$ rpki-client -vvf rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft File: R4tJDpOd3d8hrKx4y5MZinuBRIU.mft (raw, json) Hash identifier: cVV8Qua99TnV2TlgeVCgOC0wslCS0hIpN2Tz58PDbog= Subject key identifier: 16:F8:0C:75:0F:CE:8E:81:96:15:6F:D0:1A:5D:A9:29:7C:77:F0:4B Authority key identifier: 47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85 Certificate issuer: /CN=A91427E2/serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485 Certificate serial: 84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft Manifest number: 83 Signing time: Sat 05 Jul 2025 06:57:29 +0000 Manifest this update: Sat 05 Jul 2025 06:57:29 +0000 Manifest next update: Sat 12 Jul 2025 06:57:29 +0000 Files and hashes: 1: R4tJDpOd3d8hrKx4y5MZinuBRIU.crl (hash: Ejs9mGUysdOr4tVo8Fv33H63+fBRgtDKkmGMDBcci20=) 2: 534DAEB2935111EF98AA8C86C4F9AE02.roa (hash: uOl4+NzZB6fPlXrYszF0PeNPfsE4Pp9BL5TML7ATF7Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91427E2, serialNumber=478B490E939DDDDF21ACAC78CB93198A7B814485 Validity Not Before: Jul 5 06:57:29 2025 GMT Not After : Jul 12 06:57:29 2025 GMT Subject: CN=6868ccd9-8689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:78:d1:0e:3c:fa:b2:5a:28:36:20:63:18:dd: dc:d3:91:33:3c:fb:f3:5c:cc:40:ef:72:c6:fb:42: a3:ea:f7:34:3f:bc:60:ce:7a:69:8e:d2:d5:c9:b9: cf:17:ef:09:e1:7d:4c:10:76:ae:5e:12:66:79:0a: ae:28:b5:89:c0:fa:cd:83:ff:1f:f9:01:09:4a:52: 31:f0:da:4d:f4:ba:01:ce:e3:19:b2:1c:e6:83:4d: 0c:26:18:6d:0e:6e:d6:32:72:16:b8:1d:06:bd:e5: 6e:23:1f:d9:d2:fc:c9:bf:34:2c:3e:ca:87:24:ca: 7f:7a:c7:95:19:ea:38:30:80:2c:12:e9:23:14:09: 22:d2:81:17:f8:39:14:a4:f1:17:39:89:4c:6f:ce: 6d:3d:aa:3f:03:d8:0c:bd:15:95:09:ca:64:f3:83: 45:57:be:b7:5d:ae:aa:c0:67:c0:9d:45:70:94:50: 50:1e:67:49:3d:72:be:09:68:bf:64:b4:ab:63:d8: bd:93:fd:1e:46:ca:e5:c2:4d:b4:2b:3d:7e:d2:aa: 51:3a:d1:e0:0a:9d:0c:bc:6d:93:ab:17:8d:c1:40: c0:f3:99:eb:4a:f2:74:f5:42:cc:af:3f:4f:ac:60: 02:f4:85:79:7f:d7:31:bb:25:f9:41:83:78:8d:22: 8a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:F8:0C:75:0F:CE:8E:81:96:15:6F:D0:1A:5D:A9:29:7C:77:F0:4B X509v3 Authority Key Identifier: keyid:47:8B:49:0E:93:9D:DD:DF:21:AC:AC:78:CB:93:19:8A:7B:81:44:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4tJDpOd3d8hrKx4y5MZinuBRIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91427E2/783DFBC4935011EFBACE004CC4F9AE02/R4tJDpOd3d8hrKx4y5MZinuBRIU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:64:bf:49:79:2f:0d:5c:68:55:35:6d:ba:08:83:79:62:f9: 