$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: Rk79QzpHcWuFBz2Kz7JoZtpFcljD6nu8a2b3AclI4f0= Subject key identifier: 84:E6:89:33:F8:69:B4:00:58:5B:D3:55:B6:8C:C1:19:55:CD:FE:B2 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0AF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0AF3 Signing time: Fri 22 Aug 2025 19:30:05 +0000 Manifest this update: Fri 22 Aug 2025 19:30:04 +0000 Manifest next update: Fri 29 Aug 2025 19:30:04 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: hieINfJtI6AOsh3wbZYnlh6WtDjUQ5l/6TJxDXdwavY=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Aug 22 19:30:04 2025 GMT Not After : Aug 29 19:30:04 2025 GMT Subject: CN=68a8c53c-89af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:37:70:5e:f7:7c:f5:25:6b:76:36:64:b6:5d: 3e:c8:69:48:29:23:94:39:84:5d:64:37:87:83:1d: c9:58:65:2c:ec:e5:a9:44:d3:fb:55:9b:23:8e:96: 94:d4:a9:71:7a:1b:03:e0:27:fe:5d:65:60:e9:e1: 6e:35:0b:8f:46:7c:9f:be:da:23:b0:fa:d0:fc:d9: 5f:7d:c3:a8:f9:63:06:f2:a7:9c:74:e4:58:86:be: 8d:6a:86:a6:f6:41:1a:59:4d:5c:11:42:a1:89:29: 3d:7f:96:42:f2:92:d5:99:7a:cd:38:c0:80:b2:41: 1a:8c:ec:0b:da:5f:a6:b3:0a:99:83:4e:3b:d9:49: e4:02:cb:b9:d9:32:6d:55:c0:87:7f:8d:6d:1b:6c: a0:37:60:0d:80:d7:9f:27:e1:86:4f:68:06:ee:e1: 65:18:14:e9:c8:f6:6f:1c:56:23:91:6a:ec:cb:c1: 97:1a:f1:b2:d0:e5:50:cb:91:8d:dc:40:0c:dc:c2: 0d:d1:d0:84:bb:9c:ce:aa:88:40:a4:35:cc:86:f8: 02:41:6b:9b:25:da:cf:6a:9e:4f:54:a8:05:4f:0b: 4d:23:8d:cc:92:d0:3e:b1:66:c0:3c:eb:a0:30:3c: a3:0a:4b:34:99:e1:0d:11:7c:a8:41:89:c9:05:19: 2a:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:E6:89:33:F8:69:B4:00:58:5B:D3:55:B6:8C:C1:19:55:CD:FE:B2 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:dc:9f:6e:50:3f:d7:7e:37:bb:8a:76:5f:73:90:41:0c:03: 1c:c6:db:be:c2:41:26:30:fe:90:79:fe:c9:2b:bd:7d:aa:56: d4:92:ea:90:2a:87:48:15:b9:77:3f:9a:16:e5:92:41:5c:7a: 2b:fc:e9:83:23:62:4b:40:c4:4c:cd:10:ec:d5:ff:fd:f8:2d: f2:e7:78:d1:7e:66:d1:f6:60:ed:b3:a1:cc:29:1a:af:ad:52: 68:ca:d0:0d:ab:16:2c:52:dc:92:af:8d:60:79:eb:8b:6d:bc: 5d:37:f9:56:58:29:5a:75:f8:23:e4:38:15:aa:cd:33:a6:c2: 98:5e:6c:91:89:28:96:26:0b:fd:ba:8a:5a:01:dd:75:b9:44: 29:9d:8b:2e:e1:10:da:aa:da:e9:e8:40:16:80:c0:7e:18:a4: d7:ce:43:0b:13:8b:23:02:26:63:b2:0b:b1:fa:c0:b4:d6:60: 20:a6:99:bd:e5:c7:2b:24:cf:c8:aa:82:50:10:4c:1c:61:02: 16:06:a6:b8:16:e5:5d:3d:e5:7a:b1:a4:f0:6b:7e:83:7d:ca: 92:be:cb:66:2c:ba:2a:ba:65:1b:32:cb:0a:0c:4b:66:67:d7: 6b:e8:df:26:51:55:c9:5b:7c:ed:08:9e:e6:c5:3a:1a:25:ad: 56:79:11:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwODIyMTkzMDA0WhcNMjUwODI5MTkzMDA0WjAYMRYwFAYD VQQDEw02OGE4YzUzYy04OWFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTdwXvd89SVrdjZktl0+yGlIKSOUOYRdZDeHgx3JWGUs7OWpRNP7VZsjjpaU 1KlxehsD4Cf+XWVg6eFuNQuPRnyfvtojsPrQ/NlffcOo+WMG8qecdORYhr6Naoam 9kEaWU1cEUKhiSk9f5ZC8pLVmXrNOMCAskEajOwL2l+mswqZg0472UnkAsu52TJt VcCHf41tG2ygN2ANgNefJ+GGT2gG7uFlGBTpyPZvHFYjkWrsy8GXGvGy0OVQy5GN 3EAM3MIN0dCEu5zOqohApDXMhvgCQWubJdrPap5PVKgFTwtNI43MktA+sWbAPOug MDyjCks0meENEXyoQYnJBRkqowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFITmiTP4 abQAWFvTVbaMwRlVzf6yMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW3J9uUD/Xfje7inZfc5BBDAMcxtu+wkEmMP6Qef7JK719qlbUkuqQ KodIFbl3P5oW5ZJBXHor/OmDI2JLQMRMzRDs1f/9+C3y53jRfmbR9mDts6HMKRqv rVJoytANqxYsUtySr41geeuLbbxdN/lWWCladfgj5DgVqs0zpsKYXmyRiSiWJgv9 uopaAd11uUQpnYsu4RDaqtrp6EAWgMB+GKTXzkMLE4sjAiZjsgux+sC01mAgppm9 5ccrJM/IqoJQEEwcYQIWBqa4FuVdPeV6saTwa36DfcqSvstmLLoqumUbMssKDEtm Z9dr6N8mUVXJW3ztCJ7mxToaJa1WeRHs -----END CERTIFICATE-----Generated at Sat Aug 23 21:33:15 2025 by rpki-client