$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: 4vuohvLmIvCwMx59Lgm9hf1XwM40s1438aTQEjxDQqU= Subject key identifier: DC:FD:8C:F3:1F:80:F9:E6:E3:B5:00:EE:73:FD:AA:F4:2A:74:91:A5 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0AFA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0AF4 Signing time: Sun 24 Aug 2025 19:21:55 +0000 Manifest this update: Sun 24 Aug 2025 19:21:54 +0000 Manifest next update: Sun 31 Aug 2025 19:21:54 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: oZA29mGtcMzbBT9g2QPn4iuYgVooEounQTJvbS2muA0=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 19:03:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2810 (0xafa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Aug 24 19:21:54 2025 GMT Not After : Aug 31 19:21:54 2025 GMT Subject: CN=68ab6653-179c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:66:6e:f1:09:f1:53:2e:5f:06:53:9f:81:1a: d3:69:20:ed:1a:e0:05:71:1c:75:79:b4:cc:08:3d: 4d:d8:70:e3:cc:46:a4:51:d1:4e:45:c5:a4:23:f5: fd:a3:aa:cb:e3:52:33:a8:45:48:20:db:f8:07:57: 0a:f1:e7:5b:fa:e0:c6:69:40:26:79:aa:06:98:e1: b2:c9:5d:14:fb:9d:d4:f5:dc:f7:dd:f6:d6:6c:17: c2:30:b4:4d:89:2f:62:02:37:0c:e1:bf:fc:ed:af: 75:f9:2d:e2:60:f3:ce:c5:25:86:88:4a:c1:b9:d1: 8e:91:2f:8f:6b:56:b6:36:6f:e6:b2:b7:c0:18:a8: 30:af:b3:91:9e:71:ba:7b:4c:09:a4:9c:fd:71:8b: 6e:34:be:e7:f7:a6:c0:f0:dd:4b:c9:d9:7e:88:20: 70:bb:7e:e4:14:3f:99:2d:ae:4a:c9:33:83:c2:4e: 49:da:97:88:92:b1:5c:6c:32:a0:14:62:e6:76:12: 7d:d0:4a:23:aa:f2:4b:ea:91:9b:ed:6f:a1:d1:d7: ba:a1:8b:3d:80:c0:73:09:cd:8b:7d:9e:a7:d8:32: 32:05:d4:40:c4:ac:3e:09:2a:6c:d9:dc:00:bb:8a: 27:32:ec:92:6a:a2:3d:99:e3:e9:d7:9f:57:22:6a: f4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:FD:8C:F3:1F:80:F9:E6:E3:B5:00:EE:73:FD:AA:F4:2A:74:91:A5 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:dc:fa:8c:aa:3a:dd:1a:89:43:39:fe:95:0d:43:c1:66:f2: bd:cf:bd:8d:a8:bf:56:0a:c7:e3:21:43:37:7e:77:c3:a3:9e: 3c:a5:21:7c:a1:da:62:41:d7:d0:d8:23:5e:55:5f:8f:43:0b: c3:f3:57:d4:da:55:c3:bf:1f:48:a9:52:ce:d7:2f:83:fe:49: 98:aa:0d:78:77:c4:cf:34:1c:cc:5b:51:12:fb:d9:11:84:50: d7:69:b3:ab:7a:34:2b:8a:38:26:fc:5c:f7:a3:8b:63:2a:80: 9e:9c:f9:a7:55:26:0f:fe:42:6b:e7:22:b0:70:ad:0f:d5:e2: 23:72:38:0d:47:84:c1:42:ca:00:6e:bb:4a:ba:59:94:37:22: 21:7e:c3:86:b6:85:ff:ec:1e:66:d2:ea:46:99:cc:dd:39:cf: dd:15:aa:28:b6:7c:8a:59:b1:bf:ed:2c:d1:82:5c:8f:7c:15: 82:1f:32:df:37:5f:61:67:90:d0:6a:1b:01:89:08:04:30:c9: 2e:11:16:1f:47:8f:44:1e:87:00:ef:ac:12:3e:4e:f6:1e:38: 8d:e9:12:4d:67:e1:b4:5a:7d:99:ef:86:a8:01:8d:df:a1:7d: 19:38:02:b4:70:77:dc:e6:29:07:44:8d:ce:c5:4e:67:4e:a6: fd:ef:63:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwODI0MTkyMTU0WhcNMjUwODMxMTkyMTU0WjAYMRYwFAYD VQQDEw02OGFiNjY1My0xNzljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGZu8QnxUy5fBlOfgRrTaSDtGuAFcRx1ebTMCD1N2HDjzEakUdFORcWkI/X9 o6rL41IzqEVIINv4B1cK8edb+uDGaUAmeaoGmOGyyV0U+53U9dz33fbWbBfCMLRN iS9iAjcM4b/87a91+S3iYPPOxSWGiErBudGOkS+Pa1a2Nm/msrfAGKgwr7ORnnG6 e0wJpJz9cYtuNL7n96bA8N1Lydl+iCBwu37kFD+ZLa5KyTODwk5J2peIkrFcbDKg FGLmdhJ90EojqvJL6pGb7W+h0de6oYs9gMBzCc2LfZ6n2DIyBdRAxKw+CSps2dwA u4onMuySaqI9mePp159XImr0EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNz9jPMf gPnm47UA7nP9qvQqdJGlMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBU3PqMqjrdGolDOf6VDUPBZvK9z72NqL9WCsfjIUM3fnfDo548pSF8 odpiQdfQ2CNeVV+PQwvD81fU2lXDvx9IqVLO1y+D/kmYqg14d8TPNBzMW1ES+9kR hFDXabOrejQrijgm/Fz3o4tjKoCenPmnVSYP/kJr5yKwcK0P1eIjcjgNR4TBQsoA brtKulmUNyIhfsOGtoX/7B5m0upGmczdOc/dFaootnyKWbG/7SzRglyPfBWCHzLf N19hZ5DQahsBiQgEMMkuERYfR49EHocA76wSPk72HjiN6RJNZ+G0Wn2Z74aoAY3f oX0ZOAK0cHfc5ikHRI3OxU5nTqb972MM -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:31 2025 by rpki-client