$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: eRcQOOnDOqiaq6YEB7YtOLSlFDNc1eLLnqBBAwMCiKQ= Subject key identifier: 24:FF:4E:61:BE:D7:1B:86:81:39:F5:FC:4B:9D:7F:F7:1A:0B:B7:BC Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 16A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 1663 Signing time: Mon 18 Aug 2025 16:56:16 +0000 Manifest this update: Mon 18 Aug 2025 16:56:15 +0000 Manifest next update: Mon 25 Aug 2025 16:56:15 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: C5LQcl16KLgh0Y4HScKaId1KquZSh3Ya7VxM6+n/nPQ=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: 3RtBD83ZJNmQpXwmbagiYu3nHPOh0MloLGGIQPhUGxM=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: J0L9nDFdFV6ZiImc3zHe9UUNBLYublvIh0RA4SsVHPQ=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: Oe+nCjRXmGLUG9jUiGqdGqfQAZRPEdEXa9ffB5a1tlY=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: XuW38uZAfeN4keo/onpljpRS5BHBZ8INJxFDXHjJZ6w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Aug 2025 16:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5797 (0x16a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Aug 18 16:56:15 2025 GMT Not After : Aug 25 16:56:15 2025 GMT Subject: CN=68a35b2f-9f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8c:0b:b4:a6:fd:27:a6:5b:6f:e6:46:cf:83: f0:33:96:df:6b:57:78:6b:c8:a6:94:99:1c:70:01: 94:c1:47:89:36:8b:0e:70:ca:aa:20:41:8a:4d:94: 6f:ea:89:08:04:56:36:85:2e:68:fd:68:32:83:55: c0:3d:84:74:9f:f3:b2:eb:bc:66:a5:51:9d:d8:31: ef:8e:49:3c:4a:17:9d:12:bd:f3:78:c8:2c:9e:3f: 8c:6b:f7:dc:0b:e3:ed:9e:1d:de:b4:49:8d:d7:cf: c1:8a:50:55:72:7e:75:a9:54:31:9a:b3:9e:6f:e5: 95:dc:74:31:80:2d:0e:fd:df:77:a7:81:5e:19:5e: 78:36:c6:78:63:c2:9f:a8:31:4e:1b:0a:8c:a9:1b: 26:a9:51:ef:ba:96:58:cf:fd:84:6b:e3:2f:34:a8: b3:49:67:1f:7d:4e:93:ce:2f:23:5f:70:2e:f0:62: 91:7b:d7:d1:eb:19:a1:0a:b6:8b:d4:19:df:1c:13: 20:df:5c:55:98:65:b3:df:79:c5:25:99:4f:ca:2a: 18:a6:60:5a:e8:bf:6e:14:a2:dd:49:3d:bd:77:48: 40:9d:10:73:75:bb:e8:92:d7:ce:37:2b:43:36:25: be:c4:29:78:25:48:9c:1b:7f:bb:45:4b:ff:4c:b1: 68:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FF:4E:61:BE:D7:1B:86:81:39:F5:FC:4B:9D:7F:F7:1A:0B:B7:BC X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:c7:fc:ca:61:47:6d:0e:b3:86:f6:cf:fd:72:68:97:da:26: f5:0e:62:77:be:df:81:96:49:3d:3b:28:a1:1c:4e:11:eb:f6: e2:e7:58:c1:22:e1:c8:62:5c:06:f4:ae:62:b4:57:20:1f:c4: 34:85:98:a6:3f:b6:ee:05:a8:b9:c3:56:19:10:eb:d4:69:04: 1c:e5:8a:68:ca:d3:48:8d:66:ea:9b:40:eb:c2:ae:1e:43:bc: 18:0c:bd:3d:ed:d5:86:bf:b2:83:f5:64:18:fb:0c:40:3c:03: 83:e0:27:24:91:07:c3:a6:a3:7e:8a:ab:e3:f4:14:a2:1c:e2: 1a:29:11:ba:f2:55:95:50:28:04:e4:f6:6b:88:4d:05:d6:10: 9b:c2:a0:cc:37:cd:29:97:54:20:33:f5:7e:c1:68:31:b9:bd: ee:03:7b:1b:64:07:f9:4a:c1:15:c5:7e:a7:61:27:7d:de:f3: 16:33:43:b6:e5:71:3a:ab:06:2c:8e:66:d2:4e:75:ee:65:bf: 58:73:74:2f:06:8d:37:e7:f1:1c:8e:4c:e0:f5:7a:0a:5b:e0: 81:e1:f2:40:09:b8:a9:e2:e0:07:78:c7:39:db:b9:56:0b:bd: 60:7f:f3:1d:e7:ba:ed:e6:6a:df:7f:cf:0e:12:70:03:bc:f3: 75:10:5b:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUwODE4MTY1NjE1WhcNMjUwODI1MTY1NjE1WjAYMRYwFAYD VQQDEw02OGEzNWIyZi05ZjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIwLtKb9J6Zbb+ZGz4PwM5bfa1d4a8imlJkccAGUwUeJNosOcMqqIEGKTZRv 6okIBFY2hS5o/Wgyg1XAPYR0n/Oy67xmpVGd2DHvjkk8ShedEr3zeMgsnj+Ma/fc C+Ptnh3etEmN18/BilBVcn51qVQxmrOeb+WV3HQxgC0O/d93p4FeGV54NsZ4Y8Kf qDFOGwqMqRsmqVHvupZYz/2Ea+MvNKizSWcffU6Tzi8jX3Au8GKRe9fR6xmhCraL 1BnfHBMg31xVmGWz33nFJZlPyioYpmBa6L9uFKLdST29d0hAnRBzdbvoktfONytD NiW+xCl4JUicG3+7RUv/TLFoQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCT/TmG+ 1xuGgTn1/Eudf/caC7e8MB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASx/zKYUdtDrOG9s/9cmiX2ib1DmJ3vt+Blkk9OyihHE4R6/bi51jB IuHIYlwG9K5itFcgH8Q0hZimP7buBai5w1YZEOvUaQQc5YpoytNIjWbqm0Drwq4e Q7wYDL097dWGv7KD9WQY+wxAPAOD4CckkQfDpqN+iqvj9BSiHOIaKRG68lWVUCgE 5PZriE0F1hCbwqDMN80pl1QgM/V+wWgxub3uA3sbZAf5SsEVxX6nYSd93vMWM0O2 5XE6qwYsjmbSTnXuZb9Yc3QvBo035/Ecjkzg9XoKW+CB4fJACbip4uAHeMc527lW C71gf/Md57rt5mrff88OEnADvPN1EFvD -----END CERTIFICATE-----Generated at Wed Aug 20 15:36:12 2025 by rpki-client