$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft File: 4YMttqUeSiWekP7IHkfFRpxSpok.mft (raw, json) Hash identifier: O4CBGIX33yUAhBBsMzdjp9wYMpq1npH+odmky5VB6Ho= Subject key identifier: 22:96:C1:42:65:59:3B:D8:2E:92:D3:44:34:B3:93:52:E8:16:10:8C Authority key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 Certificate issuer: /CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Certificate serial: 1625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft Manifest number: 1619 Signing time: Wed 02 Jul 2025 16:51:55 +0000 Manifest this update: Wed 02 Jul 2025 16:51:55 +0000 Manifest next update: Wed 09 Jul 2025 16:51:55 +0000 Files and hashes: 1: 4YMttqUeSiWekP7IHkfFRpxSpok.crl (hash: L46R+k7vIVDqDpN8fUuOO/VhpRPW1FUMmFLCyjRD2nw=) 2: B4FED5FC8E5311EBB81E6C70C4F9AE02.roa (hash: kDacZR8moKTX56aD4xPOhhoyt0qIcn1U0w7VaT9wQjo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5669 (0x1625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B, serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Validity Not Before: Jul 2 16:51:55 2025 GMT Not After : Jul 9 16:51:55 2025 GMT Subject: CN=686563ab-f38d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:47:6c:43:0b:4b:36:22:66:bd:dc:d8:4a:45: be:9f:13:05:27:94:50:98:39:bd:a8:c7:c4:a1:17: fb:83:ed:2a:b2:eb:f8:34:ff:44:32:8a:c3:27:da: 5d:2b:94:60:f6:86:b3:da:e7:32:5b:81:4f:92:08: 51:be:41:26:9a:6e:39:69:40:ef:6d:ba:e5:3a:d2: e7:fc:17:57:ec:2b:89:95:4c:55:ff:fe:ec:3b:a2: 65:32:ee:ef:c7:8e:a9:7e:c7:08:f6:4b:de:30:24: 51:67:dd:19:63:02:04:61:cb:33:af:e1:57:23:24: 0a:31:66:d0:22:30:eb:d3:fd:de:18:49:5a:b5:ce: fa:2b:30:7f:01:64:fa:20:04:00:60:42:fc:e7:40: 2a:86:05:2f:37:ab:c6:50:33:72:00:27:f7:bb:d0: de:81:49:70:29:9d:65:07:aa:e0:5c:8a:a9:85:56: 19:77:17:d9:90:94:30:7f:a7:34:29:98:18:f4:c4: 61:c3:29:a2:b0:12:58:dc:17:d0:ff:08:51:43:08: 37:5c:84:2f:f4:42:94:87:2f:b9:cf:0b:54:58:8d: 91:a3:db:df:c2:00:b0:c3:68:8a:28:1a:da:08:5b: 0a:68:a7:3b:2d:d8:6f:18:cf:dc:4a:36:9f:d7:2f: 4d:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:96:C1:42:65:59:3B:D8:2E:92:D3:44:34:B3:93:52:E8:16:10:8C X509v3 Authority Key Identifier: keyid:E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:49:3e:0f:a0:0d:04:c2:01:a7:c6:a5:fb:c6:67:52:2a:a1: 34:ed:4f:60:e6:30:e3:1e:2a:96:71:40:b3:cf:ea:16:48:c6: 34:21:b5:e3:67:6d:2b:26:19:58:50:96:c2:b3:37:47:f4:00: 20:91:fe:7e:f0:6c:a0:a2:08:b3:e0:85:0a:2f:ea:95:db:88: 98:a7:36:2a:f1:5f:4b:5e:55:91:b3:fb:01:1b:86:c3:25:b4: 9f:7c:59:9e:9e:71:a6:88:f7:2a:c3:3a:3b:a5:cc:6e:07:85: 69:4a:42:98:dd:a6:8c:1e:02:d6:96:d8:16:0a:49:bc:47:da: 24:cd:72:1d:f0:dd:c0:06:3f:0a:0f:1c:54:67:cc:ac:9e:22: c8:8b:a1:07:55:18:74:01:33:38:b7:ef:73:12:90:53:49:da: 69:36:eb:71:6b:e5:f4:cf:9b:08:c9:42:38:fe:0f:af:a7:b9: ac:6e:92:37:77:5b:2e:66:7a:13:d4:45:9b:fc:5e:39:4b:3e: a6:1f:2b:56:70:96:f6:69:e2:39:58:ef:67:30:49:98:af:5f: ad:66:3b:2c:07:40:c9:15:98:0a:f9:51:fe:60:74:f3:75:6f: d9:b2:a5:26:0e:04:6f:c0:a4:2b:cc:a6:77:71:fa:13:11:32: f6:48:f6:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKEUxODMyREI2QTUxRTRBMjU5RTkwRkVDODFFNDdDNTQ2 OUM1MkE2ODkwHhcNMjUwNzAyMTY1MTU1WhcNMjUwNzA5MTY1MTU1WjAYMRYwFAYD VQQDEw02ODY1NjNhYi1mMzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1kdsQwtLNiJmvdzYSkW+nxMFJ5RQmDm9qMfEoRf7g+0qsuv4NP9EMorDJ9pd K5Rg9oaz2ucyW4FPkghRvkEmmm45aUDvbbrlOtLn/BdX7CuJlUxV//7sO6JlMu7v x46pfscI9kveMCRRZ90ZYwIEYcszr+FXIyQKMWbQIjDr0/3eGElatc76KzB/AWT6 IAQAYEL850AqhgUvN6vGUDNyACf3u9DegUlwKZ1lB6rgXIqphVYZdxfZkJQwf6c0 KZgY9MRhwymisBJY3BfQ/whRQwg3XIQv9EKUhy+5zwtUWI2Ro9vfwgCww2iKKBra CFsKaKc7LdhvGM/cSjaf1y9NrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKWwUJl WTvYLpLTRDSzk1LoFhCMMB8GA1UdIwQYMBaAFOGDLbalHkolnpD+yB5HxUacUqaJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi8wMkEyRDk3MDE2 MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNpV2VrUDdJSGtmRlJweFNw b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTXR0cVVlU2lXZWtQN0lIa2ZGUnB4U3Bvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODE0Qi8wMkEyRDk3MDE2MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNp V2VrUDdJSGtmRlJweFNwb2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0ST4PoA0EwgGnxqX7xmdSKqE07U9g5jDjHiqWcUCzz+oWSMY0IbXj Z20rJhlYUJbCszdH9AAgkf5+8Gygogiz4IUKL+qV24iYpzYq8V9LXlWRs/sBG4bD JbSffFmennGmiPcqwzo7pcxuB4VpSkKY3aaMHgLWltgWCkm8R9okzXId8N3ABj8K DxxUZ8ysniLIi6EHVRh0ATM4t+9zEpBTSdppNutxa+X0z5sIyUI4/g+vp7msbpI3 d1suZnoT1EWb/F45Sz6mHytWcJb2aeI5WO9nMEmYr1+tZjssB0DJFZgK+VH+YHTz dW/ZsqUmDgRvwKQrzKZ3cfoTETL2SPaK -----END CERTIFICATE-----Generated at Fri Jul 4 06:50:38 2025 by rpki-client