1d:53:eb:e7:ab:1e:f1:d1:89:88:a5:fc:20:ee:15:dc:d2:d2: d1:fb:13:f9:69:48:d3:ba:ca:f1:46:e8:d2:6a:dd:bf:52:5f: 49:25:36:c3:b0:94:e3:ce:3e:8b:4b:03:5c:6a:7d:6a:68:cf: ef:e5:aa:fd:d8:aa:b2:6d:41:fe:30:a1:0b:5a:67:e1:18:03: 57:2e:0c:5c:ee:85:be:97:e2:ec:27:e2:b1:d1:1c:3c:3e:6b: b3:52:5f:bf:08:08:38:32:43:68:53:36:f5:f4:90:92:9a:0a: 0a:2d:bc:ee:98:b5:7b:28:57:2f:d2:ab:5c:2e:62:6b:8b:46: 4f:ea:d5:ba:a2:56:a2:0c:dc:c5:94:4c:c0:88:70:3f:d7:dc: e3:2f:71:a0:01:18:61:c0:62:f7:b6:be:7e:b0:6b:2c:a9:cd: ba:53:93:ae:1c:85:7c:15:82:7e:3e:8a:dd:51:c9:3e:29:5d: 0b:7c:c0:b1:0c:da:c3:fe:0e:c5:0a:6b:5c:9c:f9:c6:85:b9: 26:b6:0f:13:f1:88:a9:7d:2c:4b:d1:b2:3e:08:85:f1:e2:1b: 68:33:40:4f:7b:a2:6b:8f:d1:26:da:b1:34:38:14:ab:62:66: 07:fb:45:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3RTIxMTAvBgNVBAUTKDQ3OEI0OTBFOTM5REREREYyMUFDQUM3OENCOTMxOThB N0I4MTQ0ODUwHhcNMjUwNzA1MDY1NzI5WhcNMjUwNzEyMDY1NzI5WjAYMRYwFAYD VQQDEw02ODY4Y2NkOS04Njg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3njRDjz6slooNiBjGN3c05EzPPvzXMxA73LG+0Kj6vc0P7xgznppjtLVybnP F+8J4X1MEHauXhJmeQquKLWJwPrNg/8f+QEJSlIx8NpN9LoBzuMZshzmg00MJhht Dm7WMnIWuB0GveVuIx/Z0vzJvzQsPsqHJMp/eseVGeo4MIAsEukjFAki0oEX+DkU pPEXOYlMb85tPao/A9gMvRWVCcpk84NFV763Xa6qwGfAnUVwlFBQHmdJPXK+CWi/ ZLSrY9i9k/0eRsrlwk20Kz1+0qpROtHgCp0MvG2TqxeNwUDA85nrSvJ09ULMrz9P rGAC9IV5f9cxuyX5QYN4jSKKpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBb4DHUP zo6BlhVv0BpdqSl8d/BLMB8GA1UdIwQYMBaAFEeLSQ6Tnd3fIayseMuTGYp7gUSF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjdFMi83ODNERkJDNDkz NTAxMUVGQkFDRTAwNENDNEY5QUUwMi9SNHRKRHBPZDNkOGhyS3g0eTVNWmludUJS SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0dEpEcE9kM2Q4aHJLeDR5NU1aaW51QlJJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjdFMi83ODNERkJDNDkzNTAxMUVGQkFDRTAwNENDNEY5QUUwMi9SNHRKRHBPZDNk OGhyS3g0eTVNWmludUJSSVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjZL9JeS8NXGhVNW26CIN5YvkdU+vnqx7x0YmIpfwg7hXc0tLR+xP5 aUjTusrxRujSat2/Ul9JJTbDsJTjzj6LSwNcan1qaM/v5ar92KqybUH+MKELWmfh GANXLgxc7oW+l+LsJ+Kx0Rw8PmuzUl+/CAg4MkNoUzb19JCSmgoKLbzumLV7KFcv 0qtcLmJri0ZP6tW6olaiDNzFlEzAiHA/19zjL3GgARhhwGL3tr5+sGssqc26U5Ou HIV8FYJ+PordUck+KV0LfMCxDNrD/g7FCmtcnPnGhbkmtg8T8YipfSxL0bI+CIXx 4htoM0BPe6Jrj9Em2rE0OBSrYmYH+0V7 -----END CERTIFICATE-----Generated at Sun Jul 6 09:36:41 2025 by rpki-client