$ rpki-client -vvf rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft File: g4-9CzleqQcGxsKJrCaw1zigQkE.mft (raw, json) Hash identifier: a4glfnRZiSqIdwA1EFsci6vnxL7oEXD1YJAbJ0L4aN8= Subject key identifier: F6:C0:55:96:39:47:9F:B3:C4:36:01:02:F5:80:D5:73:38:14:E2:B7 Authority key identifier: 83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 Certificate issuer: /CN=A917BB9A/serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft Manifest number: 6E Signing time: Sat 19 Jul 2025 07:17:20 +0000 Manifest this update: Sat 19 Jul 2025 07:17:19 +0000 Manifest next update: Sat 26 Jul 2025 07:17:19 +0000 Files and hashes: 1: g4-9CzleqQcGxsKJrCaw1zigQkE.crl (hash: cb1nOewflir4GpAEJ7NlH3fEWci5qkkF19jkUJ8Tk+U=) 2: 0CBF3110D59011EFB76D6824C4F9AE02.roa (hash: zf4VXC00w+/l84Z7TgltHAME/FckYYEPpSyVri8Ai2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:17:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BB9A, serialNumber=838FBD0B395EA90706C6C289AC26B0D738A04241 Validity Not Before: Jul 19 07:17:19 2025 GMT Not After : Jul 26 07:17:19 2025 GMT Subject: CN=687b4680-05e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:64:ab:fe:6d:de:4f:9b:ca:1e:5a:60:d3:74: 2b:d2:7e:1a:ed:01:68:42:34:bc:a8:91:e2:8a:8d: 26:09:ef:9c:48:0a:53:b4:3c:0c:51:a1:5a:73:a4: 8b:35:89:bc:9b:66:8f:8e:f2:af:4c:de:1c:b4:83: 69:78:a2:19:8b:2d:a5:58:e1:29:b5:3e:fb:cc:74: af:e8:50:b1:94:2e:f3:35:57:fe:5c:4c:5c:70:b3: ae:00:0f:79:6c:cc:7c:e2:b2:3c:3e:76:a5:ed:82: 96:8c:40:e8:8f:a2:6f:d0:58:45:56:24:01:55:aa: ca:32:cb:83:b0:a9:bd:3d:ee:a4:3c:d4:00:2a:8c: 6f:4d:9f:ea:c6:a9:b5:44:25:62:0c:53:e7:3b:17: f2:b7:dd:1e:e9:7e:f3:17:93:4f:fe:3b:ba:21:a3: 07:f4:b1:04:ca:2f:d4:1e:a6:c8:31:27:24:a5:f6: 82:db:f5:21:8a:14:93:d7:ad:6f:00:a0:cd:19:01: 69:50:8b:96:fb:9a:bf:e2:c9:d6:6f:a7:71:90:f4: 14:f7:e0:de:ac:51:03:81:5d:2d:8d:d5:38:74:40: d1:b8:ac:14:74:58:dd:7c:21:08:71:34:6c:23:30: e2:4b:4e:86:fb:ba:76:60:7c:20:7a:f6:6f:83:bc: 2f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C0:55:96:39:47:9F:B3:C4:36:01:02:F5:80:D5:73:38:14:E2:B7 X509v3 Authority Key Identifier: keyid:83:8F:BD:0B:39:5E:A9:07:06:C6:C2:89:AC:26:B0:D7:38:A0:42:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/g4-9CzleqQcGxsKJrCaw1zigQkE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BB9A/41390BCACFF311EF9062E521C4F9AE02/g4-9CzleqQcGxsKJrCaw1zigQkE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:c7:93:02:6f:08:de:2c:c1:6f:a6:3f:d1:8f:b6:db:51:84: