$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft File: ck4fZGxFGwGeHNo21DRq25tf2_g.mft (raw, json) Hash identifier: 58yNNExjcwH+OGEju8AixfifpgqooJKQdU5ZM3Pn+Ec= Subject key identifier: 85:C4:60:D9:DE:17:B6:84:6C:E9:44:90:E9:23:80:CB:2B:D1:37:B9 Authority key identifier: 72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 Certificate issuer: /CN=A91B8E38/serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Certificate serial: 021F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft Manifest number: 021B Signing time: Sat 09 Aug 2025 02:29:56 +0000 Manifest this update: Sat 09 Aug 2025 02:29:55 +0000 Manifest next update: Sat 16 Aug 2025 02:29:55 +0000 Files and hashes: 1: ck4fZGxFGwGeHNo21DRq25tf2_g.crl (hash: eNNVEuChz9U/Ge48WW+/dBjL0Ri5ow9F8kA/aJuk7YQ=) 2: A6789038400211ED808CCF0DC4F9AE02.roa (hash: tO/Vg+1jM6TnaROUPSYxvRElxqw/2z5ZN8ZDcSK7tnY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 543 (0x21f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8E38, serialNumber=724E1F646C451B019E1CDA36D4346ADB9B5FDBF8 Validity Not Before: Aug 9 02:29:55 2025 GMT Not After : Aug 16 02:29:55 2025 GMT Subject: CN=6896b2a3-bedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:72:e3:21:02:a5:13:9f:39:17:7d:99:84:e4: 03:2a:a2:72:67:ce:a0:c0:fd:5e:9b:53:c7:30:db: f2:0a:c1:2b:d4:45:b1:0c:7f:8c:f9:10:3e:54:d0: fd:ac:5f:d9:eb:bb:c4:b4:9f:c6:f9:b5:9a:0c:3e: 1d:f4:38:ec:6b:5a:80:b0:cf:b9:c4:2f:66:17:06: 95:3f:83:70:df:cb:94:3e:8e:5f:6c:f5:0c:10:e6: 8d:06:9e:d2:5b:87:eb:c6:5f:a6:c1:19:d7:75:4f: 8a:a9:7f:60:21:87:ff:d2:22:62:22:57:d9:df:c9: d9:45:ab:fd:de:d6:c9:24:37:40:5b:e4:b4:65:5e: 1d:75:21:7a:6a:3b:22:d6:e1:b1:17:33:74:ae:db: 4c:63:81:1c:20:24:f8:f1:57:86:ab:d7:2f:47:54: 11:c7:b1:08:f9:4b:72:a6:c1:62:64:fa:86:90:19: 43:69:d1:c3:04:36:3e:92:ca:c2:86:d0:8b:7d:9a: 94:51:43:92:94:03:63:2b:cf:47:22:89:00:42:be: 0b:28:43:dd:5f:b0:2d:aa:c3:a8:a9:66:74:a6:e6: 36:d8:70:9a:66:23:8b:48:75:35:1b:0e:a0:3a:ed: 93:b1:8f:8e:b3:11:43:0d:06:81:17:ab:06:e9:33: 0c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C4:60:D9:DE:17:B6:84:6C:E9:44:90:E9:23:80:CB:2B:D1:37:B9 X509v3 Authority Key Identifier: keyid:72:4E:1F:64:6C:45:1B:01:9E:1C:DA:36:D4:34:6A:DB:9B:5F:DB:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ck4fZGxFGwGeHNo21DRq25tf2_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8E38/51F0DB3C3FFE11ED9A87A315C4F9AE02/ck4fZGxFGwGeHNo21DRq25tf2_g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:49:44:47:d0:7c:74:37:8f:07:cb:2a:ff:45:a1:a2:66:07: 