$ rpki-client -vvf rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft File: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft (raw, json) Hash identifier: ZNfAZRabTJlsYHfmOCqdJ+ODt5vTf/NpE4RFYVBAHA8= Subject key identifier: 15:58:2C:C8:75:02:3B:5A:CC:6D:F0:A0:98:49:84:72:80:96:87:CB Authority key identifier: E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 Certificate issuer: /CN=A917D4C4/serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Certificate serial: 0683 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft Manifest number: 067F Signing time: Fri 22 Aug 2025 14:48:45 +0000 Manifest this update: Fri 22 Aug 2025 14:48:45 +0000 Manifest next update: Fri 29 Aug 2025 14:48:45 +0000 Files and hashes: 1: 4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl (hash: EmVzQ1/IawWyevAravEKxFl7YbeJCHy+V1S1XIWOXzM=) 2: 6E325DBC0E2F11EDB4659653C4F9AE02.roa (hash: NS8IXL+/osy1aonTB1YcjpMFwDzkEpu3g9yC5lM136w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:48:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D4C4, serialNumber=E0C8928F9451520E64D1DED58F07196B5861B286 Validity Not Before: Aug 22 14:48:45 2025 GMT Not After : Aug 29 14:48:45 2025 GMT Subject: CN=68a8834d-c796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ee:7d:c0:49:28:31:f3:9f:22:f7:d5:35:93: 41:a6:e2:69:bd:7e:97:90:7f:c6:fc:32:8d:a9:01: 3b:34:21:b5:1b:19:64:3b:ac:5d:4a:b9:13:88:83: 51:2c:46:57:89:9f:ec:23:4d:e5:be:2c:ce:20:78: 1c:a7:cf:54:85:4b:7a:21:19:e6:3e:54:98:c5:f4: 9b:96:c9:af:4f:d1:54:f2:30:12:6f:8c:80:01:0c: 3a:03:c4:8e:69:71:d4:e9:13:ba:fe:f7:de:2f:4a: 4c:af:7c:a4:6b:fd:b6:98:73:7a:b3:50:b4:f3:29: 84:0d:5f:42:c8:32:7e:51:f4:88:ef:60:2e:2c:48: e6:8e:e0:6e:5b:ee:2d:fb:ee:9d:f9:73:96:7c:bd: a9:43:06:42:15:ec:3c:b7:a7:7c:cb:2d:91:a5:76: b6:8c:5f:74:a8:78:1c:b4:c9:0a:bf:34:cc:cd:52: c5:b3:84:c2:10:dc:fa:af:a3:93:52:2d:fb:4e:4e: 44:89:8a:a9:06:33:1e:1e:f6:7c:e6:fe:f6:aa:fa: 60:f6:fe:83:ea:9a:c9:c9:ef:e0:2d:05:c7:87:4a: d3:13:a5:38:8f:46:a7:94:7d:a2:2a:77:10:32:f6: 0b:8f:7e:a8:70:ea:22:50:07:62:c6:f7:2c:fa:be: 2a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:58:2C:C8:75:02:3B:5A:CC:6D:F0:A0:98:49:84:72:80:96:87:CB X509v3 Authority Key Identifier: keyid:E0:C8:92:8F:94:51:52:0E:64:D1:DE:D5:8F:07:19:6B:58:61:B2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MiSj5RRUg5k0d7VjwcZa1hhsoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D4C4/439CF87C8D7B11EB8D8BD60BC4F9AE02/4MiSj5RRUg5k0d7VjwcZa1hhsoY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:bb:0a:90:b7:61:20:b5:b3:cf:99:76:51:03:13:76:a5:3e: 