$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft File: 4CEd1HfFtNoX56IChgOs2OcWZrU.mft (raw, json) Hash identifier: jETFPmyvbRTbtbBWMMi8H5UnuYjlAQBjSMSRdnKf1aU= Subject key identifier: E7:90:07:54:11:29:66:DC:24:F5:C5:D0:6B:F4:C3:2B:C4:A2:86:77 Authority key identifier: E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 Certificate issuer: /CN=A91EB1BE/serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Certificate serial: 1301 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft Manifest number: 12F0 Signing time: Sun 24 Aug 2025 17:01:09 +0000 Manifest this update: Sun 24 Aug 2025 17:01:08 +0000 Manifest next update: Sun 31 Aug 2025 17:01:08 +0000 Files and hashes: 1: 4CEd1HfFtNoX56IChgOs2OcWZrU.crl (hash: V+8DsqRW8mjjosA3BnrfRvrA9MOa73ZL84vjB6EZX+M=) 2: 31E1DE72B04B11EE9F3B384BC4F9AE02.roa (hash: SUqha04b2ntyDAUGFXYiqHZijUV69AXBCBCtIkXQ4as=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4865 (0x1301) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB1BE, serialNumber=E0211DD477C5B4DA17E7A2028603ACD8E71666B5 Validity Not Before: Aug 24 17:01:08 2025 GMT Not After : Aug 31 17:01:08 2025 GMT Subject: CN=68ab4555-8021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3a:01:cf:67:de:f5:ca:b9:18:77:4b:08:63: 79:bf:f5:82:bf:d1:36:b7:de:03:be:7a:f3:cf:57: b5:01:95:9c:01:3a:7e:1a:0c:49:49:3c:33:d8:12: 65:71:68:48:4c:19:b3:82:e6:34:1b:fb:d8:5f:8c: 07:5b:74:31:92:12:db:d1:05:d6:8f:3a:7c:4f:dc: 1c:96:8b:ca:b1:48:a4:f7:6f:b5:f9:25:72:05:d1: 19:a3:5d:aa:1e:90:e0:af:ab:52:f5:78:39:b1:7d: b7:f1:da:89:1c:17:e7:2d:b9:f7:d9:ff:31:59:e1: fd:f6:82:a6:f8:f3:35:77:bf:be:5d:c2:97:66:67: 67:5a:0d:42:7a:74:b5:82:48:c1:1a:c5:d5:a4:a1: 3b:14:94:de:90:70:a9:f7:a2:4b:21:d6:a9:dd:16: 90:c5:4a:0d:55:19:7e:2f:d9:21:e7:76:4b:9f:b1: d3:4d:94:de:53:56:ab:38:a2:72:97:6e:37:d9:81: 57:a8:96:6c:96:3d:f4:21:90:47:39:e8:b5:33:d4: 66:d7:58:ce:52:07:5f:6a:d7:3c:2d:1e:6e:f4:27: fc:5e:f9:b3:d0:0e:2f:3e:21:9c:6c:3f:4c:47:59: a5:b7:63:74:80:f5:e8:fd:1d:37:d1:99:7b:45:9c: 99:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:90:07:54:11:29:66:DC:24:F5:C5:D0:6B:F4:C3:2B:C4:A2:86:77 X509v3 Authority Key Identifier: keyid:E0:21:1D:D4:77:C5:B4:DA:17:E7:A2:02:86:03:AC:D8:E7:16:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4CEd1HfFtNoX56IChgOs2OcWZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB1BE/5A57786CC0C811E8AE805334C4F9AE02/4CEd1HfFtNoX56IChgOs2OcWZrU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:7c:b4:34:8a:ca:5f:f6:dd:c3:d9:d2:44:29:b2:6e:f8:5a: 