$ rpki-client -vvf rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft File: T4QeODPgrG_hvu69ABI10VKOzno.mft (raw, json) Hash identifier: WVmqc44T+4DKPIMKaOJHluYLymnMjIZVvzaVI9XU6XU= Subject key identifier: 4A:D7:9F:AD:C5:09:31:F1:74:3E:AC:3E:E1:0D:25:80:DC:5E:92:03 Authority key identifier: 4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A Certificate issuer: /CN=A913AF6A/serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Certificate serial: 0120 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft Manifest number: 011E Signing time: Mon 21 Jul 2025 04:50:01 +0000 Manifest this update: Mon 21 Jul 2025 04:50:00 +0000 Manifest next update: Mon 28 Jul 2025 04:50:00 +0000 Files and hashes: 1: T4QeODPgrG_hvu69ABI10VKOzno.crl (hash: 4NzOLAFSZHjm0RG+iYXwYaAFnNpYf2qk+Lo3JO1Re0k=) 2: 658B1AC8AE4711EE8C130419C4F9AE02.roa (hash: pBuyb8tUeoDi0BGNU1PyCW1Le78/gB9wiXHTRO2r0pw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AF6A, serialNumber=4F841E3833E0AC6FE1BEEEBD001235D1528ECE7A Validity Not Before: Jul 21 04:50:00 2025 GMT Not After : Jul 28 04:50:00 2025 GMT Subject: CN=687dc6f8-5380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f4:24:00:45:c3:22:b0:88:f0:55:06:0c:f1: 98:7d:11:bd:02:17:35:a0:78:bd:51:19:ad:95:86: 83:d6:85:83:54:25:34:57:1f:f1:4e:9d:93:34:11: e2:8d:dd:da:00:93:f0:eb:9e:af:3d:e2:17:66:89: 67:42:4e:0e:1a:56:e5:42:4d:3c:73:43:cb:c4:ab: ab:c6:3e:94:66:f6:de:ed:21:93:5e:a6:c1:1c:eb: 20:a1:15:c9:fa:e1:82:1f:f8:6b:f2:ba:58:8d:f6: 00:fa:75:16:88:8f:a8:22:63:cb:dc:08:54:51:a4: e1:eb:25:8a:e0:44:ea:1c:b7:16:28:97:1d:72:20: 79:8a:3b:9a:67:5e:7d:0b:12:36:c4:c3:68:01:89: c3:b3:02:e0:1d:a2:10:3a:ae:29:11:eb:70:25:6e: 34:1d:53:3c:9a:36:a8:9c:a5:6c:cf:a0:16:33:8e: 3a:d8:cf:75:fa:6e:d6:d6:d9:0e:dd:42:df:0d:39: 7f:0d:ff:1c:ac:6e:2b:00:64:c9:73:27:6b:a6:18: d2:3b:d8:c0:49:ce:b5:09:aa:52:c8:d1:e8:f3:71: e8:7b:5f:ec:94:68:85:14:ff:ca:dc:d2:47:f5:18: 3d:31:89:f7:33:e9:c1:81:38:25:d7:a3:71:c2:70: 97:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:D7:9F:AD:C5:09:31:F1:74:3E:AC:3E:E1:0D:25:80:DC:5E:92:03 X509v3 Authority Key Identifier: keyid:4F:84:1E:38:33:E0:AC:6F:E1:BE:EE:BD:00:12:35:D1:52:8E:CE:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T4QeODPgrG_hvu69ABI10VKOzno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AF6A/837CD346AE4211EEBF64DA69C4F9AE02/T4QeODPgrG_hvu69ABI10VKOzno.