$ rpki-client -vvf rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft File: 4suW87BaY-nlR5ZSbszpSjWR5fw.mft (raw, json) Hash identifier: nj/r23Q1GCdxvx61RB3vRk2Gs3NZJ2RE4harI3eBECc= Subject key identifier: CB:CE:30:F1:C0:DB:9E:AC:05:46:2A:DD:2B:CE:C6:38:B7:FC:5B:69 Authority key identifier: E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC Certificate issuer: /CN=A9157B74/serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Certificate serial: 16 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft Manifest number: 15 Signing time: Thu 03 Jul 2025 08:14:55 +0000 Manifest this update: Thu 03 Jul 2025 08:14:55 +0000 Manifest next update: Thu 10 Jul 2025 08:14:55 +0000 Files and hashes: 1: 4suW87BaY-nlR5ZSbszpSjWR5fw.crl (hash: 7Cs6oEMsRuhoe2a8o6E0XKcJCmxB5DyqniJByefh4Tk=) 2: ACCFE0643C9711F08159891EC4F9AE02.roa (hash: lVHhBj6K1C48l+j8zLFa7FZ7WGKYKz6QlN3fyLSlK7w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22 (0x16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157B74, serialNumber=E2CB96F3B05A63E9E54796526ECCE94A3591E5FC Validity Not Before: Jul 3 08:14:55 2025 GMT Not After : Jul 10 08:14:55 2025 GMT Subject: CN=68663bff-4f2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:df:c0:ea:9a:fd:bd:ac:4e:19:46:e5:c0:28: 97:da:58:c9:f9:cf:e6:9f:9a:bc:fb:c2:1b:7d:63: 0b:b9:71:6d:db:d2:c3:c9:1e:c2:02:d4:f1:0b:09: 5e:ac:85:77:2c:65:8e:09:94:78:40:3b:be:83:06: 09:5e:d9:25:e2:62:93:fb:3c:86:f6:e8:b1:74:b1: 6b:3d:c9:08:7b:04:1e:11:e0:cf:27:88:92:db:eb: 99:f7:a1:8f:1b:43:cf:46:71:5a:4d:76:59:21:bd: 13:a1:13:88:71:b2:80:24:00:e7:8c:83:75:90:01: f5:e4:15:e5:b5:33:eb:fc:91:b2:10:00:79:8b:67: 33:e6:79:e2:63:1e:aa:2c:36:60:0d:b0:26:ac:9f: 11:c9:13:6b:b8:3c:c8:e5:b3:81:39:bd:cd:9b:be: 60:ae:ca:14:2f:ac:2e:39:cd:44:77:10:aa:6a:42: 28:88:eb:bb:3b:22:92:75:8a:dc:42:bf:69:21:5c: 9a:79:60:eb:2b:9a:d5:fe:10:0a:d7:4d:7b:7b:66: 89:96:c2:aa:94:28:ef:c0:a0:f7:3f:ce:03:5f:5c: 80:7e:ba:d5:73:ee:34:3d:38:11:53:d4:b4:8b:2f: f6:b0:49:fd:7f:22:af:4c:af:f6:c4:5f:30:15:31: 17:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CE:30:F1:C0:DB:9E:AC:05:46:2A:DD:2B:CE:C6:38:B7:FC:5B:69 X509v3 Authority Key Identifier: keyid:E2:CB:96:F3:B0:5A:63:E9:E5:47:96:52:6E:CC:E9:4A:35:91:E5:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4suW87BaY-nlR5ZSbszpSjWR5fw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157B74/AF64E5103BAA11F09642821CC4F9AE02/4suW87BaY-nlR5ZSbszpSjWR5fw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:88:8d:e6:3c:1b:65:1d:a9:8e:37:c1:22:7d:b8:44:12:da: 