$ rpki-client -vvf rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft File: 4RvPp2LU9ssvatCdA6lA4P6qAfg.mft (raw, json) Hash identifier: EhkaTEk0P/kNlxwMYJueVx5+fWw7/DB1n3ISdSl89pc= Subject key identifier: 86:D6:44:91:4F:9B:0D:AE:47:82:AF:80:79:0E:29:AB:A5:C4:1A:BD Authority key identifier: E1:1B:CF:A7:62:D4:F6:CB:2F:6A:D0:9D:03:A9:40:E0:FE:AA:01:F8 Certificate issuer: /CN=A91200F5/serialNumber=E11BCFA762D4F6CB2F6AD09D03A940E0FEAA01F8 Certificate serial: 1EF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft Manifest number: 1EF1 Signing time: Fri 18 Jul 2025 16:09:00 +0000 Manifest this update: Fri 18 Jul 2025 16:09:00 +0000 Manifest next update: Fri 25 Jul 2025 16:09:00 +0000 Files and hashes: 1: 4RvPp2LU9ssvatCdA6lA4P6qAfg.crl (hash: sXInpnENj2DouY76VXxAtzz1CK3P3dISaAyrG65NU/I=) 2: DB92DE200AEF11ECB7243C0FC4F9AE02.roa (hash: jUBoH/NsE+2KO1Z4hcom5Ddnhv0XpfeG1RJbEdRDm9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.crl rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7928 (0x1ef8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91200F5, serialNumber=E11BCFA762D4F6CB2F6AD09D03A940E0FEAA01F8 Validity Not Before: Jul 18 16:09:00 2025 GMT Not After : Jul 25 16:09:00 2025 GMT Subject: CN=687a719c-4387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:35:b0:8d:a5:10:da:a9:71:aa:3e:5c:40:52: bd:3c:26:f9:cf:f0:6b:2f:a0:79:de:e8:4b:e5:7f: ee:5b:b8:41:c5:31:aa:4d:d5:db:bf:fb:f7:63:26: d4:ed:2b:94:cd:a3:65:df:d2:f1:b8:7f:96:95:c7: 1a:59:8a:96:f8:ec:af:5b:9c:02:cc:ab:c7:55:60: 9f:e9:db:19:73:52:55:5b:99:47:dd:8a:34:3b:b4: 03:50:38:d4:f6:e3:dd:d0:81:9d:65:35:dc:d0:b4: 9d:15:5d:82:74:26:97:44:d1:e0:d4:ac:97:f4:11: 86:d5:2d:74:0e:67:1d:2d:a4:43:1f:95:9d:36:f7: 19:08:d6:e3:08:c0:1b:87:4c:70:f8:02:ae:97:79: e5:12:75:cd:75:bb:46:ab:53:8f:2c:0d:54:20:ec: 43:7c:62:2b:d3:25:e3:d9:7b:bd:25:97:7c:9e:a9: 23:6c:ca:40:d6:4a:da:ab:ba:df:08:9d:82:23:cf: e8:1a:c7:65:db:b0:69:12:4b:c6:3a:81:51:04:f2: ac:03:66:83:da:e5:e0:b3:8b:c0:13:14:d5:98:d2: fb:c5:39:9e:48:7b:eb:f5:03:cb:4e:76:77:e8:b1: ee:72:8c:d4:5d:2a:41:4c:b8:22:fb:3f:77:50:1e: ee:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D6:44:91:4F:9B:0D:AE:47:82:AF:80:79:0E:29:AB:A5:C4:1A:BD X509v3 Authority Key Identifier: keyid:E1:1B:CF:A7:62:D4:F6:CB:2F:6A:D0:9D:03:A9:40:E0:FE:AA:01:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RvPp2LU9ssvatCdA6lA4P6qAfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91200F5/D9E952F45EF411E69F529C2EC4F9AE02/4RvPp2LU9ssvatCdA6lA4P6qAfg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:1d:8c:60:b9:97:4b:1d:63:ba:8d:d0:dc:1f:a7:54:d8:5e: 