$ rpki-client -vvf rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft File: 4Y0K0YMT4gIg3qG4cW37310JzPg.mft (raw, json) Hash identifier: cBf7Q2dlChK44NBiheQd2qFvzRx78bXg/9BfMv7+hug= Subject key identifier: DC:E2:36:B5:4D:6E:BD:64:7C:F4:E1:69:41:DC:E7:C2:99:EC:74:7B Authority key identifier: E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 Certificate issuer: /CN=A91DBB66/serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Certificate serial: 32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft Manifest number: 30 Signing time: Sat 09 Aug 2025 08:11:13 +0000 Manifest this update: Sat 09 Aug 2025 08:11:12 +0000 Manifest next update: Sat 16 Aug 2025 08:11:12 +0000 Files and hashes: 1: 4Y0K0YMT4gIg3qG4cW37310JzPg.crl (hash: h4PN0Ub1MkMSUwnqFMYHUCAqi/YWG3MWdBfC2RSJoQw=) 2: 099A56FE2FB311F09E3A9373C4F9AE02.roa (hash: c58CHJdQfloT8cjooayoSNCaLkxE9yxaVBgoB9VE0Hs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DBB66, serialNumber=E18D0AD18313E20220DEA1B8716DFBDF5D09CCF8 Validity Not Before: Aug 9 08:11:12 2025 GMT Not After : Aug 16 08:11:12 2025 GMT Subject: CN=689702a1-3688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4b:87:6f:06:71:2a:6e:fd:83:a2:3e:8a:c3: af:f3:a9:cd:51:7b:9f:ab:84:5a:ac:aa:34:20:82: 37:62:e0:8e:b0:8b:96:2a:1f:17:58:1b:fd:8b:e8: 37:e4:3d:28:87:e1:3c:59:90:4f:38:25:8c:b7:b2: d6:5f:12:dc:29:bd:94:52:83:fd:c5:42:2c:72:d0: e5:95:d4:08:e4:4f:72:a1:aa:c5:39:f9:f2:73:ed: 49:9c:c4:43:71:c8:23:e7:52:8c:78:92:09:21:db: 62:73:07:dd:ab:cb:0f:7b:c6:ca:18:23:6b:28:2f: 52:d0:cc:19:fa:fd:b2:3a:59:ba:87:08:93:a4:80: 36:72:e9:83:ce:6a:b0:fa:1d:0d:be:42:e3:66:57: e0:09:3d:38:3e:99:3a:99:eb:9c:08:2b:57:c2:17: c6:b0:06:57:c8:c8:6f:fa:4f:4b:13:c5:8b:99:87: 08:8c:15:7a:71:2b:8b:c4:60:99:f7:fa:2e:9b:9e: ec:8a:0e:41:98:22:5d:05:09:bb:91:b6:ec:be:eb: 25:bc:3c:c6:f4:92:1b:3e:6f:7e:07:17:f9:94:99: 5b:a5:48:5f:e7:59:74:2c:c0:10:28:4f:e6:aa:c5: ef:e2:46:5c:49:3a:48:36:94:81:91:99:b5:b0:2a: 75:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:E2:36:B5:4D:6E:BD:64:7C:F4:E1:69:41:DC:E7:C2:99:EC:74:7B X509v3 Authority Key Identifier: keyid:E1:8D:0A:D1:83:13:E2:02:20:DE:A1:B8:71:6D:FB:DF:5D:09:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y0K0YMT4gIg3qG4cW37310JzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DBB66/0C0D80DE2FAC11F08CEA0A71C4F9AE02/4Y0K0YMT4gIg3qG4cW37310JzPg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:1e:e6:ec:25:a4:6a:95:45:31:e9:3a:38:9b:71:2a:25:fd: