$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft File: 4BlKpTtYIbm9DFx7g1K7E4GFP50.mft (raw, json) Hash identifier: 9BgLtnGO+M28SGCBYCNiEyAdYcE2udrZ+lDl+P805t8= Subject key identifier: F5:7C:89:EE:C8:F8:24:2B:FA:69:F0:0A:A6:53:7F:97:2B:CB:BD:8F Authority key identifier: E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D Certificate issuer: /CN=A914E0B6/serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Certificate serial: 0109 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft Manifest number: 0109 Signing time: Tue 01 Jul 2025 05:31:24 +0000 Manifest this update: Tue 01 Jul 2025 05:31:23 +0000 Manifest next update: Tue 08 Jul 2025 05:31:23 +0000 Files and hashes: 1: 4BlKpTtYIbm9DFx7g1K7E4GFP50.crl (hash: P1QUIS8Sq9CHmyFSnbz4NiApaH/wiVk5XMX0hL03Nuo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 05:31:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0B6, serialNumber=E0194AA53B5821B9BD0C5C7B8352BB1381853F9D Validity Not Before: Jul 1 05:31:23 2025 GMT Not After : Jul 8 05:31:23 2025 GMT Subject: CN=686372ab-d10b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f5:f2:67:08:8f:28:74:f5:85:e7:78:46:50: 30:82:75:18:4f:d1:dc:a0:fb:4d:65:51:ef:ce:45: 23:d6:80:ab:24:a0:8e:53:50:d1:0e:08:9e:d5:83: 50:15:19:ad:e6:fc:2b:eb:d0:1e:7a:62:04:4d:7d: d2:42:5b:22:47:a6:e2:07:0c:78:6a:ff:21:39:13: 5a:6f:a5:bb:26:83:fb:6b:c0:8f:ae:a1:64:d7:01: e6:9d:2e:42:8d:b4:62:dd:94:f4:5f:cf:75:67:0d: bc:7c:68:68:c9:7a:37:13:9c:1c:6e:e9:8f:26:29: de:67:a9:52:6a:0f:5a:9f:46:c0:76:b9:a0:86:25: cd:db:04:c6:67:ab:e4:5b:ab:6a:29:86:8f:3f:69: 11:4a:ed:67:b6:36:27:d3:9f:f6:64:0d:e7:30:14: f1:4d:ce:46:2f:14:34:08:3a:c9:4c:2d:47:12:ba: 62:c1:68:7d:e9:98:be:fb:85:47:58:10:83:0b:9a: e6:8e:59:4d:c0:b0:64:39:7e:4a:7c:73:fd:45:fd: bf:9a:49:78:59:b1:cd:ff:fd:b1:1b:12:ce:79:0d: 3e:7b:49:5f:d0:0f:75:7e:2b:99:af:eb:d1:c7:76: e3:9e:42:d4:8e:ed:74:03:b4:8b:a4:8d:2e:b1:55: 80:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:7C:89:EE:C8:F8:24:2B:FA:69:F0:0A:A6:53:7F:97:2B:CB:BD:8F X509v3 Authority Key Identifier: keyid:E0:19:4A:A5:3B:58:21:B9:BD:0C:5C:7B:83:52:BB:13:81:85:3F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BlKpTtYIbm9DFx7g1K7E4GFP50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0B6/6956AE3EBF3011EEBE4F3C1EC4F9AE02/4BlKpTtYIbm9DFx7g1K7E4GFP50.