$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: iipOKX/JksmMIE0yNrEgi2B9BPm8k/JtES6kMKmeMbA= Subject key identifier: AE:71:79:FF:A5:2E:85:6E:4B:5A:C7:0B:13:D8:A4:A4:F7:C2:B6:DE Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 06CE Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 06AA Signing time: Wed 20 Aug 2025 16:57:52 +0000 Manifest this update: Wed 20 Aug 2025 16:57:51 +0000 Manifest next update: Wed 27 Aug 2025 16:57:51 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: z/7qQWliJY9dgiPFAdymwGNezp0Izb0DKnYoaQ6Z6/4=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: qm9tOH02ZhUyhN95rojnAyTLcNLxX4GEOIv6/MzX5Qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 16:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1742 (0x6ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Aug 20 16:57:51 2025 GMT Not After : Aug 27 16:57:51 2025 GMT Subject: CN=68a5fe90-0398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:31:f0:18:9b:50:14:c7:ae:95:c6:b0:1e:6f: 47:53:94:d3:d1:51:b7:20:b9:bb:d0:11:43:bd:63: 80:be:8f:f7:dc:4b:e1:e1:9d:10:be:f2:50:22:01: 5c:05:ee:80:c9:94:2a:45:e6:54:11:3d:86:53:61: 7d:01:33:91:22:36:c0:05:22:2d:c5:89:6a:74:ee: bc:37:f9:35:06:fb:4b:88:83:d7:fd:d2:38:79:ca: af:c0:4f:87:78:70:f9:fb:f3:eb:e5:44:ff:bd:69: 4b:33:dd:9b:a0:9f:a9:34:9d:7c:f6:f8:dc:c6:f9: 99:ec:f8:39:fe:23:f1:a8:ef:c2:0e:dc:a9:a9:ae: c9:c8:9a:59:73:18:8c:f7:7f:f8:c2:67:f0:a9:c9: 7b:7e:a4:52:d5:c8:1c:b8:e3:09:ac:10:35:2e:cd: 52:c1:42:36:37:89:f9:44:82:7f:e9:88:b4:9e:22: ec:49:f3:36:1d:5f:fa:bd:1f:fc:f5:f9:5c:cb:9c: ab:95:9f:78:4f:a0:7f:b3:01:d9:95:5e:2f:e0:40: 9a:cd:9c:f1:ec:09:72:78:bc:18:fa:67:8c:5b:85: af:d9:dd:74:00:f9:b2:68:fc:22:14:8e:55:41:3b: f8:cc:e5:c9:41:f2:2a:b5:53:56:ea:22:46:04:1c: e6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:71:79:FF:A5:2E:85:6E:4B:5A:C7:0B:13:D8:A4:A4:F7:C2:B6:DE X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:bd:82:2f:c6:cd:29:34:db:cd:b9:33:d6:1e:ba:29:24:e2: 91:7e:68:79:90:d4:03:c9:3c:e7:f0:16:30:da:aa:21:ec:50: 0b:51:0b:ab:6a:f0:4f:9c:73:0a:31:09:0b:8e:c9:32:66:bd: 5e:fb:56:78:40:ee:eb:24:67:8d:45:dd:86:34:03:7c:fb:5d: 03:a5:23:e7:18:61:80:2e:11:ae:d5:9c:d8:db:2d:1a:e6:07: 1c:94:a4:1c:52:42:87:39:d9:99:ee:f8:8d:d4:fd:f1:d5:42: 12:2f:18:d7:1f:13:5f:6e:55:2b:3b:ee:fa:f6:ce:7e:26:98: 30:74:84:91:36:ac:1f:16:15:c8:2e:41:ec:1c:53:c9:b8:2f: f7:31:44:5c:6b:db:08:79:6e:75:df:42:74:37:f9:ce:45:82: 22:9d:03:e0:c9:18:3e:19:d5:58:db:e4:d3:16:37:27:f4:1e: 7b:01:84:ed:cd:4c:0a:ad:2c:39:24:7c:f0:cd:26:c0:e6:4d: 56:8d:60:ad:d0:8d:de:a6:5c:17:67:39:ff:02:97:7d:74:6f: b8:8f:f1:6b:34:50:0d:41:df:77:bc:ee:c8:ea:9f:ce:7b:9a: 63:c6:ec:1f:5c:83:12:0a:4f:00:4b:8c:c9:8c:f3:4f:e1:f9: 8b:70:0d:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUwODIwMTY1NzUxWhcNMjUwODI3MTY1NzUxWjAYMRYwFAYD VQQDEw02OGE1ZmU5MC0wMzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8THwGJtQFMeulcawHm9HU5TT0VG3ILm70BFDvWOAvo/33Evh4Z0QvvJQIgFc Be6AyZQqReZUET2GU2F9ATORIjbABSItxYlqdO68N/k1BvtLiIPX/dI4ecqvwE+H eHD5+/Pr5UT/vWlLM92boJ+pNJ189vjcxvmZ7Pg5/iPxqO/CDtypqa7JyJpZcxiM 93/4wmfwqcl7fqRS1cgcuOMJrBA1Ls1SwUI2N4n5RIJ/6Yi0niLsSfM2HV/6vR/8 9flcy5yrlZ94T6B/swHZlV4v4ECazZzx7AlyeLwY+meMW4Wv2d10APmyaPwiFI5V QTv4zOXJQfIqtVNW6iJGBBzm1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK5xef+l LoVuS1rHCxPYpKT3wrbeMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKvYIvxs0pNNvNuTPWHropJOKRfmh5kNQDyTzn8BYw2qoh7FALUQur avBPnHMKMQkLjskyZr1e+1Z4QO7rJGeNRd2GNAN8+10DpSPnGGGALhGu1ZzY2y0a 5gcclKQcUkKHOdmZ7viN1P3x1UISLxjXHxNfblUrO+769s5+JpgwdISRNqwfFhXI LkHsHFPJuC/3MURca9sIeW5130J0N/nORYIinQPgyRg+GdVY2+TTFjcn9B57AYTt zUwKrSw5JHzwzSbA5k1WjWCt0I3eplwXZzn/Apd9dG+4j/FrNFANQd93vO7I6p/O e5pjxuwfXIMSCk8AS4zJjPNP4fmLcA1l -----END CERTIFICATE-----Generated at Thu Aug 21 07:24:06 2025 by rpki-client