$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft File: 4z23k7vv5Gy8912zTnCUJ6cu8PM.mft (raw, json) Hash identifier: ZZdh82mq4QeoN5NZidv3RDovdt94evmTv+rvhOJENmY= Subject key identifier: CF:AA:43:D3:C7:11:76:67:14:95:C7:08:45:EF:51:31:34:4B:23:3E Authority key identifier: E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 Certificate issuer: /CN=A91C7F6A/serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Certificate serial: 01F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft Manifest number: 01EC Signing time: Tue 05 Aug 2025 03:01:25 +0000 Manifest this update: Tue 05 Aug 2025 03:01:24 +0000 Manifest next update: Tue 12 Aug 2025 03:01:24 +0000 Files and hashes: 1: 4z23k7vv5Gy8912zTnCUJ6cu8PM.crl (hash: aiy/mlofPA1KxcWFcjf+dPYjk3ngVo4VoUFud4ZfmIk=) 2: 81D5DEE47F5D11EDB4309B54C4F9AE02.roa (hash: zRdos/o+mb+OSdMpMggoSh17MEeYkJt0eDW/UfdGZq4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 496 (0x1f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7F6A, serialNumber=E33DB793BBEFE46CBCF75DB34E709427A72EF0F3 Validity Not Before: Aug 5 03:01:24 2025 GMT Not After : Aug 12 03:01:24 2025 GMT Subject: CN=68917404-503f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5e:cc:ce:b0:4d:97:c8:50:aa:fb:cb:05:75: 37:37:d9:31:08:88:90:42:74:37:5b:67:3e:35:8f: 25:cd:c5:d6:8b:90:b9:a5:ed:cf:a4:12:56:4a:d2: 22:60:16:46:d2:58:09:79:d5:79:cf:ce:47:52:23: 0f:f8:4e:79:a7:57:c2:bf:6d:be:18:72:a3:49:06: db:45:bb:f0:2c:91:a9:8e:2f:ba:45:1b:f2:17:2f: 4d:9f:09:9e:58:44:41:a1:77:7b:dc:87:b7:74:73: e9:97:46:9a:63:a3:3f:e8:f2:77:4d:84:15:73:4b: 11:2b:aa:40:06:2c:04:b5:38:9e:98:74:34:96:3d: ce:e2:4c:a8:a1:0a:cb:66:80:1d:b3:18:81:c5:f6: a4:51:c1:be:e6:5c:aa:74:9a:3a:41:ff:d7:04:0e: fb:67:db:e6:e8:5d:51:7d:23:fa:51:79:1a:78:dd: f3:b0:82:97:cd:06:89:98:23:5c:3b:08:88:18:89: c0:bd:7c:f4:6f:e9:c3:32:58:50:1d:81:4e:b6:30: 04:a7:dd:c3:a8:6c:d6:95:ef:7d:5e:11:67:db:ed: a1:f6:67:07:84:f1:06:a1:9a:f5:b1:a2:45:d4:88: d6:0c:7f:bb:7d:17:38:32:66:fc:6b:00:16:6e:89: 19:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:AA:43:D3:C7:11:76:67:14:95:C7:08:45:EF:51:31:34:4B:23:3E X509v3 Authority Key Identifier: keyid:E3:3D:B7:93:BB:EF:E4:6C:BC:F7:5D:B3:4E:70:94:27:A7:2E:F0:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4z23k7vv5Gy8912zTnCUJ6cu8PM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7F6A/067925007F4211EDB4E78C86C4F9AE02/4z23k7vv5Gy8912zTnCUJ6cu8PM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:ed:56:5a:c9:9b:6d:18:b6:1a:a6:4a:c5:e1:ef:15:68:15: 