09:5f:4e:dc:6c:c8:c1:6f:fa:4c:63:58:f3:b5:6e:6c:12:2c: d6:5d:85:12:e5:98:92:ee:46:fd:b3:84:c2:6e:2c:ae:8b:b9: bb:ea:d8:96:9e:8b:9f:3b:62:9c:dc:bb:dc:b0:96:87:33:8e: e0:ca:1c:3a:b5:4c:64:30:02:95:d0:50:13:5c:d8:1b:8a:32: 26:83:cd:6e:e5:79:dc:f3:b2:5b:76:c3:a8:64:1b:3c:d0:81: 64:e2:08:ce:bc:c3:a3:1c:36:70:1d:aa:13:56:06:dd:d4:d8: 11:ba:a4:01:59:62:38:76:93:8f:35:b6:ec:bf:f7:0e:e7:e4: 14:51:ea:68:a3:fc:a9:8f:23:e3:d7:5a:d3:1b:7e:4b:f7:3e: 06:48:d1:53:a7:fb:37:be:74:69:c1:ff:83:f2:00:aa:30:5b: 65:59:86:6d:9e:73:cb:7f:ae:3f:b9:4a:67:16:1c:c7:46:90: 3e:c6:0e:50:68:a8:40:f5:ca:fe:c1:76:83:47:2c:de:29:30: a9:63:93:77:2f:e5:6b:80:0d:8a:1d:72:b0:46:9a:ba:fe:af: 6f:3a:59:28:d6:30:18:28:e0:d6:ef:81:21:02:0a:0a:2f:19: 35:b9:71:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAwRjUxMTAvBgNVBAUTKEUxMUJDRkE3NjJENEY2Q0IyRjZBRDA5RDAzQTk0MEUw RkVBQTAxRjgwHhcNMjUwNzE4MTYwOTAwWhcNMjUwNzI1MTYwOTAwWjAYMRYwFAYD VQQDEw02ODdhNzE5Yy00Mzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DWwjaUQ2qlxqj5cQFK9PCb5z/BrL6B53uhL5X/uW7hBxTGqTdXbv/v3YybU 7SuUzaNl39LxuH+WlccaWYqW+OyvW5wCzKvHVWCf6dsZc1JVW5lH3Yo0O7QDUDjU 9uPd0IGdZTXc0LSdFV2CdCaXRNHg1KyX9BGG1S10DmcdLaRDH5WdNvcZCNbjCMAb h0xw+AKul3nlEnXNdbtGq1OPLA1UIOxDfGIr0yXj2Xu9JZd8nqkjbMpA1kraq7rf CJ2CI8/oGsdl27BpEkvGOoFRBPKsA2aD2uXgs4vAExTVmNL7xTmeSHvr9QPLTnZ3 6LHucozUXSpBTLgi+z93UB7uCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIbWRJFP mw2uR4KvgHkOKaulxBq9MB8GA1UdIwQYMBaAFOEbz6di1PbLL2rQnQOpQOD+qgH4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDBGNS9EOUU5NTJGNDVF RjQxMUU2OUY1MjlDMkVDNEY5QUUwMi80UnZQcDJMVTlzc3ZhdENkQTZsQTRQNnFB ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSdlBwMkxVOXNzdmF0Q2RBNmxBNFA2cUFmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDBGNS9EOUU5NTJGNDVFRjQxMUU2OUY1MjlDMkVDNEY5QUUwMi80UnZQcDJMVTlz c3ZhdENkQTZsQTRQNnFBZmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClHYxguZdLHWO6jdDcH6dU2F4JX07cbMjBb/pMY1jztW5sEizWXYUS 5ZiS7kb9s4TCbiyui7m76tiWnoufO2Kc3LvcsJaHM47gyhw6tUxkMAKV0FATXNgb ijImg81u5Xnc87JbdsOoZBs80IFk4gjOvMOjHDZwHaoTVgbd1NgRuqQBWWI4dpOP Nbbsv/cO5+QUUepoo/ypjyPj11rTG35L9z4GSNFTp/s3vnRpwf+D8gCqMFtlWYZt nnPLf64/uUpnFhzHRpA+xg5QaKhA9cr+wXaDRyzeKTCpY5N3L+VrgA2KHXKwRpq6 /q9vOlko1jAYKODW74EhAgoKLxk1uXFY -----END CERTIFICATE-----Generated at Sun Jul 20 07:49:43 2025 by rpki-client