$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft File: 4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft (raw, json) Hash identifier: XZDmZiK7NMgPGww+DFnZ1ss6PVc94p41emeV9ZFmvMw= Subject key identifier: BF:B6:A2:7D:EC:FD:6F:7D:23:9B:2F:B4:A2:3A:63:04:08:57:90:AF Authority key identifier: E1:18:96:B0:0C:94:86:E4:3E:E7:48:02:D2:19:69:F8:88:EE:4E:2D Certificate issuer: /CN=A91F2B47/serialNumber=E11896B00C9486E43EE74802D21969F888EE4E2D Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft Manifest number: 023E Signing time: Sat 19 Jul 2025 02:20:36 +0000 Manifest this update: Sat 19 Jul 2025 02:20:35 +0000 Manifest next update: Sat 26 Jul 2025 02:20:35 +0000 Files and hashes: 1: 4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl (hash: z1of7V6OBNMVkG7xtNDGDquyD5lnq4JjeJYZH1YsTuE=) 2: 909F94F070F911EDBA42F056C4F9AE02.roa (hash: J59LrtIyPPPdrZKXDpKJBMgQFNUlF3OmhLoyAq20BcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:20:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B47, serialNumber=E11896B00C9486E43EE74802D21969F888EE4E2D Validity Not Before: Jul 19 02:20:35 2025 GMT Not After : Jul 26 02:20:35 2025 GMT Subject: CN=687b00f3-8961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d9:1b:1e:ec:22:d0:c1:19:b6:18:31:12:a4: 74:5f:b4:fd:ad:a4:db:3e:ef:b6:df:f5:b0:b5:9d: 2e:97:c0:70:e3:d7:7d:f8:0c:77:e1:4f:bb:40:8e: 5a:f4:32:03:58:3e:cb:e7:42:b5:d7:88:c5:f9:38: f3:6c:01:5e:8c:a3:ee:51:a9:36:9d:8a:8f:59:bf: ae:6d:8f:8b:e1:82:95:91:ba:0b:9e:2b:9c:3f:19: 28:31:4f:f9:ec:c5:0b:fc:5c:43:03:53:41:ab:85: 37:6b:bd:65:6d:90:51:52:c4:4f:88:51:93:5f:e1: cf:ba:91:9c:dc:a0:1d:a2:67:dd:39:14:7f:19:f2: 73:89:c4:d7:7e:d9:2f:95:1b:b5:96:3f:9b:3f:74: c8:72:ef:6e:66:e7:e0:da:81:5c:f3:0b:c5:b5:83: 46:bf:2a:fb:b7:ac:26:3f:91:f7:b7:4b:65:8f:ee: 22:37:52:79:bd:d5:7a:4b:f8:52:e3:ab:b9:99:de: 50:dd:c1:0f:7a:7e:5e:4e:cb:46:fc:8f:54:43:11: 80:2b:88:ba:7a:6a:30:da:34:77:6d:c8:04:82:74: da:7a:d3:2a:0e:c0:35:3d:a1:51:c4:5d:7b:62:c7: 6e:4c:2a:94:ac:8b:19:80:23:88:37:ab:f9:d3:cf: 80:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:B6:A2:7D:EC:FD:6F:7D:23:9B:2F:B4:A2:3A:63:04:08:57:90:AF X509v3 Authority Key Identifier: keyid:E1:18:96:B0:0C:94:86:E4:3E:E7:48:02:D2:19:69:F8:88:EE:4E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RiWsAyUhuQ-50gC0hlp-IjuTi0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B47/F1FE32BA33AF11EDB6107434C4F9AE02/4RiWsAyUhuQ-50gC0hlp-IjuTi0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:9d:9c:e6:8b:f1:1a:09:c8:45:f1:0b:99:81:12:60:2e:61: 