$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft File: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft (raw, json) Hash identifier: dLrZWCSUgA1xGQ24kCgGrcazpo0AvVzmf0N8Us1Z03o= Subject key identifier: C3:1B:49:A8:B6:99:0F:19:5D:20:DF:19:30:49:DE:3F:E0:1A:C7:21 Authority key identifier: E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A Certificate issuer: /CN=A91D1306/serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Certificate serial: 194B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft Manifest number: 193F Signing time: Mon 08 Sep 2025 16:25:48 +0000 Manifest this update: Mon 08 Sep 2025 16:25:48 +0000 Manifest next update: Mon 15 Sep 2025 16:25:48 +0000 Files and hashes: 1: 4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl (hash: 2fFI7WPgX+WGBowRC72SCUy/k6jGQOtMRnElqrFNEYg=) 2: 66BEBEDE83CB11E796105342C4F9AE02.roa (hash: /U/CsYIhht9s+NW7SN7K/1R2JyIlhuy3zjDWLZs60Yg=) 3: 09C0DFCE202011F098619934C4F9AE02.roa (hash: VTcOwA4/ZHFl9NF0jVq8bKcfk95wITIQIkP9/wxqkas=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:25:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6475 (0x194b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1306, serialNumber=E04FB2AA627D97B989AECFE86974E3C5F303121A Validity Not Before: Sep 8 16:25:48 2025 GMT Not After : Sep 15 16:25:48 2025 GMT Subject: CN=68bf038c-a8e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:5b:ea:66:1a:63:2e:9f:b2:22:c7:8d:85:0a: 1a:05:9c:37:f4:8d:dd:21:d3:ef:99:30:8d:37:bd: 0a:f9:42:07:ab:42:fc:fa:82:48:53:54:34:1a:50: eb:0a:df:a0:cc:31:87:a1:c8:52:3f:69:11:2a:30: d1:47:de:da:83:44:fb:8b:a9:48:95:8a:b1:5c:2e: b2:58:58:b9:8c:e7:d0:6b:f6:4c:99:73:6c:17:27: eb:c2:ee:01:1c:26:c3:a4:81:d2:b3:d1:66:ea:09: e7:c7:8d:8e:48:ef:f2:71:e6:b1:4d:12:4f:38:07: bf:04:f3:7f:65:19:b7:4c:6a:03:f7:0d:05:33:39: 6b:56:64:fe:3e:05:32:48:ad:31:ec:a3:bd:20:37: 0b:8d:20:50:c2:78:4c:98:42:fc:cb:e7:41:47:dd: 89:5f:c6:3c:4e:5f:ef:77:f0:23:c6:91:96:45:ed: 3e:12:70:85:60:b9:19:33:f7:d1:d6:1e:74:a2:0f: 3d:05:86:f3:67:22:69:d0:98:eb:cf:7a:86:1d:09: 30:69:db:d8:24:cd:96:ee:57:42:2a:76:45:06:0f: 4b:11:23:2d:04:b7:8c:32:54:f0:c7:06:e3:93:16: c7:f0:9e:ce:7c:83:25:ff:e4:6b:a5:b8:1c:1f:9d: 27:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:1B:49:A8:B6:99:0F:19:5D:20:DF:19:30:49:DE:3F:E0:1A:C7:21 X509v3 Authority Key Identifier: