$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft File: 4BlKpTtYIbm9DFx7g1K7E4GFP50.mft (raw, json) Hash identifier: USEhRBOgEyJn6sLZLrYZuvOKwN2e0C5JsVXZY0BhYPw= Subject key identifier: 87:AA:75:D1:4D:FA:AB:26:DA:6D:F4:AA:45:DA:BE:19:82:29:04:24 Authority key identifier: E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D Certificate issuer: /CN=A914E0B6/serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Certificate serial: 0113 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft Manifest number: 0113 Signing time: Mon 21 Jul 2025 04:59:55 +0000 Manifest this update: Mon 21 Jul 2025 04:59:54 +0000 Manifest next update: Mon 28 Jul 2025 04:59:54 +0000 Files and hashes: 1: 4BlKpTtYIbm9DFx7g1K7E4GFP50.crl (hash: iyqlCsjA2uVvbmhdMJ+U9kijAWaFa7GW9sjKmUlh+Ew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 275 (0x113) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0B6, serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Validity Not Before: Jul 21 04:59:54 2025 GMT Not After : Jul 28 04:59:54 2025 GMT Subject: CN=687dc94b-4417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ba:7a:e2:50:27:84:21:2c:76:a4:3e:19:0f: 96:f2:d5:74:fd:5f:8e:38:4f:65:a1:16:93:d1:97: 00:64:a2:90:42:3a:18:c0:2e:b0:34:6d:4b:2a:1d: 33:66:73:d4:fa:b8:7c:77:2a:bf:18:a1:69:8c:a0: 99:d9:32:40:da:16:bf:7f:f1:b7:68:91:11:76:2e: 9f:a6:82:67:35:3d:0a:6d:79:9b:e4:68:d5:2b:af: 2d:d9:9d:ad:83:bc:4a:0a:91:d0:ad:ad:10:4d:08: 08:83:4b:bd:0b:0a:56:99:05:91:5f:48:0a:d7:8a: 4b:c8:c7:11:84:f2:c0:1f:c7:a9:50:ca:4f:63:c3: 7f:fe:e0:89:d3:8c:63:20:5b:07:70:4a:38:1c:91: aa:b6:9d:46:5a:ae:4b:7e:33:eb:b9:dd:32:db:a5: 8e:ce:f4:58:93:f0:37:6c:61:18:63:05:58:5f:01: 37:5c:a5:23:67:49:0d:3a:e0:21:6f:bf:ab:e4:db: 8d:34:dd:0b:23:77:e3:8b:48:e0:6c:e6:fe:ea:b0: bb:11:0e:a8:a2:be:27:38:05:95:51:fc:79:09:a8: a0:a4:4d:ae:87:4e:19:a8:95:ff:75:6f:6d:99:2e: 61:ea:d0:bb:93:ed:01:ca:75:a7:42:d1:aa:ca:b9: 68:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:AA:75:D1:4D:FA:AB:26:DA:6D:F4:AA:45:DA:BE:19:82:29:04:24 X509v3 Authority Key Identifier: keyid:E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:92:95:8e:39:e2:a0:ec:72:7b:a4:56:d6:83:c3:f1:1e:ca: c9:38:a5:95:a6:02:d3:14:22:d5:da:6a:55:a3:a5:04:1b:64: 7a:eb:65:f2:a0:a8:90:d6:02:be:6a:77:a0:61:19:2f:63:81: b0:1b:ec:5a:80:2a:c6:0e:df:9b:05:84:48:fc:f3:2c:f6:f7: 77:5a:76:58:b4:08:e7:f3:a9:8d:b5:36:1a:95:6c:a8:18:32: 86:6a:b8:f9:34:44:e6:1d:4a:b7:a0:c2:df:bf:ed:2e:7d:f1: 16:bc:97:e6:a8:04:52:c9:f7:f7:ab:11:98:09:79:07:76:f8: a2:56:bf:61:08:63:3f:6c:b1:2e:68:c4:d9:ab:ad:3e:dd:6a: 2a:8c:7b:c6:90:5b:84:8e:c2:98:f6:1d:dd:07:35:45:e4:96: 54:bc:01:5d:16:52:5d:d5:18:c0:75:2b:9c:85:00:cb:05:d3: 66:cb:12:1a:fe:11:7e:e7:12:dc:27:8d:bd:57:d0:ec:51:ba: 6b:27:e9:7d:91:bb:9b:8c:5e:bd:84:9d:e0:7e:3a:2a:4a:0a: 3b:76:38:d7:a0:9f:31:2c:f0:9c:c6:24:93:03:96:0e:62:32: 88:9b:aa:cb:17:85:f7:9c:5b:18:30:4d:49:b7:96:b3:8c:b5: 4c:63:50:cc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwQjYxMTAvBgNVBAUTKEUwMTk0QUE1M0I1ODIxQjlCRDBDNUM3QjgzNTJCQjEz ODE4NTNGOUQwHhcNMjUwNzIxMDQ1OTU0WhcNMjUwNzI4MDQ1OTU0WjAYMRYwFAYD VQQDEw02ODdkYzk0Yi00NDE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzLp64lAnhCEsdqQ+GQ+W8tV0/V+OOE9loRaT0ZcAZKKQQjoYwC6wNG1LKh0z ZnPU+rh8dyq/GKFpjKCZ2TJA2ha/f/G3aJERdi6fpoJnNT0KbXmb5GjVK68t2Z2t g7xKCpHQra0QTQgIg0u9CwpWmQWRX0gK14pLyMcRhPLAH8epUMpPY8N//uCJ04xj IFsHcEo4HJGqtp1GWq5LfjPrud0y26WOzvRYk/A3bGEYYwVYXwE3XKUjZ0kNOuAh b7+r5NuNNN0LI3fji0jgbOb+6rC7EQ6oor4nOAWVUfx5CaigpE2uh04ZqJX/dW9t mS5h6tC7k+0BynWnQtGqyrloJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIeqddFN +qsm2m30qkXavhmCKQQkMB8GA1UdIwQYMBaAFOAZSqU7WCG5vQxce4NSuxOBhT+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBCNi82OTU2QUUzRUJG MzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUlibTlERng3ZzFLN0U0R0ZQ NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCbEtwVHRZSWJtOURGeDdnMUs3RTRHRlA1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBCNi82OTU2QUUzRUJGMzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUli bTlERng3ZzFLN0U0R0ZQNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBYkpWOOeKg7HJ7pFbWg8PxHsrJOKWVpgLTFCLV2mpVo6UEG2R662Xy oKiQ1gK+anegYRkvY4GwG+xagCrGDt+bBYRI/PMs9vd3WnZYtAjn86mNtTYalWyo GDKGarj5NETmHUq3oMLfv+0uffEWvJfmqARSyff3qxGYCXkHdviiVr9hCGM/bLEu aMTZq60+3WoqjHvGkFuEjsKY9h3dBzVF5JZUvAFdFlJd1RjAdSuchQDLBdNmyxIa /hF+5xLcJ429V9DsUbprJ+l9kbubjF69hJ3gfjoqSgo7djjXoJ8xLPCcxiSTA5YO YjKIm6rLF4X3nFsYME1Jt5azjLVMY1DM -----END CERTIFICATE-----Generated at Mon Jul 21 18:27:13 2025 by rpki-client