$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft File: 4_fO9uelaeRrLZA5MitpdVMcJWY.mft (raw, json) Hash identifier: dQSGkX9Pki8jo8hThOEJdeYi2R1sdBnb2Zmx8u1Cl1A= Subject key identifier: 46:E9:16:D9:9E:DE:F2:5B:65:D6:E5:D4:7D:A0:DE:60:2D:4D:78:66 Authority key identifier: E3:F7:CE:F6:E7:A5:69:E4:6B:2D:90:39:32:2B:69:75:53:1C:25:66 Certificate issuer: /CN=A91D0077/serialNumber=E3F7CEF6E7A569E46B2D9039322B6975531C2566 Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_fO9uelaeRrLZA5MitpdVMcJWY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft Manifest number: 01E0 Signing time: Mon 21 Jul 2025 02:44:23 +0000 Manifest this update: Mon 21 Jul 2025 02:44:23 +0000 Manifest next update: Mon 28 Jul 2025 02:44:23 +0000 Files and hashes: 1: 4_fO9uelaeRrLZA5MitpdVMcJWY.crl (hash: pBmy5zcEjASRrZwg8TGCeQKwaAhMGdf32M7FgDjcK1U=) 2: 24F87CC2810611EDA756F886C4F9AE02.roa (hash: 8hmKlSyIYm+hEMbljQN7ZPJxD7JA/JzX6lz/de7dJIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.crl rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_fO9uelaeRrLZA5MitpdVMcJWY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0077, serialNumber=E3F7CEF6E7A569E46B2D9039322B6975531C2566 Validity Not Before: Jul 21 02:44:23 2025 GMT Not After : Jul 28 02:44:23 2025 GMT Subject: CN=687da987-8c5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:01:3f:6a:81:74:64:72:f6:2d:50:8e:51:f3: dc:88:8b:1b:92:20:6e:41:24:e5:ef:90:8b:7c:a8: 14:37:d3:5e:eb:c5:2b:04:c7:69:25:1a:2e:ad:67: ea:65:34:86:1e:60:a7:a0:f0:b4:0d:fc:be:bb:38: 60:7b:35:e7:5e:e2:58:de:8b:cf:32:4d:1f:6e:dd: a4:85:92:74:aa:50:b0:4f:21:6b:06:8f:db:b0:4a: 2c:a9:19:a6:2d:82:1d:30:dc:3c:07:cb:e6:6b:da: 0b:77:9d:b8:b2:87:ae:72:21:61:0d:6f:fa:e0:94: b4:35:73:7d:3a:c2:a4:5d:c9:ec:76:87:13:76:06: 00:80:3a:fa:52:7f:d0:19:81:6d:1c:dd:e7:28:12: 9e:95:a6:a2:18:50:5f:c0:18:5d:df:08:cf:0e:e0: ca:dc:2e:da:58:78:2d:5c:91:1d:7f:16:92:58:98: 41:36:6b:36:e3:d1:80:99:a6:40:a6:eb:ac:ac:b4: 96:bc:6c:c1:7a:5f:8b:b9:1f:f2:6b:13:7d:0d:01: e1:d8:13:45:3d:bb:2a:1b:d6:51:c5:6c:a4:1a:dd: 7d:d0:53:f2:4c:e7:6f:d6:76:13:a7:f7:2e:63:d6: 32:b6:25:40:a8:fc:73:7a:b3:7b:a6:de:40:94:ad: f4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:E9:16:D9:9E:DE:F2:5B:65:D6:E5:D4:7D:A0:DE:60:2D:4D:78:66 X509v3 Authority Key Identifier: keyid:E3:F7:CE:F6:E7:A5:69:E4:6B:2D:90:39:32:2B:69:75:53:1C:25:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_fO9uelaeRrLZA5MitpdVMcJWY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0077/506AE230810311EDA847CD85C4F9AE02/4_fO9uelaeRrLZA5MitpdVMcJWY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ce:0e:98:a8:db:12:4d:93:ec:17:0f:c4:39:fa:9d:45:87: 