$ rpki-client -vvf rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft File: V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft (raw, json) Hash identifier: 3NQuIJ45Hg5U77werDWJ9CSEG2CyDAdlpSjSPGYeTCE= Subject key identifier: E1:63:FA:B9:6A:FA:8B:AF:88:DE:45:8C:D1:70:15:9D:7D:4C:B7:9F Authority key identifier: 57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D Certificate issuer: /CN=A918036A/serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Certificate serial: 105D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft Manifest number: 1041 Signing time: Wed 06 Aug 2025 17:33:25 +0000 Manifest this update: Wed 06 Aug 2025 17:33:24 +0000 Manifest next update: Wed 13 Aug 2025 17:33:24 +0000 Files and hashes: 1: V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl (hash: PdYe/5k5cPaK834/gfWdrKpIKyqUrxToGw+1tNgszYo=) 2: E2846570135E11EB9D58482CC4F9AE02.roa (hash: bXgEyT98R8thRPsYUWy4Fp7WrzYnlZBS5iobweOZ0lw=) 3: BFF3C17CD23A11EB8E7BA35DC4F9AE02.roa (hash: C95dcxmbgG9m0J5QHw9VXXRl9oV1Z68MXGZ2KXxsrFI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 17:33:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4189 (0x105d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918036A, serialNumber=57840FB441D2B34C8EE699D264712B4A5E0FED8D Validity Not Before: Aug 6 17:33:24 2025 GMT Not After : Aug 13 17:33:24 2025 GMT Subject: CN=689391e4-932a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:09:e4:d9:59:2b:6e:c0:92:7a:2b:21:51:6c: 26:27:69:d2:80:62:9e:09:b0:3a:6b:f4:7e:40:47: 0d:66:42:95:75:6b:6d:e8:a5:c8:03:e2:51:95:49: df:74:12:d3:fe:d5:bb:7c:9a:68:ee:6d:74:5e:ef: b4:c1:6d:7d:aa:ba:42:1d:63:9b:cd:91:29:84:9f: 31:7a:30:76:ff:b8:68:75:5c:46:31:f4:3e:7b:8f: 89:88:fd:2a:13:8f:5c:27:cb:b9:e7:66:43:71:26: 3a:5b:3d:55:5f:57:1b:be:00:79:50:02:fa:30:9b: fb:9b:47:33:de:8a:d5:2e:60:e3:77:4f:66:e5:00: 08:18:bf:62:91:ad:5e:81:e8:97:b7:56:da:e8:fc: f0:35:e8:db:a7:a4:ca:f2:f1:b2:b0:7a:7e:7f:5f: 1c:f3:4c:aa:c5:92:54:d2:4f:2c:66:65:64:ec:39: d5:01:49:ab:b3:e5:4d:7c:80:62:6e:0f:2e:83:af: 1a:88:ee:d3:2f:88:ca:cf:f5:d6:e9:63:98:26:96: 90:3b:7e:11:c9:43:a4:a8:c2:13:76:fb:9a:b5:47: 91:08:0b:a8:b1:ac:d0:18:76:ab:59:b1:cf:48:d5: 2e:64:cf:d2:04:41:56:86:b8:35:ca:45:ef:1e:60: b6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:63:FA:B9:6A:FA:8B:AF:88:DE:45:8C:D1:70:15:9D:7D:4C:B7:9F X509v3 Authority Key Identifier: