$ rpki-client -vvf rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft File: 4_FvnXPM7iaTkVokT0S1U6TbPcw.mft (raw, json) Hash identifier: yy0WN7ZiUiVyP5Ko5C5Go8JCMC98G34VBSS6x+QwTL8= Subject key identifier: D8:BE:0A:5E:13:F4:71:48:D6:A7:A6:DA:ED:A8:14:0A:75:F4:86:92 Authority key identifier: E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC Certificate issuer: /CN=A9145B13/serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Certificate serial: 6E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft Manifest number: 6D Signing time: Thu 03 Jul 2025 07:09:16 +0000 Manifest this update: Thu 03 Jul 2025 07:09:16 +0000 Manifest next update: Thu 10 Jul 2025 07:09:16 +0000 Files and hashes: 1: 4_FvnXPM7iaTkVokT0S1U6TbPcw.crl (hash: lyqcp57iY1QKeUizH/isi0c9/IoNDTvl2I3ejeaLyF8=) 2: 05E4CBECB12911EF993BC12DC4F9AE02.roa (hash: 6bS2IOUFxNL/dxgXXkv7hlgTjA3VB1/wSeyQ+zl4/9o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145B13, serialNumber=E3F16F9D73CCEE2693915A244F44B553A4DB3DCC Validity Not Before: Jul 3 07:09:16 2025 GMT Not After : Jul 10 07:09:16 2025 GMT Subject: CN=68662c9c-f589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6f:ca:d7:2c:20:b1:f4:f2:f3:6d:8b:f1:4b: bc:2e:55:0b:f3:a1:4a:71:89:64:c6:d2:cf:25:7c: 8f:5e:7b:74:4b:4b:2d:a0:36:3f:e2:05:61:17:e1: 1e:92:2a:b1:5d:32:46:37:2f:39:04:e6:dd:d0:0c: 81:48:66:1c:c1:a5:a6:92:ac:9b:7a:32:ba:28:22: 53:cb:03:e1:08:52:c2:5d:5a:24:2e:88:5a:fb:5b: c6:16:30:d9:0e:cd:fa:d2:d8:7b:8b:2b:1b:43:43: 97:14:b1:8e:de:55:1e:17:8c:e4:a6:94:a1:3d:65: 02:11:3d:ef:9c:d8:43:86:f5:c4:40:b8:71:d9:cc: 6e:e5:f4:ef:79:94:8d:16:fb:d1:66:ea:63:17:93: 3d:63:86:d6:8a:e3:25:cd:cc:20:cb:5d:87:72:34: 0e:1c:cb:bc:21:7b:fb:b0:18:94:ce:8f:9d:85:4c: f1:b3:af:42:c5:08:f4:c5:26:be:3c:a2:10:dc:5d: 6f:40:14:4b:d4:a4:22:8a:72:fb:6e:e2:be:34:49: 5d:8f:50:3b:10:7d:b5:47:59:91:c0:6e:0c:76:8d: 35:87:13:cb:80:bd:45:2b:ec:61:25:00:40:3a:15: 31:64:23:11:40:17:dc:dd:cf:c0:ec:c1:bb:26:f8: 85:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BE:0A:5E:13:F4:71:48:D6:A7:A6:DA:ED:A8:14:0A:75:F4:86:92 X509v3 Authority Key Identifier: keyid:E3:F1:6F:9D:73:CC:EE:26:93:91:5A:24:4F:44:B5:53:A4:DB:3D:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4_FvnXPM7iaTkVokT0S1U6TbPcw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145B13/4637FBF2B12811EFB750A52BC4F9AE02/4_FvnXPM7iaTkVokT0S1U6TbPcw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:bc:ea:4b:98:c8:a5:17:e5:57:45:9d:77:12:33:74:51:f9: 