71:38:6a:43:25:d9:4a:3a:c1:88:08:3f:1b:33:bf:43:6e:1a: cd:8c:93:4b:79:2f:8d:ad:13:cb:04:08:b3:3d:ff:d8:ca:f1: 36:04:a5:d7:a0:38:20:99:65:63:4a:83:8e:e4:93:86:f4:d1: 4c:ba:22:0a:f0:a6:ec:23:51:8c:51:e3:bd:0c:4e:34:a7:b1: 63:5a:c5:8e:d9:3c:7e:8b:92:6b:2f:6b:87:2a:b7:6b:9e:d4: 05:56:ca:90:18:b1:a9:64:bb:5d:06:4f:11:b9:fc:04:00:b8: 40:b5:63:77:50:7c:b9:35:df:2d:b2:f8:82:65:b5:b0:11:f0: 4d:4e:4f:43:40:ff:46:d7:d1:1a:41:4e:2c:2d:76:f3:60:e4: 78:24:79:e0:7d:bd:87:b2:82:cc:56:a5:21:82:86:de:93:b7: 73:07:c6:12:84:3e:16:06:f2:fa:cf:29:7e:10:f6:b4:40:fe: 29:8b:87:5d:ef:8b:4d:68:4d:76:40:e5:f3:d1:38:d6:30:fc: f0:3b:4e:58:78:48:86:34:5b:48:a0:0d:85:df:0d:86:d2:5f: 02:6c:5b:d5:e0:e4:23:9f:a2:ba:04:46:74:e2:d0:d0:d6:fd: f2:fd:3f:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhFMzgxMTAvBgNVBAUTKDcyNEUxRjY0NkM0NTFCMDE5RTFDREEzNkQ0MzQ2QURC OUI1RkRCRjgwHhcNMjUwODA5MDIyOTU1WhcNMjUwODE2MDIyOTU1WjAYMRYwFAYD VQQDEw02ODk2YjJhMy1iZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3nLjIQKlE585F32ZhOQDKqJyZ86gwP1em1PHMNvyCsEr1EWxDH+M+RA+VND9 rF/Z67vEtJ/G+bWaDD4d9Djsa1qAsM+5xC9mFwaVP4Nw38uUPo5fbPUMEOaNBp7S W4frxl+mwRnXdU+KqX9gIYf/0iJiIlfZ38nZRav93tbJJDdAW+S0ZV4ddSF6ajsi 1uGxFzN0rttMY4EcICT48VeGq9cvR1QRx7EI+UtypsFiZPqGkBlDadHDBDY+ksrC htCLfZqUUUOSlANjK89HIokAQr4LKEPdX7AtqsOoqWZ0puY22HCaZiOLSHU1Gw6g Ou2TsY+OsxFDDQaBF6sG6TMMPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIXEYNne F7aEbOlEkOkjgMsr0Te5MB8GA1UdIwQYMBaAFHJOH2RsRRsBnhzaNtQ0atubX9v4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEUzOC81MUYwREIzQzNG RkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3R2VITm8yMURScTI1dGYy X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NrNGZaR3hGR3dHZUhObzIxRFJxMjV0ZjJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OEUzOC81MUYwREIzQzNGRkUxMUVEOUE4N0EzMTVDNEY5QUUwMi9jazRmWkd4Rkd3 R2VITm8yMURScTI1dGYyX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvSURH0Hx0N48Hyyr/RaGiZgdxOGpDJdlKOsGICD8bM79DbhrNjJNL eS+NrRPLBAizPf/YyvE2BKXXoDggmWVjSoOO5JOG9NFMuiIK8KbsI1GMUeO9DE40 p7FjWsWO2Tx+i5JrL2uHKrdrntQFVsqQGLGpZLtdBk8RufwEALhAtWN3UHy5Nd8t sviCZbWwEfBNTk9DQP9G19EaQU4sLXbzYOR4JHngfb2HsoLMVqUhgobek7dzB8YS hD4WBvL6zyl+EPa0QP4pi4dd74tNaE12QOXz0TjWMPzwO05YeEiGNFtIoA2F3w2G 0l8CbFvV4OQjn6K6BEZ04tDQ1v3y/T+7 -----END CERTIFICATE-----Generated at Sun Aug 10 05:38:07 2025 by rpki-client