$ rpki-client -vvf rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft File: 4XM7lw_d92f_GVQoQ34SQqN2knc.mft (raw, json) Hash identifier: UcpYwHHHWmBlgoaef0gjAboWYzUkCCjV1dQhGpHGbkk= Subject key identifier: D6:AE:63:5C:16:0A:86:D2:BC:E8:55:2C:E7:55:97:68:FB:8A:DD:A4 Authority key identifier: E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 Certificate issuer: /CN=A912E5CB/serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Certificate serial: 0200 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft Manifest number: 01FD Signing time: Sat 23 Aug 2025 02:28:37 +0000 Manifest this update: Sat 23 Aug 2025 02:28:36 +0000 Manifest next update: Sat 30 Aug 2025 02:28:36 +0000 Files and hashes: 1: 4XM7lw_d92f_GVQoQ34SQqN2knc.crl (hash: zQDgeLfNEVm5FR2pTDDRGRFuHSCnoFswg9hA5OwpTEc=) 2: 5FF4FD52704C11ED97935E7DC4F9AE02.roa (hash: C5+qR+xwM5riTT+23t/1tPZQq66L4etzO1hAZvNu09M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E5CB, serialNumber=E1733B970FDDF767FF195428437E1242A3769277 Validity Not Before: Aug 23 02:28:36 2025 GMT Not After : Aug 30 02:28:36 2025 GMT Subject: CN=68a92755-3d72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ab:11:e0:d9:b3:51:55:b0:d3:d8:ec:aa:87: fa:48:31:b1:48:7f:3e:03:d9:d5:be:96:88:45:b6: ec:04:4e:9e:e8:d3:b0:c4:8b:b4:b6:71:05:45:5f: f8:44:44:e1:11:c5:0d:08:ee:c3:c5:7c:ed:1a:40: dd:db:dc:e0:84:37:29:8e:61:24:52:ae:54:10:5b: 4a:9c:82:8c:d0:71:62:66:ec:cb:ef:d8:1f:01:5e: 60:73:0c:e5:e4:bd:73:91:df:27:82:02:9d:b1:86: c9:2c:11:28:55:6d:e3:c1:b8:6e:48:5a:23:43:e9: 29:41:58:42:b2:4b:5b:ec:5a:7e:c8:0d:80:78:4e: 69:f7:a4:d0:05:0b:97:af:22:1a:23:20:cd:33:02: cb:c0:dd:19:13:2b:bd:1d:b9:dc:83:ab:59:43:80: 67:71:f9:fb:6d:a0:07:52:32:b3:86:9f:56:49:66: 89:78:6b:9c:6a:af:14:08:29:d7:f7:59:0d:e9:03: 38:82:d5:ae:28:f2:8a:2c:2a:04:a1:6b:ee:ed:c4: 88:a6:bf:88:c5:42:eb:17:cd:96:b1:37:68:f0:41: 4a:28:2f:ee:5e:bc:5c:46:60:f9:fd:d3:bf:88:95: 28:b9:0e:99:b6:03:8e:7d:1e:d4:7d:24:37:d3:67: 0e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:AE:63:5C:16:0A:86:D2:BC:E8:55:2C:E7:55:97:68:FB:8A:DD:A4 X509v3 Authority Key Identifier: keyid:E1:73:3B:97:0F:DD:F7:67:FF:19:54:28:43:7E:12:42:A3:76:92:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4XM7lw_d92f_GVQoQ34SQqN2knc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E5CB/5288DCE0704911EDB6E1FB78C4F9AE02/4XM7lw_d92f_GVQoQ34SQqN2knc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:eb:d7:f6:1b:b6:5a:d6:de:3e:5e:56:09:d7:72:92:0f:f4: 