$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft File: 4vB0KtgKnbsodRhO4N1elN11eEs.mft (raw, json) Hash identifier: qV0ztAHoU/lS6OYZlpW8WMxS3QSz5/KCGEIXoEr5t2o= Subject key identifier: 07:77:CC:96:87:2D:6E:44:87:52:E8:93:23:0B:DA:B2:5F:48:9E:AD Authority key identifier: E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B Certificate issuer: /CN=A91C23FE/serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Certificate serial: 1C09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft Manifest number: 1BFF Signing time: Fri 22 Aug 2025 16:18:26 +0000 Manifest this update: Fri 22 Aug 2025 16:18:26 +0000 Manifest next update: Fri 29 Aug 2025 16:18:26 +0000 Files and hashes: 1: 4vB0KtgKnbsodRhO4N1elN11eEs.crl (hash: eokHkTkRlZ9m/98fy/vweVAsQ5g23EtJWLF8JK+kkmg=) 2: A88F22ECCC7011ED931BD15FC4F9AE02.roa (hash: BCcYD/VfHPlrE1idB6qMcYHXBoKVsq99H3ysbvhT4uw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:18:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7177 (0x1c09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23FE, serialNumber=E2F0742AD80A9DBB2875184EE0DD5E94DD75784B Validity Not Before: Aug 22 16:18:26 2025 GMT Not After : Aug 29 16:18:26 2025 GMT Subject: CN=68a89852-9713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dc:bf:ee:d1:50:9d:70:44:45:43:d9:ac:23: fc:2f:ef:36:4f:60:5c:dd:00:3f:6d:85:f6:9b:c0: ca:38:d9:1c:75:2c:05:4e:84:55:8b:f3:e2:e0:d1: 6b:8f:a9:b1:de:e0:a8:0c:1d:18:3f:53:5a:ae:aa: e0:c8:bb:30:e9:5c:99:e8:d7:0e:74:9a:bf:21:7c: ec:05:60:08:4c:80:d9:45:77:3f:05:58:55:83:36: 10:3d:a5:cd:f3:94:e2:81:3f:c9:ef:8e:27:f4:1b: cc:e0:94:37:b6:3c:90:36:38:6c:02:f5:c2:9e:74: 47:f9:11:f1:a0:3e:36:10:95:ff:53:a1:15:84:3b: f2:f5:76:92:b7:e3:17:77:73:70:49:d5:d0:16:57: ef:56:05:b9:8e:1e:4a:1c:4a:24:13:3f:5d:f7:69: 1e:49:8b:30:63:d3:8e:04:2e:f3:aa:63:91:4f:1a: 78:19:6b:7f:2a:8e:85:d3:11:a5:0f:af:97:0e:65: c9:58:f8:ec:8a:c2:17:da:6b:2c:1a:c0:21:b1:33: 82:0a:c2:90:2d:38:d6:c6:66:bb:4a:71:6f:c9:d0: 89:eb:95:17:8f:8e:14:91:4d:9a:b5:c3:1f:15:a1: c8:80:7b:54:5c:64:d9:c8:52:0f:50:b2:eb:51:d8: 89:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:77:CC:96:87:2D:6E:44:87:52:E8:93:23:0B:DA:B2:5F:48:9E:AD X509v3 Authority Key Identifier: keyid:E2:F0:74:2A:D8:0A:9D:BB:28:75:18:4E:E0:DD:5E:94:DD:75:78:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vB0KtgKnbsodRhO4N1elN11eEs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23FE/825CE9AAF9EB11E6BDE7A968C4F9AE02/4vB0KtgKnbsodRhO4N1elN11eEs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:81:1e:cb:70:e6:66:e7:4a:31:29:ab:45:d8:12:aa:bd:64: