$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: wxOIuQPDFcg3Nzw+vSxLhPCsq3YMNIJaE73C2UMiI0E= Subject key identifier: 59:05:34:D0:27:DE:AB:C5:3E:3C:D2:AB:38:3A:71:77:3C:97:19:DA Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 01D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 01CD Signing time: Sat 19 Jul 2025 03:06:59 +0000 Manifest this update: Sat 19 Jul 2025 03:06:59 +0000 Manifest next update: Sat 26 Jul 2025 03:06:59 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: ATr5wZBbvIVj6HpE7AZ3qV9KcYP/t76V8P9AlPYGHh0=) 2: 0ADA583C5DB911F0A54D4C6FC4F9AE02.roa (hash: YIHS3PAvaz4V4QmFJCk8b1AkmK5GNgS8/DelBF3BA28=) 3: 0BBC997C5DB911F0A54D4C6FC4F9AE02.roa (hash: g6pquqeh1IhUuquygrP9Vdo65/Zud1vKIjoHKRNQNOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 473 (0x1d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Jul 19 03:06:59 2025 GMT Not After : Jul 26 03:06:59 2025 GMT Subject: CN=687b0bd3-53b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:96:4f:ce:ad:b3:30:6f:69:4d:c5:04:3e:30: 0b:81:66:c6:31:0f:14:d5:20:78:97:4e:17:c5:76: ec:d2:63:42:78:87:8a:b4:78:0f:5d:6d:f4:aa:08: db:1a:33:c7:0f:71:d8:a5:ee:f1:a9:bf:27:b1:1f: 4d:40:af:61:2d:4f:ac:e7:bb:29:16:f5:5e:0f:6a: 57:fb:30:74:8a:32:82:68:77:33:bc:f8:77:d5:53: e9:60:42:15:30:c3:57:89:c4:66:ef:17:82:fc:e0: e6:4f:7d:00:88:57:e3:4f:d7:d5:6e:57:99:a0:0b: 52:70:51:21:e2:d1:dd:b7:f1:8e:de:2a:eb:79:27: d1:b7:02:6b:78:99:f8:47:85:d4:18:ef:ab:5a:80: fa:f1:47:2f:24:19:3b:0b:6e:5b:d8:db:1d:08:cf: 09:97:7e:17:78:06:34:e8:18:2e:8c:78:29:26:c2: a9:e8:83:35:ba:33:d0:c3:67:55:7b:de:c3:b9:9a: b8:5b:1f:66:14:1d:a6:18:9d:36:0e:f5:df:ff:57: ac:72:7b:2f:fd:ad:52:a1:b8:eb:48:a1:63:e0:2c: 96:7a:df:52:bd:51:08:d2:84:4a:92:03:85:e2:d6: 16:58:ce:42:35:d9:26:1f:19:51:86:03:27:b2:b6: 09:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:05:34:D0:27:DE:AB:C5:3E:3C:D2:AB:38:3A:71:77:3C:97:19:DA X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:69:fc:55:b1:3d:a7:d3:a7:6f:7c:f3:9d:d9:a4:57:ef:bb: f4:b0:74:86:f2:1e:98:81:0c:39:63:8a:9b:0a:b6:6d:72:4d: 5f:ea:54:94:8a:31:b4:8e:fe:90:3e:d5:cd:b4:e2:05:c2:91: c7:7b:0f:a6:57:0c:f9:de:b4:4e:30:cd:07:a1:98:68:59:e4: 3a:fd:a8:b3:59:7f:cc:41:57:56:81:ba:42:85:f7:b2:5e:dd: 8f:df:bc:54:40:f3:b5:13:9a:16:ef:bd:03:34:5b:42:d3:a2: 5d:ab:fc:f1:3a:18:13:2d:89:fc:06:45:1b:33:56:61:42:4d: 4b:68:de:9e:10:ed:5f:f1:c1:d5:b0:ca:10:9c:35:dc:0a:9d: 12:8e:15:d3:65:45:f8:2a:31:4c:63:b2:2a:03:df:db:4e:db: be:6c:56:b1:3b:92:b4:b7:f9:22:9a:87:3e:0f:35:10:ad:70: b0:7b:15:79:d0:39:58:96:79:ff:f1:6f:f8:32:cc:3e:39:2b: 95:28:66:46:dc:ec:e6:0d:19:72:c7:d9:e5:34:d3:58:44:79: 23:2a:3d:4a:e8:83:e5:85:98:f0:09:6d:de:b4:57:ae:c7:a9: 74:58:45:e2:bf:31:97:f1:f4:55:b6:27:c8:47:e7:09:b8:ef: 29:a7:c9:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUwNzE5MDMwNjU5WhcNMjUwNzI2MDMwNjU5WjAYMRYwFAYD VQQDEw02ODdiMGJkMy01M2IzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JZPzq2zMG9pTcUEPjALgWbGMQ8U1SB4l04XxXbs0mNCeIeKtHgPXW30qgjb GjPHD3HYpe7xqb8nsR9NQK9hLU+s57spFvVeD2pX+zB0ijKCaHczvPh31VPpYEIV MMNXicRm7xeC/ODmT30AiFfjT9fVbleZoAtScFEh4tHdt/GO3irreSfRtwJreJn4 R4XUGO+rWoD68UcvJBk7C25b2NsdCM8Jl34XeAY06BgujHgpJsKp6IM1ujPQw2dV e97DuZq4Wx9mFB2mGJ02DvXf/1escnsv/a1SobjrSKFj4CyWet9SvVEI0oRKkgOF 4tYWWM5CNdkmHxlRhgMnsrYJSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkFNNAn 3qvFPjzSqzg6cXc8lxnaMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbafxVsT2n06dvfPOd2aRX77v0sHSG8h6YgQw5Y4qbCrZtck1f6lSU ijG0jv6QPtXNtOIFwpHHew+mVwz53rROMM0HoZhoWeQ6/aizWX/MQVdWgbpChfey Xt2P37xUQPO1E5oW770DNFtC06Jdq/zxOhgTLYn8BkUbM1ZhQk1LaN6eEO1f8cHV sMoQnDXcCp0SjhXTZUX4KjFMY7IqA9/bTtu+bFaxO5K0t/kimoc+DzUQrXCwexV5 0DlYlnn/8W/4Msw+OSuVKGZG3OzmDRlyx9nlNNNYRHkjKj1K6IPlhZjwCW3etFeu x6l0WEXivzGX8fRVtifIR+cJuO8pp8n7 -----END CERTIFICATE-----Generated at Sun Jul 20 07:31:14 2025 by rpki-client