$ rpki-client -vvf rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft File: 4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft (raw, json) Hash identifier: 0pXPQJkbMI5tkyvfUxsIF4yg0BR16t8DCDUOCSzvM4w= Subject key identifier: 77:BA:8D:64:84:B1:5D:59:3C:07:0C:9E:78:1E:87:15:E2:F0:F0:E0 Authority key identifier: E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A Certificate issuer: /CN=A91493FC/serialNumber=E1C1C72B6793A903BA3DE031027519B43021756A Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft Manifest number: 01D1 Signing time: Mon 21 Jul 2025 02:54:00 +0000 Manifest this update: Mon 21 Jul 2025 02:53:59 +0000 Manifest next update: Mon 28 Jul 2025 02:53:59 +0000 Files and hashes: 1: 4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl (hash: 6LHhumFxqamkGZvL3Iy0u/gTLhvPD9a+9OsSQ8yicTk=) 2: 38702E769AF611ED8D41985BC4F9AE02.roa (hash: ZhWBxmhvIB+43KRBVHlsXZ7qRlNDQ90SpnXAY8rEx0A=) 3: D076B1A49F2911ED937CF05AC4F9AE02.roa (hash: DMBYC+/NRUlRPJuHXxC2cxoOT1tZHI2lI1sjea+2JhA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91493FC, serialNumber=E1C1C72B6793A903BA3DE031027519B43021756A Validity Not Before: Jul 21 02:53:59 2025 GMT Not After : Jul 28 02:53:59 2025 GMT Subject: CN=687dabc8-4b97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a1:e1:bb:b1:a8:94:c8:cc:76:21:8d:b7:1a: 34:81:ab:eb:45:ac:70:aa:9c:0e:05:12:46:fe:b1: 34:8a:fd:57:fa:c5:ce:d1:db:12:09:bd:a8:64:c2: f0:d0:7a:8a:75:a8:1e:fb:3d:27:1f:aa:54:b4:e4: 24:68:51:9c:1b:e5:e2:db:82:0e:02:8a:b3:f4:e7: dd:57:22:21:a5:48:8b:a0:78:4a:02:7b:34:0b:b9: d8:d9:63:e8:a4:02:fe:de:ab:c0:78:a4:70:6a:54: 24:2f:71:04:93:50:45:b0:d1:78:4f:3b:57:98:cd: 1d:7a:d7:9a:1c:41:48:c3:1d:b9:12:b1:14:b0:e3: 99:3b:64:8c:82:30:5b:52:76:71:cb:eb:e5:0d:5c: 86:c8:1e:dd:d9:c4:f4:56:3a:b5:5d:3b:d0:8c:f8: b0:1f:2f:ca:8c:d1:0d:5a:62:8e:55:94:75:4a:9d: 75:d6:49:06:10:82:5d:cd:b3:dd:01:f7:fe:10:ea: 4b:2e:e9:0b:f2:83:87:f5:43:d2:7a:7b:8d:0b:fb: e8:ef:f1:51:c1:6f:59:95:72:bc:32:a9:74:3b:0a: 8e:fd:7f:4b:c8:7e:ce:a4:18:8b:73:07:85:7d:7b: 6d:1a:12:b1:fe:66:7e:58:a0:b8:e7:07:1b:76:d4: f2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:BA:8D:64:84:B1:5D:59:3C:07:0C:9E:78:1E:87:15:E2:F0:F0:E0 X509v3 Authority Key Identifier: keyid:E1:C1:C7:2B:67:93:A9:03:BA:3D:E0:31:02:75:19:B4:30:21:75:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4cHHK2eTqQO6PeAxAnUZtDAhdWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91493FC/A96F4B789AF311ED901AE45AC4F9AE02/4cHHK2eTqQO6PeAxAnUZtDAhdWo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 