$ rpki-client -vvf rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft File: 4QiBh_ZAlCY92mdJqV9zqmwasGM.mft (raw, json) Hash identifier: AmCXV1xcEf1ojK8Vwe5k7xc+jknzCyCdQdSYpXH7hWM= Subject key identifier: CC:39:72:E9:73:7A:49:5E:EC:EC:11:45:45:4E:33:8D:4B:56:16:1F Authority key identifier: E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 Certificate issuer: /CN=A917BAC5/serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Certificate serial: 02CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft Manifest number: 02A5 Signing time: Wed 23 Jul 2025 02:10:09 +0000 Manifest this update: Wed 23 Jul 2025 02:10:08 +0000 Manifest next update: Wed 30 Jul 2025 02:10:08 +0000 Files and hashes: 1: 4QiBh_ZAlCY92mdJqV9zqmwasGM.crl (hash: CCyyJnHP2VmSXXjnGaDwqIr5EoVFU3DjCj5hzF13HSo=) 2: CC647BDECAC711EF80553A61C4F9AE02.roa (hash: JjvbSqdanHSpYIcMXGp+ZgcFpNIRiyjhFnX93ubLPo8=) 3: 4C7C3EA8E8F511EDBC11CF6BC4F9AE02.roa (hash: voNhvFt+rl48+RXxjQWaNEIjDq7tMEczadZRVwJF374=) 4: 78BC7D28A87E11ED9AE70779C4F9AE02.roa (hash: J3Ksm9WsEr0TXjLLhaQloclJKmSPXVrqrAzTlf/eKtU=) 5: 3632957E441311EE8A03A472C4F9AE02.roa (hash: hc0GUtEKKEGW9gMZlTO39H3fWKoJ6wdGBAjVqIVrLxQ=) 6: 780136B63D1211EEBB0A0C5AC4F9AE02.roa (hash: SMaX3aa/UFh43gcKCcEgmT4cm/dWEuQesSH3aBzRpfE=) 7: CCEE4F76CAC711EF80553A61C4F9AE02.roa (hash: 74i29heKayX8ulpi57w5YoL9mLrlBcexKja8YJG8ecM=) 8: 9DC49A2449A011EEB3DFDD0DC4F9AE02.roa (hash: I/sFHc7XYiJ8eT0AIMA2+7XdYKHUvmlkXtbK7T+Me2I=) 9: 3D34A750A88111ED80831318C4F9AE02.roa (hash: a76JQF1qiEmLZKSWyiAc52KnTZOIYMAyGXRjtxdQkfY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 02:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BAC5, serialNumber=E1088187F64094263DDA6749A95F73AA6C1AB063 Validity Not Before: Jul 23 02:10:08 2025 GMT Not After : Jul 30 02:10:08 2025 GMT Subject: CN=68804480-9821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ec:4c:b1:13:9b:c8:d4:34:87:b6:17:08:7b: 06:d6:df:8c:70:b5:88:eb:9b:8f:8d:dc:b2:c0:84: e7:e1:b4:ce:89:6b:9c:50:b8:0b:5f:f6:0a:5e:b0: 0d:eb:0b:38:32:5e:97:0a:12:e8:99:46:fb:44:31: b1:12:e9:73:12:ad:a1:a7:32:57:e7:42:14:af:0a: ba:23:fa:cc:d0:2b:2e:3e:f0:69:23:68:c7:35:ea: fa:dc:2c:9d:16:b1:ef:12:01:0d:04:53:38:93:40: e2:09:d6:a0:58:ad:75:ef:a2:e9:17:a0:45:0c:54: ec:54:50:50:5a:1f:3a:9a:11:c7:97:46:84:76:08: 24:29:36:85:8f:65:d2:93:4f:91:50:97:63:c1:4f: 82:ef:60:73:f0:71:e2:19:f0:d4:42:5e:ca:a1:a9: 3b:3b:df:ab:0a:9a:45:98:0c:af:22:1e:1d:ef:f3: 11:b9:92:ac:23:5a:53:0b:a9:49:20:72:05:f6:91: cc:95:fc:6d:9a:14:0a:f1:61:82:aa:3b:3e:13:aa: e5:f2:67:82:fa:d7:57:a2:52:11:77:f3:d3:aa:b5: 09:7f:55:d1:c1:0c:a6:c7:16:a3:36:19:a8:7c:61: 6d:1a:cd:94:d6:97:c4:86:e0:f6:e9:4f:62:d6:1e: d3:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:39:72:E9:73:7A:49:5E:EC:EC:11:45:45:4E:33:8D:4B:56:16:1F