3f:f4:fa:37:58:3c:b2:b9:0e:7e:8b:54:64:0c:cf:4c:38:fb: 85:d5:4b:cb:f9:54:d6:60:56:54:fb:55:56:39:d1:ca:20:48: b3:3e:a9:46:06:7c:03:71:09:6a:c4:2a:73:82:a7:17:5d:3f: 35:b9:93:5d:d8:e7:5b:d4:ff:20:57:1d:0d:36:0b:75:72:ef: 55:73:15:50:07:de:8b:07:b0:25:a5:3d:0b:6c:45:88:ac:96: 2c:7d:6f:cd:95:59:b0:eb:84:a8:28:1c:26:70:88:7b:c5:91: 58:cb:bf:85:e0:85:f1:cd:14:81:6a:bb:a2:bd:8a:56:c2:11: 0a:aa:09:08:76:06:02:ec:b4:32:a7:c3:b0:4b:38:cd:e9:9a: d9:98:32:3c:cf:33:d5:ef:7c:01:b8:da:fa:dc:a2:47:b8:35: 59:30:7b:c5:82:5b:9b:e2:30:bf:99:d0:37:26:3c:ac:12:9e: 61:f3:71:fc:07:cb:ba:a7:2b:ab:f7:d5:8d:82:df:94:7e:f7: 30:84:33:90:5b:93:46:4b:ed:71:92:7e:f6:9b:2a:67:7d:a2: b4:e2:03:33:58:d2:66:f8:83:2e:f6:df:ea:8d:ef:05:26:fe: f1:f0:5b:59 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUIxMzExMC8GA1UEBRMoRTNGMTZGOUQ3M0NDRUUyNjkzOTE1QTI0NEY0NEI1NTNB NERCM0RDQzAeFw0yNTA3MDMwNzA5MTZaFw0yNTA3MTAwNzA5MTZaMBgxFjAUBgNV BAMTDTY4NjYyYzljLWY1ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6b8rXLCCx9PLzbYvxS7wuVQvzoUpxiWTG0s8lfI9ee3RLSy2gNj/iBWEX4R6S KrFdMkY3LzkE5t3QDIFIZhzBpaaSrJt6MrooIlPLA+EIUsJdWiQuiFr7W8YWMNkO zfrS2HuLKxtDQ5cUsY7eVR4XjOSmlKE9ZQIRPe+c2EOG9cRAuHHZzG7l9O95lI0W +9Fm6mMXkz1jhtaK4yXNzCDLXYdyNA4cy7whe/uwGJTOj52FTPGzr0LFCPTFJr48 ohDcXW9AFEvUpCKKcvtu4r40SV2PUDsQfbVHWZHAbgx2jTWHE8uAvUUr7GElAEA6 FTFkIxFAF9zdz8Dswbsm+IUdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU2L4KXhP0 cUjWp6ba7agUCnX0hpIwHwYDVR0jBBgwFoAU4/FvnXPM7iaTkVokT0S1U6TbPcww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1QjEzLzQ2MzdGQkYyQjEy ODExRUZCNzUwQTUyQkM0RjlBRTAyLzRfRnZuWFBNN2lhVGtWb2tUMFMxVTZUYlBj dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNF9Gdm5YUE03aWFUa1Zva1QwUzFVNlRiUGN3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 QjEzLzQ2MzdGQkYyQjEyODExRUZCNzUwQTUyQkM0RjlBRTAyLzRfRnZuWFBNN2lh VGtWb2tUMFMxVTZUYlBjdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHG86kuYyKUX5VdFnXcSM3RR+T/0+jdYPLK5Dn6LVGQMz0w4+4XVS8v5 VNZgVlT7VVY50cogSLM+qUYGfANxCWrEKnOCpxddPzW5k13Y51vU/yBXHQ02C3Vy 71VzFVAH3osHsCWlPQtsRYislix9b82VWbDrhKgoHCZwiHvFkVjLv4XghfHNFIFq u6K9ilbCEQqqCQh2BgLstDKnw7BLOM3pmtmYMjzPM9XvfAG42vrcoke4NVkwe8WC W5viML+Z0DcmPKwSnmHzcfwHy7qnK6v31Y2C35R+9zCEM5Bbk0ZL7XGSfvabKmd9 orTiAzNY0mb4gy723+qN7wUm/vHwW1k= -----END CERTIFICATE-----Generated at Fri Jul 4 08:45:07 2025 by rpki-client