$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: vA4DcElr3m6fzR9bbn9nM5YiAUnggPIG5NOH+WOL+qA= Subject key identifier: 61:1F:FD:38:AF:EC:66:DF:34:9F:F7:2D:24:64:F9:2B:65:9B:22:F0 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 0744 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 073D Signing time: Fri 08 Aug 2025 22:08:13 +0000 Manifest this update: Fri 08 Aug 2025 22:08:13 +0000 Manifest next update: Fri 15 Aug 2025 22:08:13 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: AgAlo7UpzIwFFKULaQUzK3dkzaVH5Kwmmcmo+8CsxoQ=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Aug 8 22:08:13 2025 GMT Not After : Aug 15 22:08:13 2025 GMT Subject: CN=6896754d-2e93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:56:3c:11:f1:42:16:c0:d4:75:f5:d3:83:5e: 00:43:fa:57:1e:25:c5:e2:9b:9d:09:af:7c:49:90: c9:06:99:e4:1b:a2:b7:3b:34:22:2f:1e:19:f2:d7: 5f:cb:49:f5:87:41:07:d3:ee:ac:54:15:cd:c9:27: 2e:04:4c:ea:3d:39:21:be:a6:7c:19:97:e6:99:87: 97:c0:a1:28:6c:68:e3:38:e5:ff:ef:a8:45:0a:3a: a6:31:3d:e3:c5:f2:c6:e4:4e:83:d1:75:1a:f6:ad: b1:43:ff:da:03:a1:6b:a5:9c:3f:96:fa:b7:c7:bb: 1b:60:17:3a:0c:bb:fd:52:c0:61:af:bb:2d:dd:02: 12:e6:3e:76:39:84:14:d1:04:e1:15:e7:76:1b:36: 46:e7:ae:c1:65:93:28:fb:f9:1c:84:cb:4a:f8:0d: 8d:68:b2:91:75:3b:da:8d:ec:55:7d:09:f3:14:31: ba:e8:cc:69:63:aa:94:fa:e2:70:e6:56:d4:15:23: 06:31:fb:2c:d0:a1:71:dc:0b:aa:b7:bd:d2:a4:2c: 72:08:52:4d:cd:14:3f:69:14:89:34:08:58:7b:86: 35:7f:cb:eb:1e:49:7e:b7:52:80:c1:1f:ab:05:8f: 91:35:1f:9c:88:47:a7:de:53:e6:1c:94:fe:e7:e1: bd:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1F:FD:38:AF:EC:66:DF:34:9F:F7:2D:24:64:F9:2B:65:9B:22:F0 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:3f:eb:d3:79:93:0c:53:91:43:a5:63:14:76:a2:7b:02:77: 9c:6c:20:be:3d:f5:dc:7e:81:9c:c9:ed:45:99:b1:9c:b9:31: 2a:9d:82:6e:c6:30:d8:bb:76:8b:89:3c:bb:11:91:dd:e7:49: f4:d2:f0:ba:04:2b:92:cb:57:8e:a9:dd:60:8f:1b:f2:d2:cf: 83:81:c8:bd:22:03:8f:b4:ce:6c:5e:57:c1:6b:a5:54:5a:1b: d3:4f:06:b0:6c:43:12:80:fe:c9:d4:08:5a:f3:4c:ac:55:6d: d3:22:81:dc:5f:4f:fc:54:4a:52:73:c3:45:cf:4a:af:b2:de: 8e:92:4f:ab:8a:0e:02:60:6d:d4:82:66:c3:03:df:b1:f3:3d: 6d:97:a4:09:3c:9d:fd:ab:d1:8a:c6:82:e2:94:f0:ad:a3:92: fc:7f:86:51:05:5a:d7:b5:11:ad:36:2d:a1:8d:6f:4e:91:8e: 8d:06:f1:e2:4f:12:e6:eb:10:e3:82:29:4c:9b:6f:fa:2a:24: c8:ec:9a:a5:67:a9:34:72:e4:dd:d1:9b:e5:36:da:51:71:c2: 06:44:c7:fe:8b:39:59:a8:6a:8d:f9:7f:cf:a3:14:13:21:c9: 7f:38:40:a3:34:b1:20:4c:28:e4:8d:5b:63:4a:b6:62:3a:61: 8c:3b:42:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUwODA4MjIwODEzWhcNMjUwODE1MjIwODEzWjAYMRYwFAYD VQQDEw02ODk2NzU0ZC0yZTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1Y8EfFCFsDUdfXTg14AQ/pXHiXF4pudCa98SZDJBpnkG6K3OzQiLx4Z8tdf y0n1h0EH0+6sVBXNyScuBEzqPTkhvqZ8GZfmmYeXwKEobGjjOOX/76hFCjqmMT3j xfLG5E6D0XUa9q2xQ//aA6FrpZw/lvq3x7sbYBc6DLv9UsBhr7st3QIS5j52OYQU 0QThFed2GzZG567BZZMo+/kchMtK+A2NaLKRdTvajexVfQnzFDG66MxpY6qU+uJw 5lbUFSMGMfss0KFx3Auqt73SpCxyCFJNzRQ/aRSJNAhYe4Y1f8vrHkl+t1KAwR+r BY+RNR+ciEen3lPmHJT+5+G9hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEf/Tiv 7GbfNJ/3LSRk+StlmyLwMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHP+vTeZMMU5FDpWMUdqJ7AnecbCC+PfXcfoGcye1FmbGcuTEqnYJu xjDYu3aLiTy7EZHd50n00vC6BCuSy1eOqd1gjxvy0s+Dgci9IgOPtM5sXlfBa6VU WhvTTwawbEMSgP7J1Aha80ysVW3TIoHcX0/8VEpSc8NFz0qvst6Okk+rig4CYG3U gmbDA9+x8z1tl6QJPJ39q9GKxoLilPCto5L8f4ZRBVrXtRGtNi2hjW9OkY6NBvHi TxLm6xDjgilMm2/6KiTI7JqlZ6k0cuTd0ZvlNtpRccIGRMf+izlZqGqN+X/PoxQT Icl/OECjNLEgTCjkjVtjSrZiOmGMO0KC -----END CERTIFICATE-----Generated at Sat Aug 9 14:22:42 2025 by rpki-client