1e:61:5f:8a:c6:01:a1:5c:88:bd:04:35:e6:f4:45:f2:3f:36: 3c:d7:5b:c2:de:7f:50:48:bf:ed:6a:9e:cb:d8:fa:7d:d4:51: 11:09:3c:ac:0d:c0:8c:3c:7b:c6:cf:6f:d1:bb:c9:58:8c:7b: 19:e5:db:94:7a:dd:1d:4e:fc:6f:98:01:42:6a:d1:33:f2:0f: fe:e3:b4:b5:a3:ed:af:ec:0b:95:99:79:4f:58:ed:32:c6:c9: e2:2e:06:59:c0:76:12:b5:b6:29:36:01:f5:e4:a3:75:5c:a4: cb:36:6a:78:c7:7c:b0:74:47:e1:a4:1e:3b:9b:96:fe:ec:4d: e6:fa:15:7b:de:32:f7:f5:33:50:68:7d:51:85:9e:fe:7d:ba: fe:67:b6:c2:02:74:46:de:23:f0:ba:72:48:19:5a:c8:14:7b: 48:40:17:43:0f:88:44:4f:c4:49:78:93:48:e1:31:1b:77:b3: 83:96:c2:52:fb:53:f8:7a:54:c0:4e:33:50:7b:42:ea:7f:20: de:2e:7b:77:10:2f:e0:2d:28:bf:43:f2:c7:72:01:63:65:6b: c1:36:46:a5:44:1e:27:0d:cf:e3:05:0c:22:28:80:6d:08:29: b5:27:47:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIxQkUxMTAvBgNVBAUTKEUwMjExREQ0NzdDNUI0REExN0U3QTIwMjg2MDNBQ0Q4 RTcxNjY2QjUwHhcNMjUwODI0MTcwMTA4WhcNMjUwODMxMTcwMTA4WjAYMRYwFAYD VQQDEw02OGFiNDU1NS04MDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzoBz2fe9cq5GHdLCGN5v/WCv9E2t94Dvnrzz1e1AZWcATp+GgxJSTwz2BJl cWhITBmzguY0G/vYX4wHW3QxkhLb0QXWjzp8T9wclovKsUik92+1+SVyBdEZo12q HpDgr6tS9Xg5sX238dqJHBfnLbn32f8xWeH99oKm+PM1d7++XcKXZmdnWg1CenS1 gkjBGsXVpKE7FJTekHCp96JLIdap3RaQxUoNVRl+L9kh53ZLn7HTTZTeU1arOKJy l2432YFXqJZslj30IZBHOei1M9Rm11jOUgdfatc8LR5u9Cf8Xvmz0A4vPiGcbD9M R1mlt2N0gPXo/R030Zl7RZyZrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeQB1QR KWbcJPXF0Gv0wyvEooZ3MB8GA1UdIwQYMBaAFOAhHdR3xbTaF+eiAoYDrNjnFma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjFCRS81QTU3Nzg2Q0Mw QzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnROb1g1NklDaGdPczJPY1da clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDRWQxSGZGdE5vWDU2SUNoZ09zMk9jV1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjFCRS81QTU3Nzg2Q0MwQzgxMUU4QUU4MDUzMzRDNEY5QUUwMi80Q0VkMUhmRnRO b1g1NklDaGdPczJPY1daclUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZfLQ0ispf9t3D2dJEKbJu+FoeYV+KxgGhXIi9BDXm9EXyPzY811vC 3n9QSL/tap7L2Pp91FERCTysDcCMPHvGz2/Ru8lYjHsZ5duUet0dTvxvmAFCatEz 8g/+47S1o+2v7AuVmXlPWO0yxsniLgZZwHYStbYpNgH15KN1XKTLNmp4x3ywdEfh pB47m5b+7E3m+hV73jL39TNQaH1RhZ7+fbr+Z7bCAnRG3iPwunJIGVrIFHtIQBdD D4hET8RJeJNI4TEbd7ODlsJS+1P4elTATjNQe0LqfyDeLnt3EC/gLSi/Q/LHcgFj ZWvBNkalRB4nDc/jBQwiKIBtCCm1J0cm -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:32 2025 by rpki-client