$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: RwWw3K/9Ur2NIIWGPL7NooK629vnbg9tR05byJJGtAo= Subject key identifier: 32:6A:FC:4A:42:EE:D5:21:82:B9:EA:09:7E:86:DE:A6:BD:50:B4:7D Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 01F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 01EE Signing time: Fri 25 Jul 2025 02:41:52 +0000 Manifest this update: Fri 25 Jul 2025 02:41:51 +0000 Manifest next update: Fri 01 Aug 2025 02:41:51 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: d61/jrACZ4pEl/hKjoFbxgg7ewNqdv59Hrale0KKG6o=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: C5+qR+xwM5riTT+23t/1tPZQq66L4etzO1hAZvNu09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 02:41:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 497 (0x1f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Jul 25 02:41:51 2025 GMT Not After : Aug 1 02:41:51 2025 GMT Subject: CN=6882eef0-8cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f7:0f:df:90:af:3c:15:fe:35:53:d0:14:f1: 98:16:f2:00:34:5d:6f:ac:bd:fc:3f:49:df:02:f4: 4b:06:ee:11:4b:83:3b:e3:4b:4f:de:35:f5:1e:62: 09:6a:4d:05:b0:a1:d5:ec:84:f9:7f:aa:ad:d3:9c: fb:83:11:f1:d3:33:66:00:04:4a:b0:34:48:e3:75: ed:b9:1f:85:c9:58:39:3b:78:a0:94:9b:06:ba:98: 26:d2:d1:80:03:b7:77:d2:f4:12:9e:47:9c:58:75: 72:03:8a:3c:e6:97:10:bb:e6:f7:d9:97:d4:52:b7: 78:4d:28:47:32:f6:91:41:ce:95:08:99:74:26:50: 25:e8:62:f9:73:3e:bb:27:0d:a7:5e:e6:6b:35:6f: 72:1d:8e:5f:0e:b8:e1:dc:6a:1b:22:b4:5b:90:ca: 61:aa:bc:f4:d1:4f:f3:98:44:8c:6f:47:ab:8c:fe: 63:08:97:99:d0:35:7d:b1:21:1f:44:1d:62:97:ef: b9:16:4a:1c:10:6b:d1:37:28:a1:5d:ce:87:1f:38: 71:02:24:ef:80:a6:fa:68:48:6c:47:f0:8c:89:e1: ab:9a:2d:82:ef:a0:4f:11:da:ea:f1:ab:3e:a2:bb: 2b:99:40:81:3d:8b:26:8e:b2:f3:11:8f:3b:fa:3d: 6a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:6A:FC:4A:42:EE:D5:21:82:B9:EA:09:7E:86:DE:A6:BD:50:B4:7D X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:78:f4:73:72:1d:56:c4:d2:a3:60:c7:14:3b:34:14:4c:36: 22:d8:ed:37:d8:bd:85:4a:a9:e4:6b:9d:5c:55:c6:f1:d4:16: ed:de:a3:5e:ef:85:8f:36:f3:7f:2f:82:7b:40:b3:f2:df:11: d1:0e:6a:0d:04:16:1b:69:95:a6:b3:a0:d1:fc:8b:14:e6:59: 6e:67:e6:fa:1a:8b:bf:a1:56:a3:82:68:35:74:cd:10:45:f4: 2a:e2:31:19:2e:13:50:7f:ec:97:a4:4c:34:af:2c:40:38:cb: 3d:26:08:44:24:5f:21:2e:34:63:16:e9:9b:a5:38:89:15:3f: 68:ed:1e:cc:60:c0:a1:20:93:64:d6:0b:57:aa:13:7c:81:26: a8:21:49:9b:42:de:c3:d7:6d:9a:65:83:cd:d3:82:75:4c:81: 4f:82:61:d2:34:d0:8d:9a:d1:9f:4f:a2:79:e6:99:e5:fd:8c: 77:d7:9a:13:33:d0:92:88:ec:1d:b9:74:51:7f:7d:85:92:f5: cb:83:a2:99:cb:93:74:77:d6:98:6e:01:d2:7c:1b:5e:d7:75: d3:95:c3:cb:92:95:c0:35:45:5e:cf:04:51:85:12:38:e9:e4: d6:19:8e:89:7f:80:ca:b6:ba:3d:22:68:0b:cf:96:ae:38:f8: 98:64:d4:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjUwNzI1MDI0MTUxWhcNMjUwODAxMDI0MTUxWjAYMRYwFAYD VQQDEw02ODgyZWVmMC04Y2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwfcP35CvPBX+NVPQFPGYFvIANF1vrL38P0nfAvRLBu4RS4M740tP3jX1HmIJ ak0FsKHV7IT5f6qt05z7gxHx0zNmAARKsDRI43XtuR+FyVg5O3iglJsGupgm0tGA A7d30vQSnkecWHVyA4o85pcQu+b32ZfUUrd4TShHMvaRQc6VCJl0JlAl6GL5cz67 Jw2nXuZrNW9yHY5fDrjh3GobIrRbkMphqrz00U/zmESMb0erjP5jCJeZ0DV9sSEf RB1il++5FkocEGvRNyihXc6HHzhxAiTvgKb6aEhsR/CMieGrmi2C76BPEdrq8as+ orsrmUCBPYsmjrLzEY87+j1qhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDJq/EpC 7tUhgrnqCX6G3qa9ULR9MB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACePRzch1WxNKjYMcUOzQUTDYi2O032L2FSqnka51cVcbx1Bbt3qNe 74WPNvN/L4J7QLPy3xHRDmoNBBYbaZWms6DR/IsU5lluZ+b6Gou/oVajgmg1dM0Q RfQq4jEZLhNQf+yXpEw0ryxAOMs9JghEJF8hLjRjFumbpTiJFT9o7R7MYMChIJNk 1gtXqhN8gSaoIUmbQt7D122aZYPN04J1TIFPgmHSNNCNmtGfT6J55pnl/Yx315oT M9CSiOwduXRRf32FkvXLg6KZy5N0d9aYbgHSfBte13XTlcPLkpXANUVezwRRhRI4 6eTWGY6Jf4DKtro9ImgLz5auOPiYZNS2 -----END CERTIFICATE-----Generated at Sat Jul 26 00:51:34 2025 by rpki-client