$ rpki-client -vvf rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.mft File: 4MqtF8Bo2GArzOtGe0VVELxSOQ4.mft (raw, json) Hash identifier: RquUnju3ZXKhp2bB3Vr+Sj6T4wdfIX8ZVG7774BQqlE= Subject key identifier: 7A:DF:73:D9:34:EA:55:95:C2:7C:DD:35:90:28:61:DB:29:53:AB:62 Authority key identifier: E0:CA:AD:17:C0:68:D8:60:2B:CC:EB:46:7B:45:55:10:BC:52:39:0E Certificate issuer: /CN=A9118799/serialNumber=E0CAAD17C068D8602BCCEB467B455510BC52390E Certificate serial: 1958 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.mft Manifest number: 1949 Signing time: Fri 08 Aug 2025 16:34:42 +0000 Manifest this update: Fri 08 Aug 2025 16:34:41 +0000 Manifest next update: Fri 15 Aug 2025 16:34:41 +0000 Files and hashes: 1: 4MqtF8Bo2GArzOtGe0VVELxSOQ4.crl (hash: 1R2u4exTqqwc2QWrCM3bSvUyNOonzPkKEig4RcKEFco=) 2: 99AB821E859C11E7A1FEC80AC4F9AE02.roa (hash: P4Ek16t0ZEw/MnJDtAJSlLMC0jHATAWAbBg4OWQTq78=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.crl rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6488 (0x1958) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118799, serialNumber=E0CAAD17C068D8602BCCEB467B455510BC52390E Validity Not Before: Aug 8 16:34:41 2025 GMT Not After : Aug 15 16:34:41 2025 GMT Subject: CN=68962722-cb0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f3:08:6e:a1:19:42:a7:47:39:88:4f:0a:df: 8d:51:9b:74:2d:7e:09:72:d7:61:56:29:2c:3c:bc: 7e:53:1f:6c:d6:db:b4:64:92:c3:14:d7:fb:7b:4e: c0:ae:e3:be:78:58:27:29:ef:12:ed:01:d2:12:1c: e8:2d:d1:10:c8:e1:83:eb:83:68:2d:9a:1d:50:d8: cb:38:f6:95:e1:80:ee:0f:be:c2:97:b8:f3:86:59: b9:43:90:bb:9b:45:4c:2a:76:28:59:d3:e5:de:8d: 31:ef:3d:c9:af:4e:62:47:83:62:68:c6:fa:13:9d: 0e:b9:04:25:bc:bb:61:df:3a:76:0d:0e:09:79:49: 62:52:26:c3:5f:28:d3:2e:f8:5b:51:5f:d3:44:24: c7:70:68:4f:b4:57:dd:99:e9:12:ee:8a:db:9d:dc: d2:b2:c7:7c:3d:d9:67:da:02:94:f7:55:97:b7:6d: 1c:cb:15:73:40:2c:2c:e6:82:4c:28:f8:c1:1f:90: 06:ba:28:a6:80:0a:94:1f:ad:6a:d6:a2:7b:ed:a9: 96:cb:bd:a0:d5:4d:33:bd:19:43:2f:3c:72:35:a2: d7:99:01:d1:15:67:80:f3:f6:d2:c8:90:c9:ee:ec: 92:00:71:ee:f4:f2:2d:81:68:50:bc:15:0e:27:eb: 47:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DF:73:D9:34:EA:55:95:C2:7C:DD:35:90:28:61:DB:29:53:AB:62 X509v3 Authority Key Identifier: keyid:E0:CA:AD:17:C0:68:D8:60:2B:CC:EB:46:7B:45:55:10:BC:52:39:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:63:b6:e9:2d:76:0d:5c:27:26:e7:75:50:c1:28:92:41:06: 