9b:1d:c0:64:6a:78:27:09:36:45:74:dc:3a:cf:25:c8:ee:53: ab:8e:07:e2:25:6c:4d:e0:2b:b6:e6:7f:3a:f6:6d:ce:f0:14: 6e:72:46:ad:73:a7:a0:b4:ba:73:bf:c4:4e:d3:41:18:f4:85: b7:a2:ec:c8:65:e2:67:44:72:3b:71:27:10:2d:65:1e:db:29: 87:12:c4:cc:5a:71:6a:04:6f:b7:1e:23:66:0e:40:01:c4:7b: bc:72:b6:0d:a1:a5:11:31:9d:c8:47:66:10:48:d6:2f:8d:91: c2:38:a7:36:7b:d6:46:65:0c:0d:72:04:8b:8b:cc:cc:f3:78: 23:98:45:ca:4c:03:a3:70:4b:e8:9b:e2:90:55:89:cb:e9:e3: 84:77:84:86:b8:58:a4:9e:d7:e6:89:94:bf:a5:e3:75:6c:28: d5:1f:06:99:e4:2b:99:42:79:e5:54:9e:26:e8:3a:e5:9b:b4: d7:78:9c:b4:9b:10:09:b4:2e:cf:b5:01:b7:0f:cc:2b:ef:ab: 36:15:4e:38:76:e6:ae:a6:02:84:2b:85:5c:1e:28:46:a5:01: dd:9b:2f:b0:3f:c5:1d:12:c9:62:16:13:cb:54:e8:1e:7b:ed: 9f:cb:72:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1Q0IxMTAvBgNVBAUTKEUxNzMzQjk3MEZEREY3NjdGRjE5NTQyODQzN0UxMjQy QTM3NjkyNzcwHhcNMjUwODIzMDIyODM2WhcNMjUwODMwMDIyODM2WjAYMRYwFAYD VQQDEw02OGE5Mjc1NS0zZDcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwasR4NmzUVWw09jsqof6SDGxSH8+A9nVvpaIRbbsBE6e6NOwxIu0tnEFRV/4 REThEcUNCO7DxXztGkDd29zghDcpjmEkUq5UEFtKnIKM0HFiZuzL79gfAV5gcwzl 5L1zkd8nggKdsYbJLBEoVW3jwbhuSFojQ+kpQVhCsktb7Fp+yA2AeE5p96TQBQuX ryIaIyDNMwLLwN0ZEyu9Hbncg6tZQ4Bncfn7baAHUjKzhp9WSWaJeGucaq8UCCnX 91kN6QM4gtWuKPKKLCoEoWvu7cSIpr+IxULrF82WsTdo8EFKKC/uXrxcRmD5/dO/ iJUouQ6ZtgOOfR7UfSQ302cOYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNauY1wW CobSvOhVLOdVl2j7it2kMB8GA1UdIwQYMBaAFOFzO5cP3fdn/xlUKEN+EkKjdpJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTVDQi81Mjg4RENFMDcw NDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDkyZl9HVlFvUTM0U1FxTjJr bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRYTTdsd19kOTJmX0dWUW9RMzRTUXFOMmtuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTVDQi81Mjg4RENFMDcwNDkxMUVEQjZFMUZCNzhDNEY5QUUwMi80WE03bHdfZDky Zl9HVlFvUTM0U1FxTjJrbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu69f2G7Za1t4+XlYJ13KSD/SbHcBkangnCTZFdNw6zyXI7lOrjgfi JWxN4Cu25n869m3O8BRuckatc6egtLpzv8RO00EY9IW3ouzIZeJnRHI7cScQLWUe 2ymHEsTMWnFqBG+3HiNmDkABxHu8crYNoaURMZ3IR2YQSNYvjZHCOKc2e9ZGZQwN cgSLi8zM83gjmEXKTAOjcEvom+KQVYnL6eOEd4SGuFikntfmiZS/peN1bCjVHwaZ 5CuZQnnlVJ4m6Drlm7TXeJy0mxAJtC7PtQG3D8wr76s2FU44duaupgKEK4VcHihG pQHdmy+wP8UdEsliFhPLVOgee+2fy3La -----END CERTIFICATE-----Generated at Sat Aug 23 19:12:42 2025 by rpki-client