$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: pZb4HM3QmmkYERRrPL5aliepCrg27h6ICPmzf9/KvKE= Subject key identifier: C1:B6:87:D2:E8:E4:CA:C9:AA:7D:12:EA:05:1F:5B:7B:87:6C:94:BE Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: 76 Signing time: Sat 23 Aug 2025 07:01:59 +0000 Manifest this update: Sat 23 Aug 2025 07:01:59 +0000 Manifest next update: Sat 30 Aug 2025 07:01:59 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: 40y9HPNbV/LWzFu57SNqqLpXsytMwLwHWgtzW6gxDdA=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: Nfq9gOVsvHp+sAvDqwlNp+Rm9HqcCv4rXARNazxofGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Aug 23 07:01:59 2025 GMT Not After : Aug 30 07:01:59 2025 GMT Subject: CN=68a96767-41a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f8:d6:82:0c:0d:36:35:ca:ba:f5:17:2b:8a: 66:c3:3a:9c:6a:6f:64:bc:94:bf:7e:b3:f7:2a:a2: 9b:4e:f6:96:e5:16:ff:bd:0f:33:8f:d9:d3:e4:57: 28:97:5f:ec:5f:b5:a9:5a:45:da:b6:14:b8:d5:41: 59:c4:9c:f5:db:a5:9b:e5:73:ce:3a:da:d2:bc:6d: 63:9e:55:e9:4e:d2:c0:ad:a3:d2:41:1f:b9:ee:cf: f2:9a:9b:e1:e0:46:c5:fb:4d:e7:b6:a6:fe:d7:d5: 19:83:8c:78:04:d8:dd:cc:9e:bb:51:11:e8:bd:c6: 36:0f:e7:88:4b:e0:7d:73:ec:7d:00:f2:85:eb:be: 24:50:5b:cf:0e:0f:59:99:a9:9b:30:f4:30:18:ea: 88:6d:56:31:d2:c8:4f:8a:e1:13:62:98:14:9e:a7: bc:d7:c8:0b:72:dd:50:71:28:11:da:ac:81:12:8c: ae:1a:c5:9b:c8:6e:42:f8:c6:79:a5:f8:df:fe:ef: 0d:6e:1e:a6:e6:3f:cb:6c:79:47:45:e3:cc:52:ae: b3:9c:8d:cd:67:6a:32:f2:4e:62:20:5e:ff:f8:f4: 5c:15:92:d6:da:1f:b3:30:b6:f4:0b:e7:6b:41:30: 0b:ee:80:84:64:59:6c:1d:bc:0f:a0:59:67:e6:c2: a3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:B6:87:D2:E8:E4:CA:C9:AA:7D:12:EA:05:1F:5B:7B:87:6C:94:BE X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:ba:db:74:f0:7a:3c:9e:09:e7:31:15:bb:80:89:1a:65:50: 42:c3:38:69:c4:24:8c:ed:f6:a8:58:e6:14:0a:d2:99:af:db: 1c:c5:6a:67:72:9d:6a:02:ff:55:30:ec:a6:55:65:6c:6e:76: bf:90:86:ac:14:be:07:0a:81:b0:57:01:43:be:42:af:a4:8e: 9d:a3:b2:73:2a:f1:e1:9a:b6:49:ae:4e:17:1b:a5:fd:64:5c: 9a:29:43:ac:41:e8:eb:ba:ec:4e:b3:5d:9f:f4:74:70:7f:bf: b9:3b:a3:19:07:7c:f8:73:4a:70:f8:e6:ce:c9:4f:8d:c5:5f: 54:e6:44:68:33:f5:fc:da:2c:50:71:89:aa:ce:b4:27:81:dd: aa:4c:de:d7:0a:61:27:6c:41:6a:25:69:e6:df:3f:c8:4d:82: 88:93:a7:fe:a8:83:82:e9:af:23:bf:8c:aa:7a:53:61:8b:54: 21:57:46:13:d1:2d:73:13:11:76:ef:c9:c3:c1:27:f0:1b:b1: 47:46:cd:69:38:21:d6:84:b1:c1:75:a1:f1:44:57:04:af:5a: 6e:be:21:c9:fa:22:7a:2e:51:61:f4:db:e7:01:4e:16:e8:93: a5:19:13:58:5b:c0:cf:5b:e4:c0:96:60:41:c9:14:59:b6:9f: e6:c9:ba:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjBBRjExMC8GA1UEBRMoRTExNDM3OERBOTM0ODYxNDY5RjQ5NUQ5NzU5OEUwRjAw Mjg5QzMzMDAeFw0yNTA4MjMwNzAxNTlaFw0yNTA4MzAwNzAxNTlaMBgxFjAUBgNV BAMTDTY4YTk2NzY3LTQxYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK+NaCDA02Ncq69RcrimbDOpxqb2S8lL9+s/cqoptO9pblFv+9DzOP2dPkVyiX X+xftalaRdq2FLjVQVnEnPXbpZvlc8462tK8bWOeVelO0sCto9JBH7nuz/Kam+Hg RsX7Tee2pv7X1RmDjHgE2N3MnrtREei9xjYP54hL4H1z7H0A8oXrviRQW88OD1mZ qZsw9DAY6ohtVjHSyE+K4RNimBSep7zXyAty3VBxKBHarIESjK4axZvIbkL4xnml +N/+7w1uHqbmP8tseUdF48xSrrOcjc1najLyTmIgXv/49FwVktbaH7MwtvQL52tB MAvugIRkWWwdvA+gWWfmwqPlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwbaH0ujk ysmqfRLqBR9be4dslL4wHwYDVR0jBBgwFoAU4RQ3jak0hhRp9JXZdZjg8AKJwzAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMEFGLzJEN0E3RTBFQ0M0 RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFJRM2phazBoaFJwOUpYWmRaamc4QUtKd3pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MEFGLzJEN0E3RTBFQ0M0RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhS cDlKWFpkWmpnOEFLSnd6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBANS623TwejyeCecxFbuAiRplUELDOGnEJIzt9qhY5hQK0pmv2xzFamdy nWoC/1Uw7KZVZWxudr+QhqwUvgcKgbBXAUO+Qq+kjp2jsnMq8eGatkmuThcbpf1k XJopQ6xB6Ou67E6zXZ/0dHB/v7k7oxkHfPhzSnD45s7JT43FX1TmRGgz9fzaLFBx iarOtCeB3apM3tcKYSdsQWolaebfP8hNgoiTp/6og4LpryO/jKp6U2GLVCFXRhPR LXMTEXbvycPBJ/AbsUdGzWk4IdaEscF1ofFEVwSvWm6+Icn6InouUWH02+cBThbo k6UZE1hbwM9b5MCWYEHJFFm2n+bJurY= -----END CERTIFICATE-----Generated at Sat Aug 23 23:56:35 2025 by rpki-client