$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft File: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft (raw, json) Hash identifier: /uUxV4bTMRolVHbHzje2/A2AK9xKiN2cFeGIenqwYjM= Subject key identifier: B5:47:C1:6E:F0:50:CD:25:05:D5:46:DF:69:41:C7:22:F6:68:23:3F Authority key identifier: E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 Certificate issuer: /CN=A91B7F47/serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Certificate serial: 0D9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft Manifest number: 0D84 Signing time: Wed 02 Jul 2025 18:11:00 +0000 Manifest this update: Wed 02 Jul 2025 18:11:00 +0000 Manifest next update: Wed 09 Jul 2025 18:11:00 +0000 Files and hashes: 1: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl (hash: TKzOkPs6OzY6rTKVKjq/sNulpeQY2mece7MQX2ZDEc0=) 2: 4E98421A162311EB90D1657AC4F9AE02.roa (hash: 1jUxwWAX6KnigOFs20Vg85yLzTjyxdO59rmGUv5qs2k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:10:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3485 (0xd9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7F47, serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Validity Not Before: Jul 2 18:11:00 2025 GMT Not After : Jul 9 18:11:00 2025 GMT Subject: CN=68657634-ac7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:03:9d:1c:00:ca:03:d8:7d:0f:7a:14:3f:cb: 6e:52:a9:90:1b:df:6f:75:51:5b:6b:90:70:da:c1: 37:3a:fa:1e:d7:19:98:57:e4:54:6f:7b:41:36:64: 5c:03:0e:67:2c:47:9d:fb:81:66:92:53:54:5c:b4: 5c:dc:a3:ee:85:cb:43:0d:6c:d4:2d:e7:36:51:80: a9:ea:d9:aa:3a:15:1c:4f:16:aa:cf:58:0b:c5:04: e2:76:3b:81:8b:52:60:f6:b5:77:c0:76:8e:91:03: 72:c5:97:f0:e7:1f:90:14:f2:25:80:5f:cf:56:e5: 45:48:63:07:ed:17:5e:d0:80:8a:bf:fe:80:87:e9: 1c:67:72:16:68:8f:55:ec:a0:be:c1:eb:4f:a2:b0: 81:a5:47:bc:5e:d4:07:ea:3b:e6:a4:d2:52:9f:c5: 3a:ce:27:84:90:5a:e7:94:4b:57:02:1e:6f:08:df: bf:5c:18:a7:8c:94:d0:64:30:cb:58:f4:bf:d2:d9: 60:63:4a:4c:96:c6:a4:a8:c9:0d:40:61:e3:f3:00: b9:86:d5:d4:c9:00:98:6a:6b:42:c5:0d:03:8f:41: e2:0f:57:8c:0b:b5:a1:06:6f:45:e1:1b:6f:4e:be: 4b:9b:e2:f9:af:05:ef:9b:21:18:fd:6f:fd:8a:dc: ef:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:47:C1:6E:F0:50:CD:25:05:D5:46:DF:69:41:C7:22:F6:68:23:3F X509v3 Authority Key Identifier: keyid:E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:4c:af:c8:67:2f:99:b8:ae:db:42:0e:6e:f2:2e:8c:21:2b: f9:22:26:46:be:47:bc:a5:81:cf:fb:62:31:fc:68:3d:e7:68: 4b:4a:da:43:9c:22:83:6c:6a:ab:a2:ee:01:4f:4d:ce:72:31: 38:f5:6a:2a:24:1d:f9:ac:c6:49:e6:0c:22:74:59:ae:37:c1: 1f:40:e3:77:aa:de:90:58:1a:f5:45:04:b8:d7:c3:07:4c:08: 7e:b8:96:c1:c3:c1:ff:31:18:b0:49:be:eb:10:80:09:5f:61: fd:08:07:05:e6:93:13:91:70:e9:59:7f:f1:3e:e3:e7:52:50: 1c:5e:51:e4:55:a0:84:f2:31:25:7d:8e:52:39:91:12:bd:96: 8a:bd:b5:9f:6b:92:18:73:43:4b:c4:28:ad:80:5f:1c:87:55: 3a:fc:ad:2c:d6:db:cf:62:b1:02:c7:9d:5d:5b:46:96:8c:03: 6e:d7:f2:85:fc:1d:72:80:62:67:a8:ce:16:ba:95:58:40:5e: 6d:34:6a:a7:2c:47:bc:10:10:d0:e0:f9:f8:a5:77:da:b9:44: 7a:98:2f:6f:ae:2c:10:ba:de:47:9c:85:35:18:46:cd:4b:b9: bf:1e:1a:ea:72:ee:2e:4f:20:84:46:a0:6f:68:4c:37:29:66: 2d:90:1a:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdGNDcxMTAvBgNVBAUTKEUzMEE0Q0RERjZDMjY5QUNCQTM5Q0E1OEFBOTU5MkQ4 OTg2NDAxRjQwHhcNMjUwNzAyMTgxMTAwWhcNMjUwNzA5MTgxMTAwWjAYMRYwFAYD VQQDEw02ODY1NzYzNC1hYzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgOdHADKA9h9D3oUP8tuUqmQG99vdVFba5Bw2sE3Ovoe1xmYV+RUb3tBNmRc Aw5nLEed+4FmklNUXLRc3KPuhctDDWzULec2UYCp6tmqOhUcTxaqz1gLxQTidjuB i1Jg9rV3wHaOkQNyxZfw5x+QFPIlgF/PVuVFSGMH7Rde0ICKv/6Ah+kcZ3IWaI9V 7KC+wetPorCBpUe8XtQH6jvmpNJSn8U6zieEkFrnlEtXAh5vCN+/XBinjJTQZDDL WPS/0tlgY0pMlsakqMkNQGHj8wC5htXUyQCYamtCxQ0Dj0HiD1eMC7WhBm9F4Rtv Tr5Lm+L5rwXvmyEY/W/9itzvcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVHwW7w UM0lBdVG32lBxyL2aCM/MB8GA1UdIwQYMBaAFOMKTN32wmmsujnKWKqVktiYZAH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0Y0Ny8zMzBBMDA4Q0NF NTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2FheTZPY3BZcXBXUzJKaGtB ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR3cE0zZmJDYWF5Nk9jcFlxcFdTMkpoa0FmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0Y0Ny8zMzBBMDA4Q0NFNTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2Fh eTZPY3BZcXBXUzJKaGtBZlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6TK/IZy+ZuK7bQg5u8i6MISv5IiZGvke8pYHP+2Ix/Gg952hLStpD nCKDbGqrou4BT03OcjE49WoqJB35rMZJ5gwidFmuN8EfQON3qt6QWBr1RQS418MH TAh+uJbBw8H/MRiwSb7rEIAJX2H9CAcF5pMTkXDpWX/xPuPnUlAcXlHkVaCE8jEl fY5SOZESvZaKvbWfa5IYc0NLxCitgF8ch1U6/K0s1tvPYrECx51dW0aWjANu1/KF /B1ygGJnqM4WupVYQF5tNGqnLEe8EBDQ4Pn4pXfauUR6mC9vriwQut5HnIU1GEbN S7m/Hhrqcu4uTyCERqBvaEw3KWYtkBqB -----END CERTIFICATE-----Generated at Wed Jul 2 20:51:41 2025 by rpki-client