$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft File: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft (raw, json) Hash identifier: i4RPDQHINYxyDhf1++fqFGbKP3G3ANbcDKdCbuAjlDM= Subject key identifier: 9F:B7:BF:C4:F5:B3:14:03:D9:1E:0A:F8:29:14:06:84:57:A7:9D:FE Authority key identifier: E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 Certificate issuer: /CN=A91B7F47/serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Certificate serial: 0DBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft Manifest number: 0DA0 Signing time: Fri 22 Aug 2025 18:03:42 +0000 Manifest this update: Fri 22 Aug 2025 18:03:42 +0000 Manifest next update: Fri 29 Aug 2025 18:03:42 +0000 Files and hashes: 1: 4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl (hash: JoQufatNLCw3/rAA0IHKIvhFotQceXAC8YCK12n2Jig=) 2: 4E98421A162311EB90D1657AC4F9AE02.roa (hash: WuP8PbwAvn5ZuVpPVwFIOAD7pGpuzCnA4Z3ircNjmXc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3514 (0xdba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7F47, serialNumber=E30A4CDDF6C269ACBA39CA58AA9592D8986401F4 Validity Not Before: Aug 22 18:03:42 2025 GMT Not After : Aug 29 18:03:42 2025 GMT Subject: CN=68a8b0fe-4752 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bf:b2:93:39:34:b2:44:f9:3e:24:31:1b:de: 8c:78:96:93:ff:d1:c9:c2:f0:75:f6:50:bb:6e:28: 22:8d:50:7e:52:d9:94:a5:b4:4e:91:ba:f0:1d:fa: 36:2b:ae:3d:58:a4:95:a5:62:83:39:4e:93:9e:8a: 9c:ff:7f:e1:80:70:47:67:c0:35:c7:d8:00:23:0b: 8e:ec:f3:83:9d:3e:bd:c0:8e:66:0c:bb:04:31:b6: 5b:2e:c6:94:86:df:b3:c3:44:02:49:04:55:99:47: a9:a2:07:5b:d1:c0:07:42:cc:ea:ce:5d:fc:28:0d: a6:43:07:49:b0:31:45:4d:ae:9e:2d:b4:b7:6e:47: 03:20:59:4e:77:5f:73:00:4f:21:45:82:88:8f:70: 9c:a3:ae:6b:7c:95:22:ba:56:80:2d:64:ca:ba:4f: cf:0e:b4:84:d6:18:e2:06:e9:d9:21:eb:78:70:4a: a5:e3:00:f4:bc:68:3a:bc:2d:01:05:22:ab:a7:dd: 80:f8:e7:54:83:4e:ad:b8:c5:9b:b0:db:c8:17:c1: 0a:99:44:05:71:65:83:1a:5f:62:2e:86:b7:44:d1: 17:1f:ec:0b:e8:a6:6e:e4:16:73:15:86:a6:b4:8a: 18:f1:eb:05:e9:ca:48:fa:d4:a1:c2:b7:d4:f4:da: 6d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:B7:BF:C4:F5:B3:14:03:D9:1E:0A:F8:29:14:06:84:57:A7:9D:FE X509v3 Authority Key Identifier: keyid:E3:0A:4C:DD:F6:C2:69:AC:BA:39:CA:58:AA:95:92:D8:98:64:01:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4wpM3fbCaay6OcpYqpWS2JhkAfQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7F47/330A008CCE5911E9A0908287C4F9AE02/4wpM3fbCaay6OcpYqpWS2JhkAfQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:04:a7:2d:d6:04:1e:e3:1e:b8:f4:b7:02:89:73:d0:56:d3: