$ rpki-client -vvf rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft File: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft (raw, json) Hash identifier: HVsoV0uTj740pxo/5IhYaIfuCl1g7I3MkgZSpgbUup4= Subject key identifier: A3:1F:B6:2E:86:55:2F:E8:B2:46:4F:FB:4C:15:2F:4D:7C:19:FF:72 Authority key identifier: E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 Certificate issuer: /CN=A91536B7/serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft Manifest number: 50A0 Signing time: Thu 18 Sep 2025 16:30:42 +0000 Manifest this update: Thu 18 Sep 2025 16:30:41 +0000 Manifest next update: Thu 25 Sep 2025 16:30:41 +0000 Files and hashes: 1: 4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl (hash: 1r9AZKrpmRlUE41WYUKZwC8jOUcxPtIswebD2/yPDFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 16:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91536B7, serialNumber=E2194C73420BD4FDAC28BF633BB3AF8CD720D0B1 Validity Not Before: Sep 18 16:30:41 2025 GMT Not After : Sep 25 16:30:41 2025 GMT Subject: CN=68cc33b2-01f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ac:a6:64:96:69:7b:ad:a9:46:da:d2:97:28: 90:fc:12:fe:dd:4d:da:dc:45:d8:a7:c3:e0:f4:97: aa:c6:6a:30:e6:4e:4f:e4:40:e3:ca:71:6b:8e:ad: 89:f7:b1:2c:9d:6a:16:de:fa:be:d0:0d:6d:1d:0e: 90:c5:97:e9:a9:57:2a:ca:2c:3b:76:b1:f7:8b:32: bc:30:2e:0b:c3:51:7b:f1:bb:5b:e2:7f:c7:49:88: 8a:4a:62:97:a7:67:ae:eb:d5:da:0b:e9:36:8d:22: 68:ee:8b:df:2b:84:17:0f:af:3d:c7:02:30:03:a0: b5:8d:39:a1:bd:ea:a0:70:73:c7:b0:27:fb:b1:42: 1d:06:0a:eb:0c:ff:57:ef:20:0a:f6:f2:42:f9:2e: ad:a3:e5:bb:e1:ce:c2:b5:6a:b8:f4:bf:10:16:28: 9e:bd:38:8d:04:99:4c:7a:8b:23:86:de:eb:f9:8f: 52:7e:2e:92:ea:50:bc:bd:6e:10:1e:69:60:0f:70: e2:ea:4d:f0:e5:b9:65:50:ed:9b:07:9f:21:19:86: 08:30:1d:e3:29:22:c5:8f:9c:0d:68:9e:57:ee:7f: 30:c8:06:09:29:67:d1:53:07:d8:d6:1b:27:af:8b: 6a:20:8f:f7:2c:f2:5d:65:e3:00:f5:21:9f:95:5e: 5c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1F:B6:2E:86:55:2F:E8:B2:46:4F:FB:4C:15:2F:4D:7C:19:FF:72 X509v3 Authority Key Identifier: keyid:E2:19:4C:73:42:0B:D4:FD:AC:28:BF:63:3B:B3:AF:8C:D7:20:D0:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4hlMc0IL1P2sKL9jO7OvjNcg0LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91536B7/F1CD27B473AD11E7ACBD025EC4F9AE02/4hlMc0IL1P2sKL9jO7OvjNcg0LE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:2c:8d:95:ba:c8:78:b9:54:c6:c3:37:1c:90:28:c0:d2:ca: 