$ rpki-client -vvf rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft File: 4TxHTdRFcajO9AZpTgStasYbJWY.mft (raw, json) Hash identifier: eW78D8Ta0i4D4PjaxVb0qX8LldN6TaQhV/DNzX9LIGA= Subject key identifier: 43:C2:CD:91:F7:34:5A:9F:51:70:A2:D2:32:E6:E3:7B:7D:C4:38:13 Authority key identifier: E1:3C:47:4D:D4:45:71:A8:CE:F4:06:69:4E:04:AD:6A:C6:1B:25:66 Certificate issuer: /CN=A919D313/serialNumber=E13C474DD44571A8CEF406694E04AD6AC61B2566 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft Manifest number: 0149 Signing time: Sat 19 Jul 2025 04:29:22 +0000 Manifest this update: Sat 19 Jul 2025 04:29:22 +0000 Manifest next update: Sat 26 Jul 2025 04:29:22 +0000 Files and hashes: 1: 4TxHTdRFcajO9AZpTgStasYbJWY.crl (hash: YYpAU6CAj6VhqoNsZwDJ8oH/vINb6PPTi+zjztlyFK0=) 2: 658CF9F2721411EEAC707910C4F9AE02.roa (hash: q+T3C3H2UjoBgZcZ1La6G7C0poZwdj+81El+MVIEtoY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.crl rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D313, serialNumber=E13C474DD44571A8CEF406694E04AD6AC61B2566 Validity Not Before: Jul 19 04:29:22 2025 GMT Not After : Jul 26 04:29:22 2025 GMT Subject: CN=687b1f22-a6f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cf:7d:fa:47:dd:6f:b4:db:58:b3:a3:cc:30: 32:aa:f9:e1:65:9b:99:c9:e1:52:08:16:35:e5:aa: e6:06:88:b1:2d:82:d5:dd:d5:82:45:3f:36:ab:99: da:6d:ed:c0:49:ff:f6:f7:8b:7a:9a:a7:21:16:c5: c7:45:91:cd:c9:25:3e:aa:3c:84:41:2c:a3:f1:8e: aa:09:1a:d1:40:1f:12:24:c5:d5:9c:5a:d3:a7:e3: 2a:75:40:cd:93:42:10:8f:7c:39:be:f2:b9:6b:dd: 7c:33:5b:bb:c7:f5:56:8e:58:f3:0e:38:2c:3a:56: 3b:27:1c:ec:1d:ef:4f:ef:f8:6c:1d:d4:cd:09:c1: d2:93:66:c7:ec:a1:0f:e0:0a:e8:9c:68:f2:46:fb: 68:d0:25:fb:fd:15:ae:21:ed:75:c3:67:2b:8b:f0: 27:a4:c9:8a:d1:75:80:67:9f:fe:11:0c:04:b2:0f: e7:78:66:f2:d7:0f:77:17:de:29:18:31:e8:df:47: 93:6a:43:14:f4:85:23:0e:3e:c3:86:d5:06:20:f9: 86:88:db:0b:1f:fe:63:45:99:c2:02:f4:c7:81:1e: e6:9c:27:7c:ea:87:55:16:2f:66:70:94:3a:4f:54: 5c:db:37:d9:6f:0b:ec:8e:d1:9e:e9:1f:c1:30:7c: 5e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C2:CD:91:F7:34:5A:9F:51:70:A2:D2:32:E6:E3:7B:7D:C4:38:13 X509v3 Authority Key Identifier: keyid:E1:3C:47:4D:D4:45:71:A8:CE:F4:06:69:4E:04:AD:6A:C6:1B:25:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4TxHTdRFcajO9AZpTgStasYbJWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D313/0F2079766EF511EE84DA6982C4F9AE02/4TxHTdRFcajO9AZpTgStasYbJWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:dc:ae:98:d0:e1:43:88:50:25:7a:16:cd:3b:44:b9:15:b6: 