$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: F0us4RGEMIvEOGPnFTZYYJv6sryTsDJCeC9IMt//Ih4= Subject key identifier: DE:05:C8:79:94:46:CA:49:32:EB:F7:63:82:BB:03:C6:05:47:E6:20 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 01F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 01F6 Signing time: Sat 09 Aug 2025 02:48:22 +0000 Manifest this update: Sat 09 Aug 2025 02:48:21 +0000 Manifest next update: Sat 16 Aug 2025 02:48:21 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: xRdiW4t39uY+ARJIgBHgQ4FTr6dPpNdASurOGjPvA4o=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: C5+qR+xwM5riTT+23t/1tPZQq66L4etzO1hAZvNu09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 505 (0x1f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Aug 9 02:48:21 2025 GMT Not After : Aug 16 02:48:21 2025 GMT Subject: CN=6896b6f5-4ddf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:09:0c:53:78:b5:d2:58:db:18:ef:72:2f:bc: c4:f5:bb:8b:3a:ea:fa:16:3e:81:08:23:6b:e1:fb: 3a:f3:70:e8:f3:b7:c8:b5:53:f2:7b:66:aa:e8:2b: cc:92:24:4a:10:6b:40:49:49:0b:4b:79:60:fb:d2: 8d:fc:1f:9a:31:d3:39:23:af:49:8d:d6:f0:6c:b2: 78:73:dd:8a:48:52:3d:d7:06:d8:59:7c:17:66:b2: 06:d8:de:e2:8e:02:ca:c2:d8:92:8e:9b:6f:6b:7e: 3b:3d:e8:c9:4a:a6:b2:ad:fa:49:ab:42:b3:73:3d: 2f:e2:3b:e1:13:a2:ac:c6:34:13:be:8a:8e:a3:95: da:dc:8a:d4:7f:6f:f8:f9:a1:ff:43:35:7e:8c:6d: f0:e1:f9:ed:93:05:93:4b:78:cd:72:ec:8d:a6:eb: 23:31:53:bd:ae:d3:1c:f1:97:3f:04:c8:93:61:c4: 1d:7d:af:ab:de:3d:12:f8:05:3e:17:78:6b:45:7d: 33:a4:00:3a:d6:88:63:3a:d1:04:b9:f3:53:9d:37: f1:6b:98:6a:7c:6d:4d:a2:20:09:a0:b9:d2:08:a8: 34:6f:d0:f4:0c:6a:be:0b:8b:7b:51:14:0a:34:d8: 13:a7:39:a5:cc:be:9f:c9:d1:36:b5:b2:19:19:29: 1c:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:05:C8:79:94:46:CA:49:32:EB:F7:63:82:BB:03:C6:05:47:E6:20 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:8f:87:13:ec:a1:98:3d:57:f0:30:34:59:32:f2:22:31:d7: 49:fb:3b:e0:d7:76:de:50:25:ca:8c:75:85:92:f8:f7:9c:19: f5:eb:10:b6:35:62:45:e8:b1:bc:a4:26:88:4e:79:61:9f:ff: 9f:dd:fb:b4:d9:fc:58:12:09:13:bc:78:de:c8:5e:32:9d:64: bb:af:5c:3d:d3:a3:4c:10:71:87:88:26:56:87:3b:96:65:5e: 3f:25:d3:8b:55:59:7b:d9:a6:b1:93:1c:83:88:5c:b5:36:5a: 4d:ef:f9:d4:bb:c8:08:61:f6:0d:68:fc:09:51:d2:d5:98:92: 7f:f2:46:3e:2b:4e:40:b7:77:46:d8:b2:86:30:07:50:5a:ec: ea:7a:af:33:80:2e:1d:58:04:47:3e:e1:69:ea:6c:5c:ca:84: 79:f4:66:fe:d4:2a:fc:2f:0a:0f:df:47:60:4a:8b:bb:e0:ed: fb:ae:78:35:c0:f0:1b:f9:5a:b1:4c:71:cf:05:31:b7:d0:c6: 9b:fb:b2:fc:66:bd:65:b3:2d:08:11:00:2a:fc:59:37:aa:33: b4:76:5f:67:50:0f:5c:72:1b:44:1d:82:97:00:20:00:3f:6d: 47:09:25:e5:e4:41:59:e2:0b:d4:23:36:1d:ad:0a:dc:39:ef: f4:1f:aa:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjUwODA5MDI0ODIxWhcNMjUwODE2MDI0ODIxWjAYMRYwFAYD VQQDEw02ODk2YjZmNS00ZGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAkMU3i10ljbGO9yL7zE9buLOur6Fj6BCCNr4fs683Do87fItVPye2aq6CvM kiRKEGtASUkLS3lg+9KN/B+aMdM5I69JjdbwbLJ4c92KSFI91wbYWXwXZrIG2N7i jgLKwtiSjptva347PejJSqayrfpJq0Kzcz0v4jvhE6KsxjQTvoqOo5Xa3IrUf2/4 +aH/QzV+jG3w4fntkwWTS3jNcuyNpusjMVO9rtMc8Zc/BMiTYcQdfa+r3j0S+AU+ F3hrRX0zpAA61ohjOtEEufNTnTfxa5hqfG1NoiAJoLnSCKg0b9D0DGq+C4t7URQK NNgTpzmlzL6fydE2tbIZGSkcBQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4FyHmU RspJMuv3Y4K7A8YFR+YgMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARj4cT7KGYPVfwMDRZMvIiMddJ+zvg13beUCXKjHWFkvj3nBn16xC2 NWJF6LG8pCaITnlhn/+f3fu02fxYEgkTvHjeyF4ynWS7r1w906NMEHGHiCZWhzuW ZV4/JdOLVVl72aaxkxyDiFy1NlpN7/nUu8gIYfYNaPwJUdLVmJJ/8kY+K05At3dG 2LKGMAdQWuzqeq8zgC4dWARHPuFp6mxcyoR59Gb+1Cr8LwoP30dgSou74O37rng1 wPAb+VqxTHHPBTG30Mab+7L8Zr1lsy0IEQAq/Fk3qjO0dl9nUA9cchtEHYKXACAA P21HCSXl5EFZ4gvUIzYdrQrcOe/0H6o9 -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:31 2025 by rpki-client