$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: O3Lkl7my6DuFSX3zSYKO2YZ3RB481CSoLu0ADtQ4trI= Subject key identifier: 18:44:32:61:DE:71:CB:6C:A0:0E:F7:60:81:03:1B:61:0D:E4:44:F0 Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: 6E Signing time: Thu 07 Aug 2025 07:29:53 +0000 Manifest this update: Thu 07 Aug 2025 07:29:52 +0000 Manifest next update: Thu 14 Aug 2025 07:29:52 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: JeZ8e9J5ZXePVpjrOiVuxmsUADOL6ibRnlqa4pkY2WE=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: Nfq9gOVsvHp+sAvDqwlNp+Rm9HqcCv4rXARNazxofGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Aug 7 07:29:52 2025 GMT Not After : Aug 14 07:29:52 2025 GMT Subject: CN=689455f1-e467 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ca:f9:f7:34:fa:16:af:5e:1f:f6:07:b1:5a: 1b:94:9f:b0:e0:04:8d:2e:62:76:a9:9e:a3:fa:76: b7:a5:2f:d1:46:49:be:4a:40:34:b8:aa:74:63:d2: ca:80:c5:fb:be:ce:7c:32:ea:ba:1f:06:4d:34:d3: 58:49:c3:b7:99:d9:1e:7d:50:98:53:bf:17:75:52: 20:e4:c3:35:23:c6:37:69:1f:42:86:ef:ad:26:ee: 58:e3:4e:18:63:3f:37:e2:6b:d3:25:6f:e6:cc:e9: 3b:2e:7c:17:70:88:5f:a8:47:00:16:f3:3f:54:84: df:87:6e:c8:ed:db:9c:61:65:4d:80:89:f5:be:3f: 27:53:ed:34:7d:6d:22:25:87:4d:28:b4:19:71:a0: 57:73:be:e3:b3:64:fb:63:b5:f7:fa:fb:c7:48:73: 89:77:23:98:12:52:5b:17:b4:eb:d1:ff:77:5f:0c: 38:78:a4:46:cf:90:f8:e9:c3:26:2f:11:7f:54:fd: 67:43:ed:e4:5f:22:04:ee:d4:82:de:1e:62:4c:c8: 93:9c:46:3c:14:b5:f5:72:15:7b:62:71:e6:7b:4f: 74:9a:95:15:cb:07:a9:40:19:ab:7d:4e:21:fe:91: 76:93:0a:67:7e:c5:0d:47:d3:20:66:1d:bc:e9:9e: 21:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:44:32:61:DE:71:CB:6C:A0:0E:F7:60:81:03:1B:61:0D:E4:44:F0 X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:2c:56:c3:1d:5a:5c:5c:fe:54:b9:0f:f9:e0:0a:c4:b9:22: a3:8c:c6:0e:c8:24:11:39:b7:51:3d:61:ae:bd:c7:81:7d:f8: b1:03:70:d9:a7:24:1d:92:43:b8:32:a6:ad:56:9d:96:9c:4d: 46:39:6f:22:f9:b9:b1:8a:12:79:92:b0:f0:17:dd:0d:d3:95: 81:44:51:1d:dd:05:e4:98:c4:89:62:07:b8:02:9b:8c:50:b0: 9e:bf:43:69:85:57:fe:37:01:7f:52:d4:7b:bb:c6:7c:e1:68: 7d:63:8a:78:2a:3e:24:b3:67:22:ef:60:7d:0e:5e:a9:d0:6d: ac:c9:49:62:3c:b7:d5:96:03:e8:b9:76:b2:96:70:8c:cf:52: 03:22:f1:d9:aa:3b:21:89:bc:20:b3:c3:41:c3:1f:95:b1:99: 5b:cf:9c:01:d7:e3:26:e3:2b:cb:68:ae:38:50:28:d0:59:27: 77:e8:a5:25:40:a4:7c:3b:3a:b5:71:93:77:79:6c:d2:e9:ab: 7a:cc:ec:c2:91:65:15:e6:c0:8b:76:02:da:b0:ab:f8:c9:d9: 92:fe:04:1c:ff:d5:ce:31:ef:01:a0:94:37:08:f1:95:e6:32: 29:84:b4:2e:31:af:cb:aa:29:32:9e:f0:b5:ab:ae:5b:2e:6f: 08:02:60:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjBBRjExMC8GA1UEBRMoRTExNDM3OERBOTM0ODYxNDY5RjQ5NUQ5NzU5OEUwRjAw Mjg5QzMzMDAeFw0yNTA4MDcwNzI5NTJaFw0yNTA4MTQwNzI5NTJaMBgxFjAUBgNV BAMTDTY4OTQ1NWYxLWU0NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgyvn3NPoWr14f9gexWhuUn7DgBI0uYnapnqP6drelL9FGSb5KQDS4qnRj0sqA xfu+znwy6rofBk0001hJw7eZ2R59UJhTvxd1UiDkwzUjxjdpH0KG760m7ljjThhj Pzfia9Mlb+bM6TsufBdwiF+oRwAW8z9UhN+Hbsjt25xhZU2AifW+PydT7TR9bSIl h00otBlxoFdzvuOzZPtjtff6+8dIc4l3I5gSUlsXtOvR/3dfDDh4pEbPkPjpwyYv EX9U/WdD7eRfIgTu1ILeHmJMyJOcRjwUtfVyFXticeZ7T3SalRXLB6lAGat9TiH+ kXaTCmd+xQ1H0yBmHbzpniElAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUGEQyYd5x y2ygDvdggQMbYQ3kRPAwHwYDVR0jBBgwFoAU4RQ3jak0hhRp9JXZdZjg8AKJwzAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMEFGLzJEN0E3RTBFQ0M0 RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFJRM2phazBoaFJwOUpYWmRaamc4QUtKd3pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MEFGLzJEN0E3RTBFQ0M0RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhS cDlKWFpkWmpnOEFLSnd6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKksVsMdWlxc/lS5D/ngCsS5IqOMxg7IJBE5t1E9Ya69x4F9+LEDcNmn JB2SQ7gypq1WnZacTUY5byL5ubGKEnmSsPAX3Q3TlYFEUR3dBeSYxIliB7gCm4xQ sJ6/Q2mFV/43AX9S1Hu7xnzhaH1jingqPiSzZyLvYH0OXqnQbazJSWI8t9WWA+i5 drKWcIzPUgMi8dmqOyGJvCCzw0HDH5WxmVvPnAHX4ybjK8torjhQKNBZJ3fopSVA pHw7OrVxk3d5bNLpq3rM7MKRZRXmwIt2Atqwq/jJ2ZL+BBz/1c4x7wGglDcI8ZXm MimEtC4xr8uqKTKe8LWrrlsubwgCYH4= -----END CERTIFICATE-----Generated at Fri Aug 8 20:42:39 2025 by rpki-client