$ rpki-client -vvf rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft File: 4kPzvoJVabsWrLN0vJjavmkLF8E.mft (raw, json) Hash identifier: 9EYlkERIdzzE0H71P18rphKn4zQZ4uOmksM9a+sqagI= Subject key identifier: D0:D3:CC:EF:3B:5E:CF:29:C0:AC:B6:01:E6:C0:A4:D9:EF:4A:37:CD Authority key identifier: E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 Certificate issuer: /CN=A917E678/serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Certificate serial: 06B2 Authority info access: rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft Manifest number: 068F Signing time: Wed 02 Jul 2025 17:03:34 +0000 Manifest this update: Wed 02 Jul 2025 17:03:33 +0000 Manifest next update: Wed 09 Jul 2025 17:03:33 +0000 Files and hashes: 1: 4kPzvoJVabsWrLN0vJjavmkLF8E.crl (hash: xAlbx7Cjw5mKF5WEB/azlNyXp/kjQF9H2BN9NSUZ6Y8=) 2: 91E868D4902B11EF87435A54C4F9AE02.roa (hash: M9JBLSmTZK+WGHWP4PBl4vCGB8OpE/d5KiAWANLVB54=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.crl rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/lqhe9LjK9dTDWhV_ThJe5JS6-Tk.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1714 (0x6b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E678, serialNumber=E243F3BE825569BB16ACB374BC98DABE690B17C1 Validity Not Before: Jul 2 17:03:33 2025 GMT Not After : Jul 9 17:03:33 2025 GMT Subject: CN=68656665-a435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ea:11:1c:40:74:58:4c:02:91:13:71:84:ac: af:49:a0:15:21:83:74:3c:d8:01:ac:ac:0d:d0:98: 9f:a3:27:29:1f:a2:3b:f2:e5:cf:30:04:57:7c:5d: 24:bb:63:1e:61:b5:a0:54:6b:98:4b:a6:8c:d2:a2: 95:e7:b7:bc:b3:19:34:0e:84:7b:95:bd:d3:c9:ce: 81:bf:8b:6b:c5:1c:67:02:b5:db:11:d7:63:ed:b4: c3:64:8e:15:07:a4:92:1c:bd:b8:dd:34:d4:5a:8d: 07:be:36:ef:0f:c1:df:ce:58:73:be:b1:19:2e:0c: 8b:7c:bf:e9:7d:13:a1:f2:3d:49:cc:16:35:12:e2: 61:9a:7e:a8:b8:a2:4d:c0:ac:e3:da:ae:9f:a4:60: b0:a1:3f:96:10:2f:2a:f2:a8:59:ae:a9:20:4d:af: b5:da:a6:ba:ca:e6:bf:d9:82:ce:72:14:42:09:91: 66:ae:34:b9:d5:81:91:eb:bb:95:95:a2:70:af:b0: ca:67:1d:ed:71:d0:ac:73:d8:b5:80:00:bb:0e:37: d5:ee:3f:0b:e8:a2:c2:26:b9:39:c5:84:9c:dd:56: 57:8f:36:cf:84:17:e1:45:30:60:94:71:17:56:94: a5:45:9e:db:2d:33:75:47:4c:c8:11:28:4c:08:22: 17:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D3:CC:EF:3B:5E:CF:29:C0:AC:B6:01:E6:C0:A4:D9:EF:4A:37:CD X509v3 Authority Key Identifier: keyid:E2:43:F3:BE:82:55:69:BB:16:AC:B3:74:BC:98:DA:BE:69:0B:17:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B4A1BEA61D6611E2B2CD8B7C72FD1FF2/4kPzvoJVabsWrLN0vJjavmkLF8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E678/B897C582A19C11EB92A2DF29C4F9AE02/4kPzvoJVabsWrLN0vJjavmkLF8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:b2:71:ad:1d:e9:bb:a4:0c:6e:3f:f2:85:dc:65:21:8a:66: 