$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: OhqLpEnFVsU54e6ZvJmpELZ2PvEjmlQhDlwF7Q6fRnc= Subject key identifier: 64:1A:35:C4:AD:29:60:E1:BF:ED:54:08:78:D0:A7:06:20:FE:D5:DE Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C3E Signing time: Fri 22 Aug 2025 18:47:00 +0000 Manifest this update: Fri 22 Aug 2025 18:47:00 +0000 Manifest next update: Fri 29 Aug 2025 18:47:00 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: Sq3GpRQnFIV8ELdhr6+9W03zY7hxEnBgqLHtnAjTQeE=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:46:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3169 (0xc61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Aug 22 18:47:00 2025 GMT Not After : Aug 29 18:47:00 2025 GMT Subject: CN=68a8bb24-13e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:25:7c:16:43:33:3d:0c:6b:86:43:49:f3:76: 07:2e:80:11:7a:7e:a1:3f:74:80:2e:54:d4:bf:85: e2:d6:0f:3e:f8:83:bb:32:3a:ed:6b:a1:03:65:06: 62:3f:d5:4b:ab:9c:74:2a:1f:80:15:46:88:ea:4c: 00:77:e9:07:cd:66:8f:d9:48:5a:82:52:b4:d2:d6: 95:0f:39:ba:82:3a:43:6a:89:e7:78:05:47:46:91: 62:07:4c:8d:e0:cd:48:69:4d:b5:51:1f:07:b3:6c: 9c:ba:37:00:10:e7:09:dc:5e:21:9c:ce:bd:73:e8: b5:34:eb:9d:58:32:d3:32:ce:12:d2:71:f6:18:28: f0:4b:03:fe:5c:3d:2c:a9:8a:9d:c4:e2:1b:30:5f: ad:30:fc:b3:8d:c3:fe:aa:2a:4a:92:31:2a:5f:e9: 76:19:c9:34:62:15:8c:76:aa:b8:1d:9e:df:e6:5c: 7f:cd:52:ea:ea:94:60:25:8f:70:9a:9e:bd:72:74: 6f:59:28:57:19:37:e9:09:8e:fd:52:6e:65:14:e3: 75:c6:e0:9d:a1:7f:a9:83:f2:0a:37:a2:94:12:cd: 8a:ac:10:b6:70:b1:07:af:d4:f8:3f:d4:3a:a3:0d: d0:b9:57:00:cb:75:90:ab:fa:6a:3a:fd:0d:de:9d: 1a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1A:35:C4:AD:29:60:E1:BF:ED:54:08:78:D0:A7:06:20:FE:D5:DE X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:6e:fb:a7:29:d7:fd:1b:26:d5:24:c9:ef:32:85:80:af:74: 01:46:a2:b9:f1:8e:9e:89:4e:89:7e:94:d1:92:ab:4f:20:cb: b4:62:4d:2b:af:09:e2:67:3b:b0:42:77:ec:ea:c5:0a:1d:4a: 0c:a7:48:c3:10:81:53:a1:f9:7a:84:e7:15:d6:ce:14:dc:bc: 49:ed:91:b1:02:f4:f5:98:24:91:1f:c1:b2:13:57:c4:ac:f0: 6e:29:07:bd:e5:70:d9:70:80:55:d4:1b:08:4a:b7:f6:77:17: 80:9c:dc:0a:cb:f9:c4:01:74:24:96:7a:1c:0d:d1:d5:9b:d7: ed:84:14:7b:2e:97:8d:2b:c9:f5:4f:ed:89:47:e5:b0:52:4d: 99:ec:96:37:7e:5b:69:8f:91:eb:23:aa:62:84:fd:17:b9:55: 16:eb:52:03:1b:a2:18:47:87:77:15:09:9f:69:01:b4:68:fc: f6:f0:80:c3:48:d4:5f:f7:1f:81:0c:60:82:a6:6b:f0:7c:7a: 15:6a:76:f3:8a:56:d0:31:6d:02:e6:20:a2:24:04:2f:71:b8: fa:a6:92:2b:7b:18:cb:77:ba:dd:6c:25:32:9a:72:dd:85:52: f9:c3:f0:69:5d:61:90:a2:bc:0e:a8:d3:19:ad:b1:7c:4d:d5: 73:96:f3:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDGEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUwODIyMTg0NzAwWhcNMjUwODI5MTg0NzAwWjAYMRYwFAYD VQQDEw02OGE4YmIyNC0xM2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiV8FkMzPQxrhkNJ83YHLoARen6hP3SALlTUv4Xi1g8++IO7Mjrta6EDZQZi P9VLq5x0Kh+AFUaI6kwAd+kHzWaP2UhaglK00taVDzm6gjpDaonneAVHRpFiB0yN 4M1IaU21UR8Hs2ycujcAEOcJ3F4hnM69c+i1NOudWDLTMs4S0nH2GCjwSwP+XD0s qYqdxOIbMF+tMPyzjcP+qipKkjEqX+l2Gck0YhWMdqq4HZ7f5lx/zVLq6pRgJY9w mp69cnRvWShXGTfpCY79Um5lFON1xuCdoX+pg/IKN6KUEs2KrBC2cLEHr9T4P9Q6 ow3QuVcAy3WQq/pqOv0N3p0afQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGQaNcSt KWDhv+1UCHjQpwYg/tXeMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmbvunKdf9GybVJMnvMoWAr3QBRqK58Y6eiU6JfpTRkqtPIMu0Yk0r rwniZzuwQnfs6sUKHUoMp0jDEIFTofl6hOcV1s4U3LxJ7ZGxAvT1mCSRH8GyE1fE rPBuKQe95XDZcIBV1BsISrf2dxeAnNwKy/nEAXQklnocDdHVm9fthBR7LpeNK8n1 T+2JR+WwUk2Z7JY3fltpj5HrI6pihP0XuVUW61IDG6IYR4d3FQmfaQG0aPz28IDD SNRf9x+BDGCCpmvwfHoVanbzilbQMW0C5iCiJAQvcbj6ppIrexjLd7rdbCUymnLd hVL5w/BpXWGQorwOqNMZrbF8TdVzlvPi -----END CERTIFICATE-----Generated at Sat Aug 23 21:48:38 2025 by rpki-client