$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: G74g4ZU3WqF9gU0pDg5T4GpWiLbD43modiJzrZRs0Vk= Subject key identifier: 48:D9:14:E0:E8:E9:E8:B7:CA:15:EA:44:56:D1:9F:C2:19:BA:20:9D Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: CE Signing time: Sat 09 Aug 2025 06:06:17 +0000 Manifest this update: Sat 09 Aug 2025 06:06:16 +0000 Manifest next update: Sat 16 Aug 2025 06:06:16 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: UZV1vd7LJLoX05QajieCM5EviTLrWNAr/HriqVHacOs=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: SsTEks9DzvfjnZoXdnmZIWjNSHqbFmVLR2wVP5eTyr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Aug 9 06:06:16 2025 GMT Not After : Aug 16 06:06:16 2025 GMT Subject: CN=6896e559-296d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:32:fa:27:70:50:18:8f:f2:7c:47:f9:84: 5f:3e:a3:c0:85:a3:6a:14:97:89:89:e7:44:fd:4e: 82:c7:1d:76:c7:f4:2b:bb:0b:19:e4:07:4e:15:db: 53:7f:26:33:56:66:e0:17:96:3b:25:6c:b9:0a:88: e5:70:27:2b:b8:f3:d1:eb:ff:29:ad:a0:39:a4:d0: 24:81:78:85:34:66:f3:4c:90:23:fa:b1:a5:ad:f7: f6:f0:fb:5c:b8:de:9f:11:dc:2c:4e:58:72:25:2c: 35:37:51:78:af:c1:dd:a6:25:f9:20:b5:ee:ba:ca: 91:03:81:c3:6b:e8:69:71:aa:41:f0:60:36:d0:a8: a3:16:cc:17:7c:12:78:fe:e1:81:90:25:8e:51:eb: cc:ad:15:2c:62:9c:49:50:3a:ac:0d:d0:a9:25:cb: 82:9e:e1:c7:66:9b:61:4b:4d:dc:92:90:1e:8b:c9: 0f:ef:62:10:e1:a0:3c:70:5b:09:f2:93:64:3e:62: 95:8a:23:5d:f8:5f:10:61:11:da:3a:c6:45:e8:c3: df:9e:cd:0c:96:0c:fc:fb:3f:99:26:b7:e1:c2:2d: d7:58:cd:c5:7c:ec:fd:64:54:83:95:34:13:6d:a7: d6:ad:34:c6:3d:8e:23:1c:56:bf:af:20:8f:1c:65: 79:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:D9:14:E0:E8:E9:E8:B7:CA:15:EA:44:56:D1:9F:C2:19:BA:20:9D X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:4d:71:1b:79:4d:65:a6:a2:f9:61:53:97:58:fe:d8:eb:76: 8c:ec:da:ac:25:53:22:b7:f0:2c:26:ba:41:14:ad:87:60:57: ae:e3:e0:ad:6f:71:12:27:b1:2e:52:e9:60:57:14:9a:e1:40: ba:86:1c:6d:26:ba:a0:d2:77:eb:80:9e:02:15:45:da:d6:44: dd:5e:fa:82:11:77:21:b5:1e:f1:4c:c3:d9:9c:39:3f:2f:80: 1b:f8:89:2d:87:c7:d6:cf:d5:48:ad:64:d4:8a:d2:be:57:70: 8a:bd:8e:79:ae:69:ad:5a:f2:ae:fd:cb:37:8d:36:51:31:dc: 93:11:24:25:f9:b2:14:37:bc:0a:04:df:98:cc:fc:af:7c:dc: 00:ef:1a:f2:3c:a4:ca:08:09:6f:37:a0:24:e4:b5:07:f8:36: 41:f0:0e:dd:ad:d5:dd:dd:4d:2e:93:b0:ba:9a:24:50:5d:e6: 82:7f:d4:38:f0:c5:40:d4:8c:e3:81:f3:f1:f3:fa:d6:f1:bd: 3b:e0:8c:21:4b:cf:44:d8:5a:36:c3:7f:fd:10:2b:08:c8:71: c2:ad:51:95:04:51:66:73:1b:26:19:28:c1:80:b8:21:2a:3a: ca:cb:79:2f:25:59:81:89:69:64:a6:1d:8d:a8:ff:4f:56:e7: e2:02:50:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjUwODA5MDYwNjE2WhcNMjUwODE2MDYwNjE2WjAYMRYwFAYD VQQDEw02ODk2ZTU1OS0yOTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKoy+idwUBiP8nxH+YRfPqPAhaNqFJeJiedE/U6Cxx12x/QruwsZ5AdOFdtT fyYzVmbgF5Y7JWy5CojlcCcruPPR6/8praA5pNAkgXiFNGbzTJAj+rGlrff28Ptc uN6fEdwsTlhyJSw1N1F4r8HdpiX5ILXuusqRA4HDa+hpcapB8GA20KijFswXfBJ4 /uGBkCWOUevMrRUsYpxJUDqsDdCpJcuCnuHHZpthS03ckpAei8kP72IQ4aA8cFsJ 8pNkPmKViiNd+F8QYRHaOsZF6MPfns0Mlgz8+z+ZJrfhwi3XWM3FfOz9ZFSDlTQT bafWrTTGPY4jHFa/ryCPHGV59wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEjZFODo 6ei3yhXqRFbRn8IZuiCdMB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3TXEbeU1lpqL5YVOXWP7Y63aM7NqsJVMit/AsJrpBFK2HYFeu4+Ct b3ESJ7EuUulgVxSa4UC6hhxtJrqg0nfrgJ4CFUXa1kTdXvqCEXchtR7xTMPZnDk/ L4Ab+Ikth8fWz9VIrWTUitK+V3CKvY55rmmtWvKu/cs3jTZRMdyTESQl+bIUN7wK BN+YzPyvfNwA7xryPKTKCAlvN6Ak5LUH+DZB8A7drdXd3U0uk7C6miRQXeaCf9Q4 8MVA1IzjgfPx8/rW8b074IwhS89E2Fo2w3/9ECsIyHHCrVGVBFFmcxsmGSjBgLgh KjrKy3kvJVmBiWlkph2NqP9PVufiAlBf -----END CERTIFICATE-----Generated at Sun Aug 10 16:12:08 2025 by rpki-client