X509v3 Authority Key Identifier: keyid:E1:08:81:87:F6:40:94:26:3D:DA:67:49:A9:5F:73:AA:6C:1A:B0:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QiBh_ZAlCY92mdJqV9zqmwasGM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BAC5/470A6204153011EDBAA3D027C4F9AE02/4QiBh_ZAlCY92mdJqV9zqmwasGM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:5d:33:89:70:9e:3b:7e:fb:9e:f7:16:62:c0:ec:11:d8:18: c7:48:ba:7c:df:c5:f7:3e:60:0f:e8:da:c5:11:77:a3:0c:2b: e4:37:ea:60:bd:d7:b6:f3:1f:4b:c0:b8:2b:95:57:cb:9a:36: 15:58:55:22:dc:1c:62:1e:8c:74:18:7d:98:9d:fa:a1:ac:df: a1:03:39:9e:95:ca:a0:d1:88:de:28:f0:ee:7b:ac:3a:e9:61: ac:cd:40:bc:9b:3d:28:61:18:47:82:6d:50:8a:e4:bb:c1:7b: fd:75:5b:98:f2:9e:e7:6f:3e:4f:ea:3e:69:ec:30:ec:a4:fe: f3:68:a4:ad:4a:a9:17:58:86:9d:49:b6:e9:c3:e6:c1:62:48: 80:59:35:44:82:30:50:50:fd:93:d7:2c:87:cf:9b:8f:4a:6f: 55:a2:03:a9:27:82:03:9e:76:75:09:88:30:3b:82:ca:8e:bb: a8:47:83:22:f9:c5:45:96:88:d8:ff:57:39:c1:38:5b:f0:c1: 4e:40:07:c7:61:c1:81:b2:df:1f:57:fe:39:55:ff:a0:8b:87: 8e:a2:fc:3e:31:8d:b4:6d:d0:a5:cd:43:b3:f6:a9:bd:3c:fd: 55:10:6f:c5:c0:e8:67:ff:05:bc:36:17:f1:fb:98:14:34:87: 89:fc:34:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JBQzUxMTAvBgNVBAUTKEUxMDg4MTg3RjY0MDk0MjYzRERBNjc0OUE5NUY3M0FB NkMxQUIwNjMwHhcNMjUwNzIzMDIxMDA4WhcNMjUwNzMwMDIxMDA4WjAYMRYwFAYD VQQDEw02ODgwNDQ4MC05ODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+xMsRObyNQ0h7YXCHsG1t+McLWI65uPjdyywITn4bTOiWucULgLX/YKXrAN 6ws4Ml6XChLomUb7RDGxEulzEq2hpzJX50IUrwq6I/rM0CsuPvBpI2jHNer63Cyd FrHvEgENBFM4k0DiCdagWK1176LpF6BFDFTsVFBQWh86mhHHl0aEdggkKTaFj2XS k0+RUJdjwU+C72Bz8HHiGfDUQl7Koak7O9+rCppFmAyvIh4d7/MRuZKsI1pTC6lJ IHIF9pHMlfxtmhQK8WGCqjs+E6rl8meC+tdXolIRd/PTqrUJf1XRwQymxxajNhmo fGFtGs2U1pfEhuD26U9i1h7T/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw5culz ekle7OwRRUVOM41LVhYfMB8GA1UdIwQYMBaAFOEIgYf2QJQmPdpnSalfc6psGrBj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkFDNS80NzBBNjIwNDE1 MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxDWTkybWRKcVY5enFtd2Fz R00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRaUJoX1pBbENZOTJtZEpxVjl6cW13YXNHTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QkFDNS80NzBBNjIwNDE1MzAxMUVEQkFBM0QwMjdDNEY5QUUwMi80UWlCaF9aQWxD WTkybWRKcVY5enFtd2FzR00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaXTOJcJ47fvue9xZiwOwR2BjHSLp838X3PmAP6NrFEXejDCvkN+pg vde28x9LwLgrlVfLmjYVWFUi3BxiHox0GH2YnfqhrN+hAzmelcqg0YjeKPDue6w6 6WGszUC8mz0oYRhHgm1QiuS7wXv9dVuY8p7nbz5P6j5p7DDspP7zaKStSqkXWIad Sbbpw+bBYkiAWTVEgjBQUP2T1yyHz5uPSm9VogOpJ4IDnnZ1CYgwO4LKjruoR4Mi +cVFlojY/1c5wThb8MFOQAfHYcGBst8fV/45Vf+gi4eOovw+MY20bdClzUOz9qm9 PP1VEG/FwOhn/wW8Nhfx+5gUNIeJ/DR0 -----END CERTIFICATE-----Generated at Thu Jul 24 23:39:07 2025 by rpki-client