$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft File: rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft (raw, json) Hash identifier: EKdBWGRVAL5/PYgXV9RrJ5ZQli8g9tfHiEPQVxLprPE= Subject key identifier: 38:8B:FF:48:AE:36:A5:83:58:BA:EA:70:F4:D5:56:7C:17:4A:84:1A Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 07CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft Manifest number: 07C3 Signing time: Sun 20 Jul 2025 21:16:35 +0000 Manifest this update: Sun 20 Jul 2025 21:16:35 +0000 Manifest next update: Sun 27 Jul 2025 21:16:35 +0000 Files and hashes: 1: rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl (hash: MBb8eWt9GGCK6mUYHKt9Mya8U6kt5QMmBg/+ClCcyPo=) 2: 38502DA2029A11EB85BD7B84C4F9AE02.roa (hash: 3OsuoPomkN3KwD+aF1zCoEkkbIN7dOFAl/woMg+7fcw=) 3: CEA093C66CA311ED9DD6425CC4F9AE02.roa (hash: 3rvQwF7VOidxONOxWbJzlS69h1FDkR177X5kmaAbyhg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:16:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1998 (0x7ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA, serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Jul 20 21:16:35 2025 GMT Not After : Jul 27 21:16:35 2025 GMT Subject: CN=687d5cb3-1bad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:70:33:09:e8:ec:82:33:d8:1e:85:30:a6:be: 97:6f:44:d8:84:4a:5e:ef:3a:ee:88:1b:12:5d:13: 94:1a:72:45:3b:36:48:6c:a9:97:b4:26:52:8d:20: 7a:ab:b9:cc:a7:f9:28:d9:26:8c:31:a2:02:cd:e6: 86:54:83:e9:51:57:bc:0c:1f:b0:f1:e0:f1:de:24: ff:95:19:7b:ef:40:a4:33:0e:e5:c4:d6:fa:b9:c5: 27:7b:88:0f:c8:32:a2:7e:dc:f3:40:83:03:47:ef: a6:05:6d:f8:62:1a:a6:f8:f7:a5:4f:52:c5:78:22: 01:2a:fe:f1:45:bb:91:42:7b:27:9a:75:86:15:d1: ca:f6:b6:c1:52:4a:59:52:cc:9d:5d:28:cb:1e:06: 9a:d0:7d:85:c0:11:0c:44:bb:ee:86:ca:b4:3b:c4: 11:f8:20:17:09:6d:f3:a6:0d:ef:c0:5d:28:8e:a9: 78:85:c3:a1:47:99:4c:08:b6:57:15:44:2a:f0:7a: 85:87:8c:7d:16:2b:d1:04:cc:d3:43:8f:fd:1e:51: 0c:22:f6:91:1e:86:bb:1d:5f:2e:40:c8:05:10:41: 0a:65:76:06:2a:a0:3e:ca:6a:eb:1c:9e:c7:8c:84: f2:63:f5:94:ba:b5:a6:f2:a2:4f:fb:42:68:cc:f6: 9e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:8B:FF:48:AE:36:A5:83:58:BA:EA:70:F4:D5:56:7C:17:4A:84:1A X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:d4:30:97:7f:71:d0:59:d3:25:a9:74:64:dc:77:73:bd:fb: b9:f9:45:73:9d:e8:69:41:7b:41:2f:83:58:37:34:a8:c6:ec: a5:b2:4a:44:a5:4d:06:a7:fa:41:c8:44:f3:d4:22:da:f8:5b: 3d:f2:3d:7f:bf:eb:02:59:de:7c:39:67:41:4d:b7:d8:52:9d: d7:81:a6:d6:13:91:ab:87:81:1f:41:5f:42:e9:8f:6a:48:bb: af:03:a2:40:ae:f3:8d:58:f3:ba:5f:9e:33:d3:e7:42:b0:ec: 37:a5:c2:d6:2b:1f:5d:8e:05:a6:a2:9a:10:25:cc:64:04:0b: 43:14:7e:b0:69:31:40:1d:66:9a:23:5e:a4:8f:e5:59:4b:20: 06:ca:68:80:7c:3e:d8:cc:43:91:56:88:38:6f:9a:77:3a:b0: 42:29:0e:42:8b:32:9d:7a:00:57:73:90:01:a4:38:29:4b:6b: a0:b4:19:7e:e6:b5:9e:ac:fc:81:4a:e6:59:72:41:1b:d9:ad: 94:28:0c:a6:f8:44:06:bf:fe:14:70:e4:37:3a:b7:f9:21:aa: 1c:53:35:fa:90:41:2a:50:a4:8e:17:69:ab:7b:9d:12:5d:8c: e4:8c:4e:fd:e9:f8:3e:7a:0c:99:c7:57:1a:5a:19:fa:ce:77: a1:7d:1f:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjUwNzIwMjExNjM1WhcNMjUwNzI3MjExNjM1WjAYMRYwFAYD VQQDEw02ODdkNWNiMy0xYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvnAzCejsgjPYHoUwpr6Xb0TYhEpe7zruiBsSXROUGnJFOzZIbKmXtCZSjSB6 q7nMp/ko2SaMMaICzeaGVIPpUVe8DB+w8eDx3iT/lRl770CkMw7lxNb6ucUne4gP yDKiftzzQIMDR++mBW34Yhqm+PelT1LFeCIBKv7xRbuRQnsnmnWGFdHK9rbBUkpZ UsydXSjLHgaa0H2FwBEMRLvuhsq0O8QR+CAXCW3zpg3vwF0ojql4hcOhR5lMCLZX FUQq8HqFh4x9FivRBMzTQ4/9HlEMIvaRHoa7HV8uQMgFEEEKZXYGKqA+ymrrHJ7H jITyY/WUurWm8qJP+0JozPaejQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDiL/0iu NqWDWLrqcPTVVnwXSoQaMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy REZCQS9EQjlDRTY3ODAyOTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFh V3Vaa3JiRlpCVHJPendyUDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB21DCXf3HQWdMlqXRk3Hdzvfu5+UVznehpQXtBL4NYNzSoxuylskpE pU0Gp/pByETz1CLa+Fs98j1/v+sCWd58OWdBTbfYUp3XgabWE5Grh4EfQV9C6Y9q SLuvA6JArvONWPO6X54z0+dCsOw3pcLWKx9djgWmopoQJcxkBAtDFH6waTFAHWaa I16kj+VZSyAGymiAfD7YzEORVog4b5p3OrBCKQ5CizKdegBXc5ABpDgpS2ugtBl+ 5rWerPyBSuZZckEb2a2UKAym+EQGv/4UcOQ3Orf5IaocUzX6kEEqUKSOF2mre50S XYzkjE796fg+egyZx1caWhn6znehfR+S -----END CERTIFICATE-----Generated at Mon Jul 21 07:25:43 2025 by rpki-client