$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: S8OT6vS0r99QD3jdjR0GxboFC9Izcxu8DYVGn4OBbpg= Subject key identifier: CD:E5:07:0E:0B:51:01:72:B6:E2:76:9C:09:E3:10:E6:BA:C0:DE:0A Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DE3 Signing time: Sun 20 Jul 2025 17:54:45 +0000 Manifest this update: Sun 20 Jul 2025 17:54:45 +0000 Manifest next update: Sun 27 Jul 2025 17:54:45 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: 2JOQi91MQF1Kq/kjn4LljJvwFSnVFgqFhz6Lb0fRJ9M=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:54:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Jul 20 17:54:45 2025 GMT Not After : Jul 27 17:54:45 2025 GMT Subject: CN=687d2d65-1e07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:38:fe:8b:23:da:8e:d6:e0:66:16:29:4c:08: e7:92:ae:51:8f:5e:07:f0:14:26:c3:51:4e:0d:05: c1:2a:60:43:8f:fb:16:08:c9:52:46:bc:fd:bd:63: 51:ca:a1:fb:85:f4:10:a6:92:4f:19:5d:9e:33:6c: e9:6b:46:d8:3e:05:4a:16:d5:85:91:98:6f:81:cd: 6d:ec:0b:61:c4:0a:79:6e:a2:3d:09:3b:bb:14:bf: 96:d3:9b:b6:22:42:16:96:05:53:47:0f:f4:de:bb: 05:22:0e:12:7b:c7:4b:cc:34:21:6c:7c:9d:52:fb: aa:42:85:e0:30:cc:63:89:21:cc:fc:5b:ea:18:ec: 5b:54:78:fc:21:e3:65:0b:7b:b2:5b:e4:c7:6f:08: f8:35:6b:51:41:56:50:4f:8c:da:7f:8b:9d:cc:54: 33:11:5b:7c:e7:8c:f3:d9:b8:87:1f:6b:fc:e4:20: 1c:a6:5d:f0:8c:1c:b9:ce:70:3e:2a:7f:d5:54:1e: ae:1a:87:f7:08:ca:9b:e2:fc:96:b6:56:5e:16:0f: d9:bc:72:bc:4d:47:ed:95:e1:71:6a:1e:02:52:32: c2:8b:c0:4d:1c:e7:a5:2d:02:d8:17:03:96:8a:b9: 3c:84:aa:5d:51:a1:73:59:ed:e7:96:bf:5e:68:34: 85:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E5:07:0E:0B:51:01:72:B6:E2:76:9C:09:E3:10:E6:BA:C0:DE:0A X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:6c:61:42:7a:52:25:21:42:e9:01:5b:0e:e0:47:2b:9e:1e: c6:9d:5d:da:df:80:df:30:d5:01:6a:9e:9d:86:0b:31:7f:2a: ec:cc:d0:fa:7f:9a:f9:c4:a4:cf:f2:ef:b4:f3:fa:b2:22:76: d3:4c:1a:42:50:64:9c:ac:41:9e:8e:78:eb:22:19:c1:2e:d2: 32:63:15:db:e5:c1:a4:52:a2:64:30:65:70:74:4c:02:96:57: 79:aa:42:56:8d:7e:57:f7:62:a7:e6:f8:9b:8c:c8:19:25:09: 01:8d:00:35:26:3a:5d:4f:c3:6b:7e:73:63:31:b8:c7:52:a3: 14:60:b8:62:d4:4e:fd:03:98:e4:bb:bf:dd:a1:94:ff:62:ac: 40:1f:e6:e1:ee:23:50:e2:fd:b8:96:39:44:aa:47:84:cb:c2: 7c:f6:64:57:9c:c7:e0:22:27:5b:0f:f2:67:51:7f:e0:f7:b1: d4:b1:2d:97:5c:3b:00:f7:83:ad:c6:12:d8:10:2c:1b:9f:e5: 1c:15:f3:16:bb:57:c8:79:c4:dd:a2:f5:94:01:4f:53:a9:76: ea:4b:b7:88:74:bf:4a:5d:64:4a:d0:a9:93:41:03:cb:c4:4b: ad:67:f3:8c:7d:76:c4:30:e9:a9:8a:39:1d:9f:5e:c1:93:cb: 54:3c:15:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwNzIwMTc1NDQ1WhcNMjUwNzI3MTc1NDQ1WjAYMRYwFAYD VQQDEw02ODdkMmQ2NS0xZTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTj+iyPajtbgZhYpTAjnkq5Rj14H8BQmw1FODQXBKmBDj/sWCMlSRrz9vWNR yqH7hfQQppJPGV2eM2zpa0bYPgVKFtWFkZhvgc1t7AthxAp5bqI9CTu7FL+W05u2 IkIWlgVTRw/03rsFIg4Se8dLzDQhbHydUvuqQoXgMMxjiSHM/FvqGOxbVHj8IeNl C3uyW+THbwj4NWtRQVZQT4zaf4udzFQzEVt854zz2biHH2v85CAcpl3wjBy5znA+ Kn/VVB6uGof3CMqb4vyWtlZeFg/ZvHK8TUftleFxah4CUjLCi8BNHOelLQLYFwOW irk8hKpdUaFzWe3nlr9eaDSFNwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM3lBw4L UQFytuJ2nAnjEOa6wN4KMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCubGFCelIlIULpAVsO4Ecrnh7GnV3a34DfMNUBap6dhgsxfyrszND6 f5r5xKTP8u+08/qyInbTTBpCUGScrEGejnjrIhnBLtIyYxXb5cGkUqJkMGVwdEwC lld5qkJWjX5X92Kn5vibjMgZJQkBjQA1JjpdT8NrfnNjMbjHUqMUYLhi1E79A5jk u7/doZT/YqxAH+bh7iNQ4v24ljlEqkeEy8J89mRXnMfgIidbD/JnUX/g97HUsS2X XDsA94OtxhLYECwbn+UcFfMWu1fIecTdovWUAU9TqXbqS7eIdL9KXWRK0KmTQQPL xEutZ/OMfXbEMOmpijkdn17Bk8tUPBXB -----END CERTIFICATE-----Generated at Mon Jul 21 05:52:54 2025 by rpki-client