$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft File: 4mhztF-I0fXYg8F-TM9wokUWIUI.mft (raw, json) Hash identifier: QJlJPeaD7rTLNs7s/+98OMYJJO7ZsMtoKKKdUXZAUt8= Subject key identifier: 87:01:64:B2:03:10:29:D7:10:CF:2E:82:CF:51:29:E7:EC:D9:A0:61 Authority key identifier: E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 Certificate issuer: /CN=A91F4C6B/serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Certificate serial: 08EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft Manifest number: 08DD Signing time: Sun 20 Jul 2025 20:32:51 +0000 Manifest this update: Sun 20 Jul 2025 20:32:50 +0000 Manifest next update: Sun 27 Jul 2025 20:32:50 +0000 Files and hashes: 1: 4mhztF-I0fXYg8F-TM9wokUWIUI.crl (hash: lj7B8ze4OTcjJks0edAVQPDWalj+q67NigxnPU+2nqo=) 2: E146B994B51F11EA9146DD58C4F9AE02.roa (hash: hfrhHFCjm9A1IZZ68jj/fGY3wp72/JwweOhEQKmJp+w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4C6B, serialNumber=E26873B45F88D1F5D883C17E4CCF70A245162142 Validity Not Before: Jul 20 20:32:50 2025 GMT Not After : Jul 27 20:32:50 2025 GMT Subject: CN=687d5273-c947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a3:ca:23:d2:e7:e0:ba:87:9e:15:17:6a:7d: e8:6e:03:57:cd:98:db:2a:70:60:c1:d0:6f:1d:c6: b4:e0:3e:72:0b:1b:b3:b9:ae:58:1c:09:9f:5e:1b: 69:81:56:d3:6f:37:64:60:d0:22:ab:2b:96:35:83: 52:32:87:65:4c:f7:bd:81:2b:88:77:13:63:fb:cb: 4f:0c:6c:46:9b:8b:58:b5:b7:43:03:d5:5d:7a:75: 55:38:da:03:97:d4:16:05:1c:1a:85:96:e6:46:18: 19:34:b9:0c:c4:9f:06:5e:4a:b2:25:38:0e:f8:a3: a6:75:f1:7a:9c:4b:fd:db:2c:79:df:0f:e3:70:d1: fd:e9:7b:27:3a:ed:f2:8b:c7:01:1b:75:41:db:2c: 32:9e:98:78:8f:95:13:58:c5:44:85:81:5c:b4:0a: 36:00:e1:90:3a:70:0d:f2:12:29:fd:60:d9:20:72: 13:3e:7c:2d:2d:a7:ef:ad:82:00:20:14:ff:6a:3d: 14:c7:d9:af:7f:00:63:ef:dc:5b:e1:b0:60:e6:ad: 95:81:cb:49:96:6a:bd:15:9c:5e:3c:38:d7:d9:c7: bb:61:04:f3:d4:50:b7:34:2d:4e:dd:7d:48:13:de: 9f:3d:0b:2c:9c:73:70:65:ab:c4:b1:01:6e:5d:9a: c3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:01:64:B2:03:10:29:D7:10:CF:2E:82:CF:51:29:E7:EC:D9:A0:61 X509v3 Authority Key Identifier: keyid:E2:68:73:B4:5F:88:D1:F5:D8:83:C1:7E:4C:CF:70:A2:45:16:21:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4mhztF-I0fXYg8F-TM9wokUWIUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4C6B/278AA3E4B51F11EA9FE8BD58C4F9AE02/4mhztF-I0fXYg8F-TM9wokUWIUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:4f:01:c9:6e:18:3d:9a:69:0a:ae:7c:27:f8:fe:e2:8b:ab: 