$ rpki-client -vvf rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft File: 4YL5k2lSxCadZw2ldS3syGgjTxs.mft (raw, json) Hash identifier: UDhvEqZW7gWdIy/RyoYBd+wHZFzz8FSob7wjGPNYUzQ= Subject key identifier: 44:B3:02:94:57:39:5E:EA:F1:C5:32:B7:B2:F5:2C:E9:F6:8C:A1:07 Authority key identifier: E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B Certificate issuer: /CN=A9126F2B/serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Certificate serial: 21DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft Manifest number: 21BD Signing time: Wed 02 Jul 2025 16:00:36 +0000 Manifest this update: Wed 02 Jul 2025 16:00:35 +0000 Manifest next update: Wed 09 Jul 2025 16:00:35 +0000 Files and hashes: 1: 4YL5k2lSxCadZw2ldS3syGgjTxs.crl (hash: hCVmRNAxikfv4pOo8vXhKeltT0Q/BtcaiD4sepB/nkw=) 2: B72206B4554B11E791BA5861C4F9AE02.roa (hash: Si+Xx28szHe9Iv7W1YtcZoNp90VlP5RP91wUGl6kx/U=) 3: A8E9DE704B8511E7BF406610C4F9AE02.roa (hash: nu+MmRVMelFZBsdSEFhVpeJliAcHe14e7veTklAJkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8670 (0x21de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126F2B, serialNumber=E182F9936952C4269D670DA5752DECC868234F1B Validity Not Before: Jul 2 16:00:35 2025 GMT Not After : Jul 9 16:00:35 2025 GMT Subject: CN=686557a3-a0ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:e7:ab:63:66:56:b2:52:81:63:b1:8d:05: 7e:fd:6d:5d:2a:62:70:18:03:79:fe:20:64:72:76: 0b:4e:41:b5:9e:8b:46:61:8c:f1:b1:1f:e8:25:59: ce:44:57:49:ce:6d:fd:f1:a2:6a:e3:51:cc:cd:b5: ab:ec:7e:fe:df:2e:ef:e2:2b:6e:d2:f6:b0:10:06: 1a:d3:7f:76:ec:76:f4:74:f2:7b:b7:43:2e:cf:3f: e0:10:57:2a:79:2c:3f:af:2b:46:1d:a0:d9:85:37: a5:7a:fe:33:18:6e:db:26:fd:c5:a3:16:31:36:22: 66:87:ad:5f:17:5e:e5:c8:64:14:48:84:27:63:7c: c9:8d:34:04:6b:fb:4d:07:8c:6b:6a:63:f7:6b:25: e9:f4:4b:b6:00:47:81:d7:c3:6e:1a:e9:04:e9:03: 33:d3:8a:e4:08:5d:4b:1c:42:23:7a:0c:b8:07:77: b3:8b:57:e1:0f:da:ac:16:c0:8d:82:9a:0a:13:93: 76:37:9a:c9:1f:3c:87:74:2b:87:ca:84:8d:ae:34: 75:21:5c:96:99:74:a0:99:86:10:37:d3:7e:68:a5: cc:41:e4:8a:e4:a8:22:96:00:f9:ea:99:8c:f9:e1: a4:b1:0a:7d:79:d9:7b:dc:69:56:5a:45:b5:49:e6: 03:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B3:02:94:57:39:5E:EA:F1:C5:32:B7:B2:F5:2C:E9:F6:8C:A1:07 X509v3 Authority Key Identifier: keyid:E1:82:F9:93:69:52:C4:26:9D:67:0D:A5:75:2D:EC:C8:68:23:4F:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YL5k2lSxCadZw2ldS3syGgjTxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126F2B/90FADEECD5CD11E5AA426E40C4F9AE02/4YL5k2lSxCadZw2ldS3syGgjTxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:d9:75:9c:e6:86:58:ad:1c:15:ce:8d:92:a0:27:b8:3e:1c: 