$ rpki-client -vvf rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft File: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft (raw, json) Hash identifier: xTPUhUwLSCpcuC9Mj8LhxA4amZrG9Vyat8LCD+ZJVFk= Subject key identifier: 8B:B1:C1:88:4D:82:22:C0:3C:4C:37:F5:F0:DD:A5:AD:71:7F:69:A1 Authority key identifier: E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 Certificate issuer: /CN=A91418C7/serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft Manifest number: 4C Signing time: Sat 19 Jul 2025 07:37:27 +0000 Manifest this update: Sat 19 Jul 2025 07:37:26 +0000 Manifest next update: Sat 26 Jul 2025 07:37:26 +0000 Files and hashes: 1: 42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl (hash: gLePa+yYtMe5R9gqvZimjcfwLcmIruFU6GwbrHGl39U=) 2: CDD0BE9EF99111EF945B6751C4F9AE02.roa (hash: 5D2jjmxRmYaXjLCMnBDCQ4uD7aGag4RBTpQpYik03Wk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:37:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91418C7, serialNumber=E369290FD719E3E4987D719A73B1EC77AAAF49B6 Validity Not Before: Jul 19 07:37:26 2025 GMT Not After : Jul 26 07:37:26 2025 GMT Subject: CN=687b4b36-c1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:5b:48:59:67:a2:40:a2:64:98:9d:ae:f5: 78:81:31:d3:c1:e0:69:c4:1b:7d:3f:f2:ef:69:e3: cb:23:e9:99:cf:60:52:0c:3f:65:27:84:a4:bd:cd: e7:21:a7:72:df:82:89:e9:f9:4e:1e:a9:e8:04:f1: 88:b1:70:4d:ed:61:4e:55:a2:13:6f:86:15:21:4b: ba:b6:79:fb:15:12:cd:b4:90:31:9b:c9:ab:d0:68: 8a:64:34:09:fb:f1:c1:70:4d:df:a4:74:e2:7f:77: b4:47:bc:9e:d9:61:ea:98:b0:26:fb:fb:27:1c:fe: e3:18:7e:07:01:5d:8f:8b:06:88:60:9f:60:0a:72: f4:76:16:d3:ff:01:f2:6a:99:cb:8b:ed:7e:d7:2a: a9:90:ad:b8:d0:96:20:b4:49:0f:39:8c:ae:25:aa: 4f:af:96:56:49:61:6b:9d:44:fb:d6:52:d1:1e:c0: 31:ee:5f:9e:59:b0:50:32:b0:d6:79:c4:f9:21:dd: 07:7f:c0:89:9f:fd:a6:1d:78:63:83:2b:ef:dd:aa: c2:c9:af:a9:9e:65:25:3a:9c:5e:c9:0f:99:93:ec: 82:63:d4:73:6a:83:88:3e:54:76:8e:95:e0:b7:30: 3d:a9:14:49:ce:26:b3:7e:cb:02:e9:62:78:a8:d6: 03:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:B1:C1:88:4D:82:22:C0:3C:4C:37:F5:F0:DD:A5:AD:71:7F:69:A1 X509v3 Authority Key Identifier: keyid:E3:69:29:0F:D7:19:E3:E4:98:7D:71:9A:73:B1:EC:77:AA:AF:49:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/42kpD9cZ4-SYfXGac7Hsd6qvSbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91418C7/F93001B6F8CF11EF82D8D52BC4F9AE02/42kpD9cZ4-SYfXGac7Hsd6qvSbY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:0d:fe:ee:38:6c:61:84:88:e5:34:26:0a:4d:d1:a0:aa:25: d5:ec:c9:ad:d3:02:44:78:60:67:8f:bd:f8:f5:8f:7e:7d:c2: e6:60:d7:50:90:e3:35:a5:f1:2f:f3:c8:c9:ad:47:d4:73:f9: 1e:4e:c8:b9:29:a7:19:c8:f6:31:49:3d:94:33:c4:12:4b:cd: 55:f7:f6:4e:2e:00:cb:26:52:1b:48:1d:1a:a7:19:e7:59:e2: 97:e6:69:ea:68:55:c7:b2:ae:4a:13:19:3d:c3:9b:a4:ac:5e: dd:a3:3e:cc:ee:90:5a:79:e1:9f:8f:2a:12:82:e5:84:2d:b5: 8c:48:14:fe:34:14:9e:6f:cb:1f:fe:49:82:d0:23:90:3b:a7: e9:fe:60:de:29:b1:07:65:44:9e:a8:87:0f:15:a0:27:4f:78: 98:c5:85:84:3a:90:f6:c8:66:b0:0f:2a:53:80:62:9d:b8:c2: d4:15:62:3d:52:d3:d9:1a:83:c9:67:af:5f:06:3d:40:08:f5: 44:d9:0a:bb:fa:5d:49:29:02:f8:db:fd:4e:a2:d9:db:84:00: ad:12:16:ad:0c:2e:0e:86:73:da:3d:d3:06:b8:06:11:2d:c9: a8:e1:d8:49:27:c6:66:a9:6f:ed:da:9d:21:10:ad:0d:3a:97: 69:eb:13:47 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MThDNzExMC8GA1UEBRMoRTM2OTI5MEZENzE5RTNFNDk4N0Q3MTlBNzNCMUVDNzdB QUFGNDlCNjAeFw0yNTA3MTkwNzM3MjZaFw0yNTA3MjYwNzM3MjZaMBgxFjAUBgNV BAMTDTY4N2I0YjM2LWMxY2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+ZFtIWWeiQKJkmJ2u9XiBMdPB4GnEG30/8u9p48sj6ZnPYFIMP2UnhKS9zech p3Lfgonp+U4eqegE8YixcE3tYU5VohNvhhUhS7q2efsVEs20kDGbyavQaIpkNAn7 8cFwTd+kdOJ/d7RHvJ7ZYeqYsCb7+ycc/uMYfgcBXY+LBohgn2AKcvR2FtP/AfJq mcuL7X7XKqmQrbjQliC0SQ85jK4lqk+vllZJYWudRPvWUtEewDHuX55ZsFAysNZ5 xPkh3Qd/wImf/aYdeGODK+/dqsLJr6meZSU6nF7JD5mT7IJj1HNqg4g+VHaOleC3 MD2pFEnOJrN+ywLpYnio1gM5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUi7HBiE2C IsA8TDf18N2lrXF/aaEwHwYDVR0jBBgwFoAU42kpD9cZ4+SYfXGac7Hsd6qvSbYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxOEM3L0Y5MzAwMUI2RjhD RjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1TWWZYR2FjN0hzZDZxdlNi WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNDJrcEQ5Y1o0LVNZZlhHYWM3SHNkNnF2U2JZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQx OEM3L0Y5MzAwMUI2RjhDRjExRUY4MkQ4RDUyQkM0RjlBRTAyLzQya3BEOWNaNC1T WWZYR2FjN0hzZDZxdlNiWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFQN/u44bGGEiOU0JgpN0aCqJdXsya3TAkR4YGePvfj1j359wuZg11CQ 4zWl8S/zyMmtR9Rz+R5OyLkppxnI9jFJPZQzxBJLzVX39k4uAMsmUhtIHRqnGedZ 4pfmaepoVceyrkoTGT3Dm6SsXt2jPszukFp54Z+PKhKC5YQttYxIFP40FJ5vyx/+ SYLQI5A7p+n+YN4psQdlRJ6ohw8VoCdPeJjFhYQ6kPbIZrAPKlOAYp24wtQVYj1S 09kag8lnr18GPUAI9UTZCrv6XUkpAvjb/U6i2duEAK0SFq0MLg6Gc9o90wa4BhEt yajh2Eknxmapb+3anSEQrQ06l2nrE0c= -----END CERTIFICATE-----Generated at Sun Jul 20 07:33:16 2025 by rpki-client