$ rpki-client -vvf rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft File: 4QZLtgGhMQh2G1RXofcVJMSky84.mft (raw, json) Hash identifier: k7qLP7hrFz/U77oTFd9g3lZhJ3Rv9kdKXznztU2Vtjw= Subject key identifier: 63:CC:2E:41:B2:55:C8:BA:C1:33:42:96:00:37:EE:3C:78:B4:56:42 Authority key identifier: E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE Certificate issuer: /CN=A914B57F/serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Certificate serial: 0AE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft Manifest number: 0ADA Signing time: Fri 04 Jul 2025 19:46:16 +0000 Manifest this update: Fri 04 Jul 2025 19:46:16 +0000 Manifest next update: Fri 11 Jul 2025 19:46:16 +0000 Files and hashes: 1: 4QZLtgGhMQh2G1RXofcVJMSky84.crl (hash: GgRDKDNQReoBh+9E0DmcVJaylu/MD9MEjgCgNB1tlhE=) 2: 11685AAC4F0D11EAA161D143C4F9AE02.roa (hash: HpuZh21zVl0Ft40GZ9PsEwmlpNjswClEyYGJmu6x+ok=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2784 (0xae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B57F, serialNumber=E1064BB601A13108761B5457A1F71524C4A4CBCE Validity Not Before: Jul 4 19:46:16 2025 GMT Not After : Jul 11 19:46:16 2025 GMT Subject: CN=68682f88-6c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:07:b7:51:ff:47:f7:fc:4b:84:11:7e:68:07: fd:94:8c:93:4a:83:6b:62:49:f8:85:30:b4:3b:be: 54:5e:f1:ce:da:46:78:70:9f:a3:e8:9b:ad:ee:30: d0:de:9c:5c:db:68:0e:05:c9:84:74:03:d4:6e:f3: 08:69:9d:19:c7:b0:fc:0c:02:a6:63:77:f2:72:3c: 8d:64:7e:b7:0c:16:6d:8e:71:81:56:7f:ae:2a:43: 15:9e:a5:3b:1e:de:1b:e9:7e:bc:15:80:67:b5:e8: 71:31:ab:25:ef:9c:25:8c:56:bb:f2:02:1d:bf:a2: 62:0c:95:51:86:80:32:2c:90:a2:07:4c:ee:e9:53: 35:20:22:f4:f6:6f:1d:81:5b:4f:82:95:cf:31:c1: 61:da:a3:19:37:ed:8a:e1:16:e5:9e:f7:a4:4d:e3: 42:b9:d8:4d:4c:71:f3:16:6e:88:bd:b9:ca:96:4e: cc:ba:ff:c1:f5:b6:74:8c:a3:b3:b5:31:11:74:f1: fa:6b:ec:47:7d:2c:41:43:2a:1b:09:83:f7:f7:af: a3:28:31:39:2b:55:70:1d:d1:24:d5:1d:5c:f8:30: af:b8:40:4c:bf:de:cc:a9:82:53:64:fa:89:61:7e: 0f:5f:a9:db:bb:96:72:e6:0d:4b:34:70:08:3b:a9: 32:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CC:2E:41:B2:55:C8:BA:C1:33:42:96:00:37:EE:3C:78:B4:56:42 X509v3 Authority Key Identifier: keyid:E1:06:4B:B6:01:A1:31:08:76:1B:54:57:A1:F7:15:24:C4:A4:CB:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4QZLtgGhMQh2G1RXofcVJMSky84.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B57F/B2457D6A4E5911EA9EE9E20DC4F9AE02/4QZLtgGhMQh2G1RXofcVJMSky84.