$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: OFbe34ifNmo0y7BhdfwMDRK3lHJbSdQPEdEkjxrTFr4= Subject key identifier: 62:8C:9D:AA:A9:7F:A9:2B:51:DF:B0:53:19:D0:B7:BD:40:98:3C:8D Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 0214 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 0210 Signing time: Sat 19 Jul 2025 02:25:14 +0000 Manifest this update: Sat 19 Jul 2025 02:25:14 +0000 Manifest next update: Sat 26 Jul 2025 02:25:14 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: H4TmRTs+c5FmIlrG2V5imQFWQhkwuy49hpcK7LSP8m8=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: tO/Vg+1jM6TnaROUPSYxvRElxqw/2z5ZN8ZDcSK7tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:25:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Jul 19 02:25:14 2025 GMT Not After : Jul 26 02:25:14 2025 GMT Subject: CN=687b020a-990a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:0e:04:71:cc:80:fd:9c:d4:fe:08:8c:a3:22: ab:74:4f:75:12:ed:ac:6d:48:cf:eb:ab:63:65:77: e0:15:d3:06:e6:44:8f:e9:af:20:3d:ab:f7:34:f8: 70:b8:b5:a9:06:1c:a9:8a:35:e4:86:f4:ab:1d:20: 76:dd:22:28:7d:0e:53:bb:0d:06:2e:f3:a3:e7:46: b3:03:5a:80:85:36:60:67:e1:27:a1:f2:a1:9d:6a: 92:a5:b8:fd:7c:a9:8f:32:f2:45:9b:61:9b:a6:1a: a4:bd:a3:a6:80:06:19:0e:d4:3d:38:cb:f7:55:1e: 61:a9:b5:6c:5c:c7:c8:8b:d4:2b:15:9d:b9:61:b8: d3:d5:80:b4:47:4f:26:6e:55:46:48:78:b0:d5:a4: 10:e2:3a:7a:3c:09:39:fc:ca:4b:94:ef:36:f9:bf: 0c:d8:3f:5e:a0:12:e5:11:2e:f9:b9:ff:fd:88:50: 6a:0d:be:f6:29:30:91:20:9a:96:ff:e5:63:96:32: ac:8f:88:0b:09:39:22:33:98:48:b5:17:ef:9b:19: 86:35:47:79:62:c6:0d:ba:0d:35:b2:db:14:8e:41: 16:eb:c3:19:b6:fb:b6:c8:de:4e:ab:ff:3d:70:3d: 13:d7:e1:fc:29:a2:5a:ba:29:66:04:55:51:29:6d: d9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:8C:9D:AA:A9:7F:A9:2B:51:DF:B0:53:19:D0:B7:BD:40:98:3C:8D X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:32:91:3d:ba:bb:b8:b5:8b:5c:c0:19:99:ab:22:ef:1d:ee: 29:41:a3:b5:66:de:53:9c:71:3e:3e:78:af:80:55:54:77:fe: 0c:d2:73:6a:0d:0a:d4:e3:cc:f7:e9:8d:0f:27:0e:f6:da:c1: 1d:dc:af:f3:4d:57:8f:9a:01:b4:23:86:c2:42:10:76:4d:b0: f2:64:0f:cc:be:61:b6:1b:ec:ec:a5:6c:58:7e:58:91:8a:7f: d0:31:8e:98:19:f1:98:f3:3b:45:7d:2f:23:ba:7c:3e:bd:64: 6a:e3:15:77:99:73:fb:a5:cf:4d:97:3d:62:5d:2f:9d:26:fa: 9d:f6:22:50:cd:96:f3:48:a9:e0:5b:b8:14:21:27:da:08:e1: 33:35:72:ab:c7:a6:fe:c5:e3:f0:a5:51:fb:73:1e:47:a4:d4: d9:19:ee:3c:d1:d3:e9:d8:23:f8:31:0c:d4:32:74:56:eb:20: 38:b1:7e:e8:4f:c5:68:d6:1a:44:81:eb:37:af:25:cd:bd:b4: 4c:5c:b5:e1:fd:6b:45:03:4b:1f:1f:ea:c9:7d:41:d5:9d:1f: c4:d0:66:c9:2b:a0:88:c9:6a:eb:62:5b:b1:24:3a:94:d3:ba: be:77:e0:b6:f2:65:8d:40:ab:f1:52:6b:bb:c2:34:ae:80:28: 95:b5:df:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUwNzE5MDIyNTE0WhcNMjUwNzI2MDIyNTE0WjAYMRYwFAYD VQQDEw02ODdiMDIwYS05OTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Q4EccyA/ZzU/giMoyKrdE91Eu2sbUjP66tjZXfgFdMG5kSP6a8gPav3NPhw uLWpBhypijXkhvSrHSB23SIofQ5Tuw0GLvOj50azA1qAhTZgZ+EnofKhnWqSpbj9 fKmPMvJFm2GbphqkvaOmgAYZDtQ9OMv3VR5hqbVsXMfIi9QrFZ25YbjT1YC0R08m blVGSHiw1aQQ4jp6PAk5/MpLlO82+b8M2D9eoBLlES75uf/9iFBqDb72KTCRIJqW /+VjljKsj4gLCTkiM5hItRfvmxmGNUd5YsYNug01stsUjkEW68MZtvu2yN5Oq/89 cD0T1+H8KaJauilmBFVRKW3ZeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGKMnaqp f6krUd+wUxnQt71AmDyNMB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJMpE9uru4tYtcwBmZqyLvHe4pQaO1Zt5TnHE+PnivgFVUd/4M0nNq DQrU48z36Y0PJw722sEd3K/zTVePmgG0I4bCQhB2TbDyZA/MvmG2G+zspWxYfliR in/QMY6YGfGY8ztFfS8junw+vWRq4xV3mXP7pc9Nlz1iXS+dJvqd9iJQzZbzSKng W7gUISfaCOEzNXKrx6b+xePwpVH7cx5HpNTZGe480dPp2CP4MQzUMnRW6yA4sX7o T8Vo1hpEges3ryXNvbRMXLXh/WtFA0sfH+rJfUHVnR/E0GbJK6CIyWrrYluxJDqU 07q+d+C28mWNQKvxUmu7wjSugCiVtd80 -----END CERTIFICATE-----Generated at Sun Jul 20 11:27:49 2025 by rpki-client