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:01:63:7c:6a:02:8e:9a:55:d9:ce:d0:1c:c7:19:e6:c7:26: 72:e7:f2:6d:13:e8:0e:93:17:68:4b:46:96:a2:3d:5f:8c:7c: 84:1b:b1:04:eb:81:77:67:61:bd:3d:76:1f:88:66:c5:74:f1: 25:f4:76:78:b6:23:63:4b:04:fa:1f:03:f1:46:02:6d:90:29: ff:5a:08:40:98:34:00:76:ba:66:d6:95:c1:03:99:26:78:cc: 6f:f1:2b:22:29:05:2f:fb:f8:4b:8a:40:3d:2c:05:0e:c6:cf: 94:43:42:a5:1a:7e:a0:58:b4:be:1e:0a:b9:d8:0f:7c:7d:54: be:47:6a:07:8d:a4:52:18:78:76:1a:67:fe:2f:cf:db:a8:65: 9d:18:3e:cd:5a:a3:dd:14:51:d1:85:29:98:ca:a0:5b:87:4f: be:90:b0:9b:0a:f2:ef:12:46:7a:e1:96:57:b1:03:86:c2:72: a3:05:68:e3:53:77:80:d9:68:05:3c:72:92:4c:cf:41:56:d7: 32:6d:2e:cc:8b:0a:23:d3:a0:0c:bb:c0:75:b6:37:ae:40:19: 89:1e:fd:d3:78:55:62:b5:f6:86:ce:88:28:67:8f:a2:84:7c: e4:5d:2a:98:db:cc:b2:e2:24:57:d5:14:d8:7d:6b:35:f8:c9: 12:0f:2e:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUwQjYxMTAvBgNVBAUTKEUwMTk0QUE1M0I1ODIxQjlCRDBDNUM3QjgzNTJCQjEz ODE4NTNGOUQwHhcNMjUwNzAxMDUzMTIzWhcNMjUwNzA4MDUzMTIzWjAYMRYwFAYD VQQDEw02ODYzNzJhYi1kMTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PXyZwiPKHT1hed4RlAwgnUYT9HcoPtNZVHvzkUj1oCrJKCOU1DRDgie1YNQ FRmt5vwr69AeemIETX3SQlsiR6biBwx4av8hORNab6W7JoP7a8CPrqFk1wHmnS5C jbRi3ZT0X891Zw28fGhoyXo3E5wcbumPJineZ6lSag9an0bAdrmghiXN2wTGZ6vk W6tqKYaPP2kRSu1ntjYn05/2ZA3nMBTxTc5GLxQ0CDrJTC1HErpiwWh96Zi++4VH WBCDC5rmjllNwLBkOX5KfHP9Rf2/mkl4WbHN//2xGxLOeQ0+e0lf0A91fiuZr+vR x3bjnkLUju10A7SLpI0usVWAEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPV8ie7I +CQr+mnwCqZTf5cry72PMB8GA1UdIwQYMBaAFOAZSqU7WCG5vQxce4NSuxOBhT+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTBCNi82OTU2QUUzRUJG MzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUlibTlERng3ZzFLN0U0R0ZQ NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCbEtwVHRZSWJtOURGeDdnMUs3RTRHRlA1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBCNi82OTU2QUUzRUJGMzAxMUVFQkU0RjNDMUVDNEY5QUUwMi80QmxLcFR0WUli bTlERng3ZzFLN0U0R0ZQNTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvAWN8agKOmlXZztAcxxnmxyZy5/JtE+gOkxdoS0aWoj1fjHyEG7EE 64F3Z2G9PXYfiGbFdPEl9HZ4tiNjSwT6HwPxRgJtkCn/WghAmDQAdrpm1pXBA5km eMxv8SsiKQUv+/hLikA9LAUOxs+UQ0KlGn6gWLS+Hgq52A98fVS+R2oHjaRSGHh2 Gmf+L8/bqGWdGD7NWqPdFFHRhSmYyqBbh0++kLCbCvLvEkZ64ZZXsQOGwnKjBWjj U3eA2WgFPHKSTM9BVtcybS7Miwoj06AMu8B1tjeuQBmJHv3TeFVitfaGzogoZ4+i hHzkXSqY28yy4iRX1RTYfWs1+MkSDy4a -----END CERTIFICATE-----Generated at Thu Jul 3 02:04:25 2025 by rpki-client