7e:df:f5:a7:c0:10:f2:8d:42:7c:10:ec:17:da:0b:45:41:71: c1:9f:46:3a:1c:19:5e:b1:94:3a:86:f9:82:ea:76:7c:88:73: 3c:94:7c:99:c8:3a:ee:e8:92:9a:a1:8b:ca:2b:2a:67:8d:87: 91:12:01:9b:95:37:74:03:6f:e3:a4:a2:b1:b5:22:af:87:68: b8:db:eb:43:9d:80:a4:46:28:0f:5c:6b:19:5a:9d:f8:e2:d2: 83:62:74:fa:e0:3f:8b:fb:09:d1:77:ae:ae:f5:51:9a:90:12: d0:42:66:df:53:4f:f0:5d:3e:91:dd:1e:d7:a0:0d:7a:54:6f: 10:07:e1:5c:d5:53:4e:98:b1:5a:67:63:76:5b:48:7d:01:a2: fa:07:33:07:2e:70:ca:77:3c:9d:14:15:91:f8:52:89:b7:f3: 13:33:22:50:5c:9b:55:f1:72:6c:5e:a9:22:0c:d0:09:9e:62: 13:60:29:50:18:6e:94:80:7c:30:4c:d6:41:6b:ea:a7:5e:fd: 01:3e:a1:6c:74:b1:23:28:51:6a:bb:d8:67:a0:c3:60:7d:5a: d4:8b:26:4c:fb:5e:83:45:24:9c:13:0b:0b:b1:d3:bf:ad:1e: 08:e8:22:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNDcxMTAvBgNVBAUTKEUxMTg5NkIwMEM5NDg2RTQzRUU3NDgwMkQyMTk2OUY4 ODhFRTRFMkQwHhcNMjUwNzE5MDIyMDM1WhcNMjUwNzI2MDIyMDM1WjAYMRYwFAYD VQQDEw02ODdiMDBmMy04OTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlNkbHuwi0MEZthgxEqR0X7T9raTbPu+23/WwtZ0ul8Bw49d9+Ax34U+7QI5a 9DIDWD7L50K114jF+TjzbAFejKPuUak2nYqPWb+ubY+L4YKVkboLniucPxkoMU/5 7MUL/FxDA1NBq4U3a71lbZBRUsRPiFGTX+HPupGc3KAdomfdORR/GfJzicTXftkv lRu1lj+bP3TIcu9uZufg2oFc8wvFtYNGvyr7t6wmP5H3t0tlj+4iN1J5vdV6S/hS 46u5md5Q3cEPen5eTstG/I9UQxGAK4i6emow2jR3bcgEgnTaetMqDsA1PaFRxF17 YsduTCqUrIsZgCOIN6v508+ABQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+2on3s /W99I5svtKI6YwQIV5CvMB8GA1UdIwQYMBaAFOEYlrAMlIbkPudIAtIZafiI7k4t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI0Ny9GMUZFMzJCQTMz QUYxMUVEQjYxMDc0MzRDNEY5QUUwMi80UmlXc0F5VWh1US01MGdDMGhscC1JanVU aTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRSaVdzQXlVaHVRLTUwZ0MwaGxwLUlqdVRpMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkI0Ny9GMUZFMzJCQTMzQUYxMUVEQjYxMDc0MzRDNEY5QUUwMi80UmlXc0F5VWh1 US01MGdDMGhscC1JanVUaTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0nZzmi/EaCchF8QuZgRJgLmF+3/WnwBDyjUJ8EOwX2gtFQXHBn0Y6 HBlesZQ6hvmC6nZ8iHM8lHyZyDru6JKaoYvKKypnjYeREgGblTd0A2/jpKKxtSKv h2i42+tDnYCkRigPXGsZWp344tKDYnT64D+L+wnRd66u9VGakBLQQmbfU0/wXT6R 3R7XoA16VG8QB+Fc1VNOmLFaZ2N2W0h9AaL6BzMHLnDKdzydFBWR+FKJt/MTMyJQ XJtV8XJsXqkiDNAJnmITYClQGG6UgHwwTNZBa+qnXv0BPqFsdLEjKFFqu9hnoMNg fVrUiyZM+16DRSScEwsLsdO/rR4I6CLZ -----END CERTIFICATE-----Generated at Sun Jul 20 03:48:59 2025 by rpki-client