$ rpki-client -vvf rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft File: B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft (raw, json) Hash identifier: cy2f7hAzu2++jvdGQHvwW5iRRzIJ6/tg++ZPEfRpyzs= Subject key identifier: F5:E9:AD:EF:2D:7C:D5:64:A2:0D:C6:08:B5:4A:CE:93:45:BC:F8:89 Authority key identifier: 07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B Certificate issuer: /CN=A917C5E0/serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft Manifest number: CD Signing time: Tue 09 Sep 2025 05:47:40 +0000 Manifest this update: Tue 09 Sep 2025 05:47:39 +0000 Manifest next update: Tue 16 Sep 2025 05:47:39 +0000 Files and hashes: 1: B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl (hash: U5Y3+D2Q8zeCGKtIki3KFxC4jzScjpm9vGhjYKju62A=) 2: 335E880A5A1811EFB08E4F38C4F9AE02.roa (hash: jtzgN1MOOr070vNZYtooFlK21goBoXbnFmu7OIsIw2o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 05:47:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C5E0, serialNumber=078B4A80D1DFE6C052533AADB19534AC59A3954B Validity Not Before: Sep 9 05:47:39 2025 GMT Not After : Sep 16 05:47:39 2025 GMT Subject: CN=68bfbf7c-65be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f2:ba:70:8c:f5:4b:fa:eb:89:95:f5:8d:39: c8:32:fb:ca:a5:c9:7b:8e:92:f5:9b:08:09:d1:51: ba:c1:59:82:20:e9:0d:cc:fa:f7:fb:53:5f:d1:5b: 8b:83:bc:67:46:53:6e:3b:6b:f3:48:e4:14:c2:71: a4:5d:a3:2c:09:29:bb:b9:7f:9d:8c:b7:fb:1e:d9: de:b9:03:93:17:45:e8:45:50:39:f7:3a:34:ca:25: c7:3c:81:9b:d7:99:ed:ca:a6:4a:2c:c4:a4:c5:bb: c5:a9:95:7b:e5:91:b1:03:6a:d4:2f:a9:b1:19:56: 1e:9a:49:e8:05:cb:e2:a9:a7:28:3c:bb:c4:ee:6f: d9:ff:71:4e:d6:cc:af:06:12:69:0d:f6:d0:84:2d: 4f:a1:97:b8:c1:29:cd:0f:e4:12:11:01:c4:f1:01: 1a:cd:0e:6d:eb:3e:8b:be:9f:2a:7a:97:5e:c1:ba: 1a:d7:5e:f6:c1:fe:fa:e1:02:67:2c:8c:9d:b7:85: 9b:ca:e5:3f:9f:6e:21:ea:dc:1a:47:de:51:ff:db: f4:0c:3b:83:45:75:85:68:3f:40:cd:13:77:45:b1: 39:f3:f4:31:66:65:2e:01:78:f2:8f:de:fa:11:22: 56:86:32:c1:93:02:42:21:96:af:71:d9:b1:4e:ac: af:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E9:AD:EF:2D:7C:D5:64:A2:0D:C6:08:B5:4A:CE:93:45:BC:F8:89 X509v3 Authority Key Identifier: keyid:07:8B:4A:80:D1:DF:E6:C0:52:53:3A:AD:B1:95:34:AC:59:A3:95:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B4tKgNHf5sBSUzqtsZU0rFmjlUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C5E0/8720AB185A1711EFAA22A729C4F9AE02/B4tKgNHf5sBSUzqtsZU0rFmjlUs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:cd:91:ae:0f:18:07:18:68:9c:a5:09:30:08:a4:80:3b:46: 