$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft File: 4USmzKVqqTEokShNJidwYk784uw.mft (raw, json) Hash identifier: CAQE+ult3pPjkx6irV3TrnPbMLele/jh1uAx8fKHvcI= Subject key identifier: 18:0E:C3:0D:C1:18:07:4D:6F:90:D7:C8:16:3D:EE:6A:87:4F:2C:FB Authority key identifier: E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC Certificate issuer: /CN=A91E3493/serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Certificate serial: 04CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft Manifest number: 04C7 Signing time: Sat 23 Aug 2025 00:02:59 +0000 Manifest this update: Sat 23 Aug 2025 00:02:59 +0000 Manifest next update: Sat 30 Aug 2025 00:02:59 +0000 Files and hashes: 1: 4USmzKVqqTEokShNJidwYk784uw.crl (hash: 0YXZaQ+JCkcTm8W8/AMLsehm3LldPL+7jMjOGpY0R+c=) 2: E7BC076E368A11EC9109BC30C4F9AE02.roa (hash: KvBasDBfRwAoH2EYsCxUrezIZS6Rx7LxrBNPNRo5D98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1227 (0x4cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Validity Not Before: Aug 23 00:02:59 2025 GMT Not After : Aug 30 00:02:59 2025 GMT Subject: CN=68a90533-dcd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b3:32:24:f7:39:e2:88:07:a5:8e:38:1c:7f: bc:b9:41:e4:00:5f:95:71:64:10:2c:91:ce:b6:91: 80:99:6d:5d:a1:b0:e5:b4:f7:c4:36:d9:38:fb:03: cd:7d:28:af:7d:8f:a5:4e:b1:57:a5:59:51:5e:35: e1:06:ff:b8:eb:ea:65:22:6f:a8:67:be:b2:47:95: fc:6a:5e:ee:55:a0:0e:fb:97:2e:cb:60:95:9a:cc: 49:fc:3a:0e:cc:d3:97:06:7b:e0:0e:c9:fd:e3:31: af:f4:a9:63:62:aa:d0:f9:bb:02:1a:09:64:a7:ce: 63:d8:6f:29:05:f0:51:4d:5d:73:f5:11:fc:0d:f1: ae:bf:db:96:47:3b:ff:b2:08:1f:72:28:f5:fc:86: 73:80:8c:a8:fd:89:f3:76:e0:4e:fe:e4:16:64:d2: c8:b4:36:27:2f:5a:7c:73:cd:67:c4:b4:98:d5:06: 64:44:3f:71:fa:54:6a:03:80:ee:62:a6:0c:86:47: eb:76:94:ce:f1:92:48:ee:ce:78:05:79:9c:36:b9: 89:68:2e:4f:72:9e:05:9e:55:a0:05:df:eb:a2:a9: 6f:4b:bb:50:91:6d:62:f2:dc:4b:75:14:f7:03:b9: f5:af:7d:b9:f7:d2:54:7f:0b:21:35:7d:0f:ed:a2: b9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:0E:C3:0D:C1:18:07:4D:6F:90:D7:C8:16:3D:EE:6A:87:4F:2C:FB X509v3 Authority Key Identifier: keyid:E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:bf:8d:04:58:49:8b:52:cb:a1:b8:5a:13:5c:e4:de:ec:d2: c5:33:ed:6c:dc:43:01:1f:08:3a:b2:3c:98:2d:3f:54:1b:07: 81:6d:71:2a:d4:38:c4:a2:d2:80:c9:60:98:2d:66:e1:25:45: cb:e2:0f:18:5b:7c:3b:7f:13:1b:2c:ff:d1:6c:b8:5e:bc:f2: 9d:6b:fb:ea:56:ce:9d:49:f5:67:f2:64:7f:b8:cc:e2:69:9c: 72:c4:8d:2b:d7:1f:10:5b:09:df:d6:95:f2:e3:eb:b1:68:0a: 4a:70:62:17:ca:c7:88:a3:ff:95:42:6d:cc:04:05:ff:87:fd: 05:b9:d6:d2:be:cb:38:37:80:af:9e:cd:14:bf:04:68:9b:5b: c5:eb:2a:dc:a1:8f:3d:c1:46:4a:80:e4:9d:11:1b:55:ce:b4: c0:b2:33:a9:94:e4:c0:ef:ba:88:8a:93:f2:61:51:90:54:90: 1f:4f:03:e0:a9:f8:c4:3c:6e:9f:41:c4:22:f7:29:d2:88:9e: 2b:92:8a:0a:c9:4b:cc:55:24:5c:09:93:b2:d2:9c:fd:8c:24: 09:3c:b6:f7:9f:02:71:dd:ae:5c:b3:a0:92:d3:5d:07:32:d3: af:f6:69:8f:91:29:70:6a:63:d4:22:31:07:5d:98:83:46:ac: c3:b5:56:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM0OTMxMTAvBgNVBAUTKEUxNDRBNkNDQTU2QUE5MzEyODkxMjg0RDI2Mjc3MDYy NEVGQ0UyRUMwHhcNMjUwODIzMDAwMjU5WhcNMjUwODMwMDAwMjU5WjAYMRYwFAYD VQQDEw02OGE5MDUzMy1kY2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbMyJPc54ogHpY44HH+8uUHkAF+VcWQQLJHOtpGAmW1dobDltPfENtk4+wPN fSivfY+lTrFXpVlRXjXhBv+46+plIm+oZ76yR5X8al7uVaAO+5cuy2CVmsxJ/DoO zNOXBnvgDsn94zGv9KljYqrQ+bsCGglkp85j2G8pBfBRTV1z9RH8DfGuv9uWRzv/ sggfcij1/IZzgIyo/YnzduBO/uQWZNLItDYnL1p8c81nxLSY1QZkRD9x+lRqA4Du YqYMhkfrdpTO8ZJI7s54BXmcNrmJaC5Pcp4FnlWgBd/roqlvS7tQkW1i8txLdRT3 A7n1r32599JUfwshNX0P7aK5TwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBgOww3B GAdNb5DXyBY97mqHTyz7MB8GA1UdIwQYMBaAFOFEpsylaqkxKJEoTSYncGJO/OLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzQ5My80OUEyRUU2QzM2 ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFURW9rU2hOSmlkd1lrNzg0 dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVU216S1ZxcVRFb2tTaE5KaWR3WWs3ODR1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My80OUEyRUU2QzM2ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFU RW9rU2hOSmlkd1lrNzg0dXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcv40EWEmLUsuhuFoTXOTe7NLFM+1s3EMBHwg6sjyYLT9UGweBbXEq 1DjEotKAyWCYLWbhJUXL4g8YW3w7fxMbLP/RbLhevPKda/vqVs6dSfVn8mR/uMzi aZxyxI0r1x8QWwnf1pXy4+uxaApKcGIXyseIo/+VQm3MBAX/h/0FudbSvss4N4Cv ns0UvwRom1vF6yrcoY89wUZKgOSdERtVzrTAsjOplOTA77qIipPyYVGQVJAfTwPg qfjEPG6fQcQi9ynSiJ4rkooKyUvMVSRcCZOy0pz9jCQJPLb3nwJx3a5cs6CS010H MtOv9mmPkSlwamPUIjEHXZiDRqzDtVZV -----END CERTIFICATE-----Generated at Sun Aug 24 22:02:44 2025 by rpki-client