$ rpki-client -vvf rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft File: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft (raw, json) Hash identifier: fKZujmky96k7KHgIFA/fdqtl5ASxWkhBC0zk+PRsNVs= Subject key identifier: 2F:BC:9A:43:27:CE:5C:AB:2F:FB:28:82:F3:3C:0F:FF:66:44:FE:75 Authority key identifier: E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 Certificate issuer: /CN=A917F854/serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Certificate serial: AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft Manifest number: A5 Signing time: Wed 23 Jul 2025 06:37:59 +0000 Manifest this update: Wed 23 Jul 2025 06:37:59 +0000 Manifest next update: Wed 30 Jul 2025 06:37:59 +0000 Files and hashes: 1: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl (hash: pSHO317X/lzaHyt5/exC9zPcQeBxEjD1ZK/HrYR4rdw=) 2: DA21D1C8DF0711EFA13DFF77C4F9AE02.roa (hash: naM1jWBBF1HgB1gzetomIgtwuH6iwO3twg6Wvbh3nCU=) 3: 3C74C0E0799D11EF9547461CC4F9AE02.roa (hash: HEoFn428OSrwoj9FY9UBG8roOsE7KCgrYxU/d2SrcQg=) 4: 3CE9A810799D11EF9547461CC4F9AE02.roa (hash: LfnrEoRSy98kq5+Het7TGQh6Md9GIYKtrywQQ+4Cqlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 06:37:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F854, serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Validity Not Before: Jul 23 06:37:59 2025 GMT Not After : Jul 30 06:37:59 2025 GMT Subject: CN=68808347-a415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:df:53:bd:b5:c5:0d:41:4d:75:bf:21:e0:4b: 1b:4b:66:9d:b1:be:3a:af:ba:c1:3d:01:4c:44:30: e9:5d:79:13:12:89:b1:ae:ae:38:d4:ff:2a:7e:f0: fc:cc:97:77:97:13:e9:43:6b:d6:a2:a9:6b:5d:db: 77:f9:22:a3:9e:04:79:61:fe:60:2f:01:0e:4f:25: 27:62:71:bf:00:64:2e:52:10:1f:64:24:78:62:b1: aa:fc:f1:cb:35:7b:87:53:d0:8b:d6:8b:91:fa:e1: 33:ce:14:3d:94:ee:06:1a:14:1a:de:1d:de:ab:da: 3e:65:72:f3:97:46:16:80:dc:4a:2d:e1:09:c7:34: da:d4:ff:76:2b:d8:89:3e:ee:39:6d:f3:50:a5:b5: a3:46:c9:b0:70:02:bf:44:56:e9:7c:79:68:18:eb: 20:7d:d7:51:91:dd:d1:3c:c8:d6:2a:0b:90:35:52: 6c:de:f1:c0:ee:d5:fb:4d:9d:a9:46:93:bc:7f:52: 9f:1e:83:eb:7e:da:eb:85:a8:fd:c8:de:42:0e:91: fd:bf:68:de:7a:93:2c:e0:5e:4f:13:12:86:8d:74: 82:54:be:df:41:10:dc:2c:44:c3:9e:8a:ca:a9:3e: e2:ed:ea:7e:2c:fc:76:82:52:a6:a1:88:29:6c:de: 8c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BC:9A:43:27:CE:5C:AB:2F:FB:28:82:F3:3C:0F:FF:66:44:FE:75 X509v3 Authority Key Identifier: keyid:E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:40:7f:5e:54:2e:eb:c1:14:a8:e4:77:26:8d:03:e9:85:45: aa:7a:37:d0:81:ac:10:cf:6b:08:4d:9d:54:a6:a6:10:9e:e6: 44:e4:3b:d7:59:74:d9:1b:e9:29:07:30:e3:fd:df:a9:0e:46: 64:4a:1d:45:ed:1f:d6:8c:7b:7e:5e:b1:f6:b6:1c:0d:f9:d9: 14:b4:0b:a7:44:66:59:13:20:8a:16:11:14:44:b4:5a:cd:61: 3b:86:0a:67:3b:6c:a6:64:53:71:2c:a9:75:be:50:92:1c:37: a1:38:32:4f:6d:bc:41:69:33:4e:aa:cb:40:d9:ee:36:1d:c3: 54:69:c4:a9:7f:fa:7b:0e:46:de:f2:54:34:7c:54:bb:cd:3d: 0e:d7:13:a9:5a:ef:b3:80:89:b5:da:b9:f2:e2:3a:77:ac:fe: c2:28:19:4e:6c:02:63:80:11:1b:44:cf:10:48:30:09:7e:e5: bf:90:21:35:c0:d2:e0:6b:c0:05:05:a4:df:68:ac:83:b6:b6: 08:82:57:84:13:5d:59:8d:64:66:0f:d7:48:cf:f9:c2:06:03: 3a:b3:5d:e2:88:b6:34:1c:78:c2:a3:ac:95:42:d0:12:f9:d4: 4b:fd:7e:dd:91:d5:0e:e2:a4:ad:0b:d5:0d:e2:33:da:c9:0c: 0d:05:73:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NTQxMTAvBgNVBAUTKEUxMUE0NzJGODQ5RkEzRDY2M0NBODdDQTY2MzNFQ0U3 RDhEMDA3NjIwHhcNMjUwNzIzMDYzNzU5WhcNMjUwNzMwMDYzNzU5WjAYMRYwFAYD VQQDEw02ODgwODM0Ny1hNDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxN9TvbXFDUFNdb8h4EsbS2adsb46r7rBPQFMRDDpXXkTEomxrq441P8qfvD8 zJd3lxPpQ2vWoqlrXdt3+SKjngR5Yf5gLwEOTyUnYnG/AGQuUhAfZCR4YrGq/PHL NXuHU9CL1ouR+uEzzhQ9lO4GGhQa3h3eq9o+ZXLzl0YWgNxKLeEJxzTa1P92K9iJ Pu45bfNQpbWjRsmwcAK/RFbpfHloGOsgfddRkd3RPMjWKguQNVJs3vHA7tX7TZ2p RpO8f1KfHoPrftrrhaj9yN5CDpH9v2jeepMs4F5PExKGjXSCVL7fQRDcLETDnorK qT7i7ep+LPx2glKmoYgpbN6MBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC+8mkMn zlyrL/sogvM8D/9mRP51MB8GA1UdIwQYMBaAFOEaRy+En6PWY8qHymYz7OfY0Adi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg1NC9BODk2NDY2MDc5 OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85Wmp5b2ZLWmpQczU5alFC MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRScEhMNFNmbzlaanlvZktaalBzNTlqUUIySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Rjg1NC9BODk2NDY2MDc5OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85 Wmp5b2ZLWmpQczU5alFCMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkQH9eVC7rwRSo5HcmjQPphUWqejfQgawQz2sITZ1UpqYQnuZE5DvX WXTZG+kpBzDj/d+pDkZkSh1F7R/WjHt+XrH2thwN+dkUtAunRGZZEyCKFhEURLRa zWE7hgpnO2ymZFNxLKl1vlCSHDehODJPbbxBaTNOqstA2e42HcNUacSpf/p7Dkbe 8lQ0fFS7zT0O1xOpWu+zgIm12rny4jp3rP7CKBlObAJjgBEbRM8QSDAJfuW/kCE1 wNLga8AFBaTfaKyDtrYIgleEE11ZjWRmD9dIz/nCBgM6s13iiLY0HHjCo6yVQtAS +dRL/X7dkdUO4qStC9UN4jPayQwNBXOG -----END CERTIFICATE-----Generated at Thu Jul 24 04:01:57 2025 by rpki-client