$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: cD/IqZSQcOaHcaiV6J44jUeEyi/zB5o88JWFlbaF3FU= Subject key identifier: CF:BE:49:53:37:90:63:B4:74:CA:60:80:BD:7E:B3:33:E3:C5:09:1F Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 03AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 03A8 Signing time: Sat 09 Aug 2025 01:17:39 +0000 Manifest this update: Sat 09 Aug 2025 01:17:38 +0000 Manifest next update: Sat 16 Aug 2025 01:17:38 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: hTiIR/htTpJFVVUQt2CIXy8j4ksTxDKMvtoq3HO7BkA=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 942 (0x3ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Aug 9 01:17:38 2025 GMT Not After : Aug 16 01:17:38 2025 GMT Subject: CN=6896a1b3-9302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:27:18:71:41:2f:3f:f2:51:96:79:03:18:58: 1c:18:f9:45:e3:27:42:db:10:c5:03:f5:64:80:73: 8f:28:75:1f:9d:60:19:4b:35:4b:cf:cb:d3:44:d3: 37:55:60:5d:b6:8d:e0:5f:5f:16:3b:e7:bb:90:41: 14:38:b9:da:70:ef:d2:eb:5f:56:d8:20:c4:8b:fa: 6e:51:ed:ce:a2:14:fe:e5:7e:38:b2:3a:43:6c:41: a6:a2:45:b8:fb:71:5e:52:35:9e:b4:e3:43:a2:16: 0f:89:54:99:03:f9:35:c5:b3:75:af:14:bf:82:b0: 90:48:ec:4d:ed:c3:6f:b0:26:64:fd:39:bf:fb:cd: f4:26:a5:ea:0d:43:cc:70:3f:30:98:d1:9d:41:1a: 14:31:6c:4e:5a:82:6e:68:53:63:a2:09:33:69:85: e0:ac:67:ac:ab:dc:94:72:4f:7d:27:80:78:ea:44: 41:e3:98:a5:28:b6:27:06:c6:f2:fd:ef:f5:bd:ab: 03:35:a9:4c:0c:43:4b:df:8a:05:2e:ab:a0:6b:a4: e3:3d:2d:22:82:6e:cd:c3:ea:46:b2:df:91:b6:c7: 76:ff:e3:d1:0a:9e:a3:d7:33:06:22:40:d7:76:0e: bb:98:99:78:90:e3:57:6d:c0:da:61:50:6c:d0:4c: a7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BE:49:53:37:90:63:B4:74:CA:60:80:BD:7E:B3:33:E3:C5:09:1F X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:ed:28:46:98:a7:2a:5a:75:54:f4:c7:f9:f1:6e:d5:34:7b: be:08:7f:75:23:67:74:c2:27:d9:33:96:bf:cc:44:2e:fc:f2: 16:1d:11:72:d7:a3:0c:eb:82:63:cf:8f:39:d0:94:9e:cc:69: c2:a5:f1:50:49:19:55:85:1f:f8:e4:d4:df:cb:29:a2:80:ea: 93:16:c4:fb:98:59:44:73:51:4e:e9:2f:de:e8:8f:ba:26:29: 1d:c6:0f:b8:cd:f7:0d:d1:41:d4:21:82:7b:c3:ce:89:44:57: 25:94:d0:a5:a7:2f:c4:03:61:1a:ad:77:43:1d:93:61:b0:eb: 74:c0:83:b5:42:1a:4f:5b:5d:77:b8:ad:af:24:12:9c:71:46: 9e:eb:cd:70:ec:9d:6c:2c:9c:0a:a9:9b:59:79:91:f0:0c:04: f2:cc:6c:1a:60:dd:72:6e:a3:9e:1c:b6:53:c7:2e:48:33:8b: 06:ca:c0:6a:8d:57:e7:43:6a:74:5c:58:d6:b4:58:44:02:19: ee:4a:ac:14:ec:e3:18:f5:33:16:db:3a:ed:d8:e5:35:3c:12: bf:19:3e:02:fa:66:e0:83:d0:5e:ee:6a:dc:ab:7f:58:9e:f9: 9c:14:5a:97:0d:d4:e1:c7:91:5c:38:a8:85:9c:cc:9e:1b:72: eb:73:81:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwODA5MDExNzM4WhcNMjUwODE2MDExNzM4WjAYMRYwFAYD VQQDEw02ODk2YTFiMy05MzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwycYcUEvP/JRlnkDGFgcGPlF4ydC2xDFA/VkgHOPKHUfnWAZSzVLz8vTRNM3 VWBdto3gX18WO+e7kEEUOLnacO/S619W2CDEi/puUe3OohT+5X44sjpDbEGmokW4 +3FeUjWetONDohYPiVSZA/k1xbN1rxS/grCQSOxN7cNvsCZk/Tm/+830JqXqDUPM cD8wmNGdQRoUMWxOWoJuaFNjogkzaYXgrGesq9yUck99J4B46kRB45ilKLYnBsby /e/1vasDNalMDENL34oFLquga6TjPS0igm7Nw+pGst+Rtsd2/+PRCp6j1zMGIkDX dg67mJl4kONXbcDaYVBs0EynawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM++SVM3 kGO0dMpggL1+szPjxQkfMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDN7ShGmKcqWnVU9Mf58W7VNHu+CH91I2d0wifZM5a/zEQu/PIWHRFy 16MM64Jjz4850JSezGnCpfFQSRlVhR/45NTfyymigOqTFsT7mFlEc1FO6S/e6I+6 Jikdxg+4zfcN0UHUIYJ7w86JRFcllNClpy/EA2EarXdDHZNhsOt0wIO1QhpPW113 uK2vJBKccUae681w7J1sLJwKqZtZeZHwDATyzGwaYN1ybqOeHLZTxy5IM4sGysBq jVfnQ2p0XFjWtFhEAhnuSqwU7OMY9TMW2zrt2OU1PBK/GT4C+mbgg9Be7mrcq39Y nvmcFFqXDdThx5FcOKiFnMyeG3Lrc4Ek -----END CERTIFICATE-----Generated at Sat Aug 9 10:43:58 2025 by rpki-client