23:24:4c:be:72:4b:6d:56:80:1b:40:aa:47:8a:3d:be:23:35: 84:cb:f1:ee:98:8b:13:4b:4f:6d:6d:f6:ba:f7:e7:1c:fe:f2: 08:23:8b:61:5d:85:1c:cc:1b:d9:3a:d3:f4:bb:eb:d4:fc:0e: b4:8d:e1:48:f2:22:79:56:8c:3e:bc:d7:41:94:1d:ea:e9:c8: 0b:cc:44:1f:dc:81:40:95:4d:be:9f:e3:5a:cb:e2:6d:2a:67: f5:d3:9c:f6:20:ab:77:3c:bb:79:64:91:f2:43:9a:62:1e:08: d3:72:27:81:ca:1b:82:7d:05:67:58:fd:b6:1e:29:fb:25:58: b3:2c:ec:fd:de:5b:87:6a:06:b9:3f:d8:1e:17:2e:2b:30:ab: e8:81:04:bc:3a:b0:42:65:b6:fa:42:63:b9:52:b3:0c:17:14: 81:a0:a6:a9:cf:d7:c6:2b:6a:18:8f:c4:9d:5c:2d:36:c5:e2: 11:e5:dc:74:3e:63:58:fd:ff:7a:4b:77:d1:c4:22:da:0b:9b: 64:db:30:49:9c:3a:6f:53:38:56:23:0b:38:7b:aa:ec:f8:07: ff:f7:b8:76:4f:2b:e9:10:9c:19:72:91:69:c7:93:c1:6f:21: 1c:f9:89:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3OTkxMTAvBgNVBAUTKEUwQ0FBRDE3QzA2OEQ4NjAyQkNDRUI0NjdCNDU1NTEw QkM1MjM5MEUwHhcNMjUwODA4MTYzNDQxWhcNMjUwODE1MTYzNDQxWjAYMRYwFAYD VQQDEw02ODk2MjcyMi1jYjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PMIbqEZQqdHOYhPCt+NUZt0LX4JctdhViksPLx+Ux9s1tu0ZJLDFNf7e07A ruO+eFgnKe8S7QHSEhzoLdEQyOGD64NoLZodUNjLOPaV4YDuD77Cl7jzhlm5Q5C7 m0VMKnYoWdPl3o0x7z3Jr05iR4NiaMb6E50OuQQlvLth3zp2DQ4JeUliUibDXyjT LvhbUV/TRCTHcGhPtFfdmekS7orbndzSssd8Pdln2gKU91WXt20cyxVzQCws5oJM KPjBH5AGuiimgAqUH61q1qJ77amWy72g1U0zvRlDLzxyNaLXmQHRFWeA8/bSyJDJ 7uySAHHu9PItgWhQvBUOJ+tHawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHrfc9k0 6lWVwnzdNZAoYdspU6tiMB8GA1UdIwQYMBaAFODKrRfAaNhgK8zrRntFVRC8UjkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODc5OS8zMjg3QkZBMjdF QzcxMUU3ODgzRTJFNThDNEY5QUUwMi80TXF0RjhCbzJHQXJ6T3RHZTBWVkVMeFNP UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNcXRGOEJvMkdBcnpPdEdlMFZWRUx4U09RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODc5OS8zMjg3QkZBMjdFQzcxMUU3ODgzRTJFNThDNEY5QUUwMi80TXF0RjhCbzJH QXJ6T3RHZTBWVkVMeFNPUTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqY7bpLXYNXCcm53VQwSiSQQYjJEy+ckttVoAbQKpHij2+IzWEy/Hu mIsTS09tbfa69+cc/vIII4thXYUczBvZOtP0u+vU/A60jeFI8iJ5Vow+vNdBlB3q 6cgLzEQf3IFAlU2+n+Nay+JtKmf105z2IKt3PLt5ZJHyQ5piHgjTcieByhuCfQVn WP22Hin7JVizLOz93luHaga5P9geFy4rMKvogQS8OrBCZbb6QmO5UrMMFxSBoKap z9fGK2oYj8SdXC02xeIR5dx0PmNY/f96S3fRxCLaC5tk2zBJnDpvUzhWIws4e6rs +Af/97h2TyvpEJwZcpFpx5PBbyEc+Ykk -----END CERTIFICATE-----Generated at Sun Aug 10 10:35:10 2025 by rpki-client