$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: HnVUBUg1hgZTbz8dEbTKNnxp2/2ENslSfYI0IdKb4q8= Subject key identifier: 83:14:37:B3:26:54:7C:47:A0:54:F9:95:2A:0A:3E:AA:52:FB:81:70 Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: B0 Signing time: Sun 15 Jun 2025 05:08:52 +0000 Manifest this update: Sun 15 Jun 2025 05:08:52 +0000 Manifest next update: Sun 22 Jun 2025 05:08:52 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: YkgdC2tsGa61TvHT1D6kBUtnvFqwgBqXL/MYOrYJILE=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: cLMsRe3bjQqt9KTlSv77ZsvirHU5HvmwxB64rB3nwQc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Jun 15 05:08:52 2025 GMT Not After : Jun 22 05:08:52 2025 GMT Subject: CN=684e5564-6a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fa:43:d9:b1:14:f0:9c:cd:c2:75:82:1d:04: 96:c7:78:cb:60:17:aa:c2:8a:3a:76:92:76:3b:81: ff:81:69:94:42:50:eb:45:69:29:1b:45:28:b1:f0: 9d:aa:73:bd:d4:3d:58:61:87:dd:01:01:3a:29:21: 16:b4:cd:f6:88:29:39:31:a4:2e:d2:7b:2a:88:e0: dd:27:95:38:48:03:53:53:a0:19:d0:04:4e:f8:a2: 49:93:6f:c6:d4:ec:d0:10:c7:d1:6e:11:36:b0:f2: 1f:a7:c4:53:d6:f5:e9:e1:89:83:8b:7e:53:17:fc: 8e:c3:8c:c6:8b:ad:3a:36:8d:64:cf:e9:de:03:a3: 0e:44:9b:23:81:b5:27:87:41:23:1b:09:56:9b:12: 70:eb:c1:e4:69:bf:38:72:59:b0:9a:2a:fd:87:20: de:fc:f7:23:29:99:09:fc:b1:aa:87:24:b2:76:57: 4c:3f:9b:9e:35:cb:32:08:58:1a:3a:74:f6:18:48: 5a:dd:22:4b:de:51:53:70:ee:1f:98:fc:1c:66:82: 36:d6:e7:21:57:9d:7b:f6:25:5a:fd:80:e5:a1:d9: e4:e9:0c:90:96:51:25:16:40:c1:d4:0b:4c:64:fe: 32:4e:6c:4b:59:b1:23:d2:6b:24:16:aa:07:d6:33: 46:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:14:37:B3:26:54:7C:47:A0:54:F9:95:2A:0A:3E:AA:52:FB:81:70 X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:46:91:12:de:9c:ad:72:03:a6:1a:f9:67:77:8b:6c:70:de: 9b:83:4a:53:91:a1:66:2e:d2:5c:00:a6:63:35:00:33:6f:3b: d6:6f:09:d9:cf:86:f3:1c:a7:03:94:db:2f:03:a3:81:50:51: 71:2f:d6:69:9a:ca:9f:2b:95:dc:c8:c0:41:16:c9:34:5d:2a: ab:e1:07:44:48:4b:7b:62:4c:4f:ea:7e:4c:f9:08:a7:13:9d: 7c:d8:26:99:41:56:4c:ca:93:49:e4:4c:5a:2a:8d:b8:69:66: e4:d9:05:2d:73:c8:03:5a:39:15:36:11:f0:94:be:7b:10:ef: c5:07:82:6c:38:f4:c6:51:a5:9f:ef:57:b1:05:d7:c7:56:bf: 41:31:77:22:e9:18:ee:ed:5a:18:40:94:b0:2a:02:95:d2:01: 02:58:41:08:ec:ae:96:ad:07:bb:62:c5:15:9d:1f:12:8f:1b: 5b:10:22:ba:49:08:81:ff:72:32:b6:c3:76:50:fd:e6:fc:e7: 33:7d:84:12:c3:41:7a:4a:65:d0:4e:51:99:a2:cf:2e:ac:b2: 7a:16:b8:a0:be:8c:e7:1f:a5:de:bf:aa:d7:cb:20:35:9f:a6: 0e:98:49:f7:9e:8b:0d:70:02:f1:38:5d:40:e6:7b:15:cd:d8: af:8a:08:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjUwNjE1MDUwODUyWhcNMjUwNjIyMDUwODUyWjAYMRYwFAYD VQQDEw02ODRlNTU2NC02YTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfpD2bEU8JzNwnWCHQSWx3jLYBeqwoo6dpJ2O4H/gWmUQlDrRWkpG0UosfCd qnO91D1YYYfdAQE6KSEWtM32iCk5MaQu0nsqiODdJ5U4SANTU6AZ0ARO+KJJk2/G 1OzQEMfRbhE2sPIfp8RT1vXp4YmDi35TF/yOw4zGi606No1kz+neA6MORJsjgbUn h0EjGwlWmxJw68Hkab84clmwmir9hyDe/PcjKZkJ/LGqhySydldMP5ueNcsyCFga OnT2GEha3SJL3lFTcO4fmPwcZoI21uchV5179iVa/YDlodnk6QyQllElFkDB1AtM ZP4yTmxLWbEj0mskFqoH1jNGiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMUN7Mm VHxHoFT5lSoKPqpS+4FwMB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByRpES3pytcgOmGvlnd4tscN6bg0pTkaFmLtJcAKZjNQAzbzvWbwnZ z4bzHKcDlNsvA6OBUFFxL9ZpmsqfK5XcyMBBFsk0XSqr4QdESEt7YkxP6n5M+Qin E5182CaZQVZMypNJ5ExaKo24aWbk2QUtc8gDWjkVNhHwlL57EO/FB4JsOPTGUaWf 71exBdfHVr9BMXci6Rju7VoYQJSwKgKV0gECWEEI7K6WrQe7YsUVnR8SjxtbECK6 SQiB/3IytsN2UP3m/OczfYQSw0F6SmXQTlGZos8urLJ6FrigvoznH6Xev6rXyyA1 n6YOmEn3nosNcALxOF1A5nsVzdivigjf -----END CERTIFICATE-----Generated at Sun Jun 15 09:52:44 2025 by rpki-client