$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft File: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft (raw, json) Hash identifier: Xo6VIxkhHwnQJEHf3R2A2KA/dD8Zll3HCZu8xD54C7o= Subject key identifier: 13:8D:BA:F9:C7:CE:C5:42:94:09:8D:61:26:11:A6:D0:C0:E9:95:4F Authority key identifier: E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA Certificate issuer: /CN=A914E1C1/serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft Manifest number: 0296 Signing time: Sat 09 Aug 2025 02:39:13 +0000 Manifest this update: Sat 09 Aug 2025 02:39:13 +0000 Manifest next update: Sat 16 Aug 2025 02:39:13 +0000 Files and hashes: 1: 4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl (hash: 5FQmqCXv1WYppmBT7Z1VQHIH+6iVsR9GyLTS73h4kJU=) 2: 2541D62A7F9811ED93508538C4F9AE02.roa (hash: U9zRAtnK+rMFnlnfGAU4KvzYtOXqBm7qFzqLf0N4GqM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1C1, serialNumber=E3F3154D988276A2F541E5EA62818C770BBB80EA Validity Not Before: Aug 9 02:39:13 2025 GMT Not After : Aug 16 02:39:13 2025 GMT Subject: CN=6896b4d1-63f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9b:a5:12:57:f9:10:08:f4:02:51:76:f2:85: 19:57:b0:2d:d7:61:18:9b:db:e2:37:e7:3d:df:06: d3:0d:bc:bc:49:6f:38:d9:8e:f9:c1:c0:fa:65:76: fa:14:3a:26:2e:bf:a0:f7:de:bf:2f:0a:99:a8:90: 88:f9:08:85:e7:a4:81:2c:cb:f3:58:bd:1c:2e:82: 2c:05:38:c1:b3:a2:60:a1:30:ff:0c:2b:d6:fe:20: 26:6a:1c:99:ed:c1:a9:1b:53:1a:f7:47:9c:91:e8: b7:79:40:df:73:76:8d:7b:56:66:2a:21:33:b0:8b: 8d:38:e8:93:8a:24:15:6f:63:57:f7:14:81:e9:01: 23:2d:8e:62:fe:0a:7a:1d:9e:6d:f6:58:38:3f:84: ee:47:c7:13:a6:77:86:0e:94:be:95:84:28:25:cb: 6c:cb:a1:f7:b7:a2:1b:74:2e:39:45:f0:01:90:5e: a3:6c:0b:1e:df:d7:b2:b0:79:cc:31:cb:1e:81:4f: 0a:c3:4c:6a:70:56:ee:fd:6e:66:ff:4f:b1:a7:2a: 4d:2f:a2:08:85:0c:46:3d:51:da:98:8b:5e:af:2a: 04:71:0b:e8:03:26:b9:06:9c:fa:00:3a:75:53:aa: 9f:14:e6:3f:9a:6e:18:bc:5a:38:c8:1a:2d:07:05: b0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8D:BA:F9:C7:CE:C5:42:94:09:8D:61:26:11:A6:D0:C0:E9:95:4F X509v3 Authority Key Identifier: keyid:E3:F3:15:4D:98:82:76:A2:F5:41:E5:EA:62:81:8C:77:0B:BB:80:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4_MVTZiCdqL1QeXqYoGMdwu7gOo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1C1/DBE5F2CA10C711ED8BB3B75DC4F9AE02/4_MVTZiCdqL1QeXqYoGMdwu7gOo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:bf:f8:86:ee:33:a9:a4:d3:07:ad:98:05:82:e7:ed:5f:ea: fd:94:68:2e:ff:96:cd:cc:5a:cf:98:48:e3:a7:08:f3:1c:06: 1e:ff:70:9c:a9:ec:dd:bd:eb:1c:10:c1:9d:c1:27:fe:4b:b4: 59:7c:31:1c:24:c3:dc:06:34:f1:77:df:5e:40:7f:82:3e:8d: 52:28:70:af:5a:9c:e7:23:14:1e:87:23:aa:19:c6:77:ed:95: 72:e8:4b:6f:a1:5e:07:cd:c4:51:51:ce:cb:b3:2d:24:97:5d: 82:ec:72:d4:2c:74:b6:64:45:ab:46:56:23:3f:9e:9d:b4:2d: ca:bb:21:b2:04:98:12:6e:be:ab:6e:f3:f0:2e:65:ac:0b:ba: 05:af:b7:f8:3d:ba:c7:5a:cb:c7:08:18:ab:3b:67:7b:15:80: 97:e5:2b:7b:08:cc:e1:2d:30:41:51:77:f9:76:71:34:7d:05: b6:9c:a5:06:35:6e:ef:aa:85:5e:4f:09:fb:76:6b:16:b6:e7: 40:a7:4b:75:e0:d9:4a:c7:43:93:1e:e7:a4:1e:64:06:f3:73: a6:09:1f:21:c8:88:00:1c:52:d2:e6:09:c5:f0:d1:ea:ff:d7: 08:e2:a7:f2:8d:42:70:40:c7:ea:ee:02:82:19:69:75:5f:a6: 78:6b:3f:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQzExMTAvBgNVBAUTKEUzRjMxNTREOTg4Mjc2QTJGNTQxRTVFQTYyODE4Qzc3 MEJCQjgwRUEwHhcNMjUwODA5MDIzOTEzWhcNMjUwODE2MDIzOTEzWjAYMRYwFAYD VQQDEw02ODk2YjRkMS02M2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpulElf5EAj0AlF28oUZV7At12EYm9viN+c93wbTDby8SW842Y75wcD6ZXb6 FDomLr+g996/LwqZqJCI+QiF56SBLMvzWL0cLoIsBTjBs6JgoTD/DCvW/iAmahyZ 7cGpG1Ma90eckei3eUDfc3aNe1ZmKiEzsIuNOOiTiiQVb2NX9xSB6QEjLY5i/gp6 HZ5t9lg4P4TuR8cTpneGDpS+lYQoJctsy6H3t6IbdC45RfABkF6jbAse39eysHnM McsegU8Kw0xqcFbu/W5m/0+xpypNL6IIhQxGPVHamIteryoEcQvoAya5Bpz6ADp1 U6qfFOY/mm4YvFo4yBotBwWw3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBONuvnH zsVClAmNYSYRptDA6ZVPMB8GA1UdIwQYMBaAFOPzFU2Ygnai9UHl6mKBjHcLu4Dq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFDMS9EQkU1RjJDQTEw QzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2RxTDFRZVhxWW9HTWR3dTdn T28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRfTVZUWmlDZHFMMVFlWHFZb0dNZHd1N2dPby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTFDMS9EQkU1RjJDQTEwQzcxMUVEOEJCM0I3NURDNEY5QUUwMi80X01WVFppQ2Rx TDFRZVhxWW9HTWR3dTdnT28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDv/iG7jOppNMHrZgFguftX+r9lGgu/5bNzFrPmEjjpwjzHAYe/3Cc qezdvescEMGdwSf+S7RZfDEcJMPcBjTxd99eQH+CPo1SKHCvWpznIxQehyOqGcZ3 7ZVy6EtvoV4HzcRRUc7Lsy0kl12C7HLULHS2ZEWrRlYjP56dtC3KuyGyBJgSbr6r bvPwLmWsC7oFr7f4PbrHWsvHCBirO2d7FYCX5St7CMzhLTBBUXf5dnE0fQW2nKUG NW7vqoVeTwn7dmsWtudAp0t14NlKx0OTHuekHmQG83OmCR8hyIgAHFLS5gnF8NHq /9cI4qfyjUJwQMfq7gKCGWl1X6Z4az/D -----END CERTIFICATE-----Generated at Sun Aug 10 13:48:44 2025 by rpki-client