d9:92:f6:4d:da:20:72:74:7f:62:97:7b:b5:3e:69:0f:ad:17: 87:31:64:d0:f9:15:3d:ae:3d:90:9d:af:37:70:b1:6c:45:69: c8:11:03:80:54:13:5e:5b:d7:62:5a:62:b2:a1:04:2a:24:3c: 56:27:ae:50:25:6e:e6:ad:24:8f:b3:47:6f:5f:9e:54:b7:64: 26:ef:00:df:d1:24:20:ab:cc:fe:fa:a7:ad:0e:03:f9:1b:a7: 7b:15:1a:93:b9:e8:38:e0:e7:ca:38:96:45:d3:53:97:b8:b7: 21:62:ef:67:a7:1c:fa:69:e8:ba:dc:74:f4:33:ec:7f:bc:e1: 9f:48:9c:95:8d:8c:08:a7:1b:a0:83:f5:19:07:8b:09:f5:a0: b4:ec:78:f0:a4:a2:a9:fa:f8:67:5c:41:7f:5a:5b:50:1b:fa: 3c:88:4f:88:ec:d5:10:a6:f5:34:3c:2a:29:3a:3c:76:9a:02: c1:ce:ae:e5:42:bc:56:68:dc:25:64:ed:20:85:79:d7:dd:53: 46:d5:3d:2d:cf:61:6f:1b:f8:e7:52:71:c0:c1:71:9c:a8:71: 14:3e:97:02:ee:ed:95:29:15:00:f2:81:76:79:49:ce:08:eb: 15:bc:20:5b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QkI2NjExMC8GA1UEBRMoRTE4RDBBRDE4MzEzRTIwMjIwREVBMUI4NzE2REZCREY1 RDA5Q0NGODAeFw0yNTA4MDkwODExMTJaFw0yNTA4MTYwODExMTJaMBgxFjAUBgNV BAMTDTY4OTcwMmExLTM2ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPS4dvBnEqbv2Doj6Kw6/zqc1Re5+rhFqsqjQggjdi4I6wi5YqHxdYG/2L6Dfk PSiH4TxZkE84JYy3stZfEtwpvZRSg/3FQixy0OWV1AjkT3KhqsU5+fJz7UmcxENx yCPnUox4kgkh22JzB92ryw97xsoYI2soL1LQzBn6/bI6WbqHCJOkgDZy6YPOarD6 HQ2+QuNmV+AJPTg+mTqZ65wIK1fCF8awBlfIyG/6T0sTxYuZhwiMFXpxK4vEYJn3 +i6bnuyKDkGYIl0FCbuRtuy+6yW8PMb0khs+b34HF/mUmVulSF/nWXQswBAoT+aq xe/iRlxJOkg2lIGRmbWwKnWRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU3OI2tU1u vWR89OFpQdznwpnsdHswHwYDVR0jBBgwFoAU4Y0K0YMT4gIg3qG4cW37310JzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURCQjY2LzBDMEQ4MERFMkZB QzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJZzNxRzRjVzM3MzEwSnpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFkwSzBZTVQ0Z0lnM3FHNGNXMzczMTBKelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURC QjY2LzBDMEQ4MERFMkZBQzExRjA4Q0VBMEE3MUM0RjlBRTAyLzRZMEswWU1UNGdJ ZzNxRzRjVzM3MzEwSnpQZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIQe5uwlpGqVRTHpOjibcSol/dmS9k3aIHJ0f2KXe7U+aQ+tF4cxZND5 FT2uPZCdrzdwsWxFacgRA4BUE15b12JaYrKhBCokPFYnrlAlbuatJI+zR29fnlS3 ZCbvAN/RJCCrzP76p60OA/kbp3sVGpO56Djg58o4lkXTU5e4tyFi72enHPpp6Lrc dPQz7H+84Z9InJWNjAinG6CD9RkHiwn1oLTsePCkoqn6+GdcQX9aW1Ab+jyIT4js 1RCm9TQ8Kik6PHaaAsHOruVCvFZo3CVk7SCFedfdU0bVPS3PYW8b+OdSccDBcZyo cRQ+lwLu7ZUpFQDygXZ5Sc4I6xW8IFs= -----END CERTIFICATE-----Generated at Sun Aug 10 13:49:57 2025 by rpki-client