91:63:13:bc:6f:0a:c0:88:18:e7:73:17:3f:2e:07:3b:47:8e: 05:71:5f:26:5e:c6:49:e9:c0:6d:d2:8b:23:78:a3:7f:39:b9: e0:e2:eb:6a:ca:5f:cb:a3:f5:8e:4c:97:c1:9c:22:ea:9d:af: d7:ad:f4:f0:6a:16:6e:ef:bb:fa:5d:8f:00:60:57:d7:18:0a: 5f:a6:f6:3d:ec:e6:dc:b4:79:e8:21:88:d5:c5:10:c8:5a:63: 28:92:ac:72:1b:42:44:ce:5e:fe:2d:96:f9:79:84:67:22:69: 8a:70:69:63:7a:e9:23:b7:3e:1c:13:74:84:b2:47:e3:66:27: 0a:4e:b1:4f:6d:5a:28:2b:20:68:e3:1c:6c:a5:74:6c:ee:94: 9f:f7:48:05:59:32:89:e0:d1:59:c4:cc:fd:db:68:db:61:1c: 52:9a:32:7f:4d:1f:96:51:60:a0:73:fd:1e:43:71:c9:16:14: ce:5f:58:2d:86:dd:6d:b4:07:10:ea:d2:0a:03:8e:52:a6:b3: 88:d1:10:c1:ce:94:7b:1b:4b:49:3c:d0:56:3c:f1:b5:dd:9b: ac:ad:9c:e3:66:1c:95:ca:3c:68:6e:8e:45:ae:49:89:fa:7a: f3:d5:80:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICId4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZGMkIxMTAvBgNVBAUTKEUxODJGOTkzNjk1MkM0MjY5RDY3MERBNTc1MkRFQ0M4 NjgyMzRGMUIwHhcNMjUwNzAyMTYwMDM1WhcNMjUwNzA5MTYwMDM1WjAYMRYwFAYD VQQDEw02ODY1NTdhMy1hMGNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteTnq2NmVrJSgWOxjQV+/W1dKmJwGAN5/iBkcnYLTkG1notGYYzxsR/oJVnO RFdJzm398aJq41HMzbWr7H7+3y7v4itu0vawEAYa03927Hb0dPJ7t0Muzz/gEFcq eSw/rytGHaDZhTelev4zGG7bJv3FoxYxNiJmh61fF17lyGQUSIQnY3zJjTQEa/tN B4xramP3ayXp9Eu2AEeB18NuGukE6QMz04rkCF1LHEIjegy4B3ezi1fhD9qsFsCN gpoKE5N2N5rJHzyHdCuHyoSNrjR1IVyWmXSgmYYQN9N+aKXMQeSK5KgilgD56pmM +eGksQp9edl73GlWWkW1SeYDKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFESzApRX OV7q8cUyt7L1LOn2jKEHMB8GA1UdIwQYMBaAFOGC+ZNpUsQmnWcNpXUt7MhoI08b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkYyQi85MEZBREVFQ0Q1 Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hDYWRadzJsZFMzc3lHZ2pU eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTDVrMmxTeENhZFp3MmxkUzNzeUdnalR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NkYyQi85MEZBREVFQ0Q1Q0QxMUU1QUE0MjZFNDBDNEY5QUUwMi80WUw1azJsU3hD YWRadzJsZFMzc3lHZ2pUeHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA42XWc5oZYrRwVzo2SoCe4PhyRYxO8bwrAiBjncxc/Lgc7R44FcV8m XsZJ6cBt0osjeKN/Obng4utqyl/Lo/WOTJfBnCLqna/XrfTwahZu77v6XY8AYFfX GApfpvY97ObctHnoIYjVxRDIWmMokqxyG0JEzl7+LZb5eYRnImmKcGljeukjtz4c E3SEskfjZicKTrFPbVooKyBo4xxspXRs7pSf90gFWTKJ4NFZxMz922jbYRxSmjJ/ TR+WUWCgc/0eQ3HJFhTOX1gtht1ttAcQ6tIKA45SprOI0RDBzpR7G0tJPNBWPPG1 3ZusrZzjZhyVyjxobo5FrkmJ+nrz1YBG -----END CERTIFICATE-----Generated at Thu Jul 3 17:34:49 2025 by rpki-client