$ rpki-client -vvf rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft File: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft (raw, json) Hash identifier: 4gjeyoMCWOFw3qJ14aYwQWOU1YJ0ky3n1JMh0vPIlVY= Subject key identifier: A5:6F:AB:A0:2E:F8:4B:AD:FC:F3:B6:C2:70:1D:C1:F5:3B:26:DF:4F Authority key identifier: E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 Certificate issuer: /CN=A914CBF3/serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Certificate serial: 0C45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft Manifest number: 0C22 Signing time: Sat 28 Jun 2025 18:26:21 +0000 Manifest this update: Sat 28 Jun 2025 18:26:21 +0000 Manifest next update: Sat 05 Jul 2025 18:26:21 +0000 Files and hashes: 1: 4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl (hash: hsEG59O0vvdv98csYUWyMNrlHT9VfVa9rwpIxhfez3U=) 2: 183DE570057A11EC822F230EC4F9AE02.roa (hash: bEfFzY9ERkUCouk5XoaucvDsVkrzcwabTIVAnbK3Eko=) 3: B32668C4D98C11EB905D7281C4F9AE02.roa (hash: +CpW1CaKQXu6MhTzl4JHCslaYOAYJXQr9xAkDiD0lq0=) 4: B688C61E2A7411F09C50DF45C4F9AE02.roa (hash: PvI9nhg15RMbIrPmzo33E5WP1sio6iu2Cas5ym98pTY=) 5: 89EA369C2A7411F09A757F45C4F9AE02.roa (hash: F9UOwIl8TIxEFQqKFxE/ZQxprBW29nR8LDsUajtcNxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 18:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3141 (0xc45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CBF3, serialNumber=E2449E312220131E2E76C42C7CCC6DD193510707 Validity Not Before: Jun 28 18:26:21 2025 GMT Not After : Jul 5 18:26:21 2025 GMT Subject: CN=686033cd-eac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ae:a5:3e:4d:96:7b:8d:23:e9:86:39:e1:2e: 4f:19:dc:c5:27:7b:fc:99:1f:66:6f:f2:8f:8c:14: 47:9d:d1:53:60:40:8a:46:b1:38:5f:77:18:a2:3f: f4:b5:85:69:88:f4:01:8a:92:c8:eb:ed:bf:88:db: 01:98:c4:7c:af:98:7c:77:d2:5f:6a:0a:d3:60:e7: fc:a6:97:d8:b4:62:90:1e:70:9c:7b:f3:f5:9c:38: a6:fe:6f:dc:71:14:e0:b9:5a:25:7d:4f:99:89:ca: ea:ae:53:bb:e8:bd:a1:8e:4e:e5:30:a6:66:7e:b4: 2a:1a:a6:8e:25:54:a8:48:02:2b:03:6a:3c:2c:36: 4c:a8:27:60:14:c6:c2:59:a1:ff:76:0b:75:72:e9: 8e:48:ed:f3:29:95:eb:6a:96:46:c2:c5:31:41:c3: ea:66:b3:b5:01:21:48:e5:6e:ab:0f:e5:0a:dc:c8: 3f:b6:61:5c:07:1f:8c:28:d1:17:9f:92:c2:0c:f7: d4:d3:55:be:61:b1:ef:92:2a:00:c3:ed:bd:20:ba: 4e:c0:87:8c:13:b8:69:5f:15:32:9c:30:03:54:3e: a5:0b:6a:05:a3:aa:98:00:a7:7e:bf:99:26:5f:c6: 7f:f3:49:bc:d2:9a:ab:69:c9:97:67:09:1b:b8:30: 48:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:6F:AB:A0:2E:F8:4B:AD:FC:F3:B6:C2:70:1D:C1:F5:3B:26:DF:4F X509v3 Authority Key Identifier: