$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft File: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft (raw, json) Hash identifier: hlCJRtaV4a9R0ZybjYL9OTkhUJF9xsVipTWMk/ln3lQ= Subject key identifier: D8:1C:78:DA:07:92:38:C6:0B:FA:D4:09:39:4A:E5:C8:A4:D5:9C:8C Authority key identifier: E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 Certificate issuer: /CN=A914E600/serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft Manifest number: 94 Signing time: Thu 03 Jul 2025 06:36:38 +0000 Manifest this update: Thu 03 Jul 2025 06:36:38 +0000 Manifest next update: Thu 10 Jul 2025 06:36:38 +0000 Files and hashes: 1: 4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl (hash: AgYDl3UN4neYOgRxhwT/XWgbe6sO2c0VtYZUidKFTmA=) 2: D86268E877F111EFADAB6362C4F9AE02.roa (hash: vFQI0/WMzcqMUL954AE6vlA2OPOfqfsgIiFbV+UqtL4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Validity Not Before: Jul 3 06:36:38 2025 GMT Not After : Jul 10 06:36:38 2025 GMT Subject: CN=686624f6-eeb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4d:53:84:7f:67:70:55:85:0b:13:4b:46:4e: 12:fb:1d:e1:89:f0:49:07:da:f5:51:23:6e:49:8a: b6:d8:dc:4f:4e:8c:36:10:07:4a:38:1a:7b:10:4c: 2b:70:ad:16:66:7a:0c:a9:2f:80:08:c2:28:22:fc: 6c:c5:6a:c0:ed:6f:e1:6b:5d:85:68:ff:33:93:2b: 6b:1d:ac:93:0f:61:46:05:23:72:0d:94:5d:00:4a: 44:94:a6:95:17:0c:6e:70:a1:0e:cb:c2:4f:63:f4: 15:65:0a:7b:8a:9c:a6:d9:d8:c6:ea:11:e0:af:92: fa:4a:75:d3:5d:a5:74:46:fa:0b:d4:73:5b:ce:28: 01:d9:a7:14:0a:78:fd:d7:14:a2:08:04:ec:a1:7e: e6:4b:7f:ac:ce:38:d5:48:2f:e2:c3:95:32:60:66: 32:81:d3:ca:6f:bb:0b:6b:18:8a:dd:b4:d2:cd:aa: 9f:6a:ac:64:b8:08:a7:63:fd:33:dd:82:06:ef:dd: 53:ec:81:8c:b6:41:be:b8:a1:18:4c:db:1a:32:bf: bc:08:1e:d4:b5:f4:3e:b3:94:34:ae:17:b2:9e:63: 7c:2c:47:9b:ee:4b:60:62:fb:6c:5b:49:84:8b:7b: ee:d2:34:ad:a7:40:ac:d0:af:d9:e6:7f:70:33:bd: a9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:1C:78:DA:07:92:38:C6:0B:FA:D4:09:39:4A:E5:C8:A4:D5:9C:8C X509v3 Authority Key Identifier: keyid:E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:19:71:94:c7:df:c1:7f:36:78:8d:49:a6:67:52:0a:88:d8: 14:49:0f:99:be:91:bc:84:6b:b5:a8:02:af:09:07:4b:2e:05: 01:2f:2f:6e:fb:3a:71:15:06:df:92:17:4e:d5:1e:18:e4:1e: 59:54:4e:08:51:4f:8b:6d:55:57:3a:20:35:7e:1c:1b:96:96: 70:75:a9:c9:aa:01:af:b9:aa:9f:e9:6c:0a:d3:18:04:32:f6: 9c:82:ee:11:6b:c1:41:af:79:a0:d5:33:8f:1c:3d:db:47:b2: 36:20:ed:42:12:98:4c:10:2c:c6:5b:3e:22:70:d8:28:d9:42: 76:d0:62:b8:8b:87:fa:ec:78:30:4d:86:20:46:57:bd:0e:60: 35:32:f4:b3:f6:de:81:1e:cd:31:00:28:de:97:a7:26:ea:2b: 2f:0c:e7:ce:f0:39:40:88:ee:3e:76:08:2c:41:01:95:fc:44: ed:cc:91:87:44:0f:91:88:34:cb:38:71:bf:a6:e7:23:e8:08: 5f:61:e9:1b:81:ab:66:2a:a3:85:2c:96:33:77:5b:d5:b2:dc: 51:7c:44:27:b0:f3:97:5b:30:5d:6b:d7:41:de:3a:e2:03:60: c9:68:7d:67:ae:4d:a5:ab:37:fe:a2:87:78:82:3a:7d:a5:b2: e4:34:26:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2MDAxMTAvBgNVBAUTKEUwQjk0NThGNjk4MjVGRjgyOTM4N0IxMzlFODhGRDNC RDY3NDAwODcwHhcNMjUwNzAzMDYzNjM4WhcNMjUwNzEwMDYzNjM4WjAYMRYwFAYD VQQDEw02ODY2MjRmNi1lZWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk1ThH9ncFWFCxNLRk4S+x3hifBJB9r1USNuSYq22NxPTow2EAdKOBp7EEwr cK0WZnoMqS+ACMIoIvxsxWrA7W/ha12FaP8zkytrHayTD2FGBSNyDZRdAEpElKaV FwxucKEOy8JPY/QVZQp7ipym2djG6hHgr5L6SnXTXaV0RvoL1HNbzigB2acUCnj9 1xSiCATsoX7mS3+szjjVSC/iw5UyYGYygdPKb7sLaxiK3bTSzaqfaqxkuAinY/0z 3YIG791T7IGMtkG+uKEYTNsaMr+8CB7UtfQ+s5Q0rheynmN8LEeb7ktgYvtsW0mE i3vu0jStp0Cs0K/Z5n9wM72p7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNgceNoH kjjGC/rUCTlK5cik1ZyMMB8GA1UdIwQYMBaAFOC5RY9pgl/4KTh7E56I/TvWdACH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTYwMC8yMjFCQUVCRTc3 RjExMUVGQUMxMTI5NDJDNEY5QUUwMi80TGxGajJtQ1hfZ3BPSHNUbm9qOU85WjBB SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRMbEZqMm1DWF9ncE9Ic1Rub2o5TzlaMEFJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTYwMC8yMjFCQUVCRTc3RjExMUVGQUMxMTI5NDJDNEY5QUUwMi80TGxGajJtQ1hf Z3BPSHNUbm9qOU85WjBBSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIGXGUx9/BfzZ4jUmmZ1IKiNgUSQ+ZvpG8hGu1qAKvCQdLLgUBLy9u +zpxFQbfkhdO1R4Y5B5ZVE4IUU+LbVVXOiA1fhwblpZwdanJqgGvuaqf6WwK0xgE Mvacgu4Ra8FBr3mg1TOPHD3bR7I2IO1CEphMECzGWz4icNgo2UJ20GK4i4f67Hgw TYYgRle9DmA1MvSz9t6BHs0xACjel6cm6isvDOfO8DlAiO4+dggsQQGV/ETtzJGH RA+RiDTLOHG/pucj6AhfYekbgatmKqOFLJYzd1vVstxRfEQnsPOXWzBda9dB3jri A2DJaH1nrk2lqzf+ood4gjp9pbLkNCZe -----END CERTIFICATE-----Generated at Thu Jul 3 23:01:57 2025 by rpki-client