08:1c:b9:77:1d:95:a1:f3:89:35:5c:ee:c2:56:2b:48:40:27: 6a:dc:4e:54:4f:c7:ec:8e:81:13:f1:ae:79:02:f4:f0:a0:08: 39:01:80:b8:d5:f0:5e:22:58:e7:27:80:68:b4:e6:b8:53:cb: 6d:83:0c:98:b4:6d:f3:ce:18:20:00:7f:c7:c2:4f:17:88:0a: 3a:86:76:87:3a:b4:31:85:61:a7:d5:38:70:ea:b8:f6:d0:ff: fb:9f:8d:72:0a:62:00:4c:ad:64:f3:57:8d:f8:9f:79:b1:63: 66:6e:a7:0b:32:8a:48:c1:29:bf:5f:c9:24:bc:b2:f4:a0:a4: 9a:50:63:33:6d:af:b5:03:f6:92:d3:24:cb:13:f9:bc:28:6b: 86:bc:ac:a4:ad:db:3f:bc:e6:c7:21:1d:a3:26:08:f7:27:41: 87:2e:43:ab:30:ce:8c:cf:f7:7d:13:3d:f7:0f:96:ad:97:c3: 17:d9:d1:0a:34:31:80:a0:48:8d:88:27:33:72:5c:51:93:1f: dd:6c:5c:46:b6:48:7b:f9:f8:b9:7a:fb:89:57:45:f9:c6:a2: 9c:c8:f4:c6:65:ff:be:a0:69:92:42:37:c4:02:8e:a6:16:41: 69:dd:64:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRDNkIxMTAvBgNVBAUTKEUyNjg3M0I0NUY4OEQxRjVEODgzQzE3RTRDQ0Y3MEEy NDUxNjIxNDIwHhcNMjUwNzIwMjAzMjUwWhcNMjUwNzI3MjAzMjUwWjAYMRYwFAYD VQQDEw02ODdkNTI3My1jOTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6PKI9Ln4LqHnhUXan3obgNXzZjbKnBgwdBvHca04D5yCxuzua5YHAmfXhtp gVbTbzdkYNAiqyuWNYNSModlTPe9gSuIdxNj+8tPDGxGm4tYtbdDA9VdenVVONoD l9QWBRwahZbmRhgZNLkMxJ8GXkqyJTgO+KOmdfF6nEv92yx53w/jcNH96XsnOu3y i8cBG3VB2ywynph4j5UTWMVEhYFctAo2AOGQOnAN8hIp/WDZIHITPnwtLafvrYIA IBT/aj0Ux9mvfwBj79xb4bBg5q2VgctJlmq9FZxePDjX2ce7YQTz1FC3NC1O3X1I E96fPQssnHNwZavEsQFuXZrDpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcBZLID ECnXEM8ugs9RKefs2aBhMB8GA1UdIwQYMBaAFOJoc7RfiNH12IPBfkzPcKJFFiFC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEM2Qi8yNzhBQTNFNEI1 MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBmWFlnOEYtVE05d29rVVdJ VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRtaHp0Ri1JMGZYWWc4Ri1UTTl3b2tVV0lVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEM2Qi8yNzhBQTNFNEI1MUYxMUVBOUZFOEJENThDNEY5QUUwMi80bWh6dEYtSTBm WFlnOEYtVE05d29rVVdJVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUTwHJbhg9mmkKrnwn+P7ii6sIHLl3HZWh84k1XO7CVitIQCdq3E5U T8fsjoET8a55AvTwoAg5AYC41fBeIljnJ4BotOa4U8ttgwyYtG3zzhggAH/Hwk8X iAo6hnaHOrQxhWGn1Thw6rj20P/7n41yCmIATK1k81eN+J95sWNmbqcLMopIwSm/ X8kkvLL0oKSaUGMzba+1A/aS0yTLE/m8KGuGvKykrds/vObHIR2jJgj3J0GHLkOr MM6Mz/d9Ez33D5atl8MX2dEKNDGAoEiNiCczclxRkx/dbFxGtkh7+fi5evuJV0X5 xqKcyPTGZf++oGmSQjfEAo6mFkFp3WQt -----END CERTIFICATE-----Generated at Mon Jul 21 05:44:50 2025 by rpki-client