$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft File: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft (raw, json) Hash identifier: peI6ysUxCMBd0WA0fOvXoSM+9QH4Yu4W6RiNZ6eykFc= Subject key identifier: D4:2C:66:7A:F2:11:7A:3F:F4:B2:46:76:AF:7C:37:BB:0E:F1:F3:53 Authority key identifier: E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 Certificate issuer: /CN=A91B3DC1/serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Certificate serial: 03B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft Manifest number: 03AF Signing time: Sat 23 Aug 2025 00:59:36 +0000 Manifest this update: Sat 23 Aug 2025 00:59:36 +0000 Manifest next update: Sat 30 Aug 2025 00:59:36 +0000 Files and hashes: 1: 4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl (hash: IkPANfuNwqpCa4GHPs5grmw+q4Qq1yEoj8at0xd6DTU=) 2: 2FFDFB74A5F111EC89780C38C4F9AE02.roa (hash: t9Ue3iuOWPGeL64kpqjEgMmW4d4g4YPsvh4Erz4xwRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:59:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 949 (0x3b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3DC1, serialNumber=E144CCF41DA105AF6CD45BC3F8866234D38F7C75 Validity Not Before: Aug 23 00:59:36 2025 GMT Not After : Aug 30 00:59:36 2025 GMT Subject: CN=68a91278-4d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:fc:49:1a:1a:79:ca:67:b9:37:8d:7c:50:db: 77:77:d8:68:59:8a:0c:5e:e2:2f:31:9f:29:3c:49: 7d:2e:01:04:7c:ed:6f:8f:2e:3f:45:62:e1:b4:41: 7b:2d:ed:75:5f:4f:78:94:11:79:a8:d2:34:5c:87: 54:0e:3a:20:5a:91:d2:23:6e:fd:9d:03:94:33:83: 11:65:89:fd:ab:8e:59:93:8c:b2:97:fd:a2:55:06: 52:3d:9a:84:08:fc:cb:d0:f0:e9:45:74:86:84:82: 67:10:db:06:d3:14:a2:bb:8e:0d:ea:d3:c0:22:c9: e6:05:78:1d:35:4e:7f:74:fd:95:b2:36:b7:00:9e: f4:44:ce:bf:30:1a:72:45:29:06:36:59:be:f2:0e: 6c:c7:41:7e:9f:52:da:49:ae:68:83:3c:aa:2f:bd: 6e:9a:51:ca:1a:70:ca:e3:77:fa:4a:48:a0:9a:5d: 39:76:88:1e:21:f5:32:a5:fa:5c:ab:b8:c6:06:f7: 4a:89:88:04:5e:62:a9:ba:6a:cd:21:a0:e6:7f:ee: a2:73:cd:79:88:67:77:65:ad:15:ca:b4:10:11:7e: 76:59:77:aa:37:89:50:f3:37:88:ab:66:9d:c5:55: 60:fd:d3:fc:79:bb:a3:b9:e8:c4:01:3c:09:b7:c9: 4b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2C:66:7A:F2:11:7A:3F:F4:B2:46:76:AF:7C:37:BB:0E:F1:F3:53 X509v3 Authority Key Identifier: keyid:E1:44:CC:F4:1D:A1:05:AF:6C:D4:5B:C3:F8:86:62:34:D3:8F:7C:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4UTM9B2hBa9s1FvD-IZiNNOPfHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3DC1/50C6027AA50611EC82A2437DC4F9AE02/4UTM9B2hBa9s1FvD-IZiNNOPfHU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:0a:0e:f8:c2:b9:b9:f6:73:67:ee:83:c6:34:65:8c:d1:d7: 