$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: EEtuYZZrxm9a4PiMedSY/E/SpKcctPYMVq40KmUltmk= Subject key identifier: 1D:15:5B:18:B7:76:B5:42:64:B5:9F:75:6F:B1:CF:D2:F7:7A:14:CD Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1C03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1BF9 Signing time: Sun 10 Aug 2025 16:12:08 +0000 Manifest this update: Sun 10 Aug 2025 16:12:08 +0000 Manifest next update: Sun 17 Aug 2025 16:12:08 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: KUqeKD0zimiTnr+Qna2q7d+AWIJUKqUILLbBEfSuPM4=) 2: A88F22ECCC7011ED931BD15FC4F9AE02.roa (hash: BCcYD/VfHPlrE1idB6qMcYHXBoKVsq99H3ysbvhT4uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7171 (0x1c03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Aug 10 16:12:08 2025 GMT Not After : Aug 17 16:12:08 2025 GMT Subject: CN=6898c4d8-50f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9d:bb:b1:7a:0e:51:47:7e:89:a7:66:e7:e2: 08:25:76:91:5f:98:d2:44:ba:ec:8c:cf:4c:65:d9: 8b:44:80:ea:29:f4:cb:60:0f:6c:79:e4:bc:08:cf: ae:bd:26:1c:af:94:d4:10:0a:98:a7:97:f6:89:48: fc:6b:f3:35:66:51:ef:2e:31:5e:2b:a3:65:df:fe: 99:8b:1b:ad:13:4b:d0:e2:c6:62:e3:9b:b0:ef:74: 61:23:a1:1f:b0:a0:67:d1:f5:df:42:d8:75:14:f7: 7f:e2:7d:63:91:89:a8:8e:ca:f6:2c:e6:30:37:08: 56:81:0a:7a:b3:b2:0f:d1:a9:a5:71:00:57:96:9b: 15:6f:ea:9e:14:9f:12:c6:95:37:26:32:1f:9e:0c: 2b:fa:7a:5d:40:a9:38:91:55:24:95:9b:a0:3a:37: fe:bb:7c:82:f0:e5:89:a1:7d:0c:5d:df:90:28:19: e4:3b:b2:8d:bf:03:fa:83:41:1b:0d:95:bb:39:b7: 54:38:57:40:a4:14:32:83:fc:73:23:c3:55:60:22: d0:26:42:36:72:bc:d4:56:f1:08:85:58:32:25:47: ff:74:ea:07:6c:e4:5b:67:a6:3e:60:4a:90:5a:26: 94:4a:43:b8:57:3e:dc:0f:5d:bd:b8:1c:17:29:c6: 4f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:15:5B:18:B7:76:B5:42:64:B5:9F:75:6F:B1:CF:D2:F7:7A:14:CD X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:30:4d:59:b6:9b:63:ea:24:0c:2e:dd:d3:f8:8d:35:67:ea: 87:ac:0e:80:c1:13:2a:b1:04:1e:37:74:9f:6a:7d:dc:46:b5: f0:7b:ac:48:c8:8d:1c:5d:05:b9:26:90:36:50:0e:31:46:2b: 4d:76:3e:f0:23:e9:54:57:66:ad:0e:66:03:c7:b4:7f:30:fc: 25:de:25:d7:4d:8c:75:27:9e:b2:98:b2:12:1c:b0:42:67:ce: ce:ae:32:14:42:00:b6:18:c3:90:39:4e:29:a1:90:d1:db:cb: 14:38:ad:d3:db:2a:2b:3a:57:4a:97:34:aa:e3:bb:54:31:93: 51:5d:b7:e6:67:14:d2:8d:39:d3:d7:f6:98:64:da:b0:88:50: d7:ab:42:8b:56:6e:06:58:a6:9d:4f:f2:e0:d4:0c:ca:cb:8d: 3d:1e:53:b3:7d:37:e7:f4:ed:f4:a3:23:ab:98:25:d2:60:26: f4:32:ff:d6:5f:fe:c5:48:d2:f3:47:09:5c:ca:67:db:25:32: 56:44:c0:c3:c3:31:93:5a:d4:60:b9:15:08:42:59:f7:96:df: ac:28:3c:66:af:dc:59:26:f3:9a:5c:3f:72:f9:9a:ee:1b:ae: b3:b9:fe:3f:2c:10:20:e9:9c:d1:2d:29:7d:1c:61:2a:a9:df: d1:30:20:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjUwODEwMTYxMjA4WhcNMjUwODE3MTYxMjA4WjAYMRYwFAYD VQQDEw02ODk4YzRkOC01MGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwZ27sXoOUUd+iadm5+IIJXaRX5jSRLrsjM9MZdmLRIDqKfTLYA9seeS8CM+u vSYcr5TUEAqYp5f2iUj8a/M1ZlHvLjFeK6Nl3/6ZixutE0vQ4sZi45uw73RhI6Ef sKBn0fXfQth1FPd/4n1jkYmojsr2LOYwNwhWgQp6s7IP0amlcQBXlpsVb+qeFJ8S xpU3JjIfngwr+npdQKk4kVUklZugOjf+u3yC8OWJoX0MXd+QKBnkO7KNvwP6g0Eb DZW7ObdUOFdApBQyg/xzI8NVYCLQJkI2crzUVvEIhVgyJUf/dOoHbORbZ6Y+YEqQ WiaUSkO4Vz7cD129uBwXKcZPKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0VWxi3 drVCZLWfdW+xz9L3ehTNMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+ME1Ztptj6iQMLt3T+I01Z+qHrA6AwRMqsQQeN3Sfan3cRrXwe6xI yI0cXQW5JpA2UA4xRitNdj7wI+lUV2atDmYDx7R/MPwl3iXXTYx1J56ymLISHLBC Z87OrjIUQgC2GMOQOU4poZDR28sUOK3T2yorOldKlzSq47tUMZNRXbfmZxTSjTnT 1/aYZNqwiFDXq0KLVm4GWKadT/Lg1AzKy409HlOzfTfn9O30oyOrmCXSYCb0Mv/W X/7FSNLzRwlcymfbJTJWRMDDwzGTWtRguRUIQln3lt+sKDxmr9xZJvOaXD9y+Zru G66zuf4/LBAg6ZzRLSl9HGEqqd/RMCBS -----END CERTIFICATE-----Generated at Sun Aug 10 21:01:15 2025 by rpki-client