$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft File: n4LbyUZjEsW6LpISeTAkAJVqmCo.mft (raw, json) Hash identifier: hUsPE9he63Cz7vhmB0y6TpjYHwW+aHst0JS775CJN4Q= Subject key identifier: 0C:B3:51:72:6F:75:8B:28:AD:CC:44:05:AE:7A:9A:E9:11:17:36:F2 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 35C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft Manifest number: 34E3 Signing time: Sun 20 Jul 2025 14:22:27 +0000 Manifest this update: Sun 20 Jul 2025 14:22:27 +0000 Manifest next update: Sun 27 Jul 2025 14:22:27 +0000 Files and hashes: 1: n4LbyUZjEsW6LpISeTAkAJVqmCo.crl (hash: acMqtCwxePpgm/c5viY3qV7AcUqjj2sMqcYlkWufR0A=) 2: 1827B7E0605411EFA8069323C4F9AE02.roa (hash: f3ZnVyGboZ3Akbin4yXhLknrh3afmJ+B8J3RZmmaopQ=) 3: 439638A88DB811E98ACC9F7EC4F9AE02.roa (hash: tJj1Fysd0xDWoVakE+OSdSVBLD/VndaJXIUaElpuDlU=) 4: 4D21FB36F7DB11EE92D1E11FC4F9AE02.roa (hash: mkqJnfjAyC1y3JZ3S/aqxyvN2bSQ/y7HbUZRZ5455Yo=) 5: EBD5A3CA6B8711EFB0476280C4F9AE02.roa (hash: fA+kqaKk3JYJ5L1SCxggXVF38dEFRQWvBBK35ZGIubk=) 6: 4107DF748DB811E98ACC9F7EC4F9AE02.roa (hash: gyGZW8SRrhVaNuiEThQUlAOFPVRZ4pRi/unEVqDLonc=) 7: F6D9C45E7B1811EF82C90D2AC4F9AE02.roa (hash: AfBe49D3Yjx5Xz+auV8iqKW+ThAbYjOi5aUSfgO+bI8=) 8: 4A71D7E08DB811E98ACC9F7EC4F9AE02.roa (hash: E7yqhdrwljkTSOgbnaG+ysHeOquc8SyVIcLUBLYl/Ds=) 9: 4EE07E481F7F11ECA7242F6CC4F9AE02.roa (hash: TA9EFDfSdd7+EEK/5RjdrLiMORuBq9ygTpVOMFIYOcU=) 10: 42EBE8D08DB811E98ACC9F7EC4F9AE02.roa (hash: FSsmkLJ70j/LoQlK6EvnfSTcsUCXKKUSfAS4HphN87g=) 11: CEC68F44973211E9954F0565C4F9AE02.roa (hash: 1JZ1OOenzlz7dOVNT0ysjgGRJusSE3+1Rk7pSgH2Okk=) 12: 9DB6EBB4972E11E9B776A755C4F9AE02.roa (hash: F9o71AH8ui5/aDIyX2EvjpYqZFlu7QiC2robUaKm7Ww=) 13: 471E9C908DB811E98ACC9F7EC4F9AE02.roa (hash: dhSNGV7WN5Gdy2FxgxjeunIC6meweUvz6hG+CLphccQ=) 14: 482C95F68DB811E98ACC9F7EC4F9AE02.roa (hash: zEScPtSmfxNjAFuYUiCbjBlCrAeiT/w5Td2/JrWEkDk=) 15: 3ED710C68DB811E98ACC9F7EC4F9AE02.roa (hash: nCFG+bk+dqsOuGFESr8+Ya9a1BnYrZYntqhV2PYzrJ0=) 16: F3A41ADEC0E411EFA19F644CC4F9AE02.roa (hash: ACVLyZykAztEdUIVBfhutPukbcuitqKmSjWINXZwcgQ=) 17: 47A6C8E08DB811E98ACC9F7EC4F9AE02.roa (hash: TGN+p1ofbtkEaQ7GXRuZyKCw4vYy+9mP3K55Olf1oRk=) 18: B2FF274A00EC11EDBC60AA4FC4F9AE02.roa (hash: SB4SEPfrJcU4bAaiYGmkUQemcbi1AfCVHBrodW3eBtk=) 19: 402418C08DB811E98ACC9F7EC4F9AE02.roa (hash: u9VQpLnmNPRlXjoztXx96YhTp7IciEzLswD4rNTXg90=) 20: 441E60E88DB811E98ACC9F7EC4F9AE02.roa (hash: uq5spO8r//Mx5XkVnf0Z6fnNcxxWQ62LgeziZF4eNPE=) 21: A3601D70C2A511EBB2025B36C4F9AE02.roa (hash: y0DwpoBfHHEL957f/ttZlyeIHwIEba7rVVTz2uU5AGY=) 22: EC8209420EB411EFAE1CF63BC4F9AE02.roa (hash: NhE6BhdvNa2vpC+KQiezMi0MSOcKQeq7OmkH62Iv3CM=) 23: B580AA94013D11EBBC81306AC4F9AE02.roa (hash: Mw8xJZC8kTBbi9VQc48nB8qn9ni0B4gLN8NhE9LyvLM=) 24: 46800A948DB811E98ACC9F7EC4F9AE02.roa (hash: HDowV0jxfkJYeFr+sT32cXrZ6tZ57Cd3d2XNwlRtI04=) 25: 5B917C28A2E011E9A98B0235C4F9AE02.roa (hash: nL1G6QX9sO47hs0tQUmWNASOgl/VhJm0a/th8GsoFuE=) 26: F7318C2CBA3E11ECA0543F6BC4F9AE02.roa (hash: MeS1DOyTdCwke/RbgIIQT3rBZNWyYB2mfEuyQ/lkLGY=) 27: 4AEE35608DB811E98ACC9F7EC4F9AE02.roa (hash: fkmpdzQWy7yxmakJ09stjz11PIAgWGUDm5gwI5DEe7k=) 28: 48ED106A8DB811E98ACC9F7EC4F9AE02.roa (hash: mkmvnGvUB9LKYbrwKSr+DiBXHGZP38l2ItEGjYEGTms=) 29: 453F8E988DB811E98ACC9F7EC4F9AE02.roa (hash: jQRT5PlFbI2u576tkmy6PzP4OP+SK4T1Hzx4zOkrIWw=) 30: 1BA16D001F8211EC8FC82E73C4F9AE02.roa (hash: DDC+5+VXBnfrx9wWnbESqssm0Yt82gNbLRVKOAlPMNQ=) 31: 49EECD288DB811E98ACC9F7EC4F9AE02.roa (hash: x7dEeBeojoDb2WMyQhh46vqt838katbavZyk3phE4cQ=) 32: 4495856A8DB811E98ACC9F7EC4F9AE02.roa (hash: a14/2406/c/Vc+e673jRH7rbdHirwb+sw7UAVsW6UA8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13761 (0x35c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jul 20 14:22:27 2025 GMT Not After : Jul 27 14:22:27 2025 GMT Subject: CN=687cfba3-1a7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:cd:d5:96:b4:e0:5b:10:5d:00:22:13:06:ae: ce:c1:9f:9b:ba:da:e4:3e:11:1a:6f:9f:aa:8c:37: 8d:4f:f9:9f:0b:01:2f:4a:12:f1:91:a5:52:01:4a: 59:ba:e9:fa:26:41:92:06:32:89:db:c4:f0:36:95: 13:9c:7e:4e:3c:fa:1a:09:c2:c9:15:c0:17:1f:5e: 8d:2b:1e:31:d5:f0:47:9e:5a:c9:c1:04:e7:52:74: 73:d0:24:7c:9e:ba:a3:79:4a:22:cc:87:26:04:92: 36:51:42:a8:ed:25:6e:cc:c7:0d:1c:24:23:96:bd: 24:42:09:81:2d:a3:5d:02:a8:02:f6:ed:ad:24:2f: 3e:ba:bc:61:3a:04:0d:e8:2d:73:c4:e0:09:c4:e4: 8b:11:e3:2b:c4:d3:bb:6e:ad:e9:73:4c:87:4d:0a: d4:bc:a9:cb:3c:45:d6:9d:4e:f2:91:a6:b1:dd:3c: 88:d4:e2:2d:4b:dd:32:21:71:d1:31:aa:39:d9:70: 08:e3:1d:03:09:32:0d:bc:84:d3:dc:ab:77:d0:3a: 55:02:1b:e3:8f:9d:ce:d3:07:de:7f:a9:ec:6e:e3: 98:39:d0:86:51:9d:1b:c8:f4:ef:27:25:d2:19:b4: 