$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: HJHtwVVHv8H1Fdbr/NnOwK/p8EAr2HeX/FzbxBFnGrk= Subject key identifier: 91:4D:8A:A9:3B:38:10:FA:8C:9E:09:91:9B:63:B6:EE:B9:7F:C9:2F Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 0401 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0454 Signing time: Mon 21 Jul 2025 00:44:45 +0000 Manifest this update: Mon 21 Jul 2025 00:44:45 +0000 Manifest next update: Mon 28 Jul 2025 00:44:45 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: ruZBKSlRdsUnpdW4Sk3HmlFQbKd9trGDKZ2wF010ixM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:44:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1025 (0x401) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Jul 21 00:44:45 2025 GMT Not After : Jul 28 00:44:45 2025 GMT Subject: CN=687d8d7d-22ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:83:33:ba:6f:43:c8:98:06:f8:ad:d2:74:3a: 79:c7:60:48:63:02:21:b6:3a:ff:89:22:1a:ae:39: 2a:16:29:ec:da:24:6f:e3:f4:f4:ac:31:5c:ea:99: 9e:9f:34:ca:e4:18:4c:7c:ea:19:0b:d4:df:16:47: 13:75:96:09:bd:9f:6f:d2:c7:9c:ae:80:86:5d:86: 01:3b:16:65:dc:22:51:85:cc:d9:d4:ae:b3:dd:66: 0d:f5:e4:e7:e7:66:4a:d0:ab:a7:cd:b1:17:f2:15: ff:96:1a:96:02:45:7c:90:82:7f:74:32:fb:15:1f: b9:fa:a6:00:92:a3:36:10:72:1a:27:04:ed:15:37: 8b:5f:cf:0b:34:71:bb:d0:28:8a:66:c6:aa:ca:19: 06:0b:92:e5:d3:4e:c5:da:e2:3b:69:5c:5e:3c:bb: 9a:40:21:05:8c:bc:61:bf:cb:b2:de:cd:bc:c7:5c: c9:3b:9c:dc:51:bf:48:14:06:50:6f:21:5e:7a:82: 25:83:3a:60:82:e8:86:eb:5a:2c:95:01:5c:85:71: ca:e1:df:48:d4:24:24:c5:be:6c:5e:22:84:fe:0d: ad:43:fd:2c:ce:9a:68:55:de:5c:a9:7e:73:d3:8b: d3:5a:a8:32:c8:88:72:c1:c1:37:4b:6a:d3:1b:08: a5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:4D:8A:A9:3B:38:10:FA:8C:9E:09:91:9B:63:B6:EE:B9:7F:C9:2F X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:6f:ef:f2:51:c7:8b:c8:b4:4d:23:d6:7a:a4:58:d7:ef:f2: 53:37:1f:58:81:9a:e6:ee:4d:2a:51:e7:5c:d8:b6:c6:9f:6b: fc:3b:75:86:a4:fb:29:96:15:67:09:c7:f5:3a:fe:a0:3b:c8: 8b:c3:1b:89:98:44:4d:47:0b:25:82:82:83:69:15:11:7b:63: ac:6a:1f:e2:bf:cf:cb:46:0a:64:85:fe:c1:81:bd:ce:d0:0c: 49:e9:55:7a:27:9c:bd:c8:86:cd:c4:f8:de:ff:44:ff:4a:04: b4:e8:9b:e8:ac:52:3a:61:30:28:86:5a:6d:66:67:36:08:a1: ba:38:0a:96:1d:15:12:91:12:ac:e2:c9:75:f4:ed:72:9b:0b: a7:9c:69:72:97:7e:e6:a0:5c:df:de:33:14:e1:4c:ef:0f:f7: 28:1d:57:2b:9e:2d:54:08:21:73:cb:44:aa:66:dc:31:64:ae: a3:ce:76:35:a1:f1:29:0a:76:75:ca:a9:ea:c2:0f:e2:24:06: 45:95:b7:48:97:d6:64:9c:83:7d:ac:12:fc:ef:32:12:13:a1: 6c:5d:aa:b0:22:7a:a9:9c:e1:c2:01:d0:f8:dd:df:dd:47:24: 69:4e:45:ef:47:05:a3:bf:50:27:a1:35:24:b1:eb:9c:2f:28: 83:e4:45:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwNzIxMDA0NDQ1WhcNMjUwNzI4MDA0NDQ1WjAYMRYwFAYD VQQDEw02ODdkOGQ3ZC0yMmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4Mzum9DyJgG+K3SdDp5x2BIYwIhtjr/iSIarjkqFins2iRv4/T0rDFc6pme nzTK5BhMfOoZC9TfFkcTdZYJvZ9v0secroCGXYYBOxZl3CJRhczZ1K6z3WYN9eTn 52ZK0KunzbEX8hX/lhqWAkV8kIJ/dDL7FR+5+qYAkqM2EHIaJwTtFTeLX88LNHG7 0CiKZsaqyhkGC5Ll007F2uI7aVxePLuaQCEFjLxhv8uy3s28x1zJO5zcUb9IFAZQ byFeeoIlgzpgguiG61oslQFchXHK4d9I1CQkxb5sXiKE/g2tQ/0szppoVd5cqX5z 04vTWqgyyIhywcE3S2rTGwilswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFNiqk7 OBD6jJ4JkZtjtu65f8kvMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCsb+/yUceLyLRNI9Z6pFjX7/JTNx9YgZrm7k0qUedc2LbGn2v8O3WG pPsplhVnCcf1Ov6gO8iLwxuJmERNRwslgoKDaRURe2Osah/iv8/LRgpkhf7Bgb3O 0AxJ6VV6J5y9yIbNxPje/0T/SgS06JvorFI6YTAohlptZmc2CKG6OAqWHRUSkRKs 4sl19O1ymwunnGlyl37moFzf3jMU4UzvD/coHVcrni1UCCFzy0SqZtwxZK6jznY1 ofEpCnZ1yqnqwg/iJAZFlbdIl9ZknIN9rBL87zISE6FsXaqwInqpnOHCAdD43d/d RyRpTkXvRwWjv1AnoTUkseucLyiD5EWL -----END CERTIFICATE-----Generated at Mon Jul 21 05:46:02 2025 by rpki-client