c:a8:4b:ed:24:0c:06:84:7e:69: c2:f0:88:b2:1e:f6:bf:d9:26:24:93:90:c9:98:dd:bd:60:a0: 8f:c2:c1:18:d9:80:7c:5a:6c:e8:e8:d8:e6:8e:76:a8:8e:db: 82:c2:9f:dd:50:45:c6:d0:cd:8c:1a:f0:f5:fc:96:f2:c7:b6: 67:71:3d:3e:17:67:ff:a0:b7:c1:71:5e:71:2a:46:9a:9f:93: c2:3d:30:58:4d:5e:a2:a6:5e:64:8f:ae:9d:d9:02:90:8b:94: 0e:8d:e6:da:8c:88:45:fd:65:1c:e7:2c:49:83:e6:7b:23:21: f7:b7:0a:42:0c:d6:55:ee:ac:5d:95:85:69:5f:83:37:47:b7: 80:e5:e1:87:74:d6:b9:9a:fc:88:dd:8a:0b:7b:e9:2e:ab:12: 1c:05:f4:f0:a9:e9:13:d6:89:53:a9:0a:1a:57:1e:c4:5e:95: 1d:ee:26:91:97:65:b2:de:eb:33:c7:f0:a4:f6:f9:10:5b:6d: 1d:2b:ad:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFBNTkxMTAvBgNVBAUTKDMzM0VDNTAzMDE0RDA2NzRBRjE2NzQxOTk0MTBGOUIw OTFCOEZCOTQwHhcNMjUwOTA3MDAwODE5WhcNMjUwOTE0MDAwODE4WjAYMRYwFAYD VQQDEw02OGJjY2NmMy1jMmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCiKMkpdEQgjOdKXaw7qQFohrZZKGLIR/stfSUwdTdQStNb5TNFuaepyI2Rs nejliLXyy7MQRKUVUbv9cyDGmLnZlx0CDTsilJzLuwdVmV7Cqj1icp+FiQUmG6B0 bUaPyNEnebgiAR5hoOxkJvZsRDltyDaErfx/7hwz54wrUnA08zSE+28Jh/6ISRkH eN832lRZrvi9nDHr4W0+em6XY52T4ca+ga5ytvE5FO9IbMX0E88uT6rKdoonGhvO 12hd7uTY+M/faWQm3QFyygBEAvKHceoTNFha3smIYPDlzJWzokHQ6i3Pmsv+QfC6 3fgJ/vpVm+2WR3uP1p17QvlnwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJgZZ3P S/DNoEpHPFeI/sq6wFG8MB8GA1UdIwQYMBaAFDM+xQMBTQZ0rxZ0GZQQ+bCRuPuU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUE1OS84QUI5MzNFQTMw QzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJuU3ZGblFabEJENXNKRzQt NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL016N0ZBd0ZOQm5TdkZuUVpsQkQ1c0pHNC01US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUE1OS84QUI5MzNFQTMwQzUxMUVDOEE2N0FBN0NDNEY5QUUwMi9NejdGQXdGTkJu U3ZGblFabEJENXNKRzQtNVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAAm+ba4ZsB24TzEs1kxZap49uxj+sZz+tt3KuQJ7bGKJt55usQP9Lf ACTPxtVP/hh34lUCI5oD6elUEv43hYyoS+0kDAaEfmnC8IiyHva/2SYkk5DJmN29 YKCPwsEY2YB8Wmzo6NjmjnaojtuCwp/dUEXG0M2MGvD1/Jbyx7ZncT0+F2f/oLfB cV5xKkaan5PCPTBYTV6ipl5kj66d2QKQi5QOjebajIhF/WUc5yxJg+Z7IyH3twpC DNZV7qxdlYVpX4M3R7eA5eGHdNa5mvyI3YoLe+kuqxIcBfTwqekT1olTqQoaVx7E XpUd7iaRl2Wy3uszx/Ck9vkQW20dK63/ -----END CERTIFICATE-----Generated at Mon Sep 8 08:49:40 2025 by rpki-client