$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft File: 4u3kp-qXJminlbJ7qdyH9LkNqJc.mft (raw, json) Hash identifier: o2o0xfHgtjJydEBc8EVGgKb4a/zrHeoWewg9y6CkcLE= Subject key identifier: 57:E5:13:92:81:EF:A8:E1:D8:B6:B6:C9:25:71:ED:F7:42:30:83:D9 Authority key identifier: E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 Certificate issuer: /CN=A9172D91/serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Certificate serial: 167E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft Manifest number: 1640 Signing time: Sat 14 Jun 2025 16:42:26 +0000 Manifest this update: Sat 14 Jun 2025 16:42:26 +0000 Manifest next update: Sat 21 Jun 2025 16:42:26 +0000 Files and hashes: 1: 4u3kp-qXJminlbJ7qdyH9LkNqJc.crl (hash: 4YNSQzrEkjRseaMBlGUTK8cbEd8LKG//20gSfAvlYTI=) 2: 854D304E0C9B11EC8433FE7AC4F9AE02.roa (hash: pak3Iy8E0gYpnvDkmWBebcI4LeVYUCjbRqic1+nKIXc=) 3: 56C8FCACE38011EFBF195482C4F9AE02.roa (hash: YpgFRa2Rul9X6oABfgOzOCogI1xE9k1rvzUQOQyIs6c=) 4: 9C79DBD23E7911EBBFFAC96BC4F9AE02.roa (hash: v+Ks9nZk5YSGi8jwz8W2ujGkO89h3nHyAUbCbrfDviU=) 5: 2357FC145F8D11EF94E7303FC4F9AE02.roa (hash: Adsar2w8VAjS3SUaIO5TAhSv+c7iSEo6NtUlziAok5s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 16:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5758 (0x167e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D91, serialNumber=E2EDE4A7EA972668A795B27BA9DC87F4B90DA897 Validity Not Before: Jun 14 16:42:26 2025 GMT Not After : Jun 21 16:42:26 2025 GMT Subject: CN=684da672-992a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:50:a8:98:f3:e8:62:05:f4:09:f8:44:32:e0: c1:5c:68:09:60:dc:1a:a0:ec:0e:0b:9f:65:98:0f: 70:23:bb:b1:89:13:b3:de:26:7c:db:cd:7b:81:74: ce:62:52:1b:ae:d6:7c:12:d7:6a:aa:2d:d6:19:59: 1a:6b:cc:8f:22:c2:27:f9:e4:ef:9c:a1:2e:74:71: 18:f7:5d:e6:6e:6d:f9:fe:95:9f:3f:8b:08:95:aa: f6:45:81:45:14:28:b5:5f:5b:44:19:d3:1a:5d:b6: 3b:3b:9f:a6:55:10:84:30:52:26:8b:8c:05:8f:22: e8:4f:ba:ab:b4:74:2d:e7:21:8b:51:a7:cf:f0:bc: a8:b4:89:2f:c0:c0:6c:1f:5f:93:80:89:3b:33:1a: a7:83:69:0e:e9:e5:fe:e6:18:d2:c4:d4:e3:de:ae: 80:11:db:2b:78:08:0a:42:81:93:1b:1a:da:07:04: 50:9a:d8:e1:f7:7d:88:cd:aa:2c:1c:06:0f:3b:5c: e1:4a:d8:1e:ee:ce:5e:a9:55:05:82:f6:e9:ca:d8: bc:c9:ac:0d:0a:7d:26:4b:17:e0:df:2f:8b:ff:4a: 55:45:6f:d4:3e:cd:68:1f:88:6f:11:0f:0a:50:9d: 6b:92:07:3c:e1:9b:a3:81:55:73:ad:22:8f:c4:33: 1d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:E5:13:92:81:EF:A8:E1:D8:B6:B6:C9:25:71:ED:F7:42:30:83:D9 X509v3 Authority Key Identifier: