$ rpki-client -vvf rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft File: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft (raw, json) Hash identifier: 6ikyAZZenMXZB5TTiX3JAWC98XwttYrJWXMMGLXk7sI= Subject key identifier: 87:28:D7:61:66:B2:2C:9C:20:79:94:91:64:B7:74:1B:EA:26:0A:C8 Authority key identifier: E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F Certificate issuer: /CN=A91471DA/serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Certificate serial: 0515 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft Manifest number: 0512 Signing time: Fri 18 Jul 2025 23:57:47 +0000 Manifest this update: Fri 18 Jul 2025 23:57:46 +0000 Manifest next update: Fri 25 Jul 2025 23:57:46 +0000 Files and hashes: 1: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl (hash: AltZ79Tf4CVTvkyKMOKTloYPQXU8vnY+LRKAOCmkvn4=) 2: 914E7A440FE611EC8DD2020EC4F9AE02.roa (hash: +BX7RaNNlsglW/BB60o8n67yb/21GqaNOP3+xpToWWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1301 (0x515) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471DA, serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Validity Not Before: Jul 18 23:57:46 2025 GMT Not After : Jul 25 23:57:46 2025 GMT Subject: CN=687adf7b-cbd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ff:d9:dd:e2:2b:11:7a:97:e5:80:83:8b:19: f4:fb:b2:c5:88:8d:6f:df:b0:1a:2b:4e:7e:63:b0: 59:eb:31:a6:39:f7:75:c9:74:20:e8:d8:c3:2e:7d: d1:15:82:94:5f:21:4a:2e:0b:72:d6:a4:bf:e0:74: f6:35:d0:7b:80:32:45:26:01:54:26:94:1d:12:4c: 18:43:07:be:f4:2f:57:bb:5a:61:73:b7:64:96:d4: bb:ad:b1:39:c1:0d:90:fc:a2:0f:66:c5:9d:3b:56: 81:5f:25:4b:17:7f:3f:b1:f1:54:96:77:7c:ab:e7: cb:7f:98:9f:80:b8:54:d3:fc:dc:ad:06:21:28:2a: c0:2a:25:15:2b:0a:bc:03:e1:93:bb:6c:c3:49:83: a2:33:63:74:e8:a7:d0:e2:bd:cf:1b:7e:3e:4a:72: 15:07:03:ae:f7:68:ef:d6:64:2d:3a:a1:02:72:03: f7:27:15:4a:d6:24:5b:6f:3c:6b:b8:30:a1:7e:c6: 95:28:1a:3d:71:db:07:2a:73:b4:79:16:41:a2:80: b7:26:a3:0f:6d:33:9b:df:cc:1a:05:e7:c7:eb:03: ae:61:1c:51:34:5b:82:47:07:9c:15:7f:00:47:05: 17:0c:d0:67:c3:0e:f1:92:d8:c3:06:de:34:b2:87: 08:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:28:D7:61:66:B2:2C:9C:20:79:94:91:64:B7:74:1B:EA:26:0A:C8 X509v3 Authority Key Identifier: keyid:E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:75:c6:4c:7a:b5:d3:a7:68:82:7f:10:88:58:ca:d8:0a:be: 81:e4:b3:a6:7d:06:35:04:1e:85:47:96:00:bb:04:a3:45:77: e5:37:37:7e:f1:92:00:e9:a9:4d:da:4f:77:2e:51:8d:d2:be: 2c:99:dd:40:74:3a:a4:26:33:3f:d3:ac:7a:45:56:19:ba:58: 68:34:3c:fa:c9:49:e2:69:e5:46:0a:d0:3f:cc:62:3d:72:17: 5e:df:e4:4d:43:fc:fb:23:81:85:b1:d1:bb:43:a2:99:bc:92: 0a:1c:8a:56:d2:34:ce:da:fc:31:f1:91:04:c3:ab:41:b3:91: 8c:30:6b:c5:6a:02:a7:20:6f:c6:50:25:81:1e:bb:11:0a:54: 75:ef:e9:20:b8:b4:2e:90:20:85:c4:f1:fa:cf:cb:c5:9f:5f: 95:53:e8:93:7e:ae:c2:36:59:c2:3d:5d:90:a9:9b:00:36:25: 21:6f:96:e6:f6:6f:3c:f4:b1:1e:3a:ba:00:96:0b:58:1f:aa: 29:50:27:6c:b3:01:bd:f8:a2:63:8a:6d:dc:dc:42:0a:65:8b: aa:40:3e:4d:af:9c:34:a4:36:3c:48:73:d4:e6:07:a0:04:08: 20:fb:8a:a1:a2:7d:4f:f9:64:6b:b5:83:13:ee:96:f7:2f:ca: 5d:d1:33:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBRUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxREExMTAvBgNVBAUTKEUyNEQwOTU0MTA2MkM2MDhCRTM2M0ZGNjE5Q0NCODQ0 NEREQzNDMkYwHhcNMjUwNzE4MjM1NzQ2WhcNMjUwNzI1MjM1NzQ2WjAYMRYwFAYD VQQDEw02ODdhZGY3Yi1jYmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr//Z3eIrEXqX5YCDixn0+7LFiI1v37AaK05+Y7BZ6zGmOfd1yXQg6NjDLn3R FYKUXyFKLgty1qS/4HT2NdB7gDJFJgFUJpQdEkwYQwe+9C9Xu1phc7dkltS7rbE5 wQ2Q/KIPZsWdO1aBXyVLF38/sfFUlnd8q+fLf5ifgLhU0/zcrQYhKCrAKiUVKwq8 A+GTu2zDSYOiM2N06KfQ4r3PG34+SnIVBwOu92jv1mQtOqECcgP3JxVK1iRbbzxr uDChfsaVKBo9cdsHKnO0eRZBooC3JqMPbTOb38waBefH6wOuYRxRNFuCRwecFX8A RwUXDNBnww7xktjDBt40socI/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIco12Fm siycIHmUkWS3dBvqJgrIMB8GA1UdIwQYMBaAFOJNCVQQYsYIvjY/9hnMuERN3Dwv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzFEQS81MUQ1Nzk0ODBG RTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhnaS1Oal8yR2N5NFJFM2NQ QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrMEpWQkJpeGdpLU5qXzJHY3k0UkUzY1BDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFEQS81MUQ1Nzk0ODBGRTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhn aS1Oal8yR2N5NFJFM2NQQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQdcZMerXTp2iCfxCIWMrYCr6B5LOmfQY1BB6FR5YAuwSjRXflNzd+ 8ZIA6alN2k93LlGN0r4smd1AdDqkJjM/06x6RVYZulhoNDz6yUniaeVGCtA/zGI9 chde3+RNQ/z7I4GFsdG7Q6KZvJIKHIpW0jTO2vwx8ZEEw6tBs5GMMGvFagKnIG/G UCWBHrsRClR17+kguLQukCCFxPH6z8vFn1+VU+iTfq7CNlnCPV2QqZsANiUhb5bm 9m889LEeOroAlgtYH6opUCdsswG9+KJjim3c3EIKZYuqQD5Nr5w0pDY8SHPU5geg BAgg+4qhon1P+WRrtYMT7pb3L8pd0TPh -----END CERTIFICATE-----Generated at Sun Jul 20 06:44:26 2025 by rpki-client