$ rpki-client -vvf rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft File: 4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft (raw, json) Hash identifier: Red4RjEj2zvLs5AXF8AvjyQ8c+/aOaUdDYYwU4C9eoY= Subject key identifier: 8A:F0:5C:33:85:E5:81:1E:56:4D:DF:DC:D7:18:BA:12:1A:01:73:79 Authority key identifier: E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F Certificate issuer: /CN=A915B361/serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Certificate serial: 0D99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft Manifest number: 0D8C Signing time: Fri 18 Jul 2025 18:06:24 +0000 Manifest this update: Fri 18 Jul 2025 18:06:23 +0000 Manifest next update: Fri 25 Jul 2025 18:06:23 +0000 Files and hashes: 1: 4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl (hash: RMzcoVic33aAfZHbYUGAdifmHFC6JEYXlMtvL7G2a9k=) 2: 5E6CE2C631AE11F0A9F09E0AC4F9AE02.roa (hash: r12gsCo6iUFC5f/jSOBGicDzV0QxP8G0HCiUT+DfDFw=) 3: 3D8179B431AE11F0A7D0076FC4F9AE02.roa (hash: XfxZHGEC6L2I7lf4RHsiD8/699vyTVMdYrB6wZFXmUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 18:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3481 (0xd99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B361, serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Validity Not Before: Jul 18 18:06:23 2025 GMT Not After : Jul 25 18:06:23 2025 GMT Subject: CN=687a8d1f-9a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:08:bd:c7:95:94:e0:32:82:8e:90:ae:61:4f: 25:ea:4e:73:f7:b0:4d:4a:d2:f8:7b:d2:54:42:cb: f6:1f:3a:c6:bc:e0:ee:30:7a:d0:e2:ac:90:22:86: ce:03:dd:40:68:2e:8c:75:a3:ab:48:c7:9d:11:a1: 17:c9:28:54:f5:75:52:b9:b8:6f:df:73:a5:57:66: 6f:de:03:2b:b3:74:85:be:86:46:2a:a8:84:da:3d: a2:10:32:78:91:50:cb:a3:27:e8:04:3a:f1:17:ba: f5:9d:02:03:b5:0e:0a:40:0c:7d:bd:e5:83:25:af: d2:f7:f6:aa:18:5f:68:29:b6:79:65:cb:96:a2:6d: df:ee:a1:1b:71:5b:ce:e6:c0:fa:0b:c5:e6:19:4a: 38:34:27:1a:10:59:c0:6a:79:58:37:f9:80:e8:ee: 15:ae:e3:7e:0f:6f:ae:e1:98:f0:17:c4:4c:3f:f9: 86:7f:b3:6e:62:dd:1c:9d:5d:c1:87:52:7f:b4:83: bf:b2:fc:65:85:cd:9f:33:45:23:4c:1a:1c:ca:a8: 48:4f:74:1b:ce:91:46:20:1b:0d:c3:89:45:07:01: a5:c1:3d:01:06:12:7c:1d:42:99:b8:6c:51:4f:b0: 10:f6:00:3e:7a:4d:e9:ad:35:f2:f5:d9:47:bd:76: ea:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:F0:5C:33:85:E5:81:1E:56:4D:DF:DC:D7:18:BA:12:1A:01:73:79 X509v3 Authority Key Identifier: keyid:E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:c3:f8:0a:35:c7:fe:73:cd:0e:c8:a5:95:58:02:73:4f:de: b5:ce:f3:fb:b9:cd:60:da:c5:2d:64:57:da:82:93:8a:b2:56: 00:a4:fd:74:45:46:c3:f8:8d:e8:04:2b:de:7f:b0:d0:8d:0c: ab:27:94:85:01:c3:64:36:ac:ad:58:7d:d0:97:a7:8b:86:42: 0c:8e:ac:bb:58:4e:50:49:e4:17:c0:16:4e:b2:c7:fa:aa:5f: 7a:e4:c8:7a:2f:90:25:23:b8:fa:21:2a:f1:bd:35:12:31:43: 47:d2:1f:79:6a:d5:b1:00:a5:87:54:0c:d9:80:7f:3c:dd:cb: 81:12:e6:37:71:4c:ac:3f:54:4f:e7:a9:0f:e9:68:9f:78:1e: f7:e5:32:c6:9f:90:7b:d6:7a:a9:f3:08:c8:5f:e6:56:69:c6: 15:ec:d3:a0:50:66:4d:48:af:c0:e1:c1:84:cc:32:9b:2a:e8: dd:a6:54:15:31:df:72:b8:74:15:83:2d:ec:e4:58:09:a1:2e: 41:74:35:46:89:c4:4a:df:e1:39:a0:a8:08:d5:fc:8d:30:95: 74:0d:6b:48:25:03:50:e4:41:9e:28:38:15:ba:94:82:42:a5: c3:4b:3e:72:53:a8:30:54:06:f3:f8:db:dc:92:87:04:fc:69: 30:b7:41:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIzNjExMTAvBgNVBAUTKEUwQjlBMkU5OTM5RDU1OEYxOEJFNjIxNzVDOTVENzY4 RDI0NUQzMUYwHhcNMjUwNzE4MTgwNjIzWhcNMjUwNzI1MTgwNjIzWjAYMRYwFAYD VQQDEw02ODdhOGQxZi05YTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAi9x5WU4DKCjpCuYU8l6k5z97BNStL4e9JUQsv2HzrGvODuMHrQ4qyQIobO A91AaC6MdaOrSMedEaEXyShU9XVSubhv33OlV2Zv3gMrs3SFvoZGKqiE2j2iEDJ4 kVDLoyfoBDrxF7r1nQIDtQ4KQAx9veWDJa/S9/aqGF9oKbZ5ZcuWom3f7qEbcVvO 5sD6C8XmGUo4NCcaEFnAanlYN/mA6O4VruN+D2+u4ZjwF8RMP/mGf7NuYt0cnV3B h1J/tIO/svxlhc2fM0UjTBocyqhIT3QbzpFGIBsNw4lFBwGlwT0BBhJ8HUKZuGxR T7AQ9gA+ek3prTXy9dlHvXbqvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIrwXDOF 5YEeVk3f3NcYuhIaAXN5MB8GA1UdIwQYMBaAFOC5oumTnVWPGL5iF1yV12jSRdMf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjM2MS83QzhEODAwQUNB MzMxMUU5ODExM0EzNTRDNEY5QUUwMi80TG1pNlpPZFZZOFl2bUlYWEpYWGFOSkYw eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRMbWk2Wk9kVlk4WXZtSVhYSlhYYU5KRjB4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjM2MS83QzhEODAwQUNBMzMxMUU5ODExM0EzNTRDNEY5QUUwMi80TG1pNlpPZFZZ OFl2bUlYWEpYWGFOSkYweDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfw/gKNcf+c80OyKWVWAJzT961zvP7uc1g2sUtZFfagpOKslYApP10 RUbD+I3oBCvef7DQjQyrJ5SFAcNkNqytWH3Ql6eLhkIMjqy7WE5QSeQXwBZOssf6 ql965Mh6L5AlI7j6ISrxvTUSMUNH0h95atWxAKWHVAzZgH883cuBEuY3cUysP1RP 56kP6WifeB735TLGn5B71nqp8wjIX+ZWacYV7NOgUGZNSK/A4cGEzDKbKujdplQV Md9yuHQVgy3s5FgJoS5BdDVGicRK3+E5oKgI1fyNMJV0DWtIJQNQ5EGeKDgVupSC QqXDSz5yU6gwVAbz+NvckocE/Gkwt0Fy -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:12 2025 by rpki-client