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:27:db:b7:8a:4f:ce:09:96:2a:28:78:98:80:fc:9a:de:36: bd:4e:05:19:3f:db:8b:ec:46:26:c0:63:51:4d:9f:53:a5:bf: 2a:9f:d4:76:ff:ff:fc:53:5a:73:71:c5:67:64:96:c7:3b:83: 73:ee:27:61:1d:32:a3:97:f7:e4:64:da:2c:3f:de:a6:85:49: 98:84:ed:27:57:1f:39:65:95:22:d8:b4:46:8e:2c:38:54:cd: 66:61:df:2a:58:71:08:eb:42:03:64:49:a5:58:f7:55:7d:a1: 0d:26:8c:e3:4d:1d:bf:37:90:d0:fc:e6:6a:49:c3:b4:bb:1b: 16:24:71:2b:8a:d6:6e:88:80:8c:00:44:dc:a0:63:28:a5:ef: 0c:76:64:cd:01:73:6d:35:a7:6c:5a:b4:20:78:65:aa:1d:85: 30:e6:48:c3:9e:99:4e:18:3e:f1:58:33:b6:c2:f7:ac:18:e4: 37:ac:22:f2:37:2d:e7:d5:c6:91:ef:b2:f7:3b:e9:a5:43:ca: 1c:cd:a9:f3:36:6b:e3:aa:94:5d:22:fb:c3:52:67:b3:ef:f4: b0:1e:5f:92:87:20:9d:88:ce:ba:5c:3f:9f:96:08:36:88:0f: 69:00:69:ef:91:94:b4:5a:1d:8a:6e:2f:42:ae:34:1f:2c:ba: 4f:f6:8f:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FGNkExMTAvBgNVBAUTKDRGODQxRTM4MzNFMEFDNkZFMUJFRUVCRDAwMTIzNUQx NTI4RUNFN0EwHhcNMjUwNzIxMDQ1MDAwWhcNMjUwNzI4MDQ1MDAwWjAYMRYwFAYD VQQDEw02ODdkYzZmOC01MzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvQkAEXDIrCI8FUGDPGYfRG9Ahc1oHi9URmtlYaD1oWDVCU0Vx/xTp2TNBHi jd3aAJPw656vPeIXZolnQk4OGlblQk08c0PLxKurxj6UZvbe7SGTXqbBHOsgoRXJ +uGCH/hr8rpYjfYA+nUWiI+oImPL3AhUUaTh6yWK4ETqHLcWKJcdciB5ijuaZ159 CxI2xMNoAYnDswLgHaIQOq4pEetwJW40HVM8mjaonKVsz6AWM4462M91+m7W1tkO 3ULfDTl/Df8crG4rAGTJcydrphjSO9jASc61CapSyNHo83Hoe1/slGiFFP/K3NJH 9Rg9MYn3M+nBgTgl16NxwnCXhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFErXn63F CTHxdD6sPuENJYDcXpIDMB8GA1UdIwQYMBaAFE+EHjgz4Kxv4b7uvQASNdFSjs56 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUY2QS84MzdDRDM0NkFF NDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JHX2h2dTY5QUJJMTBWS096 bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1Q0UWVPRFBnckdfaHZ1NjlBQkkxMFZLT3puby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUY2QS84MzdDRDM0NkFFNDIxMUVFQkY2NERBNjlDNEY5QUUwMi9UNFFlT0RQZ3JH X2h2dTY5QUJJMTBWS096bm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEJ9u3ik/OCZYqKHiYgPya3ja9TgUZP9uL7EYmwGNRTZ9Tpb8qn9R2 ///8U1pzccVnZJbHO4Nz7idhHTKjl/fkZNosP96mhUmYhO0nVx85ZZUi2LRGjiw4 VM1mYd8qWHEI60IDZEmlWPdVfaENJozjTR2/N5DQ/OZqScO0uxsWJHEritZuiICM AETcoGMope8MdmTNAXNtNadsWrQgeGWqHYUw5kjDnplOGD7xWDO2wvesGOQ3rCLy Ny3n1caR77L3O+mlQ8oczanzNmvjqpRdIvvDUmez7/SwHl+ShyCdiM66XD+flgg2 iA9pAGnvkZS0Wh2Kbi9CrjQfLLpP9o+l -----END CERTIFICATE-----Generated at Mon Jul 21 23:42:46 2025 by rpki-client