$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft File: 4deDfrzHqaTRdRZXhgR2OivQQnI.mft (raw, json) Hash identifier: Y6rocKM4hyOVu+CuhG9gKtWCG5eafH2pULvbMLjLAdY= Subject key identifier: 25:3C:AB:D9:84:EF:12:41:73:98:FE:9A:29:FA:D0:EB:B3:E0:58:4A Authority key identifier: E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 Certificate issuer: /CN=A91EE92F/serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft Manifest number: A1 Signing time: Wed 23 Jul 2025 06:35:37 +0000 Manifest this update: Wed 23 Jul 2025 06:35:36 +0000 Manifest next update: Wed 30 Jul 2025 06:35:36 +0000 Files and hashes: 1: 4deDfrzHqaTRdRZXhgR2OivQQnI.crl (hash: TxvbbdqH9C6d8OE5RRpiZbVE2AD64fJoH2YdS4n21K8=) 2: 2EC0897A740C11EFB881CE37C4F9AE02.roa (hash: jK7WeiMtYEjncK+3WbHQbUVCOX5jz02RAdo98TCxxKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 06:35:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE92F, serialNumber=E1D7837EBCC7A9A4D17516578604763A2BD04272 Validity Not Before: Jul 23 06:35:36 2025 GMT Not After : Jul 30 06:35:36 2025 GMT Subject: CN=688082b9-a45d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:64:10:01:58:49:b8:3e:95:c7:75:de:69:2f: cc:32:b6:d3:f8:18:10:b5:8e:f7:d2:e9:17:64:ce: 84:9a:43:b4:19:f4:84:3f:1f:6b:62:a6:c4:29:28: 6c:13:8e:af:38:64:09:c8:3a:ca:7f:53:53:80:e2: 15:7e:11:54:c2:a4:2b:b1:08:01:f1:f5:a2:92:5a: 55:ea:db:c5:92:14:3f:cc:5c:f7:05:ef:c8:dd:b4: ee:31:ff:b2:e9:45:7a:b9:b9:f2:82:aa:74:43:46: 81:14:95:17:c8:14:92:73:33:0a:12:ee:a3:a6:fe: df:d2:6a:32:d5:39:e3:2c:63:ea:cf:ee:e7:54:78: f9:86:90:3b:c8:6d:1b:6d:9f:93:e0:31:09:b2:06: 10:62:56:7e:05:21:08:36:19:22:fb:72:a8:fb:00: 8c:99:c8:47:95:6e:d0:6f:f1:5a:48:a0:e6:d6:49: 49:48:f1:53:01:d9:98:04:b2:de:b7:eb:39:d9:75: cb:ef:a0:82:31:c4:c0:02:57:07:1d:63:b8:6b:59: 44:33:a1:9d:5f:81:93:ac:80:7c:02:67:14:d4:20: 4a:46:e5:0d:18:d7:25:ac:46:74:4f:d6:ca:cb:95: 9d:23:72:3c:c4:de:0d:9f:4a:9d:a9:26:c3:5d:d9: 41:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:3C:AB:D9:84:EF:12:41:73:98:FE:9A:29:FA:D0:EB:B3:E0:58:4A X509v3 Authority Key Identifier: keyid:E1:D7:83:7E:BC:C7:A9:A4:D1:75:16:57:86:04:76:3A:2B:D0:42:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4deDfrzHqaTRdRZXhgR2OivQQnI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE92F/1B290B5E740B11EF9E9C0336C4F9AE02/4deDfrzHqaTRdRZXhgR2OivQQnI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:75:56:1f:39:9d:9b:0e:38:1f:58:9b:35:00:1f:51:d4:59: 