d9:4b:60:3d:77:ca:71:ed:15:83:96:d0:53:51:63:77:f1:0a: 5e:e2:93:e9:c4:bb:6e:52:dd:b6:22:4a:86:e9:7d:b4:cb:d0: 66:cb:22:e3:33:b3:44:7f:8e:5d:a7:31:ac:0d:e8:f4:24:39: 47:4f:84:2d:2f:98:52:ac:9c:f4:29:54:12:58:7f:4f:da:4b: cb:19:8b:41:03:42:70:93:00:7e:40:82:62:bd:19:93:53:24: 2a:e1:05:29:8e:54:3f:cd:f1:11:af:5b:1e:10:d0:18:3c:1b: 84:30:a1:6d:52:0a:72:a7:36:5c:4b:c3:ca:e3:db:88:76:8b: 65:bf:c0:9a:ad:98:d9:f1:7e:0d:81:28:96:d5:3b:4c:79:62: a8:bf:71:32:ed:ad:a8:c1:f4:cb:ab:90:79:1b:74:40:90:34: c5:f4:bd:c1:32:da:7b:34:d3:c7:bb:fb:28:f2:4a:fc:fb:d9: e7:87:18:1d:bf:35:46:7f:39:6c:e4:48:8e:a0:51:9b:df:e3: 0a:cf:60:d8:8f:33:d5:0a:bd:a4:d7:46:4f:d9:62:14:e7:b7: 42:2a:aa:12:b4:73:0a:ed:1d:24:88:39:bd:83:4e:f5:17:64: 15:e5:6e:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QkI5QTExMC8GA1UEBRMoODM4RkJEMEIzOTVFQTkwNzA2QzZDMjg5QUMyNkIwRDcz OEEwNDI0MTAeFw0yNTA3MTkwNzE3MTlaFw0yNTA3MjYwNzE3MTlaMBgxFjAUBgNV BAMTDTY4N2I0NjgwLTA1ZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkZKv+bd5Pm8oeWmDTdCvSfhrtAWhCNLyokeKKjSYJ75xIClO0PAxRoVpzpIs1 ibybZo+O8q9M3hy0g2l4ohmLLaVY4Sm1PvvMdK/oULGULvM1V/5cTFxws64AD3ls zHzisjw+dqXtgpaMQOiPom/QWEVWJAFVqsoyy4Owqb097qQ81AAqjG9Nn+rGqbVE JWIMU+c7F/K33R7pfvMXk0/+O7ohowf0sQTKL9QepsgxJySl9oLb9SGKFJPXrW8A oM0ZAWlQi5b7mr/iydZvp3GQ9BT34N6sUQOBXS2N1Th0QNG4rBR0WN18IQhxNGwj MOJLTob7unZgfCB69m+DvC9NAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9sBVljlH n7PENgEC9YDVczgU4rcwHwYDVR0jBBgwFoAUg4+9CzleqQcGxsKJrCaw1zigQkEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdCQjlBLzQxMzkwQkNBQ0ZG MzExRUY5MDYyRTUyMUM0RjlBRTAyL2c0LTlDemxlcVFjR3hzS0pyQ2F3MXppZ1Fr RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZzQtOUN6bGVxUWNHeHNLSnJDYXcxemlnUWtFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdC QjlBLzQxMzkwQkNBQ0ZGMzExRUY5MDYyRTUyMUM0RjlBRTAyL2c0LTlDemxlcVFj R3hzS0pyQ2F3MXppZ1FrRS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJzHkwJvCN4swW+mP9GPtttRhNlLYD13ynHtFYOW0FNRY3fxCl7ik+nE u25S3bYiSobpfbTL0GbLIuMzs0R/jl2nMawN6PQkOUdPhC0vmFKsnPQpVBJYf0/a S8sZi0EDQnCTAH5AgmK9GZNTJCrhBSmOVD/N8RGvWx4Q0Bg8G4QwoW1SCnKnNlxL w8rj24h2i2W/wJqtmNnxfg2BKJbVO0x5Yqi/cTLtrajB9MurkHkbdECQNMX0vcEy 2ns008e7+yjySvz72eeHGB2/NUZ/OWzkSI6gUZvf4wrPYNiPM9UKvaTXRk/ZYhTn t0IqqhK0cwrtHSSIOb2DTvUXZBXlbt0= -----END CERTIFICATE-----Generated at Sun Jul 20 18:50:08 2025 by rpki-client