93:5f:dd:78:67:bf:f3:89:7a:0c:17:41:89:58:3d:b1:58:13: 9f:78:44:f1:58:96:e2:2a:61:ad:08:44:99:e1:ea:1e:11:ad: b9:3f:c7:e9:f0:62:9f:4b:73:5b:db:2f:6f:2d:77:ff:35:69: 89:b6:f9:3a:e6:2f:ba:0b:78:c4:cd:8c:11:79:45:13:d3:85: a5:22:85:47:71:66:69:af:56:a7:4e:f8:2a:f4:99:6b:08:85: 42:70:b1:98:fb:ed:a6:3e:2b:ab:a6:fc:3c:63:df:12:05:1b: 32:72:91:2b:a3:05:f8:72:56:2c:47:1e:e6:e0:65:10:98:00: f2:74:d9:da:f6:49:48:93:35:74:8c:19:5c:59:c5:ae:9a:f2: ba:84:fb:b8:ff:b3:ec:03:ef:ad:13:29:e9:b5:19:aa:65:76: 40:ad:58:ad:8d:dd:57:c9:91:8c:7f:36:1d:0a:10:a8:29:3c: 1d:3e:81:a8:d3:f0:9e:f6:f9:c8:4d:b9:5b:3f:38:60:10:5c: 0e:eb:ad:d0:0e:78:ee:1c:b9:80:1e:16:b1:ef:6b:47:69:e0: 41:4a:1c:6d:ad:dc:49:27:66:ab:50:6f:ab:40:85:b0:3e:0b: f9:12:32:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEQzExMTAvBgNVBAUTKEUxNDRDQ0Y0MURBMTA1QUY2Q0Q0NUJDM0Y4ODY2MjM0 RDM4RjdDNzUwHhcNMjUwODIzMDA1OTM2WhcNMjUwODMwMDA1OTM2WjAYMRYwFAYD VQQDEw02OGE5MTI3OC00ZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7fxJGhp5yme5N418UNt3d9hoWYoMXuIvMZ8pPEl9LgEEfO1vjy4/RWLhtEF7 Le11X094lBF5qNI0XIdUDjogWpHSI279nQOUM4MRZYn9q45Zk4yyl/2iVQZSPZqE CPzL0PDpRXSGhIJnENsG0xSiu44N6tPAIsnmBXgdNU5/dP2Vsja3AJ70RM6/MBpy RSkGNlm+8g5sx0F+n1LaSa5ogzyqL71umlHKGnDK43f6Skigml05dogeIfUypfpc q7jGBvdKiYgEXmKpumrNIaDmf+6ic815iGd3Za0VyrQQEX52WXeqN4lQ8zeIq2ad xVVg/dP8ebujuejEATwJt8lLYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQsZnry EXo/9LJGdq98N7sO8fNTMB8GA1UdIwQYMBaAFOFEzPQdoQWvbNRbw/iGYjTTj3x1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0RDMS81MEM2MDI3QUE1 MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJhOXMxRnZELUlaaU5OT1Bm SFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVVE05QjJoQmE5czFGdkQtSVppTk5PUGZIVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0RDMS81MEM2MDI3QUE1MDYxMUVDODJBMjQzN0RDNEY5QUUwMi80VVRNOUIyaEJh OXMxRnZELUlaaU5OT1BmSFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxCg74wrm59nNn7oPGNGWM0deTX914Z7/ziXoMF0GJWD2xWBOfeETx WJbiKmGtCESZ4eoeEa25P8fp8GKfS3Nb2y9vLXf/NWmJtvk65i+6C3jEzYwReUUT 04WlIoVHcWZpr1anTvgq9JlrCIVCcLGY++2mPiurpvw8Y98SBRsycpErowX4clYs Rx7m4GUQmADydNna9klIkzV0jBlcWcWumvK6hPu4/7PsA++tEynptRmqZXZArVit jd1XyZGMfzYdChCoKTwdPoGo0/Ce9vnITblbPzhgEFwO663QDnjuHLmAHhax72tH aeBBShxtrdxJJ2arUG+rQIWwPgv5EjIR -----END CERTIFICATE-----Generated at Sun Aug 24 00:04:21 2025 by rpki-client