$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft File: n4LbyUZjEsW6LpISeTAkAJVqmCo.mft (raw, json) Hash identifier: pm/YnHNl0aXX3/WiKIdFOQX4uq4trhmokBIX2Alo4zo= Subject key identifier: 78:85:B8:40:F8:B4:3C:6E:DC:86:C3:10:9D:0C:4A:35:6D:D2:80:7C Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 35EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft Manifest number: 34EF Signing time: Fri 08 Aug 2025 14:22:25 +0000 Manifest this update: Fri 08 Aug 2025 14:22:24 +0000 Manifest next update: Fri 15 Aug 2025 14:22:24 +0000 Files and hashes: 1: n4LbyUZjEsW6LpISeTAkAJVqmCo.crl (hash: EwHGUPLY7VmP3bw6bynClHLRN9nOOdh2sCMq2b2zPlk=) 2: 1827B7E0605411EFA8069323C4F9AE02.roa (hash: RlLRteQSfjgNjoDFYZ12j4xm4gJcxx7/ouGdnACi8jE=) 3: 439638A88DB811E98ACC9F7EC4F9AE02.roa (hash: Jl/N0P/2cG5vuafM7WPanArTIdcgOJaMycU46eiVqR8=) 4: 4D21FB36F7DB11EE92D1E11FC4F9AE02.roa (hash: 0A0Nhnr13g/AyJ6eZl3uyvpwaA6ghz922H++qApXnN8=) 5: EBD5A3CA6B8711EFB0476280C4F9AE02.roa (hash: CEN7jfWU1vPpLzR5uzYZhWk4C138cZA3lkf/fBKS00g=) 6: 4107DF748DB811E98ACC9F7EC4F9AE02.roa (hash: t33tjefPncP8dR8GX15pU981pTfbTiVj5ryxyONgq7A=) 7: F6D9C45E7B1811EF82C90D2AC4F9AE02.roa (hash: 9Ico4h3XlCaLtqQIGUKMAvjEzVqPREECMseESR6/+Rs=) 8: 4A71D7E08DB811E98ACC9F7EC4F9AE02.roa (hash: am25QW4MJ5THnozpBZGdhNNGRi5OPU/F57+oBhLG+ss=) 9: 4EE07E481F7F11ECA7242F6CC4F9AE02.roa (hash: Hnemh9EwwTeduD1Zc7gVprQ1BQwQSdNFXtPrRgQGYJ0=) 10: 42EBE8D08DB811E98ACC9F7EC4F9AE02.roa (hash: x5gAALbDWXYABqxH0UVKGWQASAjVkWdpYaVlhYcPqAc=) 11: CEC68F44973211E9954F0565C4F9AE02.roa (hash: UYL3PlfPOBzM+4YTE4YVT/B9+S0RmwIC0/LTv+8zEeU=) 12: 9DB6EBB4972E11E9B776A755C4F9AE02.roa (hash: xHKRgZRt4qbSzDPZH6wkR/9CWnhDd6W1bLMRhJgSvfc=) 13: 471E9C908DB811E98ACC9F7EC4F9AE02.roa (hash: 1cfJQS5ACrYfLQAyh5Ja07hoswmqC8p/ibeUwb6rjOE=) 14: 482C95F68DB811E98ACC9F7EC4F9AE02.roa (hash: Vvt8gIzT7X3zFgaHKZZTu/elNVhHdcP8J7ECpTHkuWo=) 15: 3ED710C68DB811E98ACC9F7EC4F9AE02.roa (hash: Td1yZRJHEJdrXdDkVXf585lTVDZ/gAEOrflJZU/zpIE=) 16: F3A41ADEC0E411EFA19F644CC4F9AE02.roa (hash: Klr9GG7Ib/o4yZ1sx6KX+wz6djtwSpGfaSi2JHkkYP4=) 17: 47A6C8E08DB811E98ACC9F7EC4F9AE02.roa (hash: sX+id3lu89Hjy6wyXn7YJf1vycTYavS1aKnHsZ9N81M=) 18: B2FF274A00EC11EDBC60AA4FC4F9AE02.roa (hash: Ou9GXrK/fzDAww5dRpeY0Rn8NUNZjPo4uNl9tQUkuio=) 19: 