52:6f:92:88:fb:6a:c6:b4:4c:96:82:dc:3d:de:99:1a:03:6e: 1e:b8:c3:89:5f:ad:93:d8:63:b9:8f:22:d4:82:c8:e2:8d:9a: 42:8c:5d:67:67:85:21:a8:6e:02:37:f7:0f:44:13:c3:c0:fa: 47:0d:54:08:1d:46:ec:53:40:59:5d:fe:8e:77:40:0b:09:1f: de:42:e7:f0:d2:1e:1c:77:56:2e:fd:95:4c:94:36:87:f6:70: ae:86:9f:2b:d2:76:0e:14:17:4b:96:9e:83:d9:a6:96:a1:ff: 90:ff:50:dd:5d:c2:71:5d:3e:86:bf:8f:72:a3:fb:ef:7d:33: a2:d0:55:2a:3e:03:91:48:7b:dc:d8:b2:d7:56:5e:05:81:63: 0a:46:df:5f:57:2b:92:ab:46:a1:23:a8:39:df:e0:53:4c:4a: 2e:ee:f2:35:c2:ae:e7:88:70:cc:cf:2a:48:1b:75:69:e1:6c: c5:55:38:58:f6:27:2b:9b:d9:a6:53:fa:1e:c0:f7:12:94:43: c9:47:e9:fe:7f:d9:64:09:f2:44:01:49:46:72:f2:d6:5b:bd: 0a:0e:b5:fb:64:5a:47:f8:b0:f1:e6:99:35:38:58:b0:c6:02: 99:6e:8c:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDAwNzcxMTAvBgNVBAUTKEUzRjdDRUY2RTdBNTY5RTQ2QjJEOTAzOTMyMkI2OTc1 NTMxQzI1NjYwHhcNMjUwNzIxMDI0NDIzWhcNMjUwNzI4MDI0NDIzWjAYMRYwFAYD VQQDEw02ODdkYTk4Ny04YzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAE/aoF0ZHL2LVCOUfPciIsbkiBuQSTl75CLfKgUN9Ne68UrBMdpJRourWfq ZTSGHmCnoPC0Dfy+uzhgezXnXuJY3ovPMk0fbt2khZJ0qlCwTyFrBo/bsEosqRmm LYIdMNw8B8vma9oLd524soeuciFhDW/64JS0NXN9OsKkXcnsdocTdgYAgDr6Un/Q GYFtHN3nKBKelaaiGFBfwBhd3wjPDuDK3C7aWHgtXJEdfxaSWJhBNms249GAmaZA puusrLSWvGzBel+LuR/yaxN9DQHh2BNFPbsqG9ZRxWykGt190FPyTOdv1nYTp/cu Y9YytiVAqPxzerN7pt5AlK30KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEbpFtme 3vJbZdbl1H2g3mAtTXhmMB8GA1UdIwQYMBaAFOP3zvbnpWnkay2QOTIraXVTHCVm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDA3Ny81MDZBRTIzMDgx MDMxMUVEQTg0N0NEODVDNEY5QUUwMi80X2ZPOXVlbGFlUnJMWkE1TWl0cGRWTWNK V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRfZk85dWVsYWVSckxaQTVNaXRwZFZNY0pXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MDA3Ny81MDZBRTIzMDgxMDMxMUVEQTg0N0NEODVDNEY5QUUwMi80X2ZPOXVlbGFl UnJMWkE1TWl0cGRWTWNKV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKzg6YqNsSTZPsFw/EOfqdRYdSb5KI+2rGtEyWgtw93pkaA24euMOJ X62T2GO5jyLUgsjijZpCjF1nZ4UhqG4CN/cPRBPDwPpHDVQIHUbsU0BZXf6Od0AL CR/eQufw0h4cd1Yu/ZVMlDaH9nCuhp8r0nYOFBdLlp6D2aaWof+Q/1DdXcJxXT6G v49yo/vvfTOi0FUqPgORSHvc2LLXVl4FgWMKRt9fVyuSq0ahI6g53+BTTEou7vI1 wq7niHDMzypIG3Vp4WzFVThY9icrm9mmU/oewPcSlEPJR+n+f9lkCfJEAUlGcvLW W70KDrX7ZFpH+LDx5pk1OFiwxgKZboxR -----END CERTIFICATE-----Generated at Mon Jul 21 18:21:52 2025 by rpki-client