90:ce:86:8d:89:f8:89:4d:6f:fa:3f:3b:b9:6d:c3:aa:1f:59: 4b:de:43:7c:1b:3f:73:c0:90:1e:04:3a:fd:9b:f9:13:80:4d: 5a:49:10:f9:68:46:0b:71:63:11:d7:2c:c1:92:90:f0:42:27: 06:d1:95:03:fe:67:7a:85:2c:f3:5b:ec:d4:84:b8:85:06:5a: b5:c4:03:c7:18:9e:fb:43:7c:7e:de:6a:5e:eb:43:14:94:a4: 3e:32:89:f8:6a:f3:d8:79:68:5d:9a:34:51:c8:5c:89:ea:2b: b7:90:c2:0c:69:01:f8:d6:d3:2f:5c:71:73:d4:d6:37:94:d2: 69:a7:13:c0:63:03:92:73:e3:69:41:2a:e5:12:91:04:f7:cc: 25:b1:85:fc:8e:f1:f4:f0:bf:66:43:c3:d9:48:41:cb:ab:40: 6f:6f:29:89:fa:83:66:1d:98:94:6f:9b:ba:b8:db:1f:e3:5e: 5f:b6:e4:cd:e9:dc:46:ff:e6:a4:a0:67:4e:06:a4:b2:04:67: 08:ae:15:d0:39:98:15:10:ca:a1:51:89:f3:01:6f:e4:c5:2f: 1c:33:5a:8b:45:5c:3d:66:df:d3:cd:14:44:80:67:bc:95:6d: 8b:fa:9a:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBrIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2NzgxMTAvBgNVBAUTKEUyNDNGM0JFODI1NTY5QkIxNkFDQjM3NEJDOThEQUJF NjkwQjE3QzEwHhcNMjUwNzAyMTcwMzMzWhcNMjUwNzA5MTcwMzMzWjAYMRYwFAYD VQQDEw02ODY1NjY2NS1hNDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+oRHEB0WEwCkRNxhKyvSaAVIYN0PNgBrKwN0JifoycpH6I78uXPMARXfF0k u2MeYbWgVGuYS6aM0qKV57e8sxk0DoR7lb3Tyc6Bv4trxRxnArXbEddj7bTDZI4V B6SSHL243TTUWo0HvjbvD8HfzlhzvrEZLgyLfL/pfROh8j1JzBY1EuJhmn6ouKJN wKzj2q6fpGCwoT+WEC8q8qhZrqkgTa+12qa6yua/2YLOchRCCZFmrjS51YGR67uV laJwr7DKZx3tcdCsc9i1gAC7DjfV7j8L6KLCJrk5xYSc3VZXjzbPhBfhRTBglHEX VpSlRZ7bLTN1R0zIEShMCCIXYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNDTzO87 Xs8pwKy2AebApNnvSjfNMB8GA1UdIwQYMBaAFOJD876CVWm7FqyzdLyY2r5pCxfB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTY3OC9CODk3QzU4MkEx OUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFic1dyTE4wdkpqYXZta0xG OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0QTFCRUE2MUQ2NjExRTJCMkNEOEI3Qzcy RkQxRkYyLzRrUHp2b0pWYWJzV3JMTjB2Smphdm1rTEY4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTY3OC9CODk3QzU4MkExOUMxMUVCOTJBMkRGMjlDNEY5QUUwMi80a1B6dm9KVmFi c1dyTE4wdkpqYXZta0xGOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6snGtHem7pAxuP/KF3GUhimaQzoaNifiJTW/6Pzu5bcOqH1lL3kN8 Gz9zwJAeBDr9m/kTgE1aSRD5aEYLcWMR1yzBkpDwQicG0ZUD/md6hSzzW+zUhLiF Blq1xAPHGJ77Q3x+3mpe60MUlKQ+Mon4avPYeWhdmjRRyFyJ6iu3kMIMaQH41tMv XHFz1NY3lNJppxPAYwOSc+NpQSrlEpEE98wlsYX8jvH08L9mQ8PZSEHLq0BvbymJ +oNmHZiUb5u6uNsf415ftuTN6dxG/+akoGdOBqSyBGcIrhXQOZgVEMqhUYnzAW/k xS8cM1qLRVw9Zt/TzRREgGe8lW2L+poF -----END CERTIFICATE-----Generated at Thu Jul 3 10:30:21 2025 by rpki-client