21:94:4c:a3:ed:80:cd:08:f5:ee:34:f1:5d:b1:85:2b:78:ae: 01:14:ee:43:97:47:5c:20:43:77:30:c8:16:5d:45:33:59:bc: 4e:87:2f:25:6f:7e:4a:ab:fb:71:3d:1f:4f:f3:6f:be:d1:f7: fa:07:b6:44:78:23:7c:f0:25:52:80:39:8e:50:a4:60:70:36: 75:95:fc:f3:5f:7f:29:c6:67:e0:a0:08:ba:5c:ff:62:cb:1d: 42:17:c8:a2:4b:24:92:c2:11:bd:91:98:a9:9b:56:55:f7:b1: 15:14:3b:c2:97:a5:9f:8e:2c:96:42:77:84:bc:4a:5f:7f:e2: d0:73:7f:06:7e:55:ca:80:00:95:0c:d4:4a:05:79:8f:62:7a: 51:0e:50:f6:6a:8e:5c:34:41:d7:7b:7c:17:ef:f0:25:98:76: 51:75:b2:7d:36:09:6a:2c:0e:04:c5:48:4d:0f:d9:69:ab:4c: 69:18:29:8a:74:29:b4:4e:79:4a:03:1c:9a:da:b2:3a:00:4a: d6:c6:a2:d8:d7:76:68:fb:4f:49:a5:94:e8:45:b8:a2:35:7e: ec:b9:ac:aa:c1:28:53:c8:42:42:a9:f0:aa:fa:b8:1e:62:64: 80:8e:73:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0QzQxMTAvBgNVBAUTKEUwQzg5MjhGOTQ1MTUyMEU2NEQxREVENThGMDcxOTZC NTg2MUIyODYwHhcNMjUwODIyMTQ0ODQ1WhcNMjUwODI5MTQ0ODQ1WjAYMRYwFAYD VQQDEw02OGE4ODM0ZC1jNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz+59wEkoMfOfIvfVNZNBpuJpvX6XkH/G/DKNqQE7NCG1GxlkO6xdSrkTiINR LEZXiZ/sI03lvizOIHgcp89UhUt6IRnmPlSYxfSblsmvT9FU8jASb4yAAQw6A8SO aXHU6RO6/vfeL0pMr3yka/22mHN6s1C08ymEDV9CyDJ+UfSI72AuLEjmjuBuW+4t ++6d+XOWfL2pQwZCFew8t6d8yy2RpXa2jF90qHgctMkKvzTMzVLFs4TCENz6r6OT Ui37Tk5EiYqpBjMeHvZ85v72qvpg9v6D6prJye/gLQXHh0rTE6U4j0anlH2iKncQ MvYLj36ocOoiUAdixvcs+r4q9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBVYLMh1 AjtazG3woJhJhHKAlofLMB8GA1UdIwQYMBaAFODIko+UUVIOZNHe1Y8HGWtYYbKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDRDNC80MzlDRjg3QzhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVnNWswZDdWandjWmExaGhz b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNaVNqNVJSVWc1azBkN1Zqd2NaYTFoaHNvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RDRDNC80MzlDRjg3QzhEN0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi80TWlTajVSUlVn NWswZDdWandjWmExaGhzb1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHuwqQt2EgtbPPmXZRAxN2pT4hlEyj7YDNCPXuNPFdsYUreK4BFO5D l0dcIEN3MMgWXUUzWbxOhy8lb35Kq/txPR9P82++0ff6B7ZEeCN88CVSgDmOUKRg cDZ1lfzzX38pxmfgoAi6XP9iyx1CF8iiSySSwhG9kZipm1ZV97EVFDvCl6WfjiyW QneEvEpff+LQc38GflXKgACVDNRKBXmPYnpRDlD2ao5cNEHXe3wX7/AlmHZRdbJ9 NglqLA4ExUhND9lpq0xpGCmKdCm0TnlKAxya2rI6AErWxqLY13Zo+09JpZToRbii NX7suayqwShTyEJCqfCq+rgeYmSAjnOC -----END CERTIFICATE-----Generated at Sat Aug 23 17:06:17 2025 by rpki-client