$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft File: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft (raw, json) Hash identifier: DprmrHKL5F/+RPaEexmWdeITvkKqg1dkN8K/98PTiJU= Subject key identifier: 0E:0C:05:3D:13:E4:91:A7:EF:6C:10:51:C5:79:81:D0:15:1D:48:B9 Authority key identifier: E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 Certificate issuer: /CN=A914E600/serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft Manifest number: B0 Signing time: Sat 23 Aug 2025 06:41:56 +0000 Manifest this update: Sat 23 Aug 2025 06:41:56 +0000 Manifest next update: Sat 30 Aug 2025 06:41:56 +0000 Files and hashes: 1: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl (hash: qkW4F1jWHY0Xkqz+E26bi+f0G3Q294gvH3OVPeIht8U=) 2: D86268E877F111EFADAB6362C4F9AE02.roa (hash: e8wZoAxd5aA3CtPGlNCm2H8RgaO0sg67bbRxbVIcezE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Validity Not Before: Aug 23 06:41:56 2025 GMT Not After : Aug 30 06:41:56 2025 GMT Subject: CN=68a962b4-3fa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:51:22:e3:ad:1d:c1:0d:31:1e:76:2d:0a:1c: 7d:ef:a2:4a:01:a0:88:e5:7f:8e:78:88:74:c1:97: a5:db:18:81:ce:05:63:7c:34:40:3e:c0:93:a1:4d: 68:b1:cd:d4:97:ba:b2:93:f8:44:07:eb:e3:a2:6b: 8f:fb:4a:8f:c7:9c:db:bc:dd:25:6d:6c:5c:ff:c6: d0:77:a3:e3:bc:20:dd:6c:8e:02:e5:f7:ad:50:b6: e4:79:f3:6e:56:27:88:0a:dd:84:a4:3e:4c:3b:80: e9:b8:38:48:60:69:cc:41:bf:76:f4:c8:f9:77:b3: b4:91:c1:64:93:4d:31:b0:5c:28:7c:82:e0:10:d7: 2c:18:26:b2:f6:cd:3b:5c:c0:b2:8b:38:d6:ec:3f: 4e:a0:7f:0d:b0:80:ae:93:ca:a7:15:3c:95:ed:f9: 61:88:c5:37:b3:fb:0f:09:b8:aa:e3:16:2a:ea:40: bc:e6:f3:11:4f:33:ee:06:07:ab:89:2f:cd:ae:fe: 5a:3c:ee:1f:e5:69:51:21:a6:c5:cc:c0:17:24:20: 66:ed:84:ea:75:5e:81:06:a5:68:4b:eb:1f:ab:d0: 86:70:e5:fc:f5:f6:72:bb:7a:e3:b9:e1:3e:e0:3c: 3b:6d:90:9a:5d:e2:13:fe:79:0d:fb:38:a1:fd:4b: 53:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:0C:05:3D:13:E4:91:A7:EF:6C:10:51:C5:79:81:D0:15:1D:48:B9 X509v3 Authority Key Identifier: keyid:E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:64:65:fd:6c:e7:db:5c:a8:48:1d:c2:8b:ef:57:ce:2a:98: a8:02:91:54:30:c3:35:6f:7f:07:c6:13:7f:ad:e5:66:28:d5: 0f:e9:5c:be:ca:71:8d:e4:cc:6d:b5:3a:54:d1:08:c1:55:f4: 8a:d5:57:76:7e:b5:d9:a2:cc:b7:25:32:af:47:86:95:00:61: 1c:13:80:9a:66:44:dd:a9:50:33:b1:fd:b9:fd:32:7b:2a:2e: 81:f9:8e:ac:03:8c:26:3a:1f:cc:26:16:52:2d:b3:33:c7:30: e9:cb:cc:4b:de:fb:19:e0:a6:4e:8f:cd:10:f0:99:14:87:05: 68:99:cd:86:8b:14:18:cf:67:42:70:cf:cf:3a:d6:4e:f8:19: dd:43:12:7a:2b:81:e1:3f:b5:fe:a9:bd:ab:2f:92:b0:60:bc: 55:3b:d2:57:33:0a:ad:ee:8f:b5:93:93:fb:49:7b:ef:f5:9c: a9:4c:32:24:af:56:e1:5c:6d:02:ad:a0:63:d1:b7:25:21:15: 38:32:99:9c:ec:9d:87:cf:00:83:25:ef:e1:36:21:53:23:86: 7a:33:0d:cd:80:11:88:27:bb:94:a2:f2:77:d3:ee:f9:5f:77: d2:39:7b:0d:97:69:c2:9d:37:17:6a:d4:9a:e1:8b:b5:65:0a: 08:08:ca:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2MDAxMTAvBgNVBAUTKEUwQjk0NThGNjk4MjVGRjgyOTM4N0IxMzlFODhGRDNC RDY3NDAwODcwHhcNMjUwODIzMDY0MTU2WhcNMjUwODMwMDY0MTU2WjAYMRYwFAYD VQQDEw02OGE5NjJiNC0zZmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+1Ei460dwQ0xHnYtChx976JKAaCI5X+OeIh0wZel2xiBzgVjfDRAPsCToU1o sc3Ul7qyk/hEB+vjomuP+0qPx5zbvN0lbWxc/8bQd6PjvCDdbI4C5fetULbkefNu VieICt2EpD5MO4DpuDhIYGnMQb929Mj5d7O0kcFkk00xsFwofILgENcsGCay9s07 XMCyizjW7D9OoH8NsICuk8qnFTyV7flhiMU3s/sPCbiq4xYq6kC85vMRTzPuBger iS/Nrv5aPO4f5WlRIabFzMAXJCBm7YTqdV6BBqVoS+sfq9CGcOX89fZyu3rjueE+ 4Dw7bZCaXeIT/nkN+zih/UtT4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA4MBT0T 5JGn72wQUcV5gdAVHUi5MB8GA1UdIwQYMBaAFOC5RY9pgl/4KTh7E56I/TvWdACH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTYwMC8yMjFCQUVCRTc3 RjExMUVGQUMxMTI5NDJDNEY5QUUwMi80TGxGajJtQ1hfZ3BPSHNUbm9qOU85WjBB SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRMbEZqMm1DWF9ncE9Ic1Rub2o5TzlaMEFJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTYwMC8yMjFCQUVCRTc3RjExMUVGQUMxMTI5NDJDNEY5QUUwMi80TGxGajJtQ1hf Z3BPSHNUbm9qOU85WjBBSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkZGX9bOfbXKhIHcKL71fOKpioApFUMMM1b38HxhN/reVmKNUP6Vy+ ynGN5MxttTpU0QjBVfSK1Vd2frXZosy3JTKvR4aVAGEcE4CaZkTdqVAzsf25/TJ7 Ki6B+Y6sA4wmOh/MJhZSLbMzxzDpy8xL3vsZ4KZOj80Q8JkUhwVomc2GixQYz2dC cM/POtZO+BndQxJ6K4HhP7X+qb2rL5KwYLxVO9JXMwqt7o+1k5P7SXvv9ZypTDIk r1bhXG0CraBj0bclIRU4Mpmc7J2HzwCDJe/hNiFTI4Z6Mw3NgBGIJ7uUovJ30+75 X3fSOXsNl2nCnTcXatSa4Yu1ZQoICMr2 -----END CERTIFICATE-----Generated at Sat Aug 23 18:39:55 2025 by rpki-client