$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: /J+jQvFYoKbMbcLKSDI7shdUBb7tLCMVRHyCO7TTnWY= Subject key identifier: 6E:6A:CB:0D:24:E1:7F:54:DB:94:52:AF:28:1B:DE:A9:87:AD:C4:8A Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 06CF Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 06AB Signing time: Fri 22 Aug 2025 17:00:44 +0000 Manifest this update: Fri 22 Aug 2025 17:00:44 +0000 Manifest next update: Fri 29 Aug 2025 17:00:44 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: fmzNZYJp1oCV/V1JDmTIdr82akH2+/69THItXHY64AQ=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: qm9tOH02ZhUyhN95rojnAyTLcNLxX4GEOIv6/MzX5Qk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Aug 22 17:00:44 2025 GMT Not After : Aug 29 17:00:44 2025 GMT Subject: CN=68a8a23c-f05e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cd:ab:d2:6b:c7:5d:0d:aa:3c:14:e2:d3:45: be:31:8f:0b:3e:cb:5b:f4:9e:32:05:7a:8b:ef:62: 72:8b:33:7f:dd:81:b9:10:3c:7a:5a:ad:00:12:40: 54:9b:3c:0d:d0:e8:2e:4e:06:23:fc:ae:b5:77:31: 4e:79:52:30:06:40:80:19:a2:ca:e9:c1:27:68:d1: d0:52:38:b6:23:d3:17:fe:c0:1b:c6:89:81:7e:fa: a9:4c:66:f8:3a:e7:cd:0d:2a:65:fb:44:d2:58:cb: 42:44:03:5b:3a:62:13:e1:eb:5a:10:bf:b4:fe:a0: 58:db:47:b6:d3:b3:6a:bb:fb:9f:7b:09:58:36:fa: d7:c8:95:98:2c:fa:3e:8e:e0:2f:30:2c:54:20:0d: 68:d2:f4:9d:e6:61:92:25:98:2b:2a:8c:1b:32:bb: 3f:c1:6c:0c:70:a6:77:b8:58:8d:dc:d0:2d:0d:15: cd:5d:39:6c:50:ba:63:d7:15:6c:2f:18:2e:7e:67: 2c:18:29:32:b0:d8:b5:02:36:de:6f:b4:8b:35:aa: 77:09:0b:db:7d:81:92:4d:d7:c1:77:fd:24:44:ed: 1a:ca:99:cd:3e:20:59:37:59:f4:a5:90:5c:d0:f6: 1b:bb:e0:9d:90:50:b5:ad:02:94:fc:f7:d0:3d:54: 32:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6A:CB:0D:24:E1:7F:54:DB:94:52:AF:28:1B:DE:A9:87:AD:C4:8A X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption db:0e:05:54:25:ba:13:09:43:34:28:ad:f0:4b:77:e4:0e:1f: ac:ec:b0:ed:22:35:e6:34:f6:e6:c2:29:6b:1b:d2:e3:49:75: 38:bb:fa:22:3a:0f:12:93:b6:89:ca:3a:dc:07:da:2c:c6:e7: 64:89:c6:80:fb:63:a4:28:2e:00:37:fa:e5:04:67:b7:ee:be: 98:e3:c9:b9:3a:d6:17:0d:33:a7:8e:21:f2:39:34:7d:43:16: 02:27:42:fb:40:94:f5:f3:b9:78:e6:fe:58:ca:07:53:bd:5a: 4d:56:56:e0:8f:2f:2e:f1:92:a7:e5:e9:3a:66:1d:59:57:c9: 49:fd:c0:cc:ad:99:f7:a2:69:65:af:1e:3a:a3:71:a4:41:67: 08:08:69:c1:7a:ba:4c:40:9d:02:ae:26:2c:d0:d7:cc:48:da: 1c:b2:ec:56:e1:b6:0b:c4:e8:21:c4:d5:6c:5b:ce:cb:97:da: 62:94:48:ce:0a:28:47:d4:16:d8:6d:85:aa:68:8d:c4:6d:4a: ff:72:e6:60:16:e6:01:ae:7a:b9:60:12:b8:95:02:5d:ca:6b: 79:9c:ff:51:15:a8:f8:c9:a1:07:3e:2c:91:f0:8d:35:72:d7: 33:74:fa:97:e2:f6:6f:9a:44:b3:5a:bf:03:7f:10:66:e3:9f: 7e:28:16:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUwODIyMTcwMDQ0WhcNMjUwODI5MTcwMDQ0WjAYMRYwFAYD VQQDEw02OGE4YTIzYy1mMDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws2r0mvHXQ2qPBTi00W+MY8LPstb9J4yBXqL72JyizN/3YG5EDx6Wq0AEkBU mzwN0OguTgYj/K61dzFOeVIwBkCAGaLK6cEnaNHQUji2I9MX/sAbxomBfvqpTGb4 OufNDSpl+0TSWMtCRANbOmIT4etaEL+0/qBY20e207Nqu/ufewlYNvrXyJWYLPo+ juAvMCxUIA1o0vSd5mGSJZgrKowbMrs/wWwMcKZ3uFiN3NAtDRXNXTlsULpj1xVs LxgufmcsGCkysNi1Ajbeb7SLNap3CQvbfYGSTdfBd/0kRO0aypnNPiBZN1n0pZBc 0PYbu+CdkFC1rQKU/PfQPVQyiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG5qyw0k 4X9U25RSrygb3qmHrcSKMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDbDgVUJboTCUM0KK3wS3fkDh+s7LDtIjXmNPbmwilrG9LjSXU4u/oi Og8Sk7aJyjrcB9osxudkicaA+2OkKC4AN/rlBGe37r6Y48m5OtYXDTOnjiHyOTR9 QxYCJ0L7QJT187l45v5YygdTvVpNVlbgjy8u8ZKn5ek6Zh1ZV8lJ/cDMrZn3omll rx46o3GkQWcICGnBerpMQJ0CriYs0NfMSNocsuxW4bYLxOghxNVsW87Ll9pilEjO CihH1BbYbYWqaI3EbUr/cuZgFuYBrnq5YBK4lQJdymt5nP9RFaj4yaEHPiyR8I01 ctczdPqX4vZvmkSzWr8DfxBm459+KBY3 -----END CERTIFICATE-----Generated at Sun Aug 24 00:09:07 2025 by rpki-client