$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft File: L4vvSDpBiuHAMSMIGG70zXskZuU.mft (raw, json) Hash identifier: HaHI53oxLyr/W/ExB0KLyFbUpmnuOBbovyH6Z/1dl+E= Subject key identifier: 7C:34:E5:1F:8D:EE:84:0F:66:77:3F:9E:F6:EA:57:EE:E6:1F:F9:8A Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: 0247 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft Manifest number: 0243 Signing time: Mon 21 Jul 2025 02:09:53 +0000 Manifest this update: Mon 21 Jul 2025 02:09:53 +0000 Manifest next update: Mon 28 Jul 2025 02:09:53 +0000 Files and hashes: 1: L4vvSDpBiuHAMSMIGG70zXskZuU.crl (hash: wYBXArwdcNomdsUO1Rx7kAr2ae56rvlmcFphmv2FMKk=) 2: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (hash: SvlTkdhfP2Vy/Mu+17rsFwHULfYPp5POSAbZ7IEAOKw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:09:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 583 (0x247) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758, serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Jul 21 02:09:53 2025 GMT Not After : Jul 28 02:09:53 2025 GMT Subject: CN=687da171-93f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7a:df:aa:8d:d7:f3:c3:2f:4c:3e:93:c7:4b: 52:d7:6d:04:0f:b1:e8:71:92:90:d8:74:b0:06:00: 7a:02:b0:60:86:88:ae:65:92:95:03:ad:f9:c6:43: 85:89:2b:94:5e:32:0e:2b:5a:d1:ca:2d:7a:a4:6c: 09:b0:6d:24:19:a5:fc:f5:85:3d:cb:79:47:bc:64: 84:61:6b:4c:8f:40:8e:c5:9c:02:d9:e2:9c:22:61: 13:03:63:4f:eb:7c:d3:aa:4d:b0:00:24:47:41:c2: a3:d0:8e:be:1f:bc:04:b2:19:39:bd:08:c4:47:d4: ee:1b:af:18:7d:cd:8c:91:93:94:4c:ad:17:2f:9f: 98:c3:60:a7:ef:73:75:89:ee:3d:b0:75:0f:30:24: 76:ec:f8:d4:65:ff:8a:9d:b1:cc:20:59:c8:c5:5a: 4f:39:03:7c:6e:13:8d:af:c4:3e:5b:6b:1b:f2:e9: ab:34:87:2c:5c:ab:5b:b3:dd:5b:60:03:2c:9e:40: f3:85:5f:a7:34:da:ea:af:96:5a:8d:50:fb:08:16: 38:64:1a:1b:3e:81:18:3a:d3:d5:2f:ab:df:19:6a: 5d:bb:48:74:8d:30:97:5b:22:9a:61:d7:74:94:89: 32:e9:10:d8:54:c4:3b:8b:5a:95:17:e1:ed:cf:77: 29:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:34:E5:1F:8D:EE:84:0F:66:77:3F:9E:F6:EA:57:EE:E6:1F:F9:8A X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:20:b8:9e:43:91:da:85:90:06:d6:75:a1:79:83:42:ec:97: d6:1c:7c:a4:23:de:bd:bc:5b:99:58:09:1b:95:fa:96:a7:c0: 54:bc:29:2c:73:2c:b3:a8:e7:1f:d6:4d:11:dd:80:46:21:89: 34:b7:bd:d5:c5:37:50:54:84:2c:cb:9f:8e:1e:85:e6:69:c7: 76:65:fb:97:cb:ee:a3:fb:b0:7c:2d:61:4a:b4:f9:09:48:b9: 08:e5:44:68:fa:87:2d:31:91:d8:21:c1:b8:5c:62:4a:d5:a8: 1c:df:14:a8:49:53:24:c8:31:98:fe:72:0f:d9:f3:63:b8:f9: a7:b6:24:7c:8d:cd:a3:1e:2c:48:fe:ed:8e:f7:6f:c2:e8:56: 51:39:0f:30:16:6b:11:7b:2b:aa:5e:b0:c8:ba:ba:f6:70:c9: 56:d1:73:43:8e:77:32:37:c9:c1:25:f6:62:75:cf:57:6a:20: 01:19:13:28:d4:d7:17:9e:2f:c4:bd:ad:4d:ec:4d:6e:bb:27: 3a:3d:09:95:4b:7c:d7:86:b7:67:81:ee:4f:65:96:77:ae:1c: 90:0e:fa:d5:26:2c:8e:12:b4:e0:46:9e:44:a5:25:99:8a:22: cf:0e:3e:61:94:83:e1:8a:9f:46:f2:04:c9:eb:60:6d:bc:5b: 71:41:e6:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjUwNzIxMDIwOTUzWhcNMjUwNzI4MDIwOTUzWjAYMRYwFAYD VQQDEw02ODdkYTE3MS05M2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy3rfqo3X88MvTD6Tx0tS120ED7HocZKQ2HSwBgB6ArBghoiuZZKVA635xkOF iSuUXjIOK1rRyi16pGwJsG0kGaX89YU9y3lHvGSEYWtMj0COxZwC2eKcImETA2NP 63zTqk2wACRHQcKj0I6+H7wEshk5vQjER9TuG68Yfc2MkZOUTK0XL5+Yw2Cn73N1 ie49sHUPMCR27PjUZf+KnbHMIFnIxVpPOQN8bhONr8Q+W2sb8umrNIcsXKtbs91b YAMsnkDzhV+nNNrqr5ZajVD7CBY4ZBobPoEYOtPVL6vfGWpdu0h0jTCXWyKaYdd0 lIky6RDYVMQ7i1qVF+Htz3cpmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHw05R+N 7oQPZnc/nvbqV+7mH/mKMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTc1OC83MUVCRTdDMjJDRDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1 SEFNU01JR0c3MHpYc2tadVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASILieQ5HahZAG1nWheYNC7JfWHHykI969vFuZWAkblfqWp8BUvCks cyyzqOcf1k0R3YBGIYk0t73VxTdQVIQsy5+OHoXmacd2ZfuXy+6j+7B8LWFKtPkJ SLkI5URo+octMZHYIcG4XGJK1agc3xSoSVMkyDGY/nIP2fNjuPmntiR8jc2jHixI /u2O92/C6FZROQ8wFmsReyuqXrDIurr2cMlW0XNDjncyN8nBJfZidc9XaiABGRMo 1NcXni/Eva1N7E1uuyc6PQmVS3zXhrdnge5PZZZ3rhyQDvrVJiyOErTgRp5EpSWZ iiLPDj5hlIPhip9G8gTJ62BtvFtxQeaz -----END CERTIFICATE-----Generated at Mon Jul 21 13:26:38 2025 by rpki-client