$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: /KgD+yWuY5o6h10dx6rS1xMeThNltMdZYEL857rkGT8= Subject key identifier: AB:75:A2:F7:AC:C9:28:3F:45:20:93:F9:B2:7E:FC:E7:52:12:D4:DB Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DEF Signing time: Tue 12 Aug 2025 18:00:29 +0000 Manifest this update: Tue 12 Aug 2025 18:00:29 +0000 Manifest next update: Tue 19 Aug 2025 18:00:29 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: hSF4iELpVw9ZY1EdtI5vgvXT42WZLZWJvFAPN/H3Qo0=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 18:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3576 (0xdf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Aug 12 18:00:29 2025 GMT Not After : Aug 19 18:00:29 2025 GMT Subject: CN=689b813d-b0df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e5:21:b7:c6:73:3c:4e:03:2f:39:20:7d:f4: 4a:a8:d9:d1:58:8b:65:10:01:e5:3f:98:bc:49:44: e7:e3:96:a6:75:86:83:e5:a7:46:0b:1f:0f:74:42: 8d:54:b0:f2:fb:b9:6f:5f:05:06:2a:6e:2f:da:27: e3:e9:ee:a3:cd:56:c6:8a:b8:a3:28:5f:0a:6b:55: df:0d:9b:c1:64:4d:bf:44:6b:77:f0:c3:80:97:9b: 2b:38:92:aa:2d:ee:31:3a:ac:a7:21:53:46:18:8d: 5d:d6:5f:ea:0c:c2:74:70:5e:a8:1c:af:57:10:ed: f6:40:9a:ab:b9:51:73:b1:d1:b5:a1:cf:f3:7b:f0: ce:6b:92:bf:fc:42:8e:7f:49:4f:4a:0e:1c:91:0f: 45:b6:13:28:c8:bc:1a:b5:99:d6:61:af:73:e2:d1: 9c:f8:93:c4:55:89:eb:c7:b0:19:3c:33:96:8a:28: e6:6e:26:8d:21:8d:84:78:44:3a:91:84:5c:93:4b: f7:17:c2:7c:99:52:d6:d6:3a:da:05:82:af:ad:b8: 66:91:69:c1:17:71:0f:a3:5c:2a:b9:5f:24:65:8d: 63:48:ac:0d:eb:25:40:4c:15:8b:0e:78:dd:af:1a: 72:78:bc:65:fb:dd:8e:6e:ba:40:06:49:6d:a9:6a: 8a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:75:A2:F7:AC:C9:28:3F:45:20:93:F9:B2:7E:FC:E7:52:12:D4:DB X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:10:7c:fb:80:95:4e:5b:02:f4:57:d2:e2:73:7c:bd:7f:cc: cf:c0:97:db:62:8f:73:af:73:30:44:b5:1d:d7:e5:da:74:96: 4a:04:5e:22:7c:eb:c4:b7:31:3d:e2:13:26:cb:7b:c3:fb:5e: 16:47:9b:bb:db:c2:c6:a1:92:a9:83:f9:80:43:1f:03:94:e0: 14:b8:38:ad:37:db:9f:1b:4e:e9:65:8f:b2:3b:59:4f:5d:40: de:9b:ca:7d:47:43:60:63:79:e2:af:06:03:73:53:5b:dc:f7: 48:5b:c0:56:3e:ec:93:95:42:1e:1d:c6:fc:52:28:fd:2e:de: 92:12:fb:70:0a:85:eb:9c:ad:3d:9e:73:55:26:93:28:90:c5: a8:47:fe:d2:e7:85:dd:c1:61:7e:7b:75:07:a6:a8:2d:09:84: af:84:50:a5:47:04:e2:4b:8e:6c:68:8a:1f:4e:5a:40:ae:17: d3:ad:a6:ae:38:42:db:c7:4a:7a:57:33:d1:ce:42:b7:c4:bf: 19:27:e4:71:5e:99:7d:ac:16:d1:1e:2c:26:db:67:6c:f8:86: 54:e7:98:32:22:67:3e:8a:6b:66:5d:62:9f:55:ab:96:69:32: 2a:9c:33:e7:ae:b1:99:b9:7c:f7:7a:80:35:92:28:67:f0:75: fe:8b:69:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwODEyMTgwMDI5WhcNMjUwODE5MTgwMDI5WjAYMRYwFAYD VQQDEw02ODliODEzZC1iMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+Uht8ZzPE4DLzkgffRKqNnRWItlEAHlP5i8SUTn45amdYaD5adGCx8PdEKN VLDy+7lvXwUGKm4v2ifj6e6jzVbGirijKF8Ka1XfDZvBZE2/RGt38MOAl5srOJKq Le4xOqynIVNGGI1d1l/qDMJ0cF6oHK9XEO32QJqruVFzsdG1oc/ze/DOa5K//EKO f0lPSg4ckQ9FthMoyLwatZnWYa9z4tGc+JPEVYnrx7AZPDOWiijmbiaNIY2EeEQ6 kYRck0v3F8J8mVLW1jraBYKvrbhmkWnBF3EPo1wquV8kZY1jSKwN6yVATBWLDnjd rxpyeLxl+92ObrpABkltqWqKDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKt1oves ySg/RSCT+bJ+/OdSEtTbMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANEHz7gJVOWwL0V9Lic3y9f8zPwJfbYo9zr3MwRLUd1+XadJZKBF4i fOvEtzE94hMmy3vD+14WR5u728LGoZKpg/mAQx8DlOAUuDitN9ufG07pZY+yO1lP XUDem8p9R0NgY3nirwYDc1Nb3PdIW8BWPuyTlUIeHcb8Uij9Lt6SEvtwCoXrnK09 nnNVJpMokMWoR/7S54XdwWF+e3UHpqgtCYSvhFClRwTiS45saIofTlpArhfTraau OELbx0p6VzPRzkK3xL8ZJ+RxXpl9rBbRHiwm22ds+IZU55gyImc+imtmXWKfVauW aTIqnDPnrrGZuXz3eoA1kihn8HX+i2n1 -----END CERTIFICATE-----Generated at Wed Aug 13 02:43:10 2025 by rpki-client