$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: UZPidLoZInGk7nAXZcRRDcS13C1JkqIPPTxgw/5A4Jo= Subject key identifier: E5:1A:F7:60:FE:B4:2E:5A:02:0D:85:59:A4:48:69:E8:23:11:64:9B Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 03A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 039D Signing time: Sat 19 Jul 2025 01:13:26 +0000 Manifest this update: Sat 19 Jul 2025 01:13:26 +0000 Manifest next update: Sat 26 Jul 2025 01:13:26 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: 1mZiqdNrHU/8ooPgL39OXAIpsM6kACG18Hibz0J5C3s=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 931 (0x3a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Jul 19 01:13:26 2025 GMT Not After : Jul 26 01:13:26 2025 GMT Subject: CN=687af136-e6af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b5:e5:b6:21:8f:2d:81:29:51:2c:ba:76:93: 3c:c7:f6:ba:80:0d:f6:25:a9:de:8d:a0:fb:14:a5: 57:89:49:ff:3c:c2:69:08:df:2b:45:3f:5c:de:c1: 3c:a3:ab:a7:9b:ef:10:7c:0b:e5:46:2e:f6:f1:b9: 9e:88:0e:76:59:de:0e:6e:30:d6:ea:36:3e:85:d7: be:ed:25:29:86:c9:a3:66:94:8a:07:35:3d:f7:6c: d2:2e:d5:3d:16:df:84:d1:01:b2:53:53:a8:17:68: 0c:4e:d7:93:5d:8b:6c:2d:0b:72:e6:82:c8:31:dc: 43:c3:6c:ef:d9:04:c0:f8:b6:60:56:57:9a:39:2d: f9:ee:fb:4a:33:b7:9c:7b:ef:4b:41:e7:61:5a:82: 63:31:24:06:54:78:7c:56:31:8c:5c:7f:0b:57:4d: 6a:5d:f9:4a:67:94:56:af:fc:5f:db:61:b5:53:a5: 62:0a:66:a7:35:e3:35:5e:90:4c:96:8e:15:a6:ff: dd:65:dd:c1:fa:d0:6f:a4:16:c1:99:fa:bb:5d:b5: 1f:32:4e:a8:3d:ba:2b:2a:c2:42:47:3d:36:e2:fd: c8:5f:4e:ec:f0:47:50:f9:f2:30:59:8e:7f:ce:ee: f0:41:04:94:87:cd:21:c9:86:8d:cd:26:db:e1:d1: 55:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1A:F7:60:FE:B4:2E:5A:02:0D:85:59:A4:48:69:E8:23:11:64:9B X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:de:7a:18:5f:bf:03:91:6e:13:8e:2b:5b:10:bc:16:e7:97: 2a:33:c0:64:ea:33:8f:5b:b8:d1:cc:c6:bb:3d:1b:55:72:fa: 35:e1:f5:1c:9f:c8:70:bd:41:12:fa:0b:b7:a4:76:11:ae:e7: b9:6d:a6:c0:13:ef:88:ba:06:72:71:dd:d8:d4:13:de:48:be: fb:61:c0:06:a3:52:0b:a6:bb:7a:a3:ad:1c:57:8e:e4:7e:6a: ec:d5:04:b1:22:c6:9d:8b:8b:8a:41:35:d1:a6:b2:95:19:9a: 2c:c7:0d:ae:67:bf:b6:e3:a3:ce:59:33:d7:f3:e7:73:0d:86: a4:8f:03:94:bd:51:33:bf:b9:83:a5:8c:b4:db:d8:26:bf:89: 21:75:58:f3:59:77:ec:62:6a:c4:3d:83:4b:ee:83:1a:3d:a3: 7a:97:3c:d8:6f:73:00:00:7d:ef:8b:bc:7f:70:50:f9:98:8a: 99:fc:a8:8d:b5:1b:cc:eb:57:d3:1a:c6:30:f9:81:e6:6b:85: 0f:bf:f8:29:2a:41:e1:8f:c0:ab:ab:64:07:f8:cc:83:5b:7a: d5:51:f8:72:db:87:c8:48:c6:0f:7a:a4:70:49:c9:0e:b9:c0: 45:0c:88:a4:78:1f:29:50:44:2d:05:92:5e:f3:6c:d2:42:4a: 27:02:9e:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwNzE5MDExMzI2WhcNMjUwNzI2MDExMzI2WjAYMRYwFAYD VQQDEw02ODdhZjEzNi1lNmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrXltiGPLYEpUSy6dpM8x/a6gA32JanejaD7FKVXiUn/PMJpCN8rRT9c3sE8 o6unm+8QfAvlRi728bmeiA52Wd4ObjDW6jY+hde+7SUphsmjZpSKBzU992zSLtU9 Ft+E0QGyU1OoF2gMTteTXYtsLQty5oLIMdxDw2zv2QTA+LZgVleaOS357vtKM7ec e+9LQedhWoJjMSQGVHh8VjGMXH8LV01qXflKZ5RWr/xf22G1U6ViCmanNeM1XpBM lo4Vpv/dZd3B+tBvpBbBmfq7XbUfMk6oPborKsJCRz024v3IX07s8EdQ+fIwWY5/ zu7wQQSUh80hyYaNzSbb4dFVuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUa92D+ tC5aAg2FWaRIaegjEWSbMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBg3noYX78DkW4TjitbELwW55cqM8Bk6jOPW7jRzMa7PRtVcvo14fUc n8hwvUES+gu3pHYRrue5babAE++IugZycd3Y1BPeSL77YcAGo1ILprt6o60cV47k fmrs1QSxIsadi4uKQTXRprKVGZosxw2uZ7+246POWTPX8+dzDYakjwOUvVEzv7mD pYy029gmv4khdVjzWXfsYmrEPYNL7oMaPaN6lzzYb3MAAH3vi7x/cFD5mIqZ/KiN tRvM61fTGsYw+YHma4UPv/gpKkHhj8Crq2QH+MyDW3rVUfhy24fISMYPeqRwSckO ucBFDIikeB8pUEQtBZJe82zSQkonAp50 -----END CERTIFICATE-----Generated at Sun Jul 20 06:51:44 2025 by rpki-client