$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft File: g4-9CzleqQcGxsKJrCaw1zigQkE.mft (raw, json) Hash identifier: yweGLyJH1gMeo0lQiEMKzk+4Yai68btwas4L7/XkQvQ= Subject key identifier: D9:58:BC:FE:9F:4E:DE:A0:7D:9E:6F:33:88:82:83:38:06:2D:5E:B7 Authority key identifier: 83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 Certificate issuer: /CN=A917BB9A/serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Certificate serial: 8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft Manifest number: 87 Signing time: Fri 05 Sep 2025 07:13:33 +0000 Manifest this update: Fri 05 Sep 2025 07:13:32 +0000 Manifest next update: Fri 12 Sep 2025 07:13:32 +0000 Files and hashes: 1: g4-9CzleqQcGxsKJrCaw1zigQkE.crl (hash: /XZ19pDBGoNtIHkDn/3sAnNQ6BIg1e0wNkeCLGV3qps=) 2: 0CBF3110D59011EFB76D6824C4F9AE02.roa (hash: zf4VXC00w+/l84Z7TgltHAME/FckYYEPpSyVri8Ai2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB9A, serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Validity Not Before: Sep 5 07:13:32 2025 GMT Not After : Sep 12 07:13:32 2025 GMT Subject: CN=68ba8d9c-1a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5f:24:e9:2f:91:45:66:56:77:5f:3b:80:a2: 46:cc:6d:54:9d:2a:c3:9a:3c:45:87:c6:07:2f:61: 3a:28:e4:90:89:f6:b0:fa:fe:76:80:ce:64:b0:40: 2f:73:ae:18:dc:39:3d:f4:54:80:1c:19:c5:1b:f9: 57:44:bd:ee:86:55:8d:26:bf:b3:34:11:73:3c:73: ce:14:4c:9c:87:56:bd:1b:57:82:2b:a4:8c:9a:9d: 5b:08:9c:b8:92:eb:cc:15:47:29:49:a1:15:3d:42: 0f:e6:d5:b9:02:29:5b:ea:c9:24:d0:ff:fd:d6:c3: 97:12:29:bb:e6:09:a6:23:86:a5:18:a1:11:62:16: 90:e7:21:c3:1d:b7:b0:54:ef:a6:28:80:0a:31:a8: 30:18:da:68:c7:b1:68:a8:88:44:e7:8b:89:fa:34: 44:fe:79:76:83:97:b0:f7:da:94:94:dc:bc:78:36: f7:36:73:f3:f4:e5:cd:3e:db:42:97:d4:2e:22:3a: 11:ac:d3:ad:e4:e7:88:c7:3a:d8:d1:08:af:23:88: e8:19:e4:be:1c:66:ab:c1:b3:14:cf:df:dd:be:96: 78:63:66:1a:1c:01:f2:fc:23:8d:5a:b4:2d:da:48: 3d:f1:b9:85:7b:11:3a:27:65:e9:2b:b7:45:54:c2: 38:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:58:BC:FE:9F:4E:DE:A0:7D:9E:6F:33:88:82:83:38:06:2D:5E:B7 X509v3 Authority Key Identifier: keyid:83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:c0:e5:56:0f:7f:bd:09:87:40:b0:50:ed:fc:dd:06:8f:b4: 7a:d6:d8:7b:5c:37:82:2e:2e:30:94:ba:fe:13:0b:5b:9e:e0: 37:0b:03:6e:95:44:f4:f1:51:10:db:6b:85:8c:a2:0e:f3:50: f5:08:fa:6b:55:94:a8:6f:53:d0:23:67:41:87:4e:5b:f5:b7: fb:f9:c2:69:8d:cc:ef:10:47:15:48:4c:26:b5:18:25:60:fd: e9:0b:0a:e5:28:4d:ab:0b:16:06:83:b5:b5:58:69:8c:fe:4b: 7d:22:56:46:11:7a:ad:1a:e8:ab:18:84:d5:c8:b6:0e:ff:76: 55:6d:f9:24:31:71:fd:9d:7a:fb:b8:10:43:76:e1:c0:68:2e: e5:e4:2c:28:ab:63:6b:c6:43:5f:21:a2:d8:1e:b4:40:8c:3f: 64:17:1c:0d:7c:ed:52:36:c9:85:bf:10:f0:5d:7b:3e:e9:4e: 67:03:c2:9b:cb:0c:ea:dd:03:58:05:2d:ef:98:9e:5e:57:fb: 4e:35:a5:bd:ba:2c:29:41:70:08:2c:1e:14:d9:9b:5b:e4:b9: 1c:21:43:1a:32:c9:32:be:19:12:ad:82:b9:54:88:4e:43:f5: 35:81:49:3e:3d:af:81:10:0c:74:d5:dd:5d:0e:32:4a:da:6e: fc:ab:ff:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JCOUExMTAvBgNVBAUTKDgzOEZCRDBCMzk1RUE5MDcwNkM2QzI4OUFDMjZCMEQ3 MzhBMDQyNDEwHhcNMjUwOTA1MDcxMzMyWhcNMjUwOTEyMDcxMzMyWjAYMRYwFAYD VQQDEw02OGJhOGQ5Yy0xYTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV8k6S+RRWZWd187gKJGzG1UnSrDmjxFh8YHL2E6KOSQifaw+v52gM5ksEAv c64Y3Dk99FSAHBnFG/lXRL3uhlWNJr+zNBFzPHPOFEych1a9G1eCK6SMmp1bCJy4 kuvMFUcpSaEVPUIP5tW5Ailb6skk0P/91sOXEim75gmmI4alGKERYhaQ5yHDHbew VO+mKIAKMagwGNpox7FoqIhE54uJ+jRE/nl2g5ew99qUlNy8eDb3NnPz9OXNPttC l9QuIjoRrNOt5OeIxzrY0QivI4joGeS+HGarwbMUz9/dvpZ4Y2YaHAHy/CONWrQt 2kg98bmFexE6J2XpK7dFVMI4wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlYvP6f Tt6gfZ5vM4iCgzgGLV63MB8GA1UdIwQYMBaAFIOPvQs5XqkHBsbCiawmsNc4oEJB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkI5QS80MTM5MEJDQUNG RjMxMUVGOTA2MkU1MjFDNEY5QUUwMi9nNC05Q3psZXFRY0d4c0tKckNhdzF6aWdR a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0LTlDemxlcVFjR3hzS0pyQ2F3MXppZ1FrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkI5QS80MTM5MEJDQUNGRjMxMUVGOTA2MkU1MjFDNEY5QUUwMi9nNC05Q3psZXFR Y0d4c0tKckNhdzF6aWdRa0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBwOVWD3+9CYdAsFDt/N0Gj7R61th7XDeCLi4wlLr+EwtbnuA3CwNu lUT08VEQ22uFjKIO81D1CPprVZSob1PQI2dBh05b9bf7+cJpjczvEEcVSEwmtRgl YP3pCwrlKE2rCxYGg7W1WGmM/kt9IlZGEXqtGuirGITVyLYO/3ZVbfkkMXH9nXr7 uBBDduHAaC7l5Cwoq2NrxkNfIaLYHrRAjD9kFxwNfO1SNsmFvxDwXXs+6U5nA8Kb ywzq3QNYBS3vmJ5eV/tONaW9uiwpQXAILB4U2Ztb5LkcIUMaMskyvhkSrYK5VIhO Q/U1gUk+Pa+BEAx01d1dDjJK2m78q//i -----END CERTIFICATE-----Generated at Sat Sep 6 20:51:58 2025 by rpki-client