$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft File: g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft (raw, json) Hash identifier: vhBnnNvKyelPNVxVbJaNjgmZ2oY+KKwNS+EZXHbCe9A= Subject key identifier: 72:00:42:C4:DC:54:6C:28:99:DE:E3:DC:96:30:0C:ED:2B:DF:A6:56 Authority key identifier: 83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E Certificate issuer: /CN=A91A7CDD/serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft Manifest number: 0100 Signing time: Sat 19 Jul 2025 05:19:35 +0000 Manifest this update: Sat 19 Jul 2025 05:19:35 +0000 Manifest next update: Sat 26 Jul 2025 05:19:35 +0000 Files and hashes: 1: g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl (hash: aHGrnPG4rSQjbcTl2L6ucRAoxVa9PGP5mROn672TEBM=) 2: 1E595AE8DD0E11EE9833196BC4F9AE02.roa (hash: kcBBvIPO2Q30vTutynVp6ce7Y05AQ3m9EdubLnBzT4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:19:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7CDD, serialNumber=838A94ED25240959AA6F15491003AC6E6D03957E Validity Not Before: Jul 19 05:19:35 2025 GMT Not After : Jul 26 05:19:35 2025 GMT Subject: CN=687b2ae7-45fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:58:58:f9:32:a0:12:59:9e:c5:2c:79:9b:14: 0c:20:41:75:05:55:dd:ec:3b:03:bb:39:4f:ed:60: 83:52:e4:34:5f:b9:a6:85:6b:86:00:24:66:77:a5: ed:45:ad:1c:4d:0e:90:79:19:d6:70:84:02:ca:39: a6:37:20:06:c6:c1:31:df:dd:35:43:72:d2:51:10: d1:9e:a0:93:e1:d9:cf:bb:d7:8b:1e:2f:5c:d8:e2: 1f:5d:01:11:1d:58:d0:51:95:bc:19:24:db:44:6a: 73:aa:46:e9:df:67:27:4b:66:ca:c7:c9:22:df:3b: 63:39:c4:41:3f:7f:dc:ec:9d:90:e4:17:43:55:fe: 58:2a:28:b1:15:01:32:9a:f8:0a:f7:01:66:45:51: fe:aa:07:52:10:db:79:99:2f:cf:cf:7a:c1:1f:7b: 81:2f:f0:ee:84:22:94:a9:c3:ed:f6:05:2c:39:ca: d1:49:f7:e5:13:b6:ba:ac:9d:5e:3d:78:50:c2:f5: bd:09:20:ea:76:d3:2c:15:37:aa:11:88:1f:4d:b7: b6:f0:6e:3f:33:02:e1:c2:3d:99:1c:f9:31:d2:5a: 25:83:3a:c8:9f:d5:9a:6d:5e:e4:29:0b:bc:3f:b8: c4:9b:c0:2f:da:89:fe:c5:0d:8b:08:49:e3:2e:54: c6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:00:42:C4:DC:54:6C:28:99:DE:E3:DC:96:30:0C:ED:2B:DF:A6:56 X509v3 Authority Key Identifier: keyid:83:8A:94:ED:25:24:09:59:AA:6F:15:49:10:03:AC:6E:6D:03:95:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4qU7SUkCVmqbxVJEAOsbm0DlX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7CDD/8A23A6F8DD0D11EE9D292D6AC4F9AE02/g4qU7SUkCVmqbxVJEAOsbm0DlX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:e1:14:95:58:43:54:af:00:f1:ae:c3:ab:70:fd:ec:76:12: 