17:85:2f:a8:f5:c6:43:d4:cf:80:5e:de:20:4b:7a:f4:56:dd: 5f:53:7a:01:0c:18:d0:82:1d:f1:7c:cd:f9:a4:50:cb:05:47: 29:36:9d:01:c3:9b:b8:fa:a2:37:b8:9b:6e:20:2b:21:e4:31: fd:c8:f4:cd:1e:35:70:05:22:6d:87:75:53:8e:ab:db:be:1f: ff:a8:0d:da:50:c8:b3:1d:72:84:98:23:1b:2a:ad:c6:d1:12: d1:ed:62:94:ed:6f:98:73:33:ce:5d:1c:c3:23:7d:51:67:45: 6b:08:04:d6:24:42:32:bc:e8:70:f8:fa:ab:bf:d2:1a:0d:9f: 5c:fc:58:67:2a:9c:d7:9c:ab:7d:49:3c:e9:d6:7f:3f:6d:92: 23:a2:b4:6f:4b:7e:a2:e7:d2:31:3e:e0:1b:bc:ee:94:20:a6: a3:16:86:50:1e:69:05:08:f0:47:3b:ce:75:8c:46:aa:dd:6b: f7:f1:27:bf:02:24:a6:fe:77:c3:72:d2:2f:e0:6f:30:ed:d5: 61:48:26:8c:c0:2c:3d:20:b3:45:03:13:b1:3b:4e:c9:05:cd: 35:9c:3d:63:af:ad:77:01:93:ce:5c:5a:ff:d3:8d:45:9d:ad: 5c:68:30:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M1RTAxMTAvBgNVBAUTKDA3OEI0QTgwRDFERkU2QzA1MjUzM0FBREIxOTUzNEFD NTlBMzk1NEIwHhcNMjUwOTA5MDU0NzM5WhcNMjUwOTE2MDU0NzM5WjAYMRYwFAYD VQQDEw02OGJmYmY3Yy02NWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPK6cIz1S/rriZX1jTnIMvvKpcl7jpL1mwgJ0VG6wVmCIOkNzPr3+1Nf0VuL g7xnRlNuO2vzSOQUwnGkXaMsCSm7uX+djLf7HtneuQOTF0XoRVA59zo0yiXHPIGb 15ntyqZKLMSkxbvFqZV75ZGxA2rUL6mxGVYemknoBcviqacoPLvE7m/Z/3FO1syv BhJpDfbQhC1PoZe4wSnND+QSEQHE8QEazQ5t6z6Lvp8qepdewboa1172wf764QJn LIydt4WbyuU/n24h6twaR95R/9v0DDuDRXWFaD9AzRN3RbE58/QxZmUuAXjyj976 ESJWhjLBkwJCIZavcdmxTqyvawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPXpre8t fNVkog3GCLVKzpNFvPiJMB8GA1UdIwQYMBaAFAeLSoDR3+bAUlM6rbGVNKxZo5VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzVFMC84NzIwQUIxODVB MTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVzQlNVenF0c1pVMHJGbWps VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I0dEtnTkhmNXNCU1V6cXRzWlUwckZtamxVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzVFMC84NzIwQUIxODVBMTcxMUVGQUEyMkE3MjlDNEY5QUUwMi9CNHRLZ05IZjVz QlNVenF0c1pVMHJGbWpsVXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJzZGuDxgHGGicpQkwCKSAO0YXhS+o9cZD1M+AXt4gS3r0Vt1fU3oB DBjQgh3xfM35pFDLBUcpNp0Bw5u4+qI3uJtuICsh5DH9yPTNHjVwBSJth3VTjqvb vh//qA3aUMizHXKEmCMbKq3G0RLR7WKU7W+YczPOXRzDI31RZ0VrCATWJEIyvOhw +Pqrv9IaDZ9c/FhnKpzXnKt9STzp1n8/bZIjorRvS36i59IxPuAbvO6UIKajFoZQ HmkFCPBHO851jEaq3Wv38Se/AiSm/nfDctIv4G8w7dVhSCaMwCw9ILNFAxOxO07J Bc01nD1jr613AZPOXFr/041Fna1caDCz -----END CERTIFICATE-----Generated at Tue Sep 9 14:10:06 2025 by rpki-client