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:73:ab:9c:1e:fb:82:d7:ac:16:71:a6:17:de:a8:1c:03:57: b7:2d:e3:de:1e:bd:c4:df:f3:1b:68:b4:73:91:af:9c:69:1e: d0:0c:c2:33:e4:18:50:1c:46:eb:42:20:7e:8d:40:44:a8:4f: 6c:e3:69:5e:a9:c9:01:16:0e:89:1f:52:db:42:19:cb:00:5e: 6f:ef:af:84:3f:16:70:cd:7d:c6:8d:73:27:2e:60:af:68:ec: e8:93:61:22:a7:6f:92:48:03:7e:72:e0:ae:59:50:3d:e7:71: 40:a1:bd:a6:7c:a9:7c:ad:4d:71:31:08:06:46:3e:ab:33:73: 9a:59:b4:54:bc:23:94:02:5b:c5:bc:3e:1b:0c:a0:d0:81:33: 7a:d0:bb:40:35:92:e9:36:a2:71:e6:e5:45:2b:4a:2e:83:62: 9d:dc:53:90:e5:97:68:78:b8:0e:14:24:04:3e:47:c9:ec:69: fc:bb:8e:51:43:05:85:42:17:37:96:94:ee:de:b7:b3:dd:ca: 1c:df:9e:e5:32:b0:fb:4e:62:20:dd:13:90:d6:48:af:22:6c: fd:12:da:8f:8c:92:d3:23:02:dc:42:77:ac:99:8e:2b:35:06: 30:ba:bd:4e:93:d1:e5:c4:56:c8:f4:61:40:ab:05:1f:db:a0: ec:b8:ba:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1N0YxMTAvBgNVBAUTKEUxMDY0QkI2MDFBMTMxMDg3NjFCNTQ1N0ExRjcxNTI0 QzRBNENCQ0UwHhcNMjUwNzA0MTk0NjE2WhcNMjUwNzExMTk0NjE2WjAYMRYwFAYD VQQDEw02ODY4MmY4OC02YzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqge3Uf9H9/xLhBF+aAf9lIyTSoNrYkn4hTC0O75UXvHO2kZ4cJ+j6Jut7jDQ 3pxc22gOBcmEdAPUbvMIaZ0Zx7D8DAKmY3fycjyNZH63DBZtjnGBVn+uKkMVnqU7 Ht4b6X68FYBntehxMasl75wljFa78gIdv6JiDJVRhoAyLJCiB0zu6VM1ICL09m8d gVtPgpXPMcFh2qMZN+2K4RblnvekTeNCudhNTHHzFm6IvbnKlk7Muv/B9bZ0jKOz tTERdPH6a+xHfSxBQyobCYP396+jKDE5K1VwHdEk1R1c+DCvuEBMv97MqYJTZPqJ YX4PX6nbu5Zy5g1LNHAIO6ky0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPMLkGy Vci6wTNClgA37jx4tFZCMB8GA1UdIwQYMBaAFOEGS7YBoTEIdhtUV6H3FSTEpMvO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjU3Ri9CMjQ1N0Q2QTRF NTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1RaDJHMVJYb2ZjVkpNU2t5 ODQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRRWkx0Z0doTVFoMkcxUlhvZmNWSk1Ta3k4NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QjU3Ri9CMjQ1N0Q2QTRFNTkxMUVBOUVFOUUyMERDNEY5QUUwMi80UVpMdGdHaE1R aDJHMVJYb2ZjVkpNU2t5ODQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlc6ucHvuC16wWcaYX3qgcA1e3LePeHr3E3/MbaLRzka+caR7QDMIz 5BhQHEbrQiB+jUBEqE9s42leqckBFg6JH1LbQhnLAF5v76+EPxZwzX3GjXMnLmCv aOzok2Eip2+SSAN+cuCuWVA953FAob2mfKl8rU1xMQgGRj6rM3OaWbRUvCOUAlvF vD4bDKDQgTN60LtANZLpNqJx5uVFK0oug2Kd3FOQ5ZdoeLgOFCQEPkfJ7Gn8u45R QwWFQhc3lpTu3rez3coc357lMrD7TmIg3ROQ1kivImz9EtqPjJLTIwLcQnesmY4r NQYwur1Ok9HlxFbI9GFAqwUf26DsuLrh -----END CERTIFICATE-----Generated at Sat Jul 5 02:09:51 2025 by rpki-client