23:87:46:5a:a5:00:df:02:71:3c:ff:85:eb:92:df:6f:7b:61: f9:81:e1:b3:4a:a1:7c:e6:d4:69:9f:a3:56:2c:79:75:4b:d5: c5:c1:32:5d:fd:2b:72:ed:c1:83:72:11:c1:e1:59:a5:85:b4: cf:13:ed:82:23:c3:3b:c4:8a:b1:10:46:a4:a5:5f:3e:c4:85: c7:1f:ce:b1:09:01:46:a0:e7:d3:bd:0e:8c:bb:6c:84:ae:f1: af:0a:85:61:dd:83:21:7e:c7:e6:38:b5:87:27:97:ff:c6:f8: 52:80:68:11:f7:8c:3f:e0:f2:14:ac:ed:5f:39:42:9d:1d:f8: 27:26:24:68:de:f8:7e:84:fd:eb:7c:bf:34:09:d1:97:c1:1f: a1:94:73:cf:7d:08:76:fc:cb:58:94:be:6a:16:d9:88:2f:82: 40:ca:a4:33:24:f7:95:d4:5d:fd:40:2b:c4:c9:89:bd:d9:3d: 69:41:38:f3:e4:20:e7:fc:59:3f:0a:eb:ba:8d:7e:1c:a1:d2: 1c:78:4b:f2:31:79:ca:02:7f:ae:35:ab:22:7f:b9:e6:b8:be: 13:e0:89:a5:0c:df:63:8a:b6:7c:0e:83:5d:6e:e6:95:06:b4: e4:91:89:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQzMTMxMTAvBgNVBAUTKEUxM0M0NzRERDQ0NTcxQThDRUY0MDY2OTRFMDRBRDZB QzYxQjI1NjYwHhcNMjUwNzE5MDQyOTIyWhcNMjUwNzI2MDQyOTIyWjAYMRYwFAYD VQQDEw02ODdiMWYyMi1hNmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuc99+kfdb7TbWLOjzDAyqvnhZZuZyeFSCBY15armBoixLYLV3dWCRT82q5na be3ASf/294t6mqchFsXHRZHNySU+qjyEQSyj8Y6qCRrRQB8SJMXVnFrTp+MqdUDN k0IQj3w5vvK5a918M1u7x/VWjljzDjgsOlY7JxzsHe9P7/hsHdTNCcHSk2bH7KEP 4AronGjyRvto0CX7/RWuIe11w2cri/AnpMmK0XWAZ5/+EQwEsg/neGby1w93F94p GDHo30eTakMU9IUjDj7DhtUGIPmGiNsLH/5jRZnCAvTHgR7mnCd86odVFi9mcJQ6 T1Rc2zfZbwvsjtGe6R/BMHxeMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPCzZH3 NFqfUXCi0jLm43t9xDgTMB8GA1UdIwQYMBaAFOE8R03URXGozvQGaU4ErWrGGyVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDMxMy8wRjIwNzk3NjZF RjUxMUVFODREQTY5ODJDNEY5QUUwMi80VHhIVGRSRmNhak85QVpwVGdTdGFzWWJK V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRUeEhUZFJGY2FqTzlBWnBUZ1N0YXNZYkpXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDMxMy8wRjIwNzk3NjZFRjUxMUVFODREQTY5ODJDNEY5QUUwMi80VHhIVGRSRmNh ak85QVpwVGdTdGFzWWJKV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ3K6Y0OFDiFAlehbNO0S5FbYjh0ZapQDfAnE8/4Xrkt9ve2H5geGz SqF85tRpn6NWLHl1S9XFwTJd/Sty7cGDchHB4VmlhbTPE+2CI8M7xIqxEEakpV8+ xIXHH86xCQFGoOfTvQ6Mu2yErvGvCoVh3YMhfsfmOLWHJ5f/xvhSgGgR94w/4PIU rO1fOUKdHfgnJiRo3vh+hP3rfL80CdGXwR+hlHPPfQh2/MtYlL5qFtmIL4JAyqQz JPeV1F39QCvEyYm92T1pQTjz5CDn/Fk/Cuu6jX4codIceEvyMXnKAn+uNasif7nm uL4T4ImlDN9jirZ8DoNdbuaVBrTkkYn4 -----END CERTIFICATE-----Generated at Sun Jul 20 08:00:34 2025 by rpki-client