$ rpki-client -vvf rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft File: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft (raw, json) Hash identifier: iXoDhDcIWBRhkNnOu41HKI7ppchbyauQw9ZQFAZHotw= Subject key identifier: 18:6C:B5:63:77:67:27:3F:EE:1D:1A:E6:75:87:AE:6B:89:5A:55:65 Authority key identifier: E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F Certificate issuer: /CN=A91471DA/serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Certificate serial: 0527 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft Manifest number: 0524 Signing time: Fri 22 Aug 2025 23:44:42 +0000 Manifest this update: Fri 22 Aug 2025 23:44:41 +0000 Manifest next update: Fri 29 Aug 2025 23:44:41 +0000 Files and hashes: 1: 4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl (hash: vEtFYv31yljG0JY9FCgKANHLS+mCQuuVXak/bHWiDLc=) 2: 914E7A440FE611EC8DD2020EC4F9AE02.roa (hash: +BX7RaNNlsglW/BB60o8n67yb/21GqaNOP3+xpToWWc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91471DA, serialNumber=E24D09541062C608BE363FF619CCB8444DDC3C2F Validity Not Before: Aug 22 23:44:41 2025 GMT Not After : Aug 29 23:44:41 2025 GMT Subject: CN=68a900e9-3c61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e7:9d:fb:e1:29:63:8c:13:7c:8c:21:6c:9c: 46:b4:34:e9:6f:01:44:35:05:08:9d:57:d6:25:8c: 6b:f9:4d:b7:9a:94:86:d7:46:cf:7b:e7:75:a7:49: 76:06:46:54:4e:b2:99:52:15:83:3e:19:02:d6:d8: 7f:ff:5a:bb:ea:0c:c7:29:72:41:a0:9d:ad:9f:8d: 3a:0f:ec:68:04:ab:0d:6e:23:ee:bb:42:80:5e:74: 32:20:38:01:a9:f1:31:91:ef:7a:4c:0f:cd:14:a2: 78:12:00:02:14:32:ec:bd:31:79:ba:42:6c:1d:0b: 69:a7:c4:f5:0e:0e:de:d3:a6:1d:28:fd:05:e2:e7: 06:36:bf:5e:2c:be:cc:f9:c9:d2:c4:e9:a5:aa:1e: 2b:74:65:ec:3e:8b:84:24:c8:7a:c1:82:fd:15:63: 2e:79:ce:97:26:6c:84:db:e2:9d:6f:51:a2:79:aa: cf:9d:5e:b3:c0:91:d1:fa:ff:df:07:aa:9b:c7:2d: cb:1d:41:b3:c4:5d:10:9a:44:86:8c:36:58:8e:43: 61:3e:01:02:dc:cd:09:c5:41:3f:7e:15:65:7d:f6: e7:96:63:23:f8:3b:2b:3b:e7:f7:3b:51:76:db:5b: 88:69:8b:8d:20:7a:83:ee:62:98:fc:21:35:66:70: cd:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:6C:B5:63:77:67:27:3F:EE:1D:1A:E6:75:87:AE:6B:89:5A:55:65 X509v3 Authority Key Identifier: keyid:E2:4D:09:54:10:62:C6:08:BE:36:3F:F6:19:CC:B8:44:4D:DC:3C:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91471DA/51D579480FE211ECA4DDC909C4F9AE02/4k0JVBBixgi-Nj_2Gcy4RE3cPC8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:9a:e5:c5:78:f4:09:69:b7:e6:5e:c0:2b:3a:38:1a:d7:ca: