$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft File: M4vXge0h5dsUBXs3uQOipAjiQgI.mft (raw, json) Hash identifier: z+/xCSB63YEsNf8d+aqSm65/8pvU11Bmvk6zmaKXb1c= Subject key identifier: 45:B4:6F:B5:A6:4B:5A:6A:5C:5F:8B:82:11:17:35:7B:A7:2E:98:0C Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 34EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft Manifest number: 34C3 Signing time: Sun 10 Aug 2025 14:51:13 +0000 Manifest this update: Sun 10 Aug 2025 14:51:13 +0000 Manifest next update: Sun 17 Aug 2025 14:51:13 +0000 Files and hashes: 1: M4vXge0h5dsUBXs3uQOipAjiQgI.crl (hash: CU8hfwNypwTzzKDK+CQzeOIV5iirVc7kcuxztDCEbos=) 2: 5F114FB2C28811EB8BB7245FC4F9AE02.roa (hash: NTEzu1pSF4sdWy2GcCcEDp/gqX9S2zLnxs3jJP1dXh4=) 3: 5DF144D4C28811EB8BB7245FC4F9AE02.roa (hash: MtAXGpGxLYC9TQTRbnJyAY8nZ+XjjJVEjf45TgfTD7c=) 4: 5CD84EBCC28811EB8BB7245FC4F9AE02.roa (hash: +MuzD9gM5AUhBlmI5x0tCQas+CPjWTVYziN5P4guwtA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13546 (0x34ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1, serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: Aug 10 14:51:13 2025 GMT Not After : Aug 17 14:51:13 2025 GMT Subject: CN=6898b1e1-1efb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:53:ae:17:44:b1:44:f5:58:67:48:ad:46:c7: 20:a1:5d:55:6c:99:0a:94:80:df:46:0c:7a:a6:e7: ae:76:7e:e4:1e:a8:b9:42:2a:ce:4e:25:8a:f5:9b: 7b:d5:38:07:82:fa:26:44:a8:58:c2:56:31:df:69: 03:79:3a:02:04:a3:15:4b:6f:06:ab:16:42:33:ee: dc:8a:9f:4f:b8:ff:82:37:9f:16:9d:83:cc:d6:d9: fc:3f:21:18:80:15:b7:61:79:b3:3b:cf:42:d0:1b: 21:a7:cd:a2:e3:12:6b:5c:c1:6d:b4:ed:ad:08:d2: 9c:b8:aa:7e:6a:94:ed:99:b4:fc:07:8b:c9:9a:12: 88:ac:97:0c:13:ca:1b:c1:52:c3:bb:96:da:44:43: 0f:10:d7:73:35:48:8a:6f:ad:e2:02:fe:54:1e:0a: c0:2f:d3:89:3d:af:78:5f:5b:d6:ab:44:ea:7f:d9: 7f:bc:be:5b:60:33:54:a3:b8:92:b8:d3:93:4b:99: cb:64:e7:f3:40:25:e9:55:67:56:3b:e5:a7:e2:bf: 42:5d:47:e7:f6:31:f8:c4:1a:b3:18:e6:ec:cd:b4: a7:1d:5d:1d:42:f5:8c:db:61:3d:fb:de:3d:5f:35: 08:61:c6:8f:22:b9:37:20:78:b7:33:11:c1:38:ba: 42:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B4:6F:B5:A6:4B:5A:6A:5C:5F:8B:82:11:17:35:7B:A7:2E:98:0C X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:10:4e:18:01:e4:86:94:c2:83:81:82:dc:b0:cc:d2:e6:cf: cb:ec:d2:ad:1d:81:31:2f:ae:74:e6:7b:d1:df:ad:d9:a1:db: 0f:fb:25:69:97:60:dc:a5:f7:19:0d:40:4c:66:b6:3a:2e:09: b0:6c:e4:76:fe:47:93:34:d0:a6:ec:0f:80:b1:ca:0a:05:c9: f1:e4:cf:10:47:c4:b7:f8:41:7d:3a:ae:31:b5:2c:10:c4:53: a3:24:37:5d:68:09:c6:d6:80:f3:06:cf:20:5a:57:e1:40:a1: 35:a0:13:10:54:96:8a:6f:c3:90:a2:3c:36:af:f8:af:65:fa: f1:72:b8:1d:e8:c1:29:c3:70:9d:b4:6a:08:03:01:89:10:f9: c9:cb:b1:3b:1e:97:45:d9:5d:12:2a:64:52:a8:13:45:b4:0e: 19:50:5a:b0:54:e6:1e:54:f0:fc:53:b1:1c:51:c9:5c:4c:9a: 7b:b6:f4:86:1e:6b:c6:30:15:ac:db:12:97:06:be:dd:b4:95: bc:c6:9d:8b:67:f6:42:65:a5:50:a5:8c:77:b9:e1:dd:26:07: 8d:2b:16:f0:d7:29:2f:0a:b0:96:71:fd:64:ad:4a:a0:26:e5: a3:72:cd:98:17:57:f9:66:67:19:00:18:8d:71:82:52:26:3c: db:a2:11:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjUwODEwMTQ1MTEzWhcNMjUwODE3MTQ1MTEzWjAYMRYwFAYD VQQDEw02ODk4YjFlMS0xZWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy1OuF0SxRPVYZ0itRscgoV1VbJkKlIDfRgx6pueudn7kHqi5QirOTiWK9Zt7 1TgHgvomRKhYwlYx32kDeToCBKMVS28GqxZCM+7cip9PuP+CN58WnYPM1tn8PyEY gBW3YXmzO89C0Bshp82i4xJrXMFttO2tCNKcuKp+apTtmbT8B4vJmhKIrJcME8ob wVLDu5baREMPENdzNUiKb63iAv5UHgrAL9OJPa94X1vWq0Tqf9l/vL5bYDNUo7iS uNOTS5nLZOfzQCXpVWdWO+Wn4r9CXUfn9jH4xBqzGObszbSnHV0dQvWM22E9+949 XzUIYcaPIrk3IHi3MxHBOLpCbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEW0b7Wm S1pqXF+LghEXNXunLpgMMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzhDMS9FNzVBQzI2MjFEOTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVk c1VCWHMzdVFPaXBBamlRZ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFEE4YAeSGlMKDgYLcsMzS5s/L7NKtHYExL6505nvR363ZodsP+yVp l2DcpfcZDUBMZrY6LgmwbOR2/keTNNCm7A+AscoKBcnx5M8QR8S3+EF9Oq4xtSwQ xFOjJDddaAnG1oDzBs8gWlfhQKE1oBMQVJaKb8OQojw2r/ivZfrxcrgd6MEpw3Cd tGoIAwGJEPnJy7E7HpdF2V0SKmRSqBNFtA4ZUFqwVOYeVPD8U7EcUclcTJp7tvSG HmvGMBWs2xKXBr7dtJW8xp2LZ/ZCZaVQpYx3ueHdJgeNKxbw1ykvCrCWcf1krUqg JuWjcs2YF1f5ZmcZABiNcYJSJjzbohFp -----END CERTIFICATE-----Generated at Mon Aug 11 01:49:00 2025 by rpki-client