d6:63:1b:e2:47:d5:4d:70:37:c0:2f:ba:8d:e6:bf:8e:1b:9c: eb:4f:ab:a9:bf:40:26:5e:b3:c8:65:4d:27:b4:10:79:6d:e3: e8:95:0c:ed:c9:6e:df:8d:94:87:86:e8:52:1f:ad:70:33:09: c0:1e:fb:f0:f5:e3:c1:54:bc:39:ea:9a:c9:ff:29:24:ab:ac: 27:d1:fa:24:49:0e:20:01:38:90:16:26:00:9d:2e:42:cf:b4: 7b:67:35:bc:ef:f5:bd:9e:6f:05:82:b1:97:0a:95:2b:85:54: 60:8b:e2:00:ba:98:9a:aa:85:12:8d:00:e3:e4:05:06:3c:53: a8:c9:71:36:ab:ec:78:92:9b:fd:fd:ff:c9:09:1a:fe:64:54: 98:d4:8c:2f:12:a1:91:8e:b2:40:eb:e3:9e:64:6b:94:39:a2: f2:34:59:b4:36:f9:d2:5d:e7:ca:ba:f5:f6:9a:64:12:74:d3: 14:bf:c6:58:e7:9f:9f:69:5c:7c:2f:3a:80:e5:b3:ab:09:b1: 0d:71:dd:d9:f8:e9:31:2d:e2:9f:07:a8:2b:7b:31:64:6a:73: a1:44:6a:fc:f4:f1:5c:28:7a:45:7a:a4:2f:2e:3e:d2:9f:72: 1f:c6:97:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICHAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzRkUxMTAvBgNVBAUTKEUyRjA3NDJBRDgwQTlEQkIyODc1MTg0RUUwREQ1RTk0 REQ3NTc4NEIwHhcNMjUwODIyMTYxODI2WhcNMjUwODI5MTYxODI2WjAYMRYwFAYD VQQDEw02OGE4OTg1Mi05NzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyty/7tFQnXBERUPZrCP8L+82T2Bc3QA/bYX2m8DKONkcdSwFToRVi/Pi4NFr j6mx3uCoDB0YP1NarqrgyLsw6VyZ6NcOdJq/IXzsBWAITIDZRXc/BVhVgzYQPaXN 85TigT/J744n9BvM4JQ3tjyQNjhsAvXCnnRH+RHxoD42EJX/U6EVhDvy9XaSt+MX d3NwSdXQFlfvVgW5jh5KHEokEz9d92keSYswY9OOBC7zqmORTxp4GWt/Ko6F0xGl D6+XDmXJWPjsisIX2mssGsAhsTOCCsKQLTjWxma7SnFvydCJ65UXj44UkU2atcMf FaHIgHtUXGTZyFIPULLrUdiJqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAd3zJaH LW5Eh1LokyML2rJfSJ6tMB8GA1UdIwQYMBaAFOLwdCrYCp27KHUYTuDdXpTddXhL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNGRS84MjVDRTlBQUY5 RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25ic29kUmhPNE4xZWxOMTFl RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2QjBLdGdLbmJzb2RSaE80TjFlbE4xMWVFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MjNGRS84MjVDRTlBQUY5RUIxMUU2QkRFN0E5NjhDNEY5QUUwMi80dkIwS3RnS25i c29kUmhPNE4xZWxOMTFlRXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcgR7LcOZm50oxKatF2BKqvWTWYxviR9VNcDfAL7qN5r+OG5zrT6up v0AmXrPIZU0ntBB5bePolQztyW7fjZSHhuhSH61wMwnAHvvw9ePBVLw56prJ/ykk q6wn0fokSQ4gATiQFiYAnS5Cz7R7ZzW87/W9nm8FgrGXCpUrhVRgi+IAupiaqoUS jQDj5AUGPFOoyXE2q+x4kpv9/f/JCRr+ZFSY1IwvEqGRjrJA6+OeZGuUOaLyNFm0 NvnSXefKuvX2mmQSdNMUv8ZY55+faVx8LzqA5bOrCbENcd3Z+OkxLeKfB6grezFk anOhRGr89PFcKHpFeqQvLj7Sn3IfxpdY -----END CERTIFICATE-----Generated at Sun Aug 24 00:13:41 2025 by rpki-client