1b:9c:7d:d9:bc:2f:04:49:a3:6d:ef:8f:74:77:74: 10:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:B3:51:72:6F:75:8B:28:AD:CC:44:05:AE:7A:9A:E9:11:17:36:F2 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:f4:41:d1:2e:a3:28:91:03:06:6d:4f:09:ad:ce:22:dc:81: b4:56:96:9d:50:94:cd:06:bd:0a:45:6b:90:03:a0:4d:4c:10: 68:04:fe:12:91:1e:82:63:d2:00:89:ec:61:72:1f:3a:13:88: 36:e7:22:f9:fd:61:00:f7:31:ad:56:9d:9a:4b:69:4a:18:7f: 52:70:0f:d2:5d:a9:bd:c8:2e:12:1c:b2:b8:b8:51:de:f7:85: 5a:a2:12:98:74:2e:43:08:d4:25:0e:f1:f0:2c:5b:bf:2b:ed: 91:34:c0:3e:fb:ee:fe:47:0a:d6:54:d0:7b:df:f3:85:bb:1a: 55:b0:9e:ca:b1:b8:ea:42:7d:07:cb:09:32:01:14:90:e5:d4: 0e:f1:84:09:2d:ba:68:05:82:e8:c9:b0:77:62:f6:85:7b:50: cd:a0:2c:67:25:b5:f9:72:39:04:17:72:34:dc:c4:7f:c2:47: cc:7d:a3:4f:e1:a2:30:bf:d0:b1:7c:cd:44:54:af:af:c0:50: 7b:45:c2:eb:f6:d4:d4:87:3c:13:02:b9:c7:73:a6:ef:dc:ec: e7:04:b4:b0:94:a9:9a:b0:59:4c:bc:04:b1:0a:59:21:d4:3a: 0e:54:dd:93:78:55:37:e2:2f:70:31:b9:78:89:e1:83:1a:66: 71:80:55:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNcEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNzIwMTQyMjI3WhcNMjUwNzI3MTQyMjI3WjAYMRYwFAYD VQQDEw02ODdjZmJhMy0xYTdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/M3VlrTgWxBdACITBq7OwZ+butrkPhEab5+qjDeNT/mfCwEvShLxkaVSAUpZ uun6JkGSBjKJ28TwNpUTnH5OPPoaCcLJFcAXH16NKx4x1fBHnlrJwQTnUnRz0CR8 nrqjeUoizIcmBJI2UUKo7SVuzMcNHCQjlr0kQgmBLaNdAqgC9u2tJC8+urxhOgQN 6C1zxOAJxOSLEeMrxNO7bq3pc0yHTQrUvKnLPEXWnU7ykaax3TyI1OItS90yIXHR Mao52XAI4x0DCTINvITT3Kt30DpVAhvjj53O0wfef6nsbuOYOdCGUZ0byPTvJyXS GbQbnH3ZvC8ESaNt7490d3QQiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAyzUXJv dYsorcxEBa56mukRFzbyMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTdGQS8yN0Y4M0I3MDFEODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVz VzZMcElTZVRBa0FKVnFtQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAP9EHRLqMokQMGbU8Jrc4i3IG0VpadUJTNBr0KRWuQA6BNTBBoBP4S kR6CY9IAiexhch86E4g25yL5/WEA9zGtVp2aS2lKGH9ScA/SXam9yC4SHLK4uFHe 94VaohKYdC5DCNQlDvHwLFu/K+2RNMA+++7+RwrWVNB73/OFuxpVsJ7KsbjqQn0H ywkyARSQ5dQO8YQJLbpoBYLoybB3YvaFe1DNoCxnJbX5cjkEF3I03MR/wkfMfaNP 4aIwv9CxfM1EVK+vwFB7RcLr9tTUhzwTArnHc6bv3OznBLSwlKmasFlMvASxClkh 1DoOVN2TeFU34i9wMbl4ieGDGmZxgFXO -----END CERTIFICATE-----Generated at Mon Jul 21 07:00:31 2025 by rpki-client