fe:d0:3c:7d:68:6b:34:83:11:51:d2:a4:f4:2e:f2:b9:b4:d7: 88:4f:2d:99:03:54:8a:af:e9:ae:44:1c:1b:b3:10:fa:94:8c: e6:0e:92:be:09:c0:28:35:ef:7d:c9:da:af:ff:0b:b3:9a:79: cc:77:a3:07:9d:0c:99:cb:36:b4:95:e2:39:8e:9a:3d:20:03: 45:47:57:5d:fa:fb:fc:e5:2f:8e:67:7a:b1:cf:ff:8c:cc:5b: 14:40:04:4e:b3:4b:39:a8:68:aa:02:fc:62:3e:7e:52:f8:02: 1b:4c:4e:de:17:65:22:50:f8:e7:44:75:17:29:27:48:ca:f2: 38:50:39:3a:18:f5:72:18:3b:a3:4d:fa:65:23:84:a5:17:29: da:c6:46:ee:a3:72:e6:35:8d:ed:bb:47:4a:91:79:53:a5:30: 4c:fe:99:a8:ae:5f:65:c1:1e:ca:03:f7:55:cd:8f:61:f2:07: 2d:0e:3f:91:97:54:6e:35:d8:6b:01:7f:cb:20:f5:5e:3a:c2: 7c:82:b4:63:4e:d2:7f:5f:0b:6d:92:db:d5:c2:17:b4:41:e9: da:f2:37:fa:6d:4c:55:67:72:a3:a2:0f:8e:cb:d8:90:5a:08: 61:20:19:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdGNDcxMTAvBgNVBAUTKEUzMEE0Q0RERjZDMjY5QUNCQTM5Q0E1OEFBOTU5MkQ4 OTg2NDAxRjQwHhcNMjUwODIyMTgwMzQyWhcNMjUwODI5MTgwMzQyWjAYMRYwFAYD VQQDEw02OGE4YjBmZS00NzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtL+ykzk0skT5PiQxG96MeJaT/9HJwvB19lC7bigijVB+UtmUpbROkbrwHfo2 K649WKSVpWKDOU6Tnoqc/3/hgHBHZ8A1x9gAIwuO7PODnT69wI5mDLsEMbZbLsaU ht+zw0QCSQRVmUepogdb0cAHQszqzl38KA2mQwdJsDFFTa6eLbS3bkcDIFlOd19z AE8hRYKIj3Cco65rfJUiulaALWTKuk/PDrSE1hjiBunZIet4cEql4wD0vGg6vC0B BSKrp92A+OdUg06tuMWbsNvIF8EKmUQFcWWDGl9iLoa3RNEXH+wL6KZu5BZzFYam tIoY8esF6cpI+tShwrfU9NptSwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+3v8T1 sxQD2R4K+CkUBoRXp53+MB8GA1UdIwQYMBaAFOMKTN32wmmsujnKWKqVktiYZAH0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0Y0Ny8zMzBBMDA4Q0NF NTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2FheTZPY3BZcXBXUzJKaGtB ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR3cE0zZmJDYWF5Nk9jcFlxcFdTMkpoa0FmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0Y0Ny8zMzBBMDA4Q0NFNTkxMUU5QTA5MDgyODdDNEY5QUUwMi80d3BNM2ZiQ2Fh eTZPY3BZcXBXUzJKaGtBZlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClBKct1gQe4x649LcCiXPQVtP+0Dx9aGs0gxFR0qT0LvK5tNeITy2Z A1SKr+muRBwbsxD6lIzmDpK+CcAoNe99ydqv/wuzmnnMd6MHnQyZyza0leI5jpo9 IANFR1dd+vv85S+OZ3qxz/+MzFsUQAROs0s5qGiqAvxiPn5S+AIbTE7eF2UiUPjn RHUXKSdIyvI4UDk6GPVyGDujTfplI4SlFynaxkbuo3LmNY3tu0dKkXlTpTBM/pmo rl9lwR7KA/dVzY9h8gctDj+Rl1RuNdhrAX/LIPVeOsJ8grRjTtJ/XwttktvVwhe0 Qena8jf6bUxVZ3Kjog+Oy9iQWghhIBk+ -----END CERTIFICATE-----Generated at Sat Aug 23 17:22:03 2025 by rpki-client