$ rpki-client -vvf rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft File: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft (raw, json) Hash identifier: HphgnZ2KHF9PSh285FqaN0KQ3uNRdKeoWe+q/3ViTqA= Subject key identifier: 9A:A2:9A:7A:6B:71:38:82:86:C5:ED:D2:2D:A8:BF:9A:41:6E:B8:BD Authority key identifier: E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 Certificate issuer: /CN=A917F854/serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft Manifest number: A4 Signing time: Mon 21 Jul 2025 06:28:51 +0000 Manifest this update: Mon 21 Jul 2025 06:28:51 +0000 Manifest next update: Mon 28 Jul 2025 06:28:51 +0000 Files and hashes: 1: 4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl (hash: OOD2sv5Xmk7b87jhtlBvj3ycMnY/lXP1jW+Z3snrUhg=) 2: DA21D1C8DF0711EFA13DFF77C4F9AE02.roa (hash: naM1jWBBF1HgB1gzetomIgtwuH6iwO3twg6Wvbh3nCU=) 3: 3C74C0E0799D11EF9547461CC4F9AE02.roa (hash: HEoFn428OSrwoj9FY9UBG8roOsE7KCgrYxU/d2SrcQg=) 4: 3CE9A810799D11EF9547461CC4F9AE02.roa (hash: LfnrEoRSy98kq5+Het7TGQh6Md9GIYKtrywQQ+4Cqlg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 06:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F854, serialNumber=E11A472F849FA3D663CA87CA6633ECE7D8D00762 Validity Not Before: Jul 21 06:28:51 2025 GMT Not After : Jul 28 06:28:51 2025 GMT Subject: CN=687dde23-9874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:bb:a9:e3:c9:6e:48:12:14:e7:01:b4:2c:50: 0c:fb:67:54:9a:a3:cd:ee:3b:03:55:1a:ff:51:d9: 51:4a:63:cc:44:84:f3:9f:7c:4f:99:75:00:e1:ab: 70:1b:54:f9:10:1a:54:c9:e7:d5:23:80:64:42:a3: 32:93:0c:d8:5c:79:d7:b8:c9:42:84:08:cd:b7:e8: b8:f5:46:37:1b:ed:17:df:96:ca:33:44:3b:25:c2: b6:98:27:9a:ab:b2:bc:3c:64:87:b4:56:6c:82:ea: 52:7b:55:f2:ab:ce:d2:6a:71:5c:c9:5f:79:89:2d: 1d:58:10:20:b5:4a:56:ed:56:52:c1:ec:f7:c1:9b: f0:e8:39:bd:11:e8:ac:71:5e:6d:2c:30:5c:fd:ec: ae:a5:b6:c5:ad:44:6d:dd:53:82:78:a9:9a:03:27: 59:b9:76:06:99:08:fb:c1:5c:60:be:e1:32:53:f3: 31:0d:d2:64:57:13:d6:54:3d:da:5d:3d:9a:e8:0b: 1e:4b:ca:b6:05:7f:d5:f1:32:23:84:3a:b9:14:89: e4:30:1d:b5:b2:c1:4a:6d:91:73:64:4a:1a:31:01: 25:13:7e:eb:a9:5c:44:f5:4b:f2:72:13:50:f5:06: 78:9e:4e:93:f9:55:93:17:69:81:3d:ac:e7:e7:9f: 25:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A2:9A:7A:6B:71:38:82:86:C5:ED:D2:2D:A8:BF:9A:41:6E:B8:BD X509v3 Authority Key Identifier: keyid:E1:1A:47:2F:84:9F:A3:D6:63:CA:87:CA:66:33:EC:E7:D8:D0:07:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RpHL4Sfo9ZjyofKZjPs59jQB2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F854/A8964660799B11EF811F9019C4F9AE02/4RpHL4Sfo9ZjyofKZjPs59jQB2I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:ba:86:80:e3:c0:14:dd:b7:84:67:89:03:9c:c3:42:f6:d2: 