1f:48:58:4e:a3:1d:1a:28:64:f8:f2:2b:b4:16:55:86:69:a8: 14:cd:64:ab:44:70:43:d2:3f:78:65:9d:54:1b:00:17:be:71: 4b:36:80:f7:ef:34:c7:a2:78:a4:92:78:0f:a2:95:ba:e0:9b: e4:45:60:2c:71:e5:63:6e:63:a2:69:94:6a:5a:c9:70:e6:31: 84:b5:73:ff:73:25:aa:d8:54:73:43:33:0c:96:06:fc:9d:4b: 8e:ff:1c:70:8c:e2:b4:41:a3:5a:38:16:1b:65:dc:c4:6c:72: 5c:0e:7b:19:3f:42:2d:1c:fa:f8:ed:51:29:f8:4a:21:76:66: 70:c3:50:86:80:50:f9:59:fd:4b:0a:06:0e:53:a6:8d:de:d4: 9b:f0:20:61:6a:53:33:b9:26:54:ca:f2:0c:fc:49:f8:77:17: 23:b9:36:45:ec:00:91:af:c5:96:1d:f1:f6:1f:a2:69:ac:7d: 49:9a:56:19:71:7d:46:53:cc:54:4f:94:c5:0f:3d:ac:ed:72: 72:58:f4:7c:e1:5f:29:06:fa:29:ab:99:da:50:4b:26:86:11: 74:bf:53:db:3c:53:3f:e8:d6:2d:1f:ff:51:c8:e0:6e:59:8a: e3:cb:d7:a8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdGNkExMTAvBgNVBAUTKEUzM0RCNzkzQkJFRkU0NkNCQ0Y3NURCMzRFNzA5NDI3 QTcyRUYwRjMwHhcNMjUwODA1MDMwMTI0WhcNMjUwODEyMDMwMTI0WjAYMRYwFAYD VQQDEw02ODkxNzQwNC01MDNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqF7MzrBNl8hQqvvLBXU3N9kxCIiQQnQ3W2c+NY8lzcXWi5C5pe3PpBJWStIi YBZG0lgJedV5z85HUiMP+E55p1fCv22+GHKjSQbbRbvwLJGpji+6RRvyFy9Nnwme WERBoXd73Ie3dHPpl0aaY6M/6PJ3TYQVc0sRK6pABiwEtTiemHQ0lj3O4kyooQrL ZoAdsxiBxfakUcG+5lyqdJo6Qf/XBA77Z9vm6F1RfSP6UXkaeN3zsIKXzQaJmCNc OwiIGInAvXz0b+nDMlhQHYFOtjAEp93DqGzWle99XhFn2+2h9mcHhPEGoZr1saJF 1IjWDH+7fRc4Mmb8awAWbokZiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM+qQ9PH EXZnFJXHCEXvUTE0SyM+MB8GA1UdIwQYMBaAFOM9t5O77+RsvPdds05wlCenLvDz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0Y2QS8wNjc5MjUwMDdG NDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVHeTg5MTJ6VG5DVUo2Y3U4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzR6MjNrN3Z2NUd5ODkxMnpUbkNVSjZjdThQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD N0Y2QS8wNjc5MjUwMDdGNDIxMUVEQjRFNzhDODZDNEY5QUUwMi80ejIzazd2djVH eTg5MTJ6VG5DVUo2Y3U4UE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBP7VZayZttGLYapkrF4e8VaBUfSFhOox0aKGT48iu0FlWGaagUzWSr RHBD0j94ZZ1UGwAXvnFLNoD37zTHonikkngPopW64JvkRWAsceVjbmOiaZRqWslw 5jGEtXP/cyWq2FRzQzMMlgb8nUuO/xxwjOK0QaNaOBYbZdzEbHJcDnsZP0ItHPr4 7VEp+EohdmZww1CGgFD5Wf1LCgYOU6aN3tSb8CBhalMzuSZUyvIM/En4dxcjuTZF 7ACRr8WWHfH2H6JprH1JmlYZcX1GU8xUT5TFDz2s7XJyWPR84V8pBvopq5naUEsm hhF0v1PbPFM/6NYtH/9RyOBuWYrjy9eo -----END CERTIFICATE-----Generated at Thu Aug 7 04:42:11 2025 by rpki-client