36:a7:9b:a4:e2:e3:87:d3:eb:89:f0:7d:c1:2f:54:ce:65:a0: fd:4d:57:2b:48:e9:64:50:17:2a:81:d0:3a:9c:3a:bf:61:8f: 2d:60:13:67:5b:41:15:95:bb:c4:77:3c:dc:8c:a0:46:28:68: ca:39:85:42:83:d0:32:8e:65:58:1b:7c:8f:42:97:69:63:ba: 0a:fb:07:03:6b:94:42:3a:28:0a:c0:92:fb:92:7c:cc:4b:4e: 3c:e7:88:f0:a7:c0:24:88:55:47:67:aa:1d:09:6f:d0:8e:8d: 82:71:98:b5:51:ec:fd:17:8c:a4:be:4e:e1:3a:18:2e:10:2b: 68:7f:56:46:6a:e3:92:a7:78:38:e9:3d:23:e7:ac:16:b7:40: e7:d6:ab:d1:35:4c:4f:3f:2b:7d:b8:94:d6:c3:07:c6:24:2f: 6c:50:b7:f7:ef:c7:10:69:36:a1:7f:73:87:0a:04:ba:47:60: 2b:4b:0b:9d:c0:4a:b7:8f:f5:72:e0:f2:9e:f1:52:97:f2:1e: a3:83:47:df:69:0e:59:a6:6e:2e:1f:3e:69:b7:6a:92:80:21: 9b:ec:6d:6f:18:ed:be:16:4a:d6:6a:b6:9b:2a:f1:47:06:6d: c5:13:5b:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU5MkYxMTAvBgNVBAUTKEUxRDc4MzdFQkNDN0E5QTREMTc1MTY1Nzg2MDQ3NjNB MkJEMDQyNzIwHhcNMjUwNzIzMDYzNTM2WhcNMjUwNzMwMDYzNTM2WjAYMRYwFAYD VQQDEw02ODgwODJiOS1hNDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWQQAVhJuD6Vx3XeaS/MMrbT+BgQtY730ukXZM6EmkO0GfSEPx9rYqbEKShs E46vOGQJyDrKf1NTgOIVfhFUwqQrsQgB8fWiklpV6tvFkhQ/zFz3Be/I3bTuMf+y 6UV6ubnygqp0Q0aBFJUXyBSSczMKEu6jpv7f0moy1TnjLGPqz+7nVHj5hpA7yG0b bZ+T4DEJsgYQYlZ+BSEINhki+3Ko+wCMmchHlW7Qb/FaSKDm1klJSPFTAdmYBLLe t+s52XXL76CCMcTAAlcHHWO4a1lEM6GdX4GTrIB8AmcU1CBKRuUNGNclrEZ0T9bK y5WdI3I8xN4Nn0qdqSbDXdlB0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCU8q9mE 7xJBc5j+min60Ouz4FhKMB8GA1UdIwQYMBaAFOHXg368x6mk0XUWV4YEdjor0EJy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTkyRi8xQjI5MEI1RTc0 MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFhVFJkUlpYaGdSMk9pdlFR bkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkZURmcnpIcWFUUmRSWlhoZ1IyT2l2UVFuSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTkyRi8xQjI5MEI1RTc0MEIxMUVGOUU5QzAzMzZDNEY5QUUwMi80ZGVEZnJ6SHFh VFJkUlpYaGdSMk9pdlFRbkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPdVYfOZ2bDjgfWJs1AB9R1Fk2p5uk4uOH0+uJ8H3BL1TOZaD9TVcr SOlkUBcqgdA6nDq/YY8tYBNnW0EVlbvEdzzcjKBGKGjKOYVCg9AyjmVYG3yPQpdp Y7oK+wcDa5RCOigKwJL7knzMS04854jwp8AkiFVHZ6odCW/Qjo2CcZi1Uez9F4yk vk7hOhguECtof1ZGauOSp3g46T0j56wWt0Dn1qvRNUxPPyt9uJTWwwfGJC9sULf3 78cQaTahf3OHCgS6R2ArSwudwEq3j/Vy4PKe8VKX8h6jg0ffaQ5Zpm4uHz5pt2qS gCGb7G1vGO2+FkrWarabKvFHBm3FE1sq -----END CERTIFICATE-----Generated at Thu Jul 24 23:29:28 2025 by rpki-client