$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft File: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft (raw, json) Hash identifier: 2VrVpd1suhB/ynQtYZ66GiYkDrBR1suU132D65yDUBo= Subject key identifier: C2:8C:EF:39:C3:93:C7:BD:B7:D9:F9:FD:8E:73:54:C7:77:32:8F:C3 Authority key identifier: 4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 Certificate issuer: /CN=A91ECC52/serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Certificate serial: 07A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft Manifest number: 079F Signing time: Sun 10 Aug 2025 21:23:07 +0000 Manifest this update: Sun 10 Aug 2025 21:23:07 +0000 Manifest next update: Sun 17 Aug 2025 21:23:07 +0000 Files and hashes: 1: S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl (hash: uAxkSzC6mtifD5J/2lvJd450oc8fs2LvLB5qtwIN/e4=) 2: 65D706B213FA11EB92A6FE61C4F9AE02.roa (hash: HDw255HT5Qq+WExObAcGQTxVC/IMJorhiCibpd+wpAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1956 (0x7a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECC52, serialNumber=4B8567FB387BFD74076B5097700132C7AC86E620 Validity Not Before: Aug 10 21:23:07 2025 GMT Not After : Aug 17 21:23:07 2025 GMT Subject: CN=68990dbb-6e15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:0e:fc:75:28:e9:fc:fa:88:be:eb:38:57:ba: 8f:88:4c:8c:db:d4:91:27:93:96:15:98:fe:1d:c1: 6f:5f:de:dc:87:b7:22:c8:06:fd:7e:95:db:35:9d: 47:84:6a:1f:5a:15:b6:f2:80:55:55:e5:f4:5a:b8: 6b:bb:ac:b8:e9:c2:17:17:67:d0:8a:03:13:44:ec: fc:35:ed:7a:7f:56:83:7a:2d:fe:f2:4a:82:a7:7c: b2:06:b3:08:a7:52:56:60:1c:de:11:22:14:54:e3: 7b:bc:cc:30:88:31:e0:c3:21:46:37:ff:54:41:29: 9e:8f:e5:3c:46:19:1a:50:af:69:9e:46:0e:d1:36: 73:1e:40:00:c6:00:a4:9c:83:d4:b4:2e:d0:53:8a: 44:12:62:65:77:60:b1:59:65:25:f0:33:64:72:8a: de:2e:7a:91:e5:a7:1b:7a:12:46:47:44:f4:39:12: 96:3b:89:b1:38:b5:8f:c9:c6:1f:40:37:60:d0:39: e5:72:ad:f0:46:b8:4b:b9:66:fe:9c:df:1b:bb:42: 7a:7b:f1:dd:32:fb:ca:0e:5d:04:f2:80:e5:af:7e: 7a:4a:61:f8:74:02:fe:90:ec:d5:95:e1:29:fc:4a: 8d:12:33:fd:e4:af:fb:3a:9d:98:c6:59:07:75:45: 5c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8C:EF:39:C3:93:C7:BD:B7:D9:F9:FD:8E:73:54:C7:77:32:8F:C3 X509v3 Authority Key Identifier: keyid:4B:85:67:FB:38:7B:FD:74:07:6B:50:97:70:01:32:C7:AC:86:E6:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECC52/652836E8138A11EB97AEB420C4F9AE02/S4Vn-zh7_XQHa1CXcAEyx6yG5iA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:40:10:b0:de:3e:18:b1:2b:56:a6:4e:ab:5a:86:55:7f:35: 2c:5d:4b:67:23:0d:7d:f6:61:cd:1b:4d:f2:78:84:0f:10:8c: 47:3e:38:d1:22:09:1a:bb:a2:1f:d7:71:33:b2:93:e5:70:ca: fa:c0:4a:af:61:e7:6f:ee:70:f2:80:fe:59:8f:fa:ee:19:4d: be:c2:e3:ad:45:28:95:48:13:00:50:ae:c9:31:3c:c6:f0:2e: c1:70:5d:f3:40:bf:06:22:a3:15:01:ee:7f:d4:b3:10:2d:c2: db:2e:8b:2e:e8:8e:52:f8:cc:6b:80:84:e0:0f:2d:90:7b:07: e2:80:d4:f9:cd:9a:bf:55:50:11:f5:c3:29:fd:93:0e:31:57: 34:a6:b6:9c:a4:44:08:ed:c9:ac:e2:c2:ee:45:e1:6f:a9:4f: ec:e9:22:b4:9f:93:53:13:77:03:28:69:cf:66:21:76:c5:fb: b3:e2:18:1e:69:bc:98:d5:3b:b9:b8:b6:a6:ce:06:29:6e:1c: 49:f4:12:58:96:86:91:4e:97:ac:95:f2:53:a9:ac:db:f6:82: d8:b5:0f:ba:72:92:e4:7b:29:4d:2d:b2:54:c0:8f:0a:79:60: c7:3c:12:d5:3a:1d:42:38:b8:11:dc:c5:f0:e2:46:6f:f0:66: 92:b1:d5:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNDNTIxMTAvBgNVBAUTKDRCODU2N0ZCMzg3QkZENzQwNzZCNTA5NzcwMDEzMkM3 QUM4NkU2MjAwHhcNMjUwODEwMjEyMzA3WhcNMjUwODE3MjEyMzA3WjAYMRYwFAYD VQQDEw02ODk5MGRiYi02ZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxg78dSjp/PqIvus4V7qPiEyM29SRJ5OWFZj+HcFvX97ch7ciyAb9fpXbNZ1H hGofWhW28oBVVeX0Wrhru6y46cIXF2fQigMTROz8Ne16f1aDei3+8kqCp3yyBrMI p1JWYBzeESIUVON7vMwwiDHgwyFGN/9UQSmej+U8RhkaUK9pnkYO0TZzHkAAxgCk nIPUtC7QU4pEEmJld2CxWWUl8DNkcoreLnqR5acbehJGR0T0ORKWO4mxOLWPycYf QDdg0Dnlcq3wRrhLuWb+nN8bu0J6e/HdMvvKDl0E8oDlr356SmH4dAL+kOzVleEp /EqNEjP95K/7Op2YxlkHdUVcmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMKM7znD k8e9t9n5/Y5zVMd3Mo/DMB8GA1UdIwQYMBaAFEuFZ/s4e/10B2tQl3ABMseshuYg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0M1Mi82NTI4MzZFODEz OEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19YUUhhMUNYY0FFeXg2eUc1 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1M0Vm4temg3X1hRSGExQ1hjQUV5eDZ5RzVpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0M1Mi82NTI4MzZFODEzOEExMUVCOTdBRUI0MjBDNEY5QUUwMi9TNFZuLXpoN19Y UUhhMUNYY0FFeXg2eUc1aUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbQBCw3j4YsStWpk6rWoZVfzUsXUtnIw199mHNG03yeIQPEIxHPjjR Igkau6If13EzspPlcMr6wEqvYedv7nDygP5Zj/ruGU2+wuOtRSiVSBMAUK7JMTzG 8C7BcF3zQL8GIqMVAe5/1LMQLcLbLosu6I5S+MxrgITgDy2QewfigNT5zZq/VVAR 9cMp/ZMOMVc0pracpEQI7cms4sLuReFvqU/s6SK0n5NTE3cDKGnPZiF2xfuz4hge abyY1Tu5uLamzgYpbhxJ9BJYloaRTpeslfJTqazb9oLYtQ+6cpLkeylNLbJUwI8K eWDHPBLVOh1COLgR3MXw4kZv8GaSsdX0 -----END CERTIFICATE-----Generated at Mon Aug 11 04:14:40 2025 by rpki-client