83:24:1f:65:42:35:24:e9:4e:c2:84:46:de:11:62:af:c8:f3: 18:82:7f:65:e9:e8:8b:70:1c:06:16:9e:8b:ce:d1:06:02:87: 87:4e:1d:16:24:c8:26:c3:9d:1a:21:fa:74:7c:ab:ac:a8:7d: 27:10:65:19:97:3f:00:30:c2:7c:1e:fa:ef:b1:5d:c8:93:12: 4b:05:22:b2:0c:8a:4d:33:b3:f5:6d:2e:ad:b2:90:a3:57:98: 8f:a5:3c:25:b4:17:f7:99:ea:ac:eb:1f:cc:65:2c:2c:f2:5d: a1:47:e2:8e:f7:59:be:a6:b7:1d:7b:14:95:33:6a:76:05:64: d9:ed:e6:e4:1d:cf:3e:66:09:da:9d:d3:ba:67:61:59:9f:a8: e3:cf:06:78:98:02:6c:f6:8e:96:9f:41:1f:e6:87:96:23:12: f7:ee:40:a5:a3:a6:19:50:84:16:ee:13:a5:d0:6e:7a:5d:07: d1:c1:e7:45:f3:99:34:23:e3:8a:aa:d5:c7:9b:80:bb:99:06: ac:a5:e2:f1:76:57:21:24:81:b0:bf:4b:07:2f:23:b6:2d:45: 2d:77:1e:f9:7c:17:e2:80:2b:d4:f3:ff:c3:ba:a1:a8:89:bb: fe:9a:02:e9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBFjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 N0I3NDExMC8GA1UEBRMoRTJDQjk2RjNCMDVBNjNFOUU1NDc5NjUyNkVDQ0U5NEEz NTkxRTVGQzAeFw0yNTA3MDMwODE0NTVaFw0yNTA3MTAwODE0NTVaMBgxFjAUBgNV BAMTDTY4NjYzYmZmLTRmMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl38Dqmv29rE4ZRuXAKJfaWMn5z+afmrz7wht9Ywu5cW3b0sPJHsIC1PELCV6s hXcsZY4JlHhAO76DBgle2SXiYpP7PIb26LF0sWs9yQh7BB4R4M8niJLb65n3oY8b Q89GcVpNdlkhvROhE4hxsoAkAOeMg3WQAfXkFeW1M+v8kbIQAHmLZzPmeeJjHqos NmANsCasnxHJE2u4PMjls4E5vc2bvmCuyhQvrC45zUR3EKpqQiiI67s7IpJ1itxC v2khXJp5YOsrmtX+EArXTXt7ZomWwqqUKO/AoPc/zgNfXIB+utVz7jQ9OBFT1LSL L/awSf1/Iq9Mr/bEXzAVMRe7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUy84w8cDb nqwFRirdK87GOLf8W2kwHwYDVR0jBBgwFoAU4suW87BaY+nlR5ZSbszpSjWR5fww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3Qjc0L0FGNjRFNTEwM0JB QTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1ubFI1WlNic3pwU2pXUjVm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNHN1Vzg3QmFZLW5sUjVaU2JzenBTaldSNWZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3 Qjc0L0FGNjRFNTEwM0JBQTExRjA5NjQyODIxQ0M0RjlBRTAyLzRzdVc4N0JhWS1u bFI1WlNic3pwU2pXUjVmdy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFGIjeY8G2UdqY43wSJ9uEQS2oMkH2VCNSTpTsKERt4RYq/I8xiCf2Xp 6ItwHAYWnovO0QYCh4dOHRYkyCbDnRoh+nR8q6yofScQZRmXPwAwwnwe+u+xXciT EksFIrIMik0zs/VtLq2ykKNXmI+lPCW0F/eZ6qzrH8xlLCzyXaFH4o73Wb6mtx17 FJUzanYFZNnt5uQdzz5mCdqd07pnYVmfqOPPBniYAmz2jpafQR/mh5YjEvfuQKWj phlQhBbuE6XQbnpdB9HB50XzmTQj44qq1cebgLuZBqyl4vF2VyEkgbC/SwcvI7Yt RS13Hvl8F+KAK9Tz/8O6oaiJu/6aAuk= -----END CERTIFICATE-----Generated at Fri Jul 4 00:43:17 2025 by rpki-client