keyid:E2:ED:E4:A7:EA:97:26:68:A7:95:B2:7B:A9:DC:87:F4:B9:0D:A8:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4u3kp-qXJminlbJ7qdyH9LkNqJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D91/EA672A5C19E711E8B243D57CC4F9AE02/4u3kp-qXJminlbJ7qdyH9LkNqJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:23:08:25:72:fd:92:38:6f:05:af:8f:49:b6:8f:29:a7:92: f5:d1:75:13:45:dd:8c:d3:12:04:03:a7:0f:73:df:9b:18:3a: 42:30:f8:01:5e:20:89:1c:93:c8:5f:34:4e:0f:1b:f7:34:69: b0:d1:b3:a7:52:37:d5:39:84:92:d2:e4:52:7a:46:bd:7a:54: aa:aa:7a:83:4b:0d:c3:11:d4:b9:7b:f8:29:fd:0b:ad:9a:d1: 71:6e:1b:02:d2:d8:51:e2:8f:5e:1e:a9:af:22:0c:c6:cc:0f: bb:6f:91:ff:42:6c:5a:a1:32:60:ce:3e:59:c3:8b:f6:2d:70: dd:da:bb:5c:a9:99:e4:6e:96:63:42:47:5a:22:e6:c5:03:b0: b4:d9:ae:84:31:3b:e0:4a:92:c4:04:04:bc:d0:a1:36:75:74: 5b:64:2f:16:18:27:e6:ca:53:de:a9:a1:7d:d9:b5:62:b5:8f: 32:03:5f:39:02:38:0d:24:31:34:e6:0a:02:9f:91:11:c8:83: 24:16:b7:58:e9:b2:43:07:6b:d3:ca:bb:57:1f:3b:5f:35:62: 85:26:50:12:18:0d:bc:96:78:d7:f2:9a:f9:ed:0b:34:13:d7: ec:82:3e:48:66:82:bb:7c:d6:be:58:c5:12:fc:20:72:a4:e5: 01:4d:31:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEOTExMTAvBgNVBAUTKEUyRURFNEE3RUE5NzI2NjhBNzk1QjI3QkE5REM4N0Y0 QjkwREE4OTcwHhcNMjUwNjE0MTY0MjI2WhcNMjUwNjIxMTY0MjI2WjAYMRYwFAYD VQQDEw02ODRkYTY3Mi05OTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1ComPPoYgX0CfhEMuDBXGgJYNwaoOwOC59lmA9wI7uxiROz3iZ82817gXTO YlIbrtZ8Etdqqi3WGVkaa8yPIsIn+eTvnKEudHEY913mbm35/pWfP4sIlar2RYFF FCi1X1tEGdMaXbY7O5+mVRCEMFImi4wFjyLoT7qrtHQt5yGLUafP8LyotIkvwMBs H1+TgIk7Mxqng2kO6eX+5hjSxNTj3q6AEdsreAgKQoGTGxraBwRQmtjh932Izaos HAYPO1zhStge7s5eqVUFgvbpyti8yawNCn0mSxfg3y+L/0pVRW/UPs1oH4hvEQ8K UJ1rkgc84ZujgVVzrSKPxDMdOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFflE5KB 76jh2La2ySVx7fdCMIPZMB8GA1UdIwQYMBaAFOLt5KfqlyZop5Wye6nch/S5DaiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ5MS9FQTY3MkE1QzE5 RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEptaW5sYko3cWR5SDlMa05x SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR1M2twLXFYSm1pbmxiSjdxZHlIOUxrTnFKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkQ5MS9FQTY3MkE1QzE5RTcxMUU4QjI0M0Q1N0NDNEY5QUUwMi80dTNrcC1xWEpt aW5sYko3cWR5SDlMa05xSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADIwglcv2SOG8Fr49Jto8pp5L10XUTRd2M0xIEA6cPc9+bGDpCMPgB XiCJHJPIXzRODxv3NGmw0bOnUjfVOYSS0uRSeka9elSqqnqDSw3DEdS5e/gp/Qut mtFxbhsC0thR4o9eHqmvIgzGzA+7b5H/QmxaoTJgzj5Zw4v2LXDd2rtcqZnkbpZj QkdaIubFA7C02a6EMTvgSpLEBAS80KE2dXRbZC8WGCfmylPeqaF92bVitY8yA185 AjgNJDE05goCn5ERyIMkFrdY6bJDB2vTyrtXHztfNWKFJlASGA28lnjX8pr57Qs0 E9fsgj5IZoK7fNa+WMUS/CBypOUBTTFr -----END CERTIFICATE-----Generated at Sun Jun 15 08:32:09 2025 by rpki-client