$ rpki-client -vvf rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft File: 4bzIEhAO1GAiFweJMk8cw6-_aq0.mft (raw, json) Hash identifier: F9Qc/6IYPuhqUzMaGB00o2y8zHSxpjBzodiQtm5GI4o= Subject key identifier: DF:C6:C5:3E:47:92:4D:AF:D1:55:32:34:02:E7:DF:98:9E:0D:2C:A7 Authority key identifier: E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD Certificate issuer: /CN=A916AAFF/serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft Manifest number: 0129 Signing time: Thu 07 Aug 2025 05:14:29 +0000 Manifest this update: Thu 07 Aug 2025 05:14:28 +0000 Manifest next update: Thu 14 Aug 2025 05:14:28 +0000 Files and hashes: 1: 4bzIEhAO1GAiFweJMk8cw6-_aq0.crl (hash: B77XvqmZ2mnpWgLM6zj3q5Xs9iXwIvqnKQ1DSxvTgic=) 2: 69E8AC12555811EFA88AEA24C4F9AE02.roa (hash: rp2KgXfSmtmZKYQY55JUof6yTTeOYpzuHhK8PCwpS0Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AAFF, serialNumber=E1BCC812100ED46022170789324F1CC3AFBF6AAD Validity Not Before: Aug 7 05:14:28 2025 GMT Not After : Aug 14 05:14:28 2025 GMT Subject: CN=68943634-ec83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:63:06:12:b4:53:93:61:f0:85:4f:27:fe:f6: f1:04:8f:6e:0d:e0:d9:c4:36:5c:47:aa:90:28:85: 74:45:f5:6a:55:88:f8:af:05:bd:1b:3a:70:38:38: 22:ee:7e:c4:f2:02:b6:98:84:41:c5:19:8b:22:3e: 0b:c9:8f:59:a5:0d:52:d6:a2:d4:e4:e2:b5:d9:0d: ef:61:c5:cf:03:de:ae:1a:84:39:23:78:ab:fa:cf: e3:1e:4a:50:2a:a6:79:9b:93:3c:a1:b8:cd:a5:32: f0:3f:5b:9d:c5:8c:b3:95:77:0e:78:e4:1f:67:da: ec:c3:74:7b:15:06:ef:26:40:78:df:ee:e6:b0:26: 0e:d7:92:b1:58:26:a9:85:34:a8:e6:d6:e2:50:a8: 56:bf:66:df:6b:69:17:b9:db:17:a6:21:51:1d:e7: ed:c5:83:c4:26:48:7a:2e:d3:34:ab:19:6e:da:33: 1d:d1:ad:cb:42:b8:ee:91:1b:f2:b3:19:85:32:2e: d1:0c:ec:a0:4c:9d:96:39:9b:de:97:64:30:ea:a2: ef:4c:56:1c:ee:76:91:b6:1b:f4:9e:82:4c:23:6d: 16:c5:88:7d:36:36:63:d8:6f:68:dd:98:cd:25:62: 20:a2:0c:0a:7b:c2:04:14:38:7f:60:88:58:5d:e4: 91:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:C6:C5:3E:47:92:4D:AF:D1:55:32:34:02:E7:DF:98:9E:0D:2C:A7 X509v3 Authority Key Identifier: keyid:E1:BC:C8:12:10:0E:D4:60:22:17:07:89:32:4F:1C:C3:AF:BF:6A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bzIEhAO1GAiFweJMk8cw6-_aq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AAFF/7BB8BA6CBB3A11EE87C66B0FC4F9AE02/4bzIEhAO1GAiFweJMk8cw6-_aq0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d4:70:c6:74:7d:fb:c8:a7:b1:50:a1:a3:f8:7c:00:7a:3e: 