keyid:57:84:0F:B4:41:D2:B3:4C:8E:E6:99:D2:64:71:2B:4A:5E:0F:ED:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V4QPtEHSs0yO5pnSZHErSl4P7Y0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918036A/433AF78C46C711E9ADE9D424C4F9AE02/V4QPtEHSs0yO5pnSZHErSl4P7Y0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:4b:41:7d:b6:55:1b:8e:25:01:e1:c7:3a:f9:94:24:c5:7b: e7:a9:c3:c1:43:ef:a3:b3:fd:05:92:f5:22:d1:1a:7b:c1:56: d5:3b:78:1b:df:bd:7e:8a:78:bc:e0:e0:eb:87:e9:5d:2a:34: ca:e2:9a:ef:77:70:62:62:4e:30:d4:ed:f2:b5:d8:5e:d5:7c: a4:bd:2a:57:2d:a2:3c:c3:f8:35:de:d5:49:53:c7:0c:2d:3b: 6c:1b:95:38:d1:ce:51:1f:67:11:a1:e8:fd:b6:a8:81:b3:86: 34:d5:94:7f:87:00:f3:f0:5c:9e:3e:66:1f:7a:50:c8:b9:c8: 46:4a:bf:0e:6d:6f:ba:cb:1e:8d:c9:d2:8b:b1:0d:5d:00:b9: 30:3c:cc:d1:5d:7d:a0:f8:78:93:af:65:0c:96:2b:f1:71:58: 36:82:b5:12:2a:1d:24:2d:1a:fb:84:1f:de:60:af:ca:a2:8f: 7e:20:db:ec:6f:d4:99:8b:54:e1:a1:42:36:a6:0e:c2:7e:e8: 18:15:44:f7:7d:ac:7b:d0:67:e9:86:4e:9d:0e:a9:a3:80:06: 5c:9b:85:68:c2:0a:db:01:33:d5:06:25:9d:ad:be:9a:b1:3c: bd:0c:53:10:ec:b9:23:53:87:8a:fe:4c:bd:2d:5d:ae:f3:27: 7c:2a:91:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzNkExMTAvBgNVBAUTKDU3ODQwRkI0NDFEMkIzNEM4RUU2OTlEMjY0NzEyQjRB NUUwRkVEOEQwHhcNMjUwODA2MTczMzI0WhcNMjUwODEzMTczMzI0WjAYMRYwFAYD VQQDEw02ODkzOTFlNC05MzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgnk2VkrbsCSeishUWwmJ2nSgGKeCbA6a/R+QEcNZkKVdWtt6KXIA+JRlUnf dBLT/tW7fJpo7m10Xu+0wW19qrpCHWObzZEphJ8xejB2/7hodVxGMfQ+e4+JiP0q E49cJ8u552ZDcSY6Wz1VX1cbvgB5UAL6MJv7m0cz3orVLmDjd09m5QAIGL9ika1e geiXt1ba6PzwNejbp6TK8vGysHp+f18c80yqxZJU0k8sZmVk7DnVAUmrs+VNfIBi bg8ug68aiO7TL4jKz/XW6WOYJpaQO34RyUOkqMITdvuatUeRCAuosazQGHarWbHP SNUuZM/SBEFWhrg1ykXvHmC2lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOFj+rlq +ouviN5FjNFwFZ19TLefMB8GA1UdIwQYMBaAFFeED7RB0rNMjuaZ0mRxK0peD+2N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDM2QS80MzNBRjc4QzQ2 QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3MweU81cG5TWkhFclNsNFA3 WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y0UVB0RUhTczB5TzVwblNaSEVyU2w0UDdZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDM2QS80MzNBRjc4QzQ2QzcxMUU5QURFOUQ0MjRDNEY5QUUwMi9WNFFQdEVIU3Mw eU81cG5TWkhFclNsNFA3WTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDS0F9tlUbjiUB4cc6+ZQkxXvnqcPBQ++js/0FkvUi0Rp7wVbVO3gb 371+ini84ODrh+ldKjTK4prvd3BiYk4w1O3ytdhe1XykvSpXLaI8w/g13tVJU8cM LTtsG5U40c5RH2cRoej9tqiBs4Y01ZR/hwDz8FyePmYfelDIuchGSr8ObW+6yx6N ydKLsQ1dALkwPMzRXX2g+HiTr2UMlivxcVg2grUSKh0kLRr7hB/eYK/Koo9+INvs b9SZi1ThoUI2pg7CfugYFUT3fax70Gfphk6dDqmjgAZcm4VowgrbATPVBiWdrb6a sTy9DFMQ7LkjU4eK/ky9LV2u8yd8KpFe -----END CERTIFICATE-----Generated at Thu Aug 7 02:03:08 2025 by rpki-client