$ rpki-client -vvf rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft File: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft (raw, json) Hash identifier: VCzu1svXsIskbDRIsUJyrnruehO2SkO/6O3afKIaTMw= Subject key identifier: BB:98:F1:58:D5:1A:1C:C9:7A:4A:07:A0:E1:F2:C7:C7:2D:12:66:BA Authority key identifier: E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 Certificate issuer: /CN=A917F0AF/serialNumber=E114378DA934861469F495D97598E0F00289C330 Certificate serial: 5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft Manifest number: 5B Signing time: Tue 01 Jul 2025 07:53:30 +0000 Manifest this update: Tue 01 Jul 2025 07:53:30 +0000 Manifest next update: Tue 08 Jul 2025 07:53:30 +0000 Files and hashes: 1: 4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl (hash: AZqVXybiawmMgRDnUSdHJx49zzrPDP3Yvd3NF/eXUyM=) 2: 27E5184CCC6211EFA20BEE1BC4F9AE02.roa (hash: Nfq9gOVsvHp+sAvDqwlNp+Rm9HqcCv4rXARNazxofGE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F0AF, serialNumber=E114378DA934861469F495D97598E0F00289C330 Validity Not Before: Jul 1 07:53:30 2025 GMT Not After : Jul 8 07:53:30 2025 GMT Subject: CN=686393fa-700c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:be:9a:d3:00:d2:0c:91:ce:80:ac:67:82:e9: 69:0a:5a:a1:8b:9a:98:30:93:52:62:9a:1d:c3:a6: 11:20:43:c9:69:f1:ea:3f:da:06:3d:9f:60:f2:5f: e3:73:be:28:a4:f8:10:4c:88:49:38:96:03:58:8b: e4:f9:0b:f7:54:62:31:ff:05:9b:cc:80:a4:43:db: 4a:96:87:4a:9b:57:af:47:e4:a9:4d:6b:31:74:b3: 2f:60:0b:75:a0:d1:3a:8a:e9:b9:90:0a:64:16:48: 4a:11:88:79:6c:e7:3f:99:aa:b6:60:db:d4:9a:c9: c1:ae:dd:bf:86:79:7f:6a:0e:22:00:ae:1a:20:35: 62:2e:de:5b:b6:4d:f0:37:8e:87:14:74:ec:ad:e7: b1:42:c6:b9:9f:61:72:aa:04:78:5d:72:3c:0f:79: 23:cc:b8:7b:d1:3f:ff:66:ba:19:9e:1b:e1:b5:8b: f7:f4:b4:6c:a4:cc:54:2a:3c:bd:55:cb:eb:44:bd: f1:4b:5b:4d:c3:ce:c1:f0:24:ed:d0:8f:45:40:e8: bf:b3:d0:80:c2:73:60:a5:33:d0:ab:b2:7b:56:cb: 8c:dc:58:e5:bf:a1:7a:a1:87:03:19:f1:5a:fa:d1: 9a:74:a2:a5:ba:39:9e:3a:0d:01:71:bd:9e:5d:76: f5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:98:F1:58:D5:1A:1C:C9:7A:4A:07:A0:E1:F2:C7:C7:2D:12:66:BA X509v3 Authority Key Identifier: keyid:E1:14:37:8D:A9:34:86:14:69:F4:95:D9:75:98:E0:F0:02:89:C3:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4RQ3jak0hhRp9JXZdZjg8AKJwzA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F0AF/2D7A7E0ECC4F11EFA89A8F14C4F9AE02/4RQ3jak0hhRp9JXZdZjg8AKJwzA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:bb:b1:e6:03:80:f0:9a:42:e3:78:06:70:79:46:33:94:87: 