8d:90:17:49:4f:5a:e8:88:c8:53:d2:38:58:a3:cc:e9:54:37: 0c:4d:c5:cd:18:7e:ee:f5:d4:cb:98:83:19:3f:cf:67:74:34: 04:fc:65:a0:cf:85:3c:b4:f4:37:78:bf:5b:31:6e:6d:98:52: c4:e9:6e:cc:d3:a8:2b:1f:d2:a6:d7:5e:e4:d1:39:1c:c5:75: 14:33:62:8a:d1:ce:d9:e0:b0:1b:7b:de:35:d3:0b:73:4a:e7: a2:24:05:64:01:dd:6d:b1:06:fd:67:43:70:98:a7:ca:c8:15: 9c:3c:fe:19:c9:42:f5:c3:84:24:38:3b:5b:ca:09:fe:aa:2a: b6:06:12:d2:49:55:f1:47:f0:1b:5f:25:5c:42:58:a5:39:a4: dc:2d:22:bd:7a:72:e4:5c:3c:b5:6c:33:43:cd:03:e4:72:e9: b2:28:90:1f:0d:1b:df:40:1c:0a:0d:62:5c:c0:37:85:f1:86: 25:30:ed:99:71:f3:39:2d:04:21:80:dc:13:15:b0:fa:79:a9: 1c:9d:de:8e:d8:43:c2:8c:c8:18:48:67:77:a3:b6:31:79:98: 25:42:f3:bc:6c:33:5e:ec:35:57:34:ea:e6:cf:19:3e:ce:0d: c0:2c:53:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFBRkYxMTAvBgNVBAUTKEUxQkNDODEyMTAwRUQ0NjAyMjE3MDc4OTMyNEYxQ0Mz QUZCRjZBQUQwHhcNMjUwODA3MDUxNDI4WhcNMjUwODE0MDUxNDI4WjAYMRYwFAYD VQQDEw02ODk0MzYzNC1lYzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApWMGErRTk2HwhU8n/vbxBI9uDeDZxDZcR6qQKIV0RfVqVYj4rwW9GzpwODgi 7n7E8gK2mIRBxRmLIj4LyY9ZpQ1S1qLU5OK12Q3vYcXPA96uGoQ5I3ir+s/jHkpQ KqZ5m5M8objNpTLwP1udxYyzlXcOeOQfZ9rsw3R7FQbvJkB43+7msCYO15KxWCap hTSo5tbiUKhWv2bfa2kXudsXpiFRHeftxYPEJkh6LtM0qxlu2jMd0a3LQrjukRvy sxmFMi7RDOygTJ2WOZvel2Qw6qLvTFYc7naRthv0noJMI20WxYh9NjZj2G9o3ZjN JWIgogwKe8IEFDh/YIhYXeSRPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/GxT5H kk2v0VUyNALn35ieDSynMB8GA1UdIwQYMBaAFOG8yBIQDtRgIhcHiTJPHMOvv2qt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUFGRi83QkI4QkE2Q0JC M0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFHQWlGd2VKTWs4Y3c2LV9h cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRieklFaEFPMUdBaUZ3ZUpNazhjdzYtX2FxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QUFGRi83QkI4QkE2Q0JCM0ExMUVFODdDNjZCMEZDNEY5QUUwMi80YnpJRWhBTzFH QWlGd2VKTWs4Y3c2LV9hcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB/1HDGdH37yKexUKGj+HwAej6NkBdJT1roiMhT0jhYo8zpVDcMTcXN GH7u9dTLmIMZP89ndDQE/GWgz4U8tPQ3eL9bMW5tmFLE6W7M06grH9Km117k0Tkc xXUUM2KK0c7Z4LAbe9410wtzSueiJAVkAd1tsQb9Z0NwmKfKyBWcPP4ZyUL1w4Qk ODtbygn+qiq2BhLSSVXxR/AbXyVcQlilOaTcLSK9enLkXDy1bDNDzQPkcumyKJAf DRvfQBwKDWJcwDeF8YYlMO2ZcfM5LQQhgNwTFbD6eakcnd6O2EPCjMgYSGd3o7Yx eZglQvO8bDNe7DVXNOrmzxk+zg3ALFMH -----END CERTIFICATE-----Generated at Sat Aug 9 02:57:09 2025 by rpki-client