$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: hloGlYRh10VK69zMy/SHbXl+4iYCWp2ikbRa917EvAw= Subject key identifier: B8:08:CE:AE:E4:D5:90:AE:8A:47:23:2A:51:56:EF:C9:5F:06:D4:28 Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C34 Signing time: Sat 02 Aug 2025 18:52:37 +0000 Manifest this update: Sat 02 Aug 2025 18:52:37 +0000 Manifest next update: Sat 09 Aug 2025 18:52:37 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: I9S1eyHL6wQ6UAPCO5nqznF9WMReBpiffI/ZzhWMtOQ=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 18:52:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Aug 2 18:52:37 2025 GMT Not After : Aug 9 18:52:37 2025 GMT Subject: CN=688e5e75-8094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:62:bf:c8:e4:00:5a:a2:6c:bd:bd:7e:9c:f0: 4b:24:24:de:a9:b4:7d:5b:a7:c6:a5:33:40:e4:bd: 42:c5:56:36:b2:f8:8d:05:06:bf:0a:5f:89:fe:3d: 76:26:66:99:d5:73:40:e4:46:04:15:87:42:94:e5: 53:d9:d9:e3:7a:81:af:38:f7:8f:c7:a0:d2:df:1b: 9b:55:c6:27:0b:41:61:b2:dd:bc:13:96:54:10:a0: 4e:86:44:3d:42:42:5d:c6:5a:77:ce:bb:b8:f5:d0: d0:63:f2:75:24:a4:2c:1f:0d:ee:58:63:a3:74:18: 8e:10:65:34:b8:d9:d8:3e:20:cb:c8:13:45:42:17: 70:6e:33:fa:97:b8:b6:99:89:d0:25:bb:36:bd:b1: 8b:20:85:06:b7:80:d8:18:f9:e5:62:35:5b:80:5c: f2:22:b3:3d:8a:b6:77:84:5e:65:ea:27:8e:8f:34: cf:1b:d7:0e:b1:f3:b2:d6:51:14:35:53:67:4a:19: 7f:62:bf:62:64:c2:a0:d4:a6:5c:ea:d2:ab:a4:63: ca:3a:6f:ba:56:b7:ca:22:3c:16:c3:71:86:ce:9f: 01:a8:f5:eb:05:a5:d0:9e:84:20:f3:7d:d0:34:79: 04:45:d6:c5:15:7e:df:a6:b1:da:bc:53:24:4a:4f: bb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:08:CE:AE:E4:D5:90:AE:8A:47:23:2A:51:56:EF:C9:5F:06:D4:28 X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d8:78:f4:5e:b9:aa:ab:81:91:51:fe:aa:52:d9:a7:a3:94: 59:55:3e:6f:7f:ee:9d:70:79:13:40:07:98:02:fb:54:aa:ac: 61:4a:6c:a0:d5:0e:3e:15:1d:6f:2f:1d:f9:a8:64:88:9c:ad: d3:ab:4c:72:4c:54:f1:3d:21:20:c0:65:66:5b:3e:c1:21:a6: 04:cb:a6:79:b1:55:f0:d1:21:12:f8:e1:15:be:fa:e4:21:bd: 99:56:80:f2:a6:df:5e:68:96:76:68:5d:c8:bf:f2:8e:64:65: 90:cf:2a:bc:6a:6f:69:47:6a:dc:4d:0a:b0:eb:b9:e0:d0:e5: 56:00:e0:c9:25:74:a4:6d:2e:7f:11:ed:9d:c2:bb:f8:2b:81: d6:43:35:05:bb:db:3a:f4:ec:bb:ff:cc:91:10:c8:f5:17:f0: 0b:c3:86:46:18:e1:ac:2d:4d:72:20:72:61:b0:e7:80:ca:a2: 7e:34:84:06:ae:cf:55:1f:ec:98:01:a3:c5:f8:2c:82:9c:d0: e1:8c:78:91:b0:94:8b:ac:62:a7:96:38:ce:f5:3d:d6:e4:32: 58:b4:46:4e:66:5b:81:d6:73:96:66:70:ff:79:2b:7b:f3:b4: d9:a2:4c:00:9b:ce:c1:0f:49:f7:da:cf:35:04:8a:31:e0:c3: 9e:e1:3b:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUwODAyMTg1MjM3WhcNMjUwODA5MTg1MjM3WjAYMRYwFAYD VQQDEw02ODhlNWU3NS04MDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmK/yOQAWqJsvb1+nPBLJCTeqbR9W6fGpTNA5L1CxVY2sviNBQa/Cl+J/j12 JmaZ1XNA5EYEFYdClOVT2dnjeoGvOPePx6DS3xubVcYnC0Fhst28E5ZUEKBOhkQ9 QkJdxlp3zru49dDQY/J1JKQsHw3uWGOjdBiOEGU0uNnYPiDLyBNFQhdwbjP6l7i2 mYnQJbs2vbGLIIUGt4DYGPnlYjVbgFzyIrM9irZ3hF5l6ieOjzTPG9cOsfOy1lEU NVNnShl/Yr9iZMKg1KZc6tKrpGPKOm+6VrfKIjwWw3GGzp8BqPXrBaXQnoQg833Q NHkERdbFFX7fprHavFMkSk+7pQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgIzq7k 1ZCuikcjKlFW78lfBtQoMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa2Hj0Xrmqq4GRUf6qUtmno5RZVT5vf+6dcHkTQAeYAvtUqqxhSmyg 1Q4+FR1vLx35qGSInK3Tq0xyTFTxPSEgwGVmWz7BIaYEy6Z5sVXw0SES+OEVvvrk Ib2ZVoDypt9eaJZ2aF3Iv/KOZGWQzyq8am9pR2rcTQqw67ng0OVWAODJJXSkbS5/ Ee2dwrv4K4HWQzUFu9s69Oy7/8yREMj1F/ALw4ZGGOGsLU1yIHJhsOeAyqJ+NIQG rs9VH+yYAaPF+CyCnNDhjHiRsJSLrGKnljjO9T3W5DJYtEZOZluB1nOWZnD/eSt7 87TZokwAm87BD0n32s81BIox4MOe4Tuh -----END CERTIFICATE-----Generated at Mon Aug 4 11:14:00 2025 by rpki-client