$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft File: F4AJbMkKtq6vCNeasYxUx7d6U6A.mft (raw, json) Hash identifier: 2I7k2TvPlmrtfS4otZeiBdBlT9GCpuCj24t5Jf+uuBE= Subject key identifier: 39:7C:DA:F0:74:36:4F:0D:E8:D9:CE:28:71:A8:99:5F:81:00:41:A7 Authority key identifier: 17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0 Certificate issuer: /CN=A91A4543/serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0 Certificate serial: 2A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft Manifest number: 29 Signing time: Fri 08 Aug 2025 21:09:21 +0000 Manifest this update: Fri 08 Aug 2025 21:09:21 +0000 Manifest next update: Fri 15 Aug 2025 21:09:21 +0000 Files and hashes: 1: F4AJbMkKtq6vCNeasYxUx7d6U6A.crl (hash: YJDfQ0vYvXnQJNq5sURpUO4daw5defX656kESIxBqgQ=) 2: 458F65E8572511F0BE0E492AC4F9AE02.roa (hash: 8eHBf/IW6Kdn5rzP/J/PseLHB5iblvBzJEKUGKo/wC0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4543, serialNumber=1780096CC90AB6AEAF08D79AB18C54C7B77A53A0 Validity Not Before: Aug 8 21:09:21 2025 GMT Not After : Aug 15 21:09:21 2025 GMT Subject: CN=68966781-5519 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b4:8a:cc:6b:66:e3:ed:e6:cb:59:df:1a:d1: 0c:0d:e2:78:65:56:6e:e9:10:29:03:8f:32:b7:da: 9a:30:31:52:a9:da:65:aa:5d:99:1f:71:64:00:14: 8a:69:97:6b:ea:5e:c9:8f:52:0c:9f:6d:15:29:d8: e1:30:c2:d3:bf:fb:7e:61:14:1c:94:85:61:4e:d4: e1:14:10:2a:0a:1c:8a:6e:86:93:68:a0:20:3f:fb: e3:16:74:92:bc:1f:bc:5f:f9:b9:a3:d9:ea:a3:79: b3:f3:53:96:d4:3b:12:03:c8:b1:4e:2f:80:19:e7: 8b:4c:70:16:45:ea:da:45:0c:00:df:2b:e8:41:09: 07:f3:e2:89:a7:85:21:09:f2:f8:de:1a:81:cd:91: 35:ed:59:ac:35:e7:6f:e7:05:e8:c7:1d:9a:88:c3: c2:55:fc:3f:9a:2c:3a:bb:c4:a5:09:e2:b2:f4:47: b0:2b:40:40:b3:8f:d8:2b:05:e8:ed:49:73:ff:0a: ab:81:6c:1f:63:d7:6e:07:55:d8:fb:a3:ff:96:2c: f2:4a:0b:f5:72:e7:61:9a:cc:46:13:40:8d:3a:6f: fd:b8:77:c1:21:ac:68:fd:0f:3b:d2:7f:a5:ea:07: 5c:72:5f:79:de:d0:b3:96:6f:6e:ba:5c:6c:91:23: 6a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7C:DA:F0:74:36:4F:0D:E8:D9:CE:28:71:A8:99:5F:81:00:41:A7 X509v3 Authority Key Identifier: keyid:17:80:09:6C:C9:0A:B6:AE:AF:08:D7:9A:B1:8C:54:C7:B7:7A:53:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F4AJbMkKtq6vCNeasYxUx7d6U6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4543/AB719FCE3B6511F08742DA39C4F9AE02/F4AJbMkKtq6vCNeasYxUx7d6U6A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:34:e2:6e:15:74:61:09:7b:9f:3c:28:3e:08:a1:5e:f7:2e: 