$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: Vrc+VZJ6ocgRlgLiEoTnTV6WsOQtBQhzVsNR9Jx+OA8= Subject key identifier: AD:6D:88:27:1A:6C:F1:E3:B9:EF:67:08:C5:2B:C4:46:53:2A:A5:AA Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: 64 Signing time: Sat 19 Jul 2025 07:15:26 +0000 Manifest this update: Sat 19 Jul 2025 07:15:25 +0000 Manifest next update: Sat 26 Jul 2025 07:15:25 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: XUPVyrgb5H6i0mgeXMl8Ujs4ZMrfhF61Q9hnua42eDY=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: Nfq9gOVsvHp+sAvDqwlNp+Rm9HqcCv4rXARNazxofGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:15:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Jul 19 07:15:25 2025 GMT Not After : Jul 26 07:15:25 2025 GMT Subject: CN=687b460e-bbf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b1:d0:b0:48:9b:2d:bb:3f:7d:5a:ad:e7:c8: ad:ea:9f:c5:e8:a1:f7:8f:4f:6f:c1:c7:d2:24:35: 3c:d1:1c:0f:18:23:8e:b4:7a:52:fd:ee:1d:71:04: 60:f4:a6:69:d1:33:33:32:ce:18:b3:49:f3:53:31: 90:c1:48:32:2e:58:65:f1:1c:cc:77:55:77:0b:b3: ee:b8:3b:63:f2:c4:35:ae:ab:f5:32:42:ef:4b:31: c4:08:67:58:74:4e:7c:37:60:20:f2:8b:89:54:82: b1:14:77:f5:ea:94:c2:27:28:91:90:f2:54:54:bd: 1b:b9:da:45:86:8f:98:32:70:b3:7b:76:0c:08:eb: 91:ea:f0:02:f5:02:95:cb:b0:6b:b5:5b:f2:53:e7: 52:0d:6c:44:0d:d5:95:32:22:20:db:01:10:87:1c: 25:b4:e3:e4:00:9b:66:31:15:7f:bf:69:cd:ab:3a: 4d:3c:1f:30:b3:91:35:33:9b:ca:de:75:5c:02:2b: 06:19:8f:94:fb:5c:11:8c:c9:75:9f:d6:a7:0a:65: ce:0a:22:aa:de:ab:ce:05:95:de:9d:ad:5d:32:9c: f0:f4:1c:99:5d:71:b9:0a:e8:fd:28:c0:14:57:93: 8f:b1:78:31:2b:af:4b:46:14:cc:ba:ae:2f:80:01: 65:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:6D:88:27:1A:6C:F1:E3:B9:EF:67:08:C5:2B:C4:46:53:2A:A5:AA X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:08:e3:7f:63:4d:45:ea:fb:e5:26:50:bd:c9:54:a1:5a:83: 0d:dc:09:74:be:b8:2b:a4:04:c1:41:48:30:d6:48:2e:32:bd: 33:a6:e2:0f:c1:38:7a:1c:74:64:67:b0:a6:b9:eb:90:28:8f: 20:2f:f4:ad:f1:39:2c:e6:ab:b1:14:d9:af:e4:8e:38:85:f8: ee:bf:87:45:49:92:ca:21:ad:c8:1d:35:e9:5e:34:54:a9:9e: 76:40:80:71:81:19:b9:36:a2:47:ef:0c:41:a8:2f:c0:a0:3c: ef:b2:75:27:39:8c:a8:de:65:be:20:3c:c0:28:44:27:1b:ab: e1:db:f1:67:30:ad:5f:74:bd:0d:39:64:69:84:35:00:a9:6e: 1b:73:af:a9:e1:1e:d4:64:1b:c9:dc:0a:1e:9f:12:c5:02:2b: 3d:59:0a:4a:2e:fc:2c:7b:2d:2c:ee:3c:41:b2:c5:35:af:68: ab:c5:a2:b9:08:ca:2a:37:1c:6c:df:81:48:fd:6f:35:dc:75: 88:b1:5d:1d:82:d8:07:d9:2f:b6:2f:90:22:5e:71:49:9d:2c: 3f:b3:24:7d:88:1a:0b:fe:82:26:6b:95:ca:d1:a9:01:cc:25: f7:35:c1:a5:58:ef:cc:33:d1:07:9c:2c:aa:03:12:45:60:d9: d2:d3:3f:d6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjBBRjExMC8GA1UEBRMoRTExNDM3OERBOTM0ODYxNDY5RjQ5NUQ5NzU5OEUwRjAw Mjg5QzMzMDAeFw0yNTA3MTkwNzE1MjVaFw0yNTA3MjYwNzE1MjVaMBgxFjAUBgNV BAMTDTY4N2I0NjBlLWJiZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOsdCwSJstuz99Wq3nyK3qn8XoofePT2/Bx9IkNTzRHA8YI460elL97h1xBGD0 pmnRMzMyzhizSfNTMZDBSDIuWGXxHMx3VXcLs+64O2PyxDWuq/UyQu9LMcQIZ1h0 Tnw3YCDyi4lUgrEUd/XqlMInKJGQ8lRUvRu52kWGj5gycLN7dgwI65Hq8AL1ApXL sGu1W/JT51INbEQN1ZUyIiDbARCHHCW04+QAm2YxFX+/ac2rOk08HzCzkTUzm8re dVwCKwYZj5T7XBGMyXWf1qcKZc4KIqreq84Fld6drV0ynPD0HJldcbkK6P0owBRX k4+xeDErr0tGFMy6ri+AAWXHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUrW2IJxps 8eO572cIxSvERlMqpaowHwYDVR0jBBgwFoAU4RQ3jak0hhRp9JXZdZjg8AKJwzAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMEFGLzJEN0E3RTBFQ0M0 RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFJRM2phazBoaFJwOUpYWmRaamc4QUtKd3pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MEFGLzJEN0E3RTBFQ0M0RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhS cDlKWFpkWmpnOEFLSnd6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACYI439jTUXq++UmUL3JVKFagw3cCXS+uCukBMFBSDDWSC4yvTOm4g/B OHocdGRnsKa565AojyAv9K3xOSzmq7EU2a/kjjiF+O6/h0VJksohrcgdNeleNFSp nnZAgHGBGbk2okfvDEGoL8CgPO+ydSc5jKjeZb4gPMAoRCcbq+Hb8WcwrV90vQ05 ZGmENQCpbhtzr6nhHtRkG8ncCh6fEsUCKz1ZCkou/Cx7LSzuPEGyxTWvaKvForkI yio3HGzfgUj9bzXcdYixXR2C2AfZL7YvkCJecUmdLD+zJH2IGgv+giZrlcrRqQHM Jfc1waVY78wz0QecLKoDEkVg2dLTP9Y= -----END CERTIFICATE-----Generated at Mon Jul 21 05:53:13 2025 by rpki-client