keyid:E0:4F:B2:AA:62:7D:97:B9:89:AE:CF:E8:69:74:E3:C5:F3:03:12:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4E-yqmJ9l7mJrs_oaXTjxfMDEho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1306/FE49749883CA11E7B8240A42C4F9AE02/4E-yqmJ9l7mJrs_oaXTjxfMDEho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:67:e4:68:a5:13:d7:a1:32:03:05:58:af:f8:8d:b1:2b:d3: ed:34:35:3f:4d:93:8c:66:ec:1a:2a:eb:b8:28:21:86:4b:dd: 0c:4f:50:35:8e:05:c7:db:d5:22:6c:4b:ec:09:07:2d:7a:fc: fe:b7:e5:cc:cf:89:cc:a8:1f:ae:9b:1e:b9:ba:c5:be:05:06: 6d:97:48:6d:73:b7:3d:4e:68:dd:8b:5a:96:96:be:c2:60:23: d2:a0:4a:c0:12:58:86:2b:e2:45:a3:77:09:3d:5c:7c:cb:48: b1:24:47:94:c9:cb:01:0e:0c:7d:a6:0c:b9:89:f2:c0:f6:74: 58:3f:c0:36:a9:3f:37:89:4c:a0:6a:23:4e:08:c1:65:e5:2c: b1:f7:59:44:7e:8f:e0:4d:ae:f2:2f:6d:9d:dc:98:80:7a:b6: ff:0b:70:e0:85:4c:03:92:b1:34:62:ef:2c:05:50:43:bc:90: 5e:4e:f8:eb:9a:ae:75:1f:45:26:12:5f:02:56:42:50:a8:e9: a4:15:ce:92:46:d0:48:b6:15:87:19:3c:90:98:60:27:b6:eb: 9b:4a:10:bb:3f:ff:26:8f:88:eb:17:94:d9:53:1f:19:a9:5b: 86:d5:92:00:f6:d1:ac:01:f3:ad:b8:78:4b:aa:f8:3c:f7:71: 66:f3:72:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEzMDYxMTAvBgNVBAUTKEUwNEZCMkFBNjI3RDk3Qjk4OUFFQ0ZFODY5NzRFM0M1 RjMwMzEyMUEwHhcNMjUwOTA4MTYyNTQ4WhcNMjUwOTE1MTYyNTQ4WjAYMRYwFAYD VQQDEw02OGJmMDM4Yy1hOGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/FvqZhpjLp+yIseNhQoaBZw39I3dIdPvmTCNN70K+UIHq0L8+oJIU1Q0GlDr Ct+gzDGHochSP2kRKjDRR97ag0T7i6lIlYqxXC6yWFi5jOfQa/ZMmXNsFyfrwu4B HCbDpIHSs9Fm6gnnx42OSO/yceaxTRJPOAe/BPN/ZRm3TGoD9w0FMzlrVmT+PgUy SK0x7KO9IDcLjSBQwnhMmEL8y+dBR92JX8Y8Tl/vd/AjxpGWRe0+EnCFYLkZM/fR 1h50og89BYbzZyJp0Jjrz3qGHQkwadvYJM2W7ldCKnZFBg9LESMtBLeMMlTwxwbj kxbH8J7OfIMl/+RrpbgcH50n+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMMbSai2 mQ8ZXSDfGTBJ3j/gGschMB8GA1UdIwQYMBaAFOBPsqpifZe5ia7P6Gl048XzAxIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTMwNi9GRTQ5NzQ5ODgz Q0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3bUpyc19vYVhUanhmTURF aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRFLXlxbUo5bDdtSnJzX29hWFRqeGZNREVoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTMwNi9GRTQ5NzQ5ODgzQ0ExMUU3QjgyNDBBNDJDNEY5QUUwMi80RS15cW1KOWw3 bUpyc19vYVhUanhmTURFaG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKZ+RopRPXoTIDBViv+I2xK9PtNDU/TZOMZuwaKuu4KCGGS90MT1A1 jgXH29UibEvsCQctevz+t+XMz4nMqB+umx65usW+BQZtl0htc7c9Tmjdi1qWlr7C YCPSoErAEliGK+JFo3cJPVx8y0ixJEeUycsBDgx9pgy5ifLA9nRYP8A2qT83iUyg aiNOCMFl5Syx91lEfo/gTa7yL22d3JiAerb/C3DghUwDkrE0Yu8sBVBDvJBeTvjr mq51H0UmEl8CVkJQqOmkFc6SRtBIthWHGTyQmGAntuubShC7P/8mj4jrF5TZUx8Z qVuG1ZIA9tGsAfOtuHhLqvg893Fm83LR -----END CERTIFICATE-----Generated at Tue Sep 9 13:25:26 2025 by rpki-client