$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: veiDlB0P1Jp0SMAmrdTFyE5jLwytlClzxZATIEQq9LM= Subject key identifier: 03:EA:DB:F9:F7:DD:EB:BE:4F:BD:D0:E5:63:FE:92:DC:E9:9A:8F:28 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0AF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0AEC Signing time: Fri 08 Aug 2025 19:39:08 +0000 Manifest this update: Fri 08 Aug 2025 19:39:08 +0000 Manifest next update: Fri 15 Aug 2025 19:39:08 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: E7Kgadxm315vSQemzQmn2YC0tJFzeTWiSuunMxWxOMw=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2802 (0xaf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Aug 8 19:39:08 2025 GMT Not After : Aug 15 19:39:08 2025 GMT Subject: CN=6896525c-9c9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c8:18:bc:87:5c:9c:c8:fb:d0:a2:8a:62:f2: c9:7d:a1:f4:4a:53:e1:31:6e:31:2b:e9:ad:ea:2f: 2c:92:38:99:ae:12:e1:c8:a3:6f:38:dc:f0:a1:d7: 95:ab:58:71:d0:36:0a:94:ad:ac:62:0f:58:c6:39: f5:bc:f7:a0:d6:1e:96:1e:a8:6f:0b:19:2b:0b:0a: 5b:41:85:38:0b:36:ba:8f:93:41:44:83:ad:0a:c2: 40:48:0e:6e:03:71:bf:e3:d1:22:7c:dd:9d:3f:5f: 26:4e:7f:38:a1:66:22:0f:be:92:2c:a8:6c:e4:a1: 39:a0:32:76:ea:f4:d1:68:21:b8:e9:31:46:4d:0c: f9:ab:59:bc:e9:db:ac:dd:0e:8d:db:32:8b:f8:4b: 8a:f2:d0:13:e4:15:26:a1:46:00:01:2e:2a:d9:3b: 4f:82:95:56:81:f2:60:d9:4d:b7:c5:41:1b:8f:a2: 8c:07:b5:c7:7b:95:e3:bd:31:06:e4:7e:de:a7:6a: 8c:8c:23:18:78:4c:79:8c:63:08:4f:79:04:f7:62: 34:fe:03:83:05:3b:08:c7:77:e1:ae:b9:84:20:b9: 73:af:d2:73:d6:6c:98:11:a7:bf:b6:64:a5:50:ec: 6c:36:98:15:27:94:64:28:fa:cb:40:cd:08:d3:bc: 27:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:EA:DB:F9:F7:DD:EB:BE:4F:BD:D0:E5:63:FE:92:DC:E9:9A:8F:28 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:32:23:ab:97:9b:3f:21:d8:42:5d:63:d5:c7:1f:17:43:f2: 26:7c:ce:30:e7:0c:a0:5c:ae:ed:7c:8e:2d:3a:7d:4e:3f:20: e6:a4:28:b2:45:e3:85:40:ff:57:f8:a8:bd:c2:ec:3f:74:dd: 01:b6:46:29:f0:67:a3:86:88:a9:15:0f:ef:4e:af:3f:b9:db: 50:23:0f:a9:1e:b6:62:6f:89:f2:08:b8:82:ad:34:49:ef:b8: 91:d9:e8:d0:63:e2:4d:8f:ba:c8:66:d3:b4:14:27:f2:04:98: ec:f0:d5:ac:54:0d:d5:22:9c:1f:56:af:8e:af:8e:09:3a:2f: a7:9d:33:4d:d9:0f:2a:d3:4c:64:86:c4:94:7a:62:fb:62:a0: 63:00:2b:b0:66:76:b3:c8:2c:f4:0d:61:60:f2:e6:6c:d2:6a: 82:54:db:46:00:62:31:90:ee:50:66:00:9c:a9:c0:dd:9c:8f: 79:37:a6:01:3f:27:1c:ac:8c:d6:be:14:3b:c3:b0:1a:86:ab: e1:ea:0c:17:69:bc:d9:1a:ec:42:4b:4d:4b:fa:40:2c:1c:ef: 3f:1f:28:91:04:11:10:56:a1:48:7a:05:0d:8e:c3:15:90:eb: 1a:df:e2:bd:10:95:36:dc:d2:e9:0d:19:98:4c:42:6f:67:51: 0a:55:42:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwODA4MTkzOTA4WhcNMjUwODE1MTkzOTA4WjAYMRYwFAYD VQQDEw02ODk2NTI1Yy05YzllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcgYvIdcnMj70KKKYvLJfaH0SlPhMW4xK+mt6i8skjiZrhLhyKNvONzwodeV q1hx0DYKlK2sYg9Yxjn1vPeg1h6WHqhvCxkrCwpbQYU4Cza6j5NBRIOtCsJASA5u A3G/49EifN2dP18mTn84oWYiD76SLKhs5KE5oDJ26vTRaCG46TFGTQz5q1m86dus 3Q6N2zKL+EuK8tAT5BUmoUYAAS4q2TtPgpVWgfJg2U23xUEbj6KMB7XHe5XjvTEG 5H7ep2qMjCMYeEx5jGMIT3kE92I0/gODBTsIx3fhrrmEILlzr9Jz1myYEae/tmSl UOxsNpgVJ5RkKPrLQM0I07wnNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAPq2/n3 3eu+T73Q5WP+ktzpmo8oMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGMiOrl5s/IdhCXWPVxx8XQ/ImfM4w5wygXK7tfI4tOn1OPyDmpCiy ReOFQP9X+Ki9wuw/dN0BtkYp8GejhoipFQ/vTq8/udtQIw+pHrZib4nyCLiCrTRJ 77iR2ejQY+JNj7rIZtO0FCfyBJjs8NWsVA3VIpwfVq+Or44JOi+nnTNN2Q8q00xk hsSUemL7YqBjACuwZnazyCz0DWFg8uZs0mqCVNtGAGIxkO5QZgCcqcDdnI95N6YB PyccrIzWvhQ7w7Aahqvh6gwXabzZGuxCS01L+kAsHO8/HyiRBBEQVqFIegUNjsMV kOsa3+K9EJU23NLpDRmYTEJvZ1EKVUKs -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:03 2025 by rpki-client