99:6c:b7:de:c0:7e:b1:31:9c:b7:f9:56:d4:25:78:a8:7e:6d: 5c:b3:bd:14:a1:da:ee:ba:39:b3:1f:03:fa:88:9f:30:7a:8b: 70:c6:88:22:a4:bc:92:9f:95:b6:3b:9f:ef:66:f3:46:0f:f9: 0c:4f:56:38:df:5d:85:18:77:62:01:89:c4:a6:86:a1:21:44: 8f:91:fd:5b:a7:7d:df:1e:5a:c7:3e:e9:31:5f:19:2e:38:dc: 70:8f:bf:e6:22:15:39:42:aa:e7:f1:d1:53:d5:3d:67:e1:41: c9:47:79:ab:25:bc:e8:c0:bc:72:c4:b1:37:b5:f0:0d:7e:52: cb:02:b7:4e:53:99:57:ed:d6:e5:d9:7e:35:49:6a:a7:50:a0: f4:a1:3b:8c:95:b6:bf:18:89:d3:36:13:12:50:60:d4:32:e1: 2f:24:1e:90:93:10:a9:15:e4:d9:f7:47:d2:81:51:65:ee:b2: 4c:0e:b7:17:d9:7d:8d:65:3c:12:d3:bd:ad:5a:b7:d7:6a:62: ae:29:16:c2:ec:d1:f5:70:12:e5:8d:84:23:75:80:f5:ed:d4: 53:86:9b:ad:6a:52:90:a6:77:5d:ae:3a:d7:ac:ab:3a:9f:af: 53:f7:c5:a0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjBBRjExMC8GA1UEBRMoRTExNDM3OERBOTM0ODYxNDY5RjQ5NUQ5NzU5OEUwRjAw Mjg5QzMzMDAeFw0yNTA3MDEwNzUzMzBaFw0yNTA3MDgwNzUzMzBaMBgxFjAUBgNV BAMTDTY4NjM5M2ZhLTcwMGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhvprTANIMkc6ArGeC6WkKWqGLmpgwk1Jimh3DphEgQ8lp8eo/2gY9n2DyX+Nz viik+BBMiEk4lgNYi+T5C/dUYjH/BZvMgKRD20qWh0qbV69H5KlNazF0sy9gC3Wg 0TqK6bmQCmQWSEoRiHls5z+ZqrZg29SaycGu3b+GeX9qDiIArhogNWIu3lu2TfA3 jocUdOyt57FCxrmfYXKqBHhdcjwPeSPMuHvRP/9muhmeG+G1i/f0tGykzFQqPL1V y+tEvfFLW03DzsHwJO3Qj0VA6L+z0IDCc2ClM9CrsntWy4zcWOW/oXqhhwMZ8Vr6 0Zp0oqW6OZ46DQFxvZ5ddvUPAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUu5jxWNUa HMl6Sgeg4fLHxy0SZrowHwYDVR0jBBgwFoAU4RQ3jak0hhRp9JXZdZjg8AKJwzAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMEFGLzJEN0E3RTBFQ0M0 RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhScDlKWFpkWmpnOEFLSnd6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNFJRM2phazBoaFJwOUpYWmRaamc4QUtKd3pBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdG MEFGLzJEN0E3RTBFQ0M0RjExRUZBODlBOEYxNEM0RjlBRTAyLzRSUTNqYWswaGhS cDlKWFpkWmpnOEFLSnd6QS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKW7seYDgPCaQuN4BnB5RjOUh5lst97AfrExnLf5VtQleKh+bVyzvRSh 2u66ObMfA/qInzB6i3DGiCKkvJKflbY7n+9m80YP+QxPVjjfXYUYd2IBicSmhqEh RI+R/Vunfd8eWsc+6TFfGS443HCPv+YiFTlCqufx0VPVPWfhQclHeaslvOjAvHLE sTe18A1+UssCt05TmVft1uXZfjVJaqdQoPShO4yVtr8YidM2ExJQYNQy4S8kHpCT EKkV5Nn3R9KBUWXuskwOtxfZfY1lPBLTva1at9dqYq4pFsLs0fVwEuWNhCN1gPXt 1FOGm61qUpCmd12uOtesqzqfr1P3xaA= -----END CERTIFICATE-----Generated at Wed Jul 2 15:45:02 2025 by rpki-client