keyid:E2:44:9E:31:22:20:13:1E:2E:76:C4:2C:7C:CC:6D:D1:93:51:07:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4kSeMSIgEx4udsQsfMxt0ZNRBwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CBF3/1BC6EB2011E711EAB903AA79C4F9AE02/4kSeMSIgEx4udsQsfMxt0ZNRBwc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:20:0c:29:ec:16:42:5f:55:cc:37:dc:8a:ff:51:f0:95:4f: b7:32:98:74:be:08:c6:b2:3f:38:2a:ab:81:0a:f4:fa:02:d5: 42:69:4e:88:eb:42:b5:02:67:60:01:97:1a:cc:f7:5a:f3:26: 67:db:a2:af:22:10:16:eb:a2:43:e1:6b:e2:cb:01:38:c0:3a: a6:3d:b6:b1:ef:c4:dd:c0:e8:09:fc:06:59:48:1b:5b:23:c0: 85:b2:11:a0:e4:fe:28:66:08:e4:5a:74:93:44:24:28:33:fe: c9:12:88:de:df:ae:e6:ef:ee:15:70:30:63:6c:91:6c:ca:fb: 70:81:f1:1d:4e:2e:c5:30:86:6a:38:9a:41:d7:32:17:a3:04: 0d:37:b6:64:4b:ee:5d:58:5c:9a:2c:39:3f:fa:30:cd:0d:7f: b9:2c:b3:00:c7:30:07:91:f0:22:fa:a9:79:8d:34:1e:ec:dd: 3b:4b:d1:68:c1:ed:85:5c:4a:fe:98:7b:bc:ae:f5:17:d5:34: 09:85:c8:55:4d:9f:59:99:68:84:c8:57:d2:47:a0:bf:37:c0: ce:1b:4b:ca:fa:78:db:72:bb:f6:95:3a:11:5a:3a:66:a3:c1: 5c:06:81:b3:65:11:bb:50:bb:eb:de:32:5b:ad:95:46:b1:4d: 2d:df:c2:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCRjMxMTAvBgNVBAUTKEUyNDQ5RTMxMjIyMDEzMUUyRTc2QzQyQzdDQ0M2REQx OTM1MTA3MDcwHhcNMjUwNjI4MTgyNjIxWhcNMjUwNzA1MTgyNjIxWjAYMRYwFAYD VQQDEw02ODYwMzNjZC1lYWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA766lPk2We40j6YY54S5PGdzFJ3v8mR9mb/KPjBRHndFTYECKRrE4X3cYoj/0 tYVpiPQBipLI6+2/iNsBmMR8r5h8d9JfagrTYOf8ppfYtGKQHnCce/P1nDim/m/c cRTguVolfU+ZicrqrlO76L2hjk7lMKZmfrQqGqaOJVSoSAIrA2o8LDZMqCdgFMbC WaH/dgt1cumOSO3zKZXrapZGwsUxQcPqZrO1ASFI5W6rD+UK3Mg/tmFcBx+MKNEX n5LCDPfU01W+YbHvkioAw+29ILpOwIeME7hpXxUynDADVD6lC2oFo6qYAKd+v5km X8Z/80m80pqracmXZwkbuDBI2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVvq6Au +Eut/PO2wnAdwfU7Jt9PMB8GA1UdIwQYMBaAFOJEnjEiIBMeLnbELHzMbdGTUQcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0JGMy8xQkM2RUIyMDEx RTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4NHVkc1FzZk14dDBaTlJC d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrU2VNU0lnRXg0dWRzUXNmTXh0MFpOUkJ3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0JGMy8xQkM2RUIyMDExRTcxMUVBQjkwM0FBNzlDNEY5QUUwMi80a1NlTVNJZ0V4 NHVkc1FzZk14dDBaTlJCd2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaIAwp7BZCX1XMN9yK/1HwlU+3Mph0vgjGsj84KquBCvT6AtVCaU6I 60K1AmdgAZcazPda8yZn26KvIhAW66JD4WviywE4wDqmPbax78TdwOgJ/AZZSBtb I8CFshGg5P4oZgjkWnSTRCQoM/7JEoje367m7+4VcDBjbJFsyvtwgfEdTi7FMIZq OJpB1zIXowQNN7ZkS+5dWFyaLDk/+jDNDX+5LLMAxzAHkfAi+ql5jTQe7N07S9Fo we2FXEr+mHu8rvUX1TQJhchVTZ9ZmWiEyFfSR6C/N8DOG0vK+njbcrv2lToRWjpm o8FcBoGzZRG7ULvr3jJbrZVGsU0t38IW -----END CERTIFICATE-----Generated at Mon Jun 30 01:04:53 2025 by rpki-client