$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft File: 4-snntAeg57yRYBuBFH8FVAJJqI.mft (raw, json) Hash identifier: RShi3mTn9XTaXrbtmv2RtguMgUG21LmefwBMMLtPR3A= Subject key identifier: 16:DE:4B:18:68:F9:28:8C:80:FB:EB:7B:3A:D8:27:E1:EA:AA:3D:A3 Authority key identifier: E3:EB:27:9E:D0:1E:83:9E:F2:45:80:6E:04:51:FC:15:50:09:26:A2 Certificate issuer: /CN=A91B2C53/serialNumber=E3EB279ED01E839EF245806E0451FC15500926A2 Certificate serial: 07E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-snntAeg57yRYBuBFH8FVAJJqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft Manifest number: 07D6 Signing time: Fri 22 Aug 2025 21:17:11 +0000 Manifest this update: Fri 22 Aug 2025 21:17:11 +0000 Manifest next update: Fri 29 Aug 2025 21:17:11 +0000 Files and hashes: 1: 4-snntAeg57yRYBuBFH8FVAJJqI.crl (hash: gGAo8Dah6E/877UUAjfH+APnv3851PLSpIiH9fD+/XY=) 2: EBD94A14049A11EBB73A8663C4F9AE02.roa (hash: ZknxYLcseYgQHA8GKWCkWbIGR6Obm6R2RGgZoA7El3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.crl rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-snntAeg57yRYBuBFH8FVAJJqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:17:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2017 (0x7e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C53, serialNumber=E3EB279ED01E839EF245806E0451FC15500926A2 Validity Not Before: Aug 22 21:17:11 2025 GMT Not After : Aug 29 21:17:11 2025 GMT Subject: CN=68a8de57-c193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f3:1f:43:a3:d2:4a:29:ee:f0:84:89:be:ab: 45:1d:98:e2:b8:8f:92:c7:5e:88:2d:8c:73:bd:ac: 90:44:8b:ba:7f:40:d4:28:24:2b:aa:03:69:73:c3: f1:64:ce:8c:6c:23:85:78:00:b7:10:63:b7:fb:aa: 3b:01:70:bd:68:04:47:27:88:8b:7e:17:ac:61:61: 6e:1c:3d:74:af:90:22:61:cd:9e:69:25:7f:ae:78: b9:d1:84:8f:75:6b:1d:57:3e:67:1b:91:4c:61:91: 55:a6:48:1d:cc:d7:c9:29:3c:e6:42:da:cf:fd:93: 65:85:d8:07:23:74:3c:ec:ef:2b:4d:93:21:8c:ef: 42:df:e3:36:b0:ea:93:ea:8a:28:be:d1:dd:40:87: 3b:f7:b5:31:35:c1:83:f0:5e:af:42:3f:11:ad:e1: 7a:d2:c8:40:c7:76:1b:3c:01:18:7d:f6:de:be:62: c8:c8:22:8f:fc:4f:61:30:f7:7e:56:15:d5:7d:20: 9b:33:0d:d0:a5:06:69:ad:a9:6a:89:7f:e3:1a:df: ba:33:07:7e:8a:4b:1b:31:5f:e1:8f:8a:82:71:36: 12:87:5d:72:0b:4a:13:c0:19:8e:36:b9:21:c5:51: e8:6d:fa:53:d8:aa:4d:cd:8c:e6:fb:56:90:85:e6: 98:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:DE:4B:18:68:F9:28:8C:80:FB:EB:7B:3A:D8:27:E1:EA:AA:3D:A3 X509v3 Authority Key Identifier: keyid:E3:EB:27:9E:D0:1E:83:9E:F2:45:80:6E:04:51:FC:15:50:09:26:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4-snntAeg57yRYBuBFH8FVAJJqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C53/E78E416E049811EBB1FEE85DC4F9AE02/4-snntAeg57yRYBuBFH8FVAJJqI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:76:58:0a:49:f8:31:08:be:d0:ba:7f:44:d3:da:ce:6f:1b: 3f:c8:d9:f1:68:ca:e3:81:86:16:70:8c:a3:2c:d8:77:d9:11: 44:81:8d:16:78:cd:90:f2:8a:5f:3c:08:63:d9:b9:c9:92:8b: 72:d9:79:d1:99:c8:53:26:3f:57:61:26:e7:84:e9:6d:9a:4e: 9e:3a:02:bd:c6:61:be:2e:9f:14:cc:45:ec:c7:5a:cf:5f:33: 33:db:f2:25:c8:61:c4:f3:30:88:10:b3:25:af:5c:9d:e2:0b: 69:26:02:d7:c1:1e:f1:53:15:4e:3e:e5:57:3a:f6:c1:32:57: f2:e9:ae:5e:be:76:f9:e0:9d:e9:2d:d0:59:59:35:93:3b:1a: 8b:52:5c:9e:1b:0e:62:1a:25:03:bb:df:5e:7b:7b:38:78:3b: ba:20:c9:7d:71:3a:28:d7:55:db:af:db:b2:8f:72:4e:04:45: 21:b6:6a:4f:2d:a3:33:5e:35:14:cb:93:ab:74:a0:b1:cc:0f: 36:a4:7f:c8:4f:fc:8a:4f:8c:1e:58:4b:4c:eb:a7:fa:0e:2f: 30:f6:e1:ad:55:af:1d:ee:3b:b0:74:d0:c5:80:b1:0a:8a:ee: 84:2b:dd:a4:bc:1b:c0:03:89:9e:ae:dd:49:d3:c6:40:d6:86: 66:aa:65:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDNTMxMTAvBgNVBAUTKEUzRUIyNzlFRDAxRTgzOUVGMjQ1ODA2RTA0NTFGQzE1 NTAwOTI2QTIwHhcNMjUwODIyMjExNzExWhcNMjUwODI5MjExNzExWjAYMRYwFAYD VQQDEw02OGE4ZGU1Ny1jMTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4PMfQ6PSSinu8ISJvqtFHZjiuI+Sx16ILYxzvayQRIu6f0DUKCQrqgNpc8Px ZM6MbCOFeAC3EGO3+6o7AXC9aARHJ4iLfhesYWFuHD10r5AiYc2eaSV/rni50YSP dWsdVz5nG5FMYZFVpkgdzNfJKTzmQtrP/ZNlhdgHI3Q87O8rTZMhjO9C3+M2sOqT 6ooovtHdQIc797UxNcGD8F6vQj8RreF60shAx3YbPAEYffbevmLIyCKP/E9hMPd+ VhXVfSCbMw3QpQZpralqiX/jGt+6Mwd+iksbMV/hj4qCcTYSh11yC0oTwBmONrkh xVHobfpT2KpNzYzm+1aQheaYEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBbeSxho +SiMgPvrezrYJ+Hqqj2jMB8GA1UdIwQYMBaAFOPrJ57QHoOe8kWAbgRR/BVQCSai MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM1My9FNzhFNDE2RTA0 OTgxMUVCQjFGRUU4NURDNEY5QUUwMi80LXNubnRBZWc1N3lSWUJ1QkZIOEZWQUpK cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQtc25udEFlZzU3eVJZQnVCRkg4RlZBSkpxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MkM1My9FNzhFNDE2RTA0OTgxMUVCQjFGRUU4NURDNEY5QUUwMi80LXNubnRBZWc1 N3lSWUJ1QkZIOEZWQUpKcUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAodlgKSfgxCL7Qun9E09rObxs/yNnxaMrjgYYWcIyjLNh32RFEgY0W eM2Q8opfPAhj2bnJkoty2XnRmchTJj9XYSbnhOltmk6eOgK9xmG+Lp8UzEXsx1rP XzMz2/IlyGHE8zCIELMlr1yd4gtpJgLXwR7xUxVOPuVXOvbBMlfy6a5evnb54J3p LdBZWTWTOxqLUlyeGw5iGiUDu99ee3s4eDu6IMl9cToo11Xbr9uyj3JOBEUhtmpP LaMzXjUUy5OrdKCxzA82pH/IT/yKT4weWEtM66f6Di8w9uGtVa8d7juwdNDFgLEK iu6EK92kvBvAA4mert1J08ZA1oZmqmXv -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:25 2025 by rpki-client