$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: rUZ+CZdkMg6rdfdV7GET7Gg9KAZpp63YSGYCIXQgSwE= Subject key identifier: 5F:4A:53:CB:9B:4D:BE:B6:C1:98:76:56:F6:27:85:A6:5C:06:F3:48 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 011F Signing time: Sat 19 Jul 2025 05:04:22 +0000 Manifest this update: Sat 19 Jul 2025 05:04:22 +0000 Manifest next update: Sat 26 Jul 2025 05:04:22 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: 7qWQWYThPGdMAByyCZlDJdXBnqQ14huIh/OPXwq9v5U=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: rp2KgXfSmtmZKYQY55JUof6yTTeOYpzuHhK8PCwpS0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:04:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 294 (0x126) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Jul 19 05:04:22 2025 GMT Not After : Jul 26 05:04:22 2025 GMT Subject: CN=687b2756-71d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:48:63:36:60:39:d9:5a:39:88:e1:c9:91:5c: 04:7d:62:6c:5d:d0:94:d5:5b:b1:ff:22:9d:a4:d9: dc:39:de:7f:0e:8c:1e:be:b4:ab:c7:e4:db:81:c9: 47:ec:eb:d9:90:1d:94:67:35:db:d7:7d:c1:48:55: 72:6b:24:41:c5:cd:9b:88:5e:f8:15:1f:8b:cc:92: 94:7d:4f:a0:a0:13:1d:1e:82:9f:f8:92:37:c8:20: c3:2b:ad:cf:a2:06:d1:bf:2b:d9:92:1d:29:16:63: fa:57:ca:c8:65:54:da:1f:b0:b8:8d:45:5b:4b:93: 9b:1b:73:e3:8f:83:da:50:27:ac:bb:db:bb:51:9f: ff:fd:c8:18:9a:3b:17:1a:2f:7f:8c:b3:af:ab:0c: 90:ec:80:c9:7a:75:89:7f:4f:dd:0e:9f:61:6e:d9: 06:03:7f:ce:8a:16:d0:2c:ff:10:ec:0e:c1:1b:43: 57:97:f7:ce:f1:4d:2a:4e:2f:ff:31:9d:bb:9a:de: 9b:14:62:af:c8:11:5c:f3:f0:97:9e:31:af:cb:1d: af:ba:84:b9:d6:86:c5:55:8a:a1:f0:05:b8:e6:13: 14:46:10:a5:09:9b:ba:14:75:4f:f5:6a:91:c6:6c: 36:79:96:44:eb:32:ec:4d:de:5a:33:35:99:e8:83: a5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4A:53:CB:9B:4D:BE:B6:C1:98:76:56:F6:27:85:A6:5C:06:F3:48 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:bb:42:0f:71:21:c5:90:6c:5c:27:56:29:87:b4:5e:ea:24: 6e:bb:8e:94:b6:03:a9:86:45:e3:3f:c1:62:80:2a:0c:cd:d2: 91:6a:2e:93:72:2a:54:f3:fc:bb:cb:af:f2:bb:34:33:e2:1a: da:8f:36:72:54:91:72:25:1b:85:42:7e:f4:84:5e:43:34:56: ae:b5:c9:da:73:d6:11:70:33:e5:12:09:05:24:33:49:f4:9e: 9e:8c:55:d9:0a:fa:a9:18:f8:9e:b1:5c:6e:71:41:59:dd:50: fa:78:80:3a:63:e0:f8:72:9f:a7:6f:95:b3:b3:1e:73:5b:e2: 1f:c4:fc:8f:ab:13:9e:34:e8:02:af:0b:7e:73:8a:ca:5d:0d: f5:d8:36:72:d6:84:de:2b:4d:d7:2a:e4:02:08:b9:d0:07:79: a3:b9:7a:c7:a7:37:4c:60:fa:35:a4:21:65:c7:03:96:cb:e1: 50:28:3b:43:bf:3d:b7:fd:d9:4a:81:29:69:26:c8:71:ea:d8: 85:21:46:6f:9b:38:31:db:91:90:ef:61:93:60:ac:75:af:b7: 76:de:dc:cc:ba:bc:56:fc:c2:b9:ce:43:49:02:8f:b7:33:2c: b7:43:51:89:6b:a0:ea:5f:10:91:32:a0:3f:4c:c2:4b:6d:15: 57:7b:5e:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwNzE5MDUwNDIyWhcNMjUwNzI2MDUwNDIyWjAYMRYwFAYD VQQDEw02ODdiMjc1Ni03MWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUhjNmA52Vo5iOHJkVwEfWJsXdCU1Vux/yKdpNncOd5/DowevrSrx+TbgclH 7OvZkB2UZzXb133BSFVyayRBxc2biF74FR+LzJKUfU+goBMdHoKf+JI3yCDDK63P ogbRvyvZkh0pFmP6V8rIZVTaH7C4jUVbS5ObG3Pjj4PaUCesu9u7UZ///cgYmjsX Gi9/jLOvqwyQ7IDJenWJf0/dDp9hbtkGA3/OihbQLP8Q7A7BG0NXl/fO8U0qTi// MZ27mt6bFGKvyBFc8/CXnjGvyx2vuoS51obFVYqh8AW45hMURhClCZu6FHVP9WqR xmw2eZZE6zLsTd5aMzWZ6IOlEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF9KU8ub Tb62wZh2VvYnhaZcBvNIMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNu0IPcSHFkGxcJ1Yph7Re6iRuu46UtgOphkXjP8FigCoMzdKRai6T cipU8/y7y6/yuzQz4hrajzZyVJFyJRuFQn70hF5DNFautcnac9YRcDPlEgkFJDNJ 9J6ejFXZCvqpGPiesVxucUFZ3VD6eIA6Y+D4cp+nb5Wzsx5zW+IfxPyPqxOeNOgC rwt+c4rKXQ312DZy1oTeK03XKuQCCLnQB3mjuXrHpzdMYPo1pCFlxwOWy+FQKDtD vz23/dlKgSlpJshx6tiFIUZvmzgx25GQ72GTYKx1r7d23tzMurxW/MK5zkNJAo+3 Myy3Q1GJa6DqXxCRMqA/TMJLbRVXe16Q -----END CERTIFICATE-----Generated at Sun Jul 20 06:51:45 2025 by rpki-client