e7:04:a7:b2:76:72:07:a5:24:a3:29:5d:8d:aa:9d:3f:55:93: cb:07:71:2f:54:14:ce:e1:d2:ea:68:bf:8d:2e:db:0d:de:a0: 4d:6a:ef:0e:0a:40:05:da:97:96:89:24:d2:38:15:59:58:e1: cb:e3:9e:69:84:70:40:fa:eb:e9:6c:2d:0d:69:ff:1d:68:7a: 6d:50:fe:79:6f:59:4d:82:dc:d9:22:1a:f6:b3:7b:13:a7:b3: d7:81:31:c8:a9:28:4f:08:ec:79:5a:13:da:35:f0:81:30:2b: 8d:95:b4:ed:56:e3:b2:ae:6b:d2:6d:d0:2e:98:9b:5e:82:5d: 5a:20:c4:b5:c4:81:fc:a6:15:ea:5c:a7:54:98:16:85:a9:67: 11:41:bd:04:a2:cb:fc:df:b5:ed:e7:6a:bf:5f:55:ad:16:cb: 43:70:d0:4a:ad:dc:a7:29:00:84:3a:cc:bc:a9:03:e0:35:85: b8:2e:bc:96:49:0e:ed:41:57:7d:70:48:3c:53:d4:4f:fa:3f: 10:d1:ab:43:77:dc:e0:10:a9:ac:d2:d8:d6:b1:90:00:9a:a3: dc:a1:22:44:25:e1:eb:18:86:44:f0:63:c9:a9:41:50:85:7c: 30:38:51:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcxREExMTAvBgNVBAUTKEUyNEQwOTU0MTA2MkM2MDhCRTM2M0ZGNjE5Q0NCODQ0 NEREQzNDMkYwHhcNMjUwODIyMjM0NDQxWhcNMjUwODI5MjM0NDQxWjAYMRYwFAYD VQQDEw02OGE5MDBlOS0zYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOed++EpY4wTfIwhbJxGtDTpbwFENQUInVfWJYxr+U23mpSG10bPe+d1p0l2 BkZUTrKZUhWDPhkC1th//1q76gzHKXJBoJ2tn406D+xoBKsNbiPuu0KAXnQyIDgB qfExke96TA/NFKJ4EgACFDLsvTF5ukJsHQtpp8T1Dg7e06YdKP0F4ucGNr9eLL7M +cnSxOmlqh4rdGXsPouEJMh6wYL9FWMuec6XJmyE2+Kdb1GiearPnV6zwJHR+v/f B6qbxy3LHUGzxF0QmkSGjDZYjkNhPgEC3M0JxUE/fhVlffbnlmMj+DsrO+f3O1F2 21uIaYuNIHqD7mKY/CE1ZnDNpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBhstWN3 Zyc/7h0a5nWHrmuJWlVlMB8GA1UdIwQYMBaAFOJNCVQQYsYIvjY/9hnMuERN3Dwv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzFEQS81MUQ1Nzk0ODBG RTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhnaS1Oal8yR2N5NFJFM2NQ QzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrMEpWQkJpeGdpLU5qXzJHY3k0UkUzY1BDOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzFEQS81MUQ1Nzk0ODBGRTIxMUVDQTREREM5MDlDNEY5QUUwMi80azBKVkJCaXhn aS1Oal8yR2N5NFJFM2NQQzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFmuXFePQJabfmXsArOjga18rnBKeydnIHpSSjKV2Nqp0/VZPLB3Ev VBTO4dLqaL+NLtsN3qBNau8OCkAF2peWiSTSOBVZWOHL455phHBA+uvpbC0Naf8d aHptUP55b1lNgtzZIhr2s3sTp7PXgTHIqShPCOx5WhPaNfCBMCuNlbTtVuOyrmvS bdAumJtegl1aIMS1xIH8phXqXKdUmBaFqWcRQb0Eosv837Xt52q/X1WtFstDcNBK rdynKQCEOsy8qQPgNYW4LryWSQ7tQVd9cEg8U9RP+j8Q0atDd9zgEKms0tjWsZAA mqPcoSJEJeHrGIZE8GPJqUFQhXwwOFH0 -----END CERTIFICATE-----Generated at Sun Aug 24 03:07:53 2025 by rpki-client