41:0c:20:25:6e:97:d9:94:c5:8d:79:90:35:e1:bd:26:f1:00: f9:e1:c3:df:6c:67:79:a6:fe:71:0a:bb:a6:1b:9c:c8:30:8f: 8b:61:8a:2a:02:5d:e5:92:30:9e:34:9d:b7:c9:e6:c1:27:18: bd:88:45:48:33:6c:c0:63:1e:f7:84:eb:8d:ac:7c:40:a2:27: 97:f4:fb:8e:d9:22:57:0d:7a:45:69:fb:2c:6a:b0:06:eb:40: 2e:21:81:67:a7:bd:f2:bd:05:ba:bc:d6:5d:ab:7b:a6:0c:07: 96:1e:ec:08:07:9b:75:42:88:fa:89:e8:b4:4e:59:8e:5a:de: 10:5f:1e:19:4b:4b:39:4e:df:83:1e:af:10:4a:bf:d7:e0:7d: 58:0c:c7:5b:75:9d:25:ef:5c:16:3d:3e:f1:ec:17:b0:57:f0: 34:d5:e8:91:cf:d7:b8:ac:19:9c:c0:8c:7c:5a:d4:6d:b1:8e: 5f:29:ce:d7:dc:25:4e:5b:69:cf:f9:10:04:90:06:5b:33:92: 59:2d:cd:60:c4:59:25:1c:56:eb:b1:e1:98:90:67:1c:a4:bf: 3a:50:9c:05:94:2e:19:0b:9f:10:94:ed:a8:39:e9:54:ad:33: cd:5a:07:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDREQxMTAvBgNVBAUTKDgzOEE5NEVEMjUyNDA5NTlBQTZGMTU0OTEwMDNBQzZF NkQwMzk1N0UwHhcNMjUwNzE5MDUxOTM1WhcNMjUwNzI2MDUxOTM1WjAYMRYwFAYD VQQDEw02ODdiMmFlNy00NWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnlhY+TKgElmexSx5mxQMIEF1BVXd7DsDuzlP7WCDUuQ0X7mmhWuGACRmd6Xt Ra0cTQ6QeRnWcIQCyjmmNyAGxsEx3901Q3LSURDRnqCT4dnPu9eLHi9c2OIfXQER HVjQUZW8GSTbRGpzqkbp32cnS2bKx8ki3ztjOcRBP3/c7J2Q5BdDVf5YKiixFQEy mvgK9wFmRVH+qgdSENt5mS/Pz3rBH3uBL/DuhCKUqcPt9gUsOcrRSfflE7a6rJ1e PXhQwvW9CSDqdtMsFTeqEYgfTbe28G4/MwLhwj2ZHPkx0lolgzrIn9WabV7kKQu8 P7jEm8Av2on+xQ2LCEnjLlTGmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHIAQsTc VGwomd7j3JYwDO0r36ZWMB8GA1UdIwQYMBaAFIOKlO0lJAlZqm8VSRADrG5tA5V+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0NERC84QTIzQTZGOERE MEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NWbXFieFZKRUFPc2JtMERs WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2c0cVU3U1VrQ1ZtcWJ4VkpFQU9zYm0wRGxYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0NERC84QTIzQTZGOEREMEQxMUVFOUQyOTJENkFDNEY5QUUwMi9nNHFVN1NVa0NW bXFieFZKRUFPc2JtMERsWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy4RSVWENUrwDxrsOrcP3sdhJBDCAlbpfZlMWNeZA14b0m8QD54cPf bGd5pv5xCrumG5zIMI+LYYoqAl3lkjCeNJ23yebBJxi9iEVIM2zAYx73hOuNrHxA oieX9PuO2SJXDXpFafssarAG60AuIYFnp73yvQW6vNZdq3umDAeWHuwIB5t1Qoj6 iei0TlmOWt4QXx4ZS0s5Tt+DHq8QSr/X4H1YDMdbdZ0l71wWPT7x7BewV/A01eiR z9e4rBmcwIx8WtRtsY5fKc7X3CVOW2nP+RAEkAZbM5JZLc1gxFklHFbrseGYkGcc pL86UJwFlC4ZC58QlO2oOelUrTPNWgcR -----END CERTIFICATE-----Generated at Sun Jul 20 16:35:57 2025 by rpki-client