$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: tmRAX1mf2KwExrmzF/6UuRpv/tyOMpmdln4xCt3Lx2w= Subject key identifier: E2:FB:BF:41:28:BF:8C:1B:8C:9E:B4:86:46:54:4E:C9:82:EF:E3:CA Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 040A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0466 Signing time: Thu 07 Aug 2025 01:01:15 +0000 Manifest this update: Thu 07 Aug 2025 01:01:14 +0000 Manifest next update: Thu 14 Aug 2025 01:01:14 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: 05fPZDbShKMMYMhyAgVQ27b2cBG28vaVLtrIjWkGe+Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 01:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1034 (0x40a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Aug 7 01:01:14 2025 GMT Not After : Aug 14 01:01:14 2025 GMT Subject: CN=6893fada-930c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:72:92:27:d5:a2:3f:28:1b:59:13:c6:7f:5d: dc:cd:b7:64:17:b1:4c:4e:61:f7:77:8b:48:9a:44: 9f:0c:bf:52:9c:77:17:5f:35:43:a2:6d:cf:a9:8c: ae:06:3d:33:2d:bf:ae:54:4c:30:16:03:91:d4:73: d5:46:78:30:c3:83:53:47:d4:47:2e:8b:b9:02:75: be:03:59:fd:20:07:8e:dd:56:da:7c:62:fc:f3:5a: 37:eb:3f:12:14:e4:5c:cd:3d:23:dd:36:b0:2a:a3: 94:59:8b:4b:d6:58:19:43:b0:87:68:67:fe:06:e2: da:f9:fe:9d:81:ee:12:a7:88:f4:52:48:fe:3a:0f: 62:6c:06:a9:39:76:38:d7:44:80:32:c2:ed:5f:a0: f4:5a:04:91:93:ac:9c:fc:b4:01:77:e0:a6:a2:ba: 3d:fc:0a:66:7c:cf:55:45:83:4f:21:a8:02:c6:5d: 3d:37:37:49:46:28:42:4e:84:6b:14:23:68:53:d1: 2b:39:4f:3e:5c:d5:df:2f:d6:3b:b4:5c:3e:78:90: 3d:bf:94:8e:4c:5e:bf:3d:a5:aa:60:59:0f:86:44: 55:fb:f8:a6:da:c0:47:be:96:44:7c:d9:ec:c4:34: e9:37:7b:42:de:00:71:ad:9e:e9:97:aa:81:a6:a0: 74:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:FB:BF:41:28:BF:8C:1B:8C:9E:B4:86:46:54:4E:C9:82:EF:E3:CA X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:62:5c:79:54:10:56:3b:eb:62:3d:7f:b5:38:c3:48:59:44: 1c:24:d3:4c:19:7e:f8:d1:e9:96:2f:d1:ec:b0:3a:1b:84:81: 44:a3:a7:90:a7:e7:8f:b1:41:c8:7e:3b:66:d3:6f:06:fd:3c: 65:09:af:64:0b:26:29:2f:3a:e6:aa:74:e8:ae:2d:4a:32:40: 38:b7:53:b2:f2:39:b6:07:e8:ce:25:44:7d:c1:b2:59:db:da: 1a:c4:22:6e:7c:3f:6e:6b:52:60:3d:52:73:42:7b:c6:ef:9f: 15:ad:92:90:76:c2:4f:ba:8f:78:b2:e5:f1:f1:7c:17:c7:8a: 1b:9b:ec:da:bd:fd:4e:b9:7b:35:12:d0:e0:f5:83:8f:0d:7c: c7:8e:fd:1b:da:c4:29:02:1b:7d:9c:94:00:d3:88:6e:d9:ff: ce:84:8c:f7:ab:44:95:9b:3b:48:3f:e8:c7:24:cc:b5:d3:70: e4:f2:b4:06:5e:40:78:f0:90:31:d5:7d:99:0c:97:6c:ca:90: d6:ef:60:5f:e8:0f:cb:e6:d0:01:56:f8:4e:a5:40:97:68:79: b9:0b:63:d4:cf:80:5f:9a:2d:e8:f7:7d:38:89:16:55:80:02: 6b:9d:10:28:77:5b:0b:45:d1:0c:43:84:1e:c3:ca:2b:0b:3b: ad:47:a0:10 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwODA3MDEwMTE0WhcNMjUwODE0MDEwMTE0WjAYMRYwFAYD VQQDEw02ODkzZmFkYS05MzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43KSJ9WiPygbWRPGf13czbdkF7FMTmH3d4tImkSfDL9SnHcXXzVDom3PqYyu Bj0zLb+uVEwwFgOR1HPVRngww4NTR9RHLou5AnW+A1n9IAeO3VbafGL881o36z8S FORczT0j3TawKqOUWYtL1lgZQ7CHaGf+BuLa+f6dge4Sp4j0Ukj+Og9ibAapOXY4 10SAMsLtX6D0WgSRk6yc/LQBd+Cmoro9/ApmfM9VRYNPIagCxl09NzdJRihCToRr FCNoU9ErOU8+XNXfL9Y7tFw+eJA9v5SOTF6/PaWqYFkPhkRV+/im2sBHvpZEfNns xDTpN3tC3gBxrZ7pl6qBpqB0cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOL7v0Eo v4wbjJ60hkZUTsmC7+PKMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbYlx5VBBWO+tiPX+1OMNIWUQcJNNMGX740emWL9HssDobhIFEo6eQ p+ePsUHIfjtm028G/TxlCa9kCyYpLzrmqnTori1KMkA4t1Oy8jm2B+jOJUR9wbJZ 29oaxCJufD9ua1JgPVJzQnvG758VrZKQdsJPuo94suXx8XwXx4obm+zavf1OuXs1 EtDg9YOPDXzHjv0b2sQpAht9nJQA04hu2f/OhIz3q0SVmztIP+jHJMy103Dk8rQG XkB48JAx1X2ZDJdsypDW72Bf6A/L5tABVvhOpUCXaHm5C2PUz4Bfmi3o9304iRZV gAJrnRAod1sLRdEMQ4Qew8orCzutR6AQ -----END CERTIFICATE-----Generated at Sat Aug 9 01:00:14 2025 by rpki-client