$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft File: 4j5WiDpuN63lIjxBOzs7D3gbySk.mft (raw, json) Hash identifier: muoOOuuPZroOksC45aNBhNGsm4GVF7JPuzqOW2A34/Y= Subject key identifier: 0B:47:9C:DD:CC:E9:F2:FC:26:49:4F:21:59:35:14:C2:66:79:C8:0E Authority key identifier: E2:3E:56:88:3A:6E:37:AD:E5:22:3C:41:3B:3B:3B:0F:78:1B:C9:29 Certificate issuer: /CN=A91DF645/serialNumber=E23E56883A6E37ADE5223C413B3B3B0F781BC929 Certificate serial: 119A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft Manifest number: 1191 Signing time: Sun 10 Aug 2025 17:13:14 +0000 Manifest this update: Sun 10 Aug 2025 17:13:14 +0000 Manifest next update: Sun 17 Aug 2025 17:13:14 +0000 Files and hashes: 1: 4j5WiDpuN63lIjxBOzs7D3gbySk.crl (hash: bVr/RnHhXvghBy8E7Ke/X+s5FIbQtGryZ8HYmMkTq/s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.crl rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4506 (0x119a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF645, serialNumber=E23E56883A6E37ADE5223C413B3B3B0F781BC929 Validity Not Before: Aug 10 17:13:14 2025 GMT Not After : Aug 17 17:13:14 2025 GMT Subject: CN=6898d32a-4514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:19:a9:3f:3c:56:7c:ba:7d:b2:22:e4:60:43: f3:1b:93:1c:24:c9:10:c9:ee:12:d8:17:4e:07:39: 55:65:a3:3d:64:5e:c8:5b:21:e3:4c:09:1e:13:35: 77:e8:3c:40:93:49:be:29:a1:5b:f6:5e:6e:e4:3a: a3:82:ab:31:14:bf:0b:0a:57:b4:52:3c:e4:77:c6: f1:b9:31:c5:ad:fa:fe:0e:57:be:c5:e0:f8:b9:13: f7:18:8d:bd:44:91:43:66:d7:0c:2b:6a:19:4e:22: 25:9b:56:51:83:3a:66:c7:a3:da:9d:32:38:c5:04: b4:99:a9:63:3e:44:bd:6f:3a:66:2f:5a:6d:3e:a2: d6:31:41:57:6d:1e:db:7a:2b:21:1a:d2:34:5b:04: 3d:7b:13:aa:2b:37:f5:34:a5:c8:6a:a6:1d:70:d0: 6f:a5:83:15:0b:35:5a:0b:3f:31:d4:33:84:55:24: 1a:bc:7f:66:b7:6e:2a:fa:5c:e4:34:05:9b:70:1d: 31:d7:33:fa:d5:29:e6:d6:07:ff:a7:94:cd:28:4a: 82:57:4a:d1:72:0c:2c:77:da:c4:4c:22:cf:96:67: 2f:d6:52:6b:8f:82:da:cd:4e:1f:ee:ae:35:44:e3: 63:5a:61:03:99:0f:83:84:58:65:bf:88:11:03:5b: 92:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:47:9C:DD:CC:E9:F2:FC:26:49:4F:21:59:35:14:C2:66:79:C8:0E X509v3 Authority Key Identifier: keyid:E2:3E:56:88:3A:6E:37:AD:E5:22:3C:41:3B:3B:3B:0F:78:1B:C9:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4j5WiDpuN63lIjxBOzs7D3gbySk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF645/AB16E55201F611E9ABB8870DC4F9AE02/4j5WiDpuN63lIjxBOzs7D3gbySk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:08:5d:75:c8:f1:8c:b6:90:a8:bf:10:fd:aa:bc:5b:4a:86: f2:d5:69:19:11:16:9f:1a:0f:bf:dc:2a:01:5c:db:de:6a:93: 6d:30:1d:09:5e:36:64:55:c6:6e:6d:d3:48:a1:de:9f:d0:74: 96:77:00:30:f4:f2:f2:b5:c1:df:9a:af:e2:96:54:43:a4:e8: 42:39:52:3d:61:c5:c5:a8:51:c2:31:d9:14:c8:40:84:39:dd: 73:42:2b:e2:44:0d:5d:65:41:de:22:89:0b:55:6e:49:1b:98: 2b:c1:83:b9:75:85:2b:e5:99:08:10:02:b4:fc:11:2a:9c:e0: 3a:55:d2:8d:2e:1c:ff:b8:47:27:c7:15:d4:01:39:2c:27:09: d0:3d:3a:f3:3d:22:fe:98:70:05:16:ec:7b:70:ba:80:3d:6b: 34:8b:f2:a8:f4:98:82:83:63:1a:4f:32:3f:32:65:5a:0d:5f: 6b:02:26:1f:6b:c8:97:55:2c:2d:fa:aa:54:f6:ac:05:a3:fa: 65:44:c3:df:ef:c7:70:e6:99:fc:c4:68:64:72:46:3d:12:f4: c9:f1:bd:65:e4:7e:1e:66:e6:72:95:60:c2:7b:63:0a:b6:b6: 95:0c:73:ba:13:68:af:d1:3a:9f:21:00:fb:93:7f:5e:1d:d9: fd:94:bd:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEZowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY2NDUxMTAvBgNVBAUTKEUyM0U1Njg4M0E2RTM3QURFNTIyM0M0MTNCM0IzQjBG NzgxQkM5MjkwHhcNMjUwODEwMTcxMzE0WhcNMjUwODE3MTcxMzE0WjAYMRYwFAYD VQQDEw02ODk4ZDMyYS00NTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBmpPzxWfLp9siLkYEPzG5McJMkQye4S2BdOBzlVZaM9ZF7IWyHjTAkeEzV3 6DxAk0m+KaFb9l5u5DqjgqsxFL8LCle0Ujzkd8bxuTHFrfr+Dle+xeD4uRP3GI29 RJFDZtcMK2oZTiIlm1ZRgzpmx6PanTI4xQS0maljPkS9bzpmL1ptPqLWMUFXbR7b eishGtI0WwQ9exOqKzf1NKXIaqYdcNBvpYMVCzVaCz8x1DOEVSQavH9mt24q+lzk NAWbcB0x1zP61Snm1gf/p5TNKEqCV0rRcgwsd9rETCLPlmcv1lJrj4LazU4f7q41 RONjWmEDmQ+DhFhlv4gRA1uSawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAtHnN3M 6fL8JklPIVk1FMJmecgOMB8GA1UdIwQYMBaAFOI+Vog6bjet5SI8QTs7Ow94G8kp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjY0NS9BQjE2RTU1MjAx RjYxMUU5QUJCODg3MERDNEY5QUUwMi80ajVXaURwdU42M2xJanhCT3pzN0QzZ2J5 U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqNVdpRHB1TjYzbElqeEJPenM3RDNnYnlTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjY0NS9BQjE2RTU1MjAxRjYxMUU5QUJCODg3MERDNEY5QUUwMi80ajVXaURwdU42 M2xJanhCT3pzN0QzZ2J5U2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC4CF11yPGMtpCovxD9qrxbSoby1WkZERafGg+/3CoBXNveapNtMB0J XjZkVcZubdNIod6f0HSWdwAw9PLytcHfmq/illRDpOhCOVI9YcXFqFHCMdkUyECE Od1zQiviRA1dZUHeIokLVW5JG5grwYO5dYUr5ZkIEAK0/BEqnOA6VdKNLhz/uEcn xxXUATksJwnQPTrzPSL+mHAFFux7cLqAPWs0i/Ko9JiCg2MaTzI/MmVaDV9rAiYf a8iXVSwt+qpU9qwFo/plRMPf78dw5pn8xGhkckY9EvTJ8b1l5H4eZuZylWDCe2MK traVDHO6E2iv0TqfIQD7k39eHdn9lL3t -----END CERTIFICATE-----Generated at Mon Aug 11 04:24:54 2025 by rpki-client