70:2e:3f:cc:5f:b9:66:da:96:8c:b9:aa:d1:6c:06:0e:28:2f: 15:3a:a4:76:32:93:43:42:7c:f8:77:eb:64:8a:04:cd:93:73: 7b:97:f5:66:f5:c1:c3:50:27:a6:27:94:61:56:db:8f:3e:9d: 84:e9:f6:bb:db:97:5a:61:93:d4:14:00:9b:a2:1a:30:1c:22: 0c:e4:da:6c:f9:63:94:a7:ed:95:a5:92:23:04:27:89:cb:ef: 49:9f:16:de:7f:78:bc:45:cf:1b:8f:25:8b:bd:55:f8:68:08: ef:b3:ea:93:c5:6b:cd:f4:c6:73:d5:eb:6d:b0:ba:84:01:f5: 8f:6b:80:7c:3c:ec:51:57:26:a7:1e:48:49:ef:25:f6:ac:48: 81:37:01:cd:60:f2:a4:4e:be:f9:b2:c8:f7:96:21:a6:fc:3a: ec:a5:22:bc:88:a8:4d:3d:fa:89:4b:dc:6b:b4:ca:49:4c:6a: 15:b4:2f:60:66:03:2d:03:1a:11:9c:36:7e:52:d3:b7:b4:40: e5:8d:22:27:35:58:c7:13:d0:a5:fe:ab:c7:87:e3:71:1d:e9: 73:f1:c2:7a:c5:b4:91:8f:23:f4:c9:49:92:5f:4b:7f:10:78: 68:31:a6:fb:61:b6:2c:2f:3c:a5:39:82:61:91:9a:65:fd:ba: 18:f5:6d:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDkzRkMxMTAvBgNVBAUTKEUxQzFDNzJCNjc5M0E5MDNCQTNERTAzMTAyNzUxOUI0 MzAyMTc1NkEwHhcNMjUwNzIxMDI1MzU5WhcNMjUwNzI4MDI1MzU5WjAYMRYwFAYD VQQDEw02ODdkYWJjOC00Yjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAraHhu7GolMjMdiGNtxo0gavrRaxwqpwOBRJG/rE0iv1X+sXO0dsSCb2oZMLw 0HqKdage+z0nH6pUtOQkaFGcG+Xi24IOAoqz9OfdVyIhpUiLoHhKAns0C7nY2WPo pAL+3qvAeKRwalQkL3EEk1BFsNF4TztXmM0deteaHEFIwx25ErEUsOOZO2SMgjBb UnZxy+vlDVyGyB7d2cT0Vjq1XTvQjPiwHy/KjNENWmKOVZR1Sp111kkGEIJdzbPd Aff+EOpLLukL8oOH9UPSenuNC/vo7/FRwW9ZlXK8Mql0OwqO/X9LyH7OpBiLcweF fXttGhKx/mZ+WKC45wcbdtTygwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHe6jWSE sV1ZPAcMnngehxXi8PDgMB8GA1UdIwQYMBaAFOHBxytnk6kDuj3gMQJ1GbQwIXVq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTNGQy9BOTZGNEI3ODlB RjMxMUVEOTAxQUU0NUFDNEY5QUUwMi80Y0hISzJlVHFRTzZQZUF4QW5VWnREQWhk V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRjSEhLMmVUcVFPNlBlQXhBblVadERBaGRXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTNGQy9BOTZGNEI3ODlBRjMxMUVEOTAxQUU0NUFDNEY5QUUwMi80Y0hISzJlVHFR TzZQZUF4QW5VWnREQWhkV28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBwLj/MX7lm2paMuarRbAYOKC8VOqR2MpNDQnz4d+tkigTNk3N7l/Vm 9cHDUCemJ5RhVtuPPp2E6fa725daYZPUFACbohowHCIM5Nps+WOUp+2VpZIjBCeJ y+9Jnxbef3i8Rc8bjyWLvVX4aAjvs+qTxWvN9MZz1ettsLqEAfWPa4B8POxRVyan HkhJ7yX2rEiBNwHNYPKkTr75ssj3liGm/DrspSK8iKhNPfqJS9xrtMpJTGoVtC9g ZgMtAxoRnDZ+UtO3tEDljSInNVjHE9Cl/qvHh+NxHelz8cJ6xbSRjyP0yUmSX0t/ EHhoMab7YbYsLzylOYJhkZpl/boY9W2u -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:56 2025 by rpki-client