43:09:6a:ad:2b:5c:b2:06:26:39:eb:e3:22:7a:3a:d2:e4:11: 9b:e3:64:1b:7a:45:ea:af:6c:79:38:8d:c1:ed:fd:c6:3e:a5: f1:30:22:10:c2:1f:41:12:1d:c7:de:ed:44:bf:9e:6d:73:3c: a1:a1:8c:68:c6:eb:05:57:74:35:25:2b:6e:ab:1d:67:6f:56: c2:1d:68:63:25:a3:68:38:ae:f8:e9:61:61:e5:fb:81:56:98: 8e:e9:a7:6c:09:ff:ba:38:d1:01:50:f2:0a:ba:1d:11:a3:ac: e6:2d:19:59:4c:7d:c4:6d:d6:2d:5a:2b:71:0f:52:d3:77:41: 2e:65:0d:76:ba:18:b6:a2:77:c5:66:27:f5:cf:c3:e1:16:93: 6f:7b:e0:5d:1c:0a:14:a6:43:9b:b6:14:58:6c:ef:3b:64:64: 48:75:8e:2b:89:24:55:09:ba:dc:d6:82:18:9a:98:2e:ee:c7: 75:ff:60:2e:26:fe:af:95:5e:bf:fd:60:a2:59:5b:af:00:fe: 97:9a:6c:78:08:07:6f:61:65:ef:1e:80:c1:1e:f8:09:bd:af: 2e:43:7c:21:0e:80:96:2a:ef:ad:16:84:c4:d2:de:f7:b8:fe: 85:d0:90:25 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDU0MzExMC8GA1UEBRMoMTc4MDA5NkNDOTBBQjZBRUFGMDhENzlBQjE4QzU0QzdC NzdBNTNBMDAeFw0yNTA4MDgyMTA5MjFaFw0yNTA4MTUyMTA5MjFaMBgxFjAUBgNV BAMTDTY4OTY2NzgxLTU1MTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCetIrMa2bj7ebLWd8a0QwN4nhlVm7pECkDjzK32powMVKp2mWqXZkfcWQAFIpp l2vqXsmPUgyfbRUp2OEwwtO/+35hFByUhWFO1OEUECoKHIpuhpNooCA/++MWdJK8 H7xf+bmj2eqjebPzU5bUOxIDyLFOL4AZ54tMcBZF6tpFDADfK+hBCQfz4omnhSEJ 8vjeGoHNkTXtWaw152/nBejHHZqIw8JV/D+aLDq7xKUJ4rL0R7ArQECzj9grBejt SXP/CquBbB9j124HVdj7o/+WLPJKC/Vy52GazEYTQI06b/24d8EhrGj9DzvSf6Xq B1xyX3ne0LOWb266XGyRI2o3AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOXza8HQ2 Tw3o2c4ocaiZX4EAQacwHwYDVR0jBBgwFoAUF4AJbMkKtq6vCNeasYxUx7d6U6Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0NTQzL0FCNzE5RkNFM0I2 NTExRjA4NzQyREEzOUM0RjlBRTAyL0Y0QUpiTWtLdHE2dkNOZWFzWXhVeDdkNlU2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRjRBSmJNa0t0cTZ2Q05lYXNZeFV4N2Q2VTZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 NTQzL0FCNzE5RkNFM0I2NTExRjA4NzQyREEzOUM0RjlBRTAyL0Y0QUpiTWtLdHE2 dkNOZWFzWXhVeDdkNlU2QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABo04m4VdGEJe588KD4IoV73LkMJaq0rXLIGJjnr4yJ6OtLkEZvjZBt6 ReqvbHk4jcHt/cY+pfEwIhDCH0ESHcfe7US/nm1zPKGhjGjG6wVXdDUlK26rHWdv VsIdaGMlo2g4rvjpYWHl+4FWmI7pp2wJ/7o40QFQ8gq6HRGjrOYtGVlMfcRt1i1a K3EPUtN3QS5lDXa6GLaid8VmJ/XPw+EWk2974F0cChSmQ5u2FFhs7ztkZEh1jiuJ JFUJutzWghiamC7ux3X/YC4m/q+VXr/9YKJZW68A/peabHgIB29hZe8egMEe+Am9 ry5DfCEOgJYq760WhMTS3ve4/oXQkCU= -----END CERTIFICATE-----Generated at Sun Aug 10 16:04:57 2025 by rpki-client