402418C08DB811E98ACC9F7EC4F9AE02.roa (hash: P0DmiEGqN7lW5E2uoWn71/z/nYWW3JpwNu+rpvGmCIs=) 20: 441E60E88DB811E98ACC9F7EC4F9AE02.roa (hash: 0+kajyIDxu72hFKkbKyeIRpJ6iZ+zJJsd5Bir90Bjbs=) 21: A3601D70C2A511EBB2025B36C4F9AE02.roa (hash: 2vo94c8bhE/vlqMz+w1F2CTUOl+XnRdJZlNw0Ckqzz8=) 22: EC8209420EB411EFAE1CF63BC4F9AE02.roa (hash: vcrOZBXHjq3K5b9IM2tb0fFhXmrTMImV0akcYw7Q7n0=) 23: B580AA94013D11EBBC81306AC4F9AE02.roa (hash: 07u1m9+WpmKzkUImJC5UFriIMTCX8GggMGZm/tBb4Wg=) 24: 46800A948DB811E98ACC9F7EC4F9AE02.roa (hash: EcBR1Y+LSwE3SFyQmCPHJrgPGrIw6HZerXAZglO7fSw=) 25: 5B917C28A2E011E9A98B0235C4F9AE02.roa (hash: +zMT8yB+e8TH1LiL/hekG194ZDTDk4B7qTjHy7txnvM=) 26: F7318C2CBA3E11ECA0543F6BC4F9AE02.roa (hash: 1bdsgMBWNk0J8N0RhS3NVIo135QEMXhjy/l9087BnFU=) 27: 4AEE35608DB811E98ACC9F7EC4F9AE02.roa (hash: yxUvZSwNOnvgFyxK+xyWLF/IFfuAV6JnnBBih/qkFIk=) 28: 48ED106A8DB811E98ACC9F7EC4F9AE02.roa (hash: jWBtMJRBrQmahUt0pi2YibmAZBgFlEfn4PBIYmSkROs=) 29: 453F8E988DB811E98ACC9F7EC4F9AE02.roa (hash: 5+MRoBA+rOp6HemFzB+KMhs/OCqWXA66uUpcbDP4GD0=) 30: 1BA16D001F8211EC8FC82E73C4F9AE02.roa (hash: ZQ/r1ORMQDfDWVK/TZq7hs+eIvBXZKfdyf99uBq0RP8=) 31: 49EECD288DB811E98ACC9F7EC4F9AE02.roa (hash: 8/pIg0nOoslqGVpUnPoQipLD1CjxnbDa2dRCnlmkpWQ=) 32: 4495856A8DB811E98ACC9F7EC4F9AE02.roa (hash: zLL9jkNh6O2K6tYXIsyvEGSPolQEwe8/GLuSvRNkabw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13804 (0x35ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Aug 8 14:22:24 2025 GMT Not After : Aug 15 14:22:24 2025 GMT Subject: CN=68960820-9d78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f8:37:86:70:c4:c1:cf:95:32:4a:16:2f:41: 1f:5d:56:46:80:96:52:43:8d:5a:cd:fd:d2:3f:23: b4:dc:50:f7:a0:12:7d:96:f4:a7:f2:4a:32:d6:23: 37:64:fe:f6:93:b2:26:e2:6d:02:5d:70:e8:b1:f1: ae:86:65:43:81:15:bb:d1:28:e9:1a:66:24:13:06: 5f:04:e6:57:cd:46:a1:bb:d2:c0:d1:d4:3b:4b:21: 99:66:fe:a5:54:1d:14:74:f9:ff:ce:15:d5:be:8a: 2b:13:73:ed:3d:77:3a:d3:2a:c9:96:aa:d3:9f:a9: eb:0c:e9:02:92:e2:60:27:39:09:97:5c:f5:e4:d7: ea:ec:be:f1:1b:1e:ee:0c:57:2c:32:0a:4e:f2:b7: 48:18:c8:ef:ac:0d:35:8c:53:fb:fb:9d:77:37:00: e6:65:43:4d:66:41:cd:c2:c0:d9:4d:68:1f:39:ed: 5f:fe:2f:b3:e1:7f:54:ea:5f:fa:03:b3:eb:34:d6: e9:9e:90:34:27:e3:f8:43:03:92:7d:df:ac:74:57: 18:5f:c3:54:41:6b:fc:68:27:b0:19:17:bb:9e:cb: f5:dc:01:98:f6:c9:59:51:eb:08:d8:52:47:8a:7b: fe:25:65:84:64:0c:7c:82:0f:2f:b5:96:55:e5:5b: ec:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:85:B8:40:F8:B4:3C:6E:DC:86:C3:10:9D:0C:4A:35:6D:D2:80:7C X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:12:02:54:f4:b1:c3:7b:d1:72:b8:db:e2:7b:1f:74:6e:2d: ef:4f:4d:21:96:27:7c:a1:e5:30:de:57:83:e2:9b:cd:95:a0: 34:d0:25:7a:0f:a2:f7:5d:3e:42:d4:bd:f1:d9:cd:dc:fd:22: 46:8e:f3:24:85:54:0a:91:0f:0c:88:8a:d9:d5:9b:0d:91:25: 26:46:17:85:f9:27:2f:93:38:5b:26:ae:c1:dc:9a:d8:21:05: 2b:34:b1:50:e5:9d:df:1c:9a:c5:fa:00:4c:cc:9d:f8:88:d2: 90:e2:ec:11:dd:4a:92:08:58:4d:6f:34:8e:e4:69:25:da:84: 86:78:57:49:6a:6f:41:c4:31:09:e4:ce:96:ef:81:ff:45:7c: e7:54:40:93:42:f4:80:0d:d8:df:72:a5:43:6a:5f:0c:11:dc: 7c:40:23:79:9f:59:b0:09:61:2b:85:9e:0e:7f:6e:49:ea:13: b6:05:ef:fa:8b:c9:4c:83:98:f9:4a:96:49:1f:89:db:f8:92: 29:90:a0:d5:b2:3a:ad:a5:3a:c5:bf:4a:af:5b:e7:be:31:d6: 89:fc:7e:a8:24:73:2e:a9:4c:a9:11:a9:16:99:05:69:84:4b: 0d:6f:6f:78:2c:9d:4e:29:6d:ca:cc:f0:b7:84:7a:22:b6:09: b7:65:82:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwODA4MTQyMjI0WhcNMjUwODE1MTQyMjI0WjAYMRYwFAYD VQQDEw02ODk2MDgyMC05ZDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfg3hnDEwc+VMkoWL0EfXVZGgJZSQ41azf3SPyO03FD3oBJ9lvSn8koy1iM3 ZP72k7Im4m0CXXDosfGuhmVDgRW70SjpGmYkEwZfBOZXzUahu9LA0dQ7SyGZZv6l VB0UdPn/zhXVvoorE3PtPXc60yrJlqrTn6nrDOkCkuJgJzkJl1z15Nfq7L7xGx7u DFcsMgpO8rdIGMjvrA01jFP7+513NwDmZUNNZkHNwsDZTWgfOe1f/i+z4X9U6l/6 A7PrNNbpnpA0J+P4QwOSfd+sdFcYX8NUQWv8aCewGRe7nsv13AGY9slZUesI2FJH inv+JWWEZAx8gg8vtZZV5VvsKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiFuED4 tDxu3IbDEJ0MSjVt0oB8MB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTdGQS8yN0Y4M0I3MDFEODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVz VzZMcElTZVRBa0FKVnFtQ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCREgJU9LHDe9FyuNviex90bi3vT00hlid8oeUw3leD4pvNlaA00CV6 D6L3XT5C1L3x2c3c/SJGjvMkhVQKkQ8MiIrZ1ZsNkSUmRheF+ScvkzhbJq7B3JrY IQUrNLFQ5Z3fHJrF+gBMzJ34iNKQ4uwR3UqSCFhNbzSO5Gkl2oSGeFdJam9BxDEJ 5M6W74H/RXznVECTQvSADdjfcqVDal8MEdx8QCN5n1mwCWErhZ4Of25J6hO2Be/6 i8lMg5j5SpZJH4nb+JIpkKDVsjqtpTrFv0qvW+e+MdaJ/H6oJHMuqUypEakWmQVp hEsNb294LJ1OKW3KzPC3hHoitgm3ZYLv -----END CERTIFICATE-----Generated at Sun Aug 10 05:36:38 2025 by rpki-client