9e:7a:b0:65:45:df:9f:b9:c2:83:61:91:b3:98:01:5a:d1:a2: be:c2:2d:61:71:de:a5:b5:50:85:97:fc:06:ec:79:d0:c9:52: db:7a:04:80:b3:2f:87:9f:6e:c3:2c:e2:09:c8:52:29:83:6d: 39:01:75:98:0c:75:eb:79:61:a3:a8:7f:63:b2:5a:a2:7a:58: 39:96:b6:e5:da:8c:55:43:1d:66:b8:5c:5c:7d:ef:9e:45:85: a3:b1:40:be:95:81:04:de:fd:c2:1d:03:5c:38:72:99:52:8b: 6c:cb:3e:c8:40:27:d0:3a:cd:02:1f:7d:e1:9c:99:b3:2d:a7: 71:9b:b7:0d:8d:ce:24:50:a2:42:d9:f5:32:28:ea:f1:c3:34: 54:ef:57:78:3e:30:50:74:ff:4e:33:7f:03:9b:f7:a9:38:80: 55:a4:9b:ce:28:e8:65:f2:10:a7:f0:85:07:00:e2:59:4c:27: a8:9b:a6:16:7d:a3:08:d2:27:ac:69:cb:1f:f3:27:13:c0:57: ac:57:d5:c2:5e:71:69:87:0a:fd:51:61:b9:b5:d6:89:4d:f0: 87:97:6e:d4:f5:0f:aa:7a:9b:3a:59:12:ee:88:3e:71:01:1f: ec:4e:c4:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y4NTQxMTAvBgNVBAUTKEUxMUE0NzJGODQ5RkEzRDY2M0NBODdDQTY2MzNFQ0U3 RDhEMDA3NjIwHhcNMjUwNzIxMDYyODUxWhcNMjUwNzI4MDYyODUxWjAYMRYwFAYD VQQDEw02ODdkZGUyMy05ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7up48luSBIU5wG0LFAM+2dUmqPN7jsDVRr/UdlRSmPMRITzn3xPmXUA4atw G1T5EBpUyefVI4BkQqMykwzYXHnXuMlChAjNt+i49UY3G+0X35bKM0Q7JcK2mCea q7K8PGSHtFZsgupSe1Xyq87SanFcyV95iS0dWBAgtUpW7VZSwez3wZvw6Dm9Eeis cV5tLDBc/eyupbbFrURt3VOCeKmaAydZuXYGmQj7wVxgvuEyU/MxDdJkVxPWVD3a XT2a6AseS8q2BX/V8TIjhDq5FInkMB21ssFKbZFzZEoaMQElE37rqVxE9UvychNQ 9QZ4nk6T+VWTF2mBPazn558lewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJqimnpr cTiChsXt0i2ov5pBbri9MB8GA1UdIwQYMBaAFOEaRy+En6PWY8qHymYz7OfY0Adi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Rjg1NC9BODk2NDY2MDc5 OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85Wmp5b2ZLWmpQczU5alFC MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRScEhMNFNmbzlaanlvZktaalBzNTlqUUIySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 Rjg1NC9BODk2NDY2MDc5OUIxMUVGODExRjkwMTlDNEY5QUUwMi80UnBITDRTZm85 Wmp5b2ZLWmpQczU5alFCMkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBquoaA48AU3beEZ4kDnMNC9tKeerBlRd+fucKDYZGzmAFa0aK+wi1h cd6ltVCFl/wG7HnQyVLbegSAsy+Hn27DLOIJyFIpg205AXWYDHXreWGjqH9jslqi elg5lrbl2oxVQx1muFxcfe+eRYWjsUC+lYEE3v3CHQNcOHKZUotsyz7IQCfQOs0C H33hnJmzLadxm7cNjc4kUKJC2fUyKOrxwzRU71d4PjBQdP9OM38Dm/epOIBVpJvO KOhl8hCn8IUHAOJZTCeom6YWfaMI0iesacsf8ycTwFesV9XCXnFphwr9UWG5tdaJ TfCHl27U9Q+qeps6WRLuiD5xAR/sTsR/ -----END CERTIFICATE-----Generated at Tue Jul 22 06:00:29 2025 by rpki-client