$ rpki-client -vvf rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft File: 4xZnlgSAzwfjwi15DeTiAe9wQNs.mft (raw, json) Hash identifier: k4SnoF8AZyXJUNrsR3bpYQ0TMzK2QfeaHUQKqLiZNUo= Subject key identifier: E6:78:27:AB:1C:CC:D8:4B:10:43:4B:8A:B7:D0:41:DB:E5:D9:0B:97 Authority key identifier: E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB Certificate issuer: /CN=A911B310/serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Certificate serial: 01E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft Manifest number: 01D8 Signing time: Sat 09 Aug 2025 03:10:31 +0000 Manifest this update: Sat 09 Aug 2025 03:10:30 +0000 Manifest next update: Sat 16 Aug 2025 03:10:30 +0000 Files and hashes: 1: 4xZnlgSAzwfjwi15DeTiAe9wQNs.crl (hash: 1LShQu6P+t/AJA95M8rK8ZdOtzp3FDyP7HAALlK/zQY=) 2: 0ADA583C5DB911F0A54D4C6FC4F9AE02.roa (hash: YIHS3PAvaz4V4QmFJCk8b1AkmK5GNgS8/DelBF3BA28=) 3: 0BBC997C5DB911F0A54D4C6FC4F9AE02.roa (hash: g6pquqeh1IhUuquygrP9Vdo65/Zud1vKIjoHKRNQNOA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B310, serialNumber=E31667960480CF07E3C22D790DE4E201EF7040DB Validity Not Before: Aug 9 03:10:30 2025 GMT Not After : Aug 16 03:10:30 2025 GMT Subject: CN=6896bc27-2fd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4f:46:6b:13:f8:ee:60:1b:a3:a1:f9:09:23: 21:47:8e:34:cf:e5:78:96:5d:27:4c:1f:e4:71:31: a5:ed:b3:7a:cc:be:06:09:a3:80:6e:df:ac:c7:8f: 78:6f:f1:7d:09:5b:7d:5d:af:46:b4:97:39:8f:c5: 69:ea:59:8e:5a:99:13:fa:80:6c:0e:d1:ca:2d:b2: af:0c:c0:ea:55:31:39:3c:b5:89:cb:3b:bd:a7:ac: 6a:eb:45:f9:cc:68:74:05:66:8c:2e:a0:78:23:0c: 45:51:53:9d:e1:d8:68:8b:fe:04:ff:4f:a6:df:60: 9e:3a:37:41:b6:3c:e9:37:20:39:4a:15:8e:8e:a3: 87:5a:ae:c8:c2:d4:d3:3f:19:14:de:6c:9b:d6:8b: 69:68:2f:87:21:52:da:11:25:dc:5f:08:54:09:d9: b9:a5:c8:8e:00:5a:04:bf:f3:da:42:ad:de:79:5a: ab:3d:be:31:45:92:29:b6:50:e0:a1:01:08:53:87: e3:8f:af:4a:8b:63:b4:98:96:de:97:a0:f4:7d:f2: 7f:3a:37:f5:cf:20:d5:2b:6d:40:62:f6:b3:b2:61: 2d:df:ec:d9:c6:86:76:36:5a:bb:b3:6e:06:84:e7: 4f:eb:8f:14:f0:01:67:0b:e2:56:fe:40:46:1c:35: fe:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:78:27:AB:1C:CC:D8:4B:10:43:4B:8A:B7:D0:41:DB:E5:D9:0B:97 X509v3 Authority Key Identifier: keyid:E3:16:67:96:04:80:CF:07:E3:C2:2D:79:0D:E4:E2:01:EF:70:40:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4xZnlgSAzwfjwi15DeTiAe9wQNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B310/3EBD17C2AD1011ED854A3E1DC4F9AE02/4xZnlgSAzwfjwi15DeTiAe9wQNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:cd:94:be:ad:aa:be:48:72:88:99:86:c2:29:0d:78:6a:ba: a6:c4:30:73:a4:f6:8b:41:b9:e8:a1:7e:1d:59:74:5f:68:4a: f6:29:c5:46:a4:32:33:34:22:20:d1:35:27:dd:5f:81:cd:01: 46:d3:7f:b1:47:da:e4:ed:91:bf:53:26:55:ef:b0:87:0e:d9: 8f:98:59:c0:91:98:a8:09:14:ce:06:a1:cf:1b:51:3c:00:a2: b7:1c:2c:3a:cc:3f:e7:ea:79:f1:dd:f8:28:37:97:43:d9:fa: 7c:4c:73:2b:dc:4b:51:40:ac:14:de:6c:25:bb:c7:c7:bd:0e: 8e:0f:43:e9:99:61:e4:e2:b4:f1:d7:93:96:03:ae:43:22:b5: 40:de:e1:ad:93:15:3b:28:b0:7b:8e:94:6a:59:af:76:77:64: ae:a5:fc:c1:fc:d4:a1:98:7a:6a:d0:e8:b6:a0:68:a3:6b:d5: f8:7e:11:c5:fe:24:94:6e:b1:a3:1f:61:a1:1a:a2:ff:0a:a7: 54:4c:30:ab:f0:d9:67:4b:ec:df:e5:38:2f:27:39:49:54:98: 9c:0d:6e:7b:ab:dd:a1:9e:69:8e:7e:10:83:3e:15:8b:a1:72: d9:a7:66:9b:b4:07:0a:e2:c0:fe:24:58:99:79:d3:0a:86:e5: fa:5a:53:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIzMTAxMTAvBgNVBAUTKEUzMTY2Nzk2MDQ4MENGMDdFM0MyMkQ3OTBERTRFMjAx RUY3MDQwREIwHhcNMjUwODA5MDMxMDMwWhcNMjUwODE2MDMxMDMwWjAYMRYwFAYD VQQDEw02ODk2YmMyNy0yZmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE9GaxP47mAbo6H5CSMhR440z+V4ll0nTB/kcTGl7bN6zL4GCaOAbt+sx494 b/F9CVt9Xa9GtJc5j8Vp6lmOWpkT+oBsDtHKLbKvDMDqVTE5PLWJyzu9p6xq60X5 zGh0BWaMLqB4IwxFUVOd4dhoi/4E/0+m32CeOjdBtjzpNyA5ShWOjqOHWq7IwtTT PxkU3myb1otpaC+HIVLaESXcXwhUCdm5pciOAFoEv/PaQq3eeVqrPb4xRZIptlDg oQEIU4fjj69Ki2O0mJbel6D0ffJ/Ojf1zyDVK21AYvazsmEt3+zZxoZ2Nlq7s24G hOdP648U8AFnC+JW/kBGHDX+YQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOZ4J6sc zNhLEENLirfQQdvl2QuXMB8GA1UdIwQYMBaAFOMWZ5YEgM8H48IteQ3k4gHvcEDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjMxMC8zRUJEMTdDMkFE MTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3Zmp3aTE1RGVUaUFlOXdR TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR4Wm5sZ1NBendmandpMTVEZVRpQWU5d1FOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjMxMC8zRUJEMTdDMkFEMTAxMUVEODU0QTNFMURDNEY5QUUwMi80eFpubGdTQXp3 Zmp3aTE1RGVUaUFlOXdRTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAezZS+raq+SHKImYbCKQ14arqmxDBzpPaLQbnooX4dWXRfaEr2KcVG pDIzNCIg0TUn3V+BzQFG03+xR9rk7ZG/UyZV77CHDtmPmFnAkZioCRTOBqHPG1E8 AKK3HCw6zD/n6nnx3fgoN5dD2fp8THMr3EtRQKwU3mwlu8fHvQ6OD0PpmWHk4rTx 15OWA65DIrVA3uGtkxU7KLB7jpRqWa92d2SupfzB/NShmHpq0Oi2oGija9X4fhHF /iSUbrGjH2GhGqL/CqdUTDCr8NlnS+zf5TgvJzlJVJicDW57q92hnmmOfhCDPhWL oXLZp2abtAcK4sD+JFiZedMKhuX6WlPd -----END CERTIFICATE-----Generated at Sun Aug 10 03:45:13 2025 by rpki-client