55:40:64:f0:4a:84:e3:61:23:bf:bc:ef:4d:bc:c7:c4:37:b6: 17:ab:da:03:5c:b2:c7:56:e2:4a:78:68:0b:e7:a9:d2:05:61: 69:ea:8b:70:62:51:f0:56:cf:23:c0:28:33:3a:e3:eb:b3:26: d5:94:39:21:83:f2:76:7c:cf:39:5d:e2:c2:a5:65:04:6a:9e: fb:9c:08:11:a5:9e:cb:e3:dd:d3:ef:5a:b6:a1:b6:84:f6:fb: 23:f4:be:d2:07:07:3b:46:44:bd:52:36:8b:c6:9b:14:86:57: af:d6:33:24:c6:81:b2:37:2c:ee:23:12:d4:ad:16:38:bc:df: 87:45:cd:cf:09:be:a0:25:98:40:f1:ee:c8:9b:c2:31:3e:66: c3:95:7e:f9:2a:ea:73:3a:88:51:8c:ad:fa:88:86:08:00:63: bb:c5:90:5c:4c:6f:82:4d:ab:6f:09:e3:5c:20:1f:ec:c4:1b: ec:05:59:69:fd:0d:e2:3e:da:0a:07:c8:09:30:9b:79:64:1f: d1:f3:c7:db:fd:bd:68:75:78:93:af:df:2d:b4:ac:6d:b2:fe: 6c:64:80:28:10:54:be:02:cc:28:c8:7e:58:54:4e:1f:14:fc: b3:a0:03:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM2QjcxMTAvBgNVBAUTKEUyMTk0QzczNDIwQkQ0RkRBQzI4QkY2MzNCQjNBRjhD RDcyMEQwQjEwHhcNMjUwOTE4MTYzMDQxWhcNMjUwOTI1MTYzMDQxWjAYMRYwFAYD VQQDEw02OGNjMzNiMi0wMWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6qymZJZpe62pRtrSlyiQ/BL+3U3a3EXYp8Pg9Jeqxmow5k5P5EDjynFrjq2J 97EsnWoW3vq+0A1tHQ6QxZfpqVcqyiw7drH3izK8MC4Lw1F78btb4n/HSYiKSmKX p2eu69XaC+k2jSJo7ovfK4QXD689xwIwA6C1jTmhveqgcHPHsCf7sUIdBgrrDP9X 7yAK9vJC+S6to+W74c7CtWq49L8QFiievTiNBJlMeosjht7r+Y9Sfi6S6lC8vW4Q HmlgD3Di6k3w5bllUO2bB58hGYYIMB3jKSLFj5wNaJ5X7n8wyAYJKWfRUwfY1hsn r4tqII/3LPJdZeMA9SGflV5ciwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKMfti6G VS/oskZP+0wVL018Gf9yMB8GA1UdIwQYMBaAFOIZTHNCC9T9rCi/Yzuzr4zXINCx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzZCNy9GMUNEMjdCNDcz QUQxMUU3QUNCRDAyNUVDNEY5QUUwMi80aGxNYzBJTDFQMnNLTDlqTzdPdmpOY2cw TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRobE1jMElMMVAyc0tMOWpPN092ak5jZzBMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzZCNy9GMUNEMjdCNDczQUQxMUU3QUNCRDAyNUVDNEY5QUUwMi80aGxNYzBJTDFQ MnNLTDlqTzdPdmpOY2cwTEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmLI2Vush4uVTGwzcckCjA0spVQGTwSoTjYSO/vO9NvMfEN7YXq9oD XLLHVuJKeGgL56nSBWFp6otwYlHwVs8jwCgzOuPrsybVlDkhg/J2fM85XeLCpWUE ap77nAgRpZ7L493T71q2obaE9vsj9L7SBwc7RkS9UjaLxpsUhlev1jMkxoGyNyzu IxLUrRY4vN+HRc3PCb6gJZhA8e7Im8IxPmbDlX75KupzOohRjK36iIYIAGO7xZBc TG+CTatvCeNcIB/sxBvsBVlp/Q3iPtoKB8gJMJt5ZB/R88fb/b1odXiTr98ttKxt sv5sZIAoEFS+AswoyH5YVE4fFPyzoAMY -----END CERTIFICATE-----Generated at Fri Sep 19 19:41:32 2025 by rpki-client