$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft File: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft (raw, json) Hash identifier: M/vyWPkOUcfzFXLfB5DRCeI+nI/QmoXzvt4f8twZms0= Subject key identifier: E3:C4:86:E9:D3:8E:4D:D5:A0:51:CB:09:70:68:8E:8F:4E:F8:3E:87 Authority key identifier: E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 Certificate issuer: /CN=A91C4060/serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Certificate serial: 074B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft Manifest number: 0744 Signing time: Fri 22 Aug 2025 21:52:06 +0000 Manifest this update: Fri 22 Aug 2025 21:52:06 +0000 Manifest next update: Fri 29 Aug 2025 21:52:06 +0000 Files and hashes: 1: 4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl (hash: +K54XFNh/Gag1QabKDbIt4C2w0fZQLmoxcFGU7yUL+Y=) 2: 71C26BD039D211EB84B9FD6BC4F9AE02.roa (hash: 1uZF2QAxlIwO0QnFgrG3CrAusMfAKjQaAjjZhLnhprI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1867 (0x74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4060, serialNumber=E21F24E0C54DBB93F667814402D66AD408071114 Validity Not Before: Aug 22 21:52:06 2025 GMT Not After : Aug 29 21:52:06 2025 GMT Subject: CN=68a8e686-12d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1a:a5:d4:4e:67:1b:94:7d:f1:1d:f6:45:02: 2e:7f:65:dc:5f:de:2f:5f:e9:35:fc:da:f4:dd:76: da:f5:b3:66:07:30:3f:ab:8e:dd:7f:00:4f:0a:27: 08:b9:7e:f7:22:46:52:bc:7c:10:44:42:90:2e:8b: 1f:eb:a1:93:94:b4:2d:47:87:06:9a:07:38:7f:9c: b9:00:34:1b:0e:dd:f0:ca:f9:77:ff:db:1a:19:f3: 94:b3:02:74:78:c5:32:9e:1e:8c:03:1e:00:13:d5: 0a:63:e1:11:0e:67:3c:21:fa:45:a5:b3:71:36:dd: c9:48:46:e5:bb:65:57:ba:24:d2:d9:b9:2e:f0:5e: 71:c0:1a:5e:f8:f5:a9:4b:c3:db:83:c2:12:a2:ab: cb:a6:9d:8a:76:20:c4:df:d3:23:ed:ca:22:3e:9f: d8:bc:17:a2:cf:a9:16:52:49:ae:c1:3e:1a:2c:3b: 2e:e4:5f:f3:7c:24:26:b2:a1:4b:fb:55:8c:82:21: 4d:fe:77:29:c7:78:3d:09:15:e4:99:e5:83:e5:cf: 23:be:83:63:fc:ab:73:d1:01:a4:eb:ed:d1:ee:b1: 49:78:c6:64:0e:7f:00:c9:c4:87:e4:8b:8f:8b:f0: 8f:2b:77:68:76:b0:b8:02:db:5a:a6:17:ff:9d:ee: 40:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C4:86:E9:D3:8E:4D:D5:A0:51:CB:09:70:68:8E:8F:4E:F8:3E:87 X509v3 Authority Key Identifier: keyid:E2:1F:24:E0:C5:4D:BB:93:F6:67:81:44:02:D6:6A:D4:08:07:11:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4060/569389FE39D011EB8F471569C4F9AE02/4h8k4MVNu5P2Z4FEAtZq1AgHERQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:61:57:5e:50:41:cb:15:c2:c3:b4:cf:1b:64:6c:ba:2f:a9: 92:a9:ce:4c:eb:d5:66:9a:9f:2b:56:b7:db:88:6e:cb:95:01: f4:a6:bb:7f:e4:b5:53:d8:ac:34:71:37:ef:ad:87:4f:be:8a: ca:72:a3:3c:98:ed:4e:84:6d:e6:85:ee:30:4d:9b:53:5a:3e: e2:50:03:5a:be:71:b0:48:da:34:4d:ef:8b:dd:2b:ab:b1:0b: bd:6f:8d:8a:b5:49:31:e5:43:a9:ca:59:f8:56:e8:91:a7:5f: 27:2f:95:17:a2:a1:4f:d2:ca:ac:c7:ac:bb:bb:c4:94:c5:e6: e9:f7:d3:28:65:a1:a7:16:b0:ba:c5:4b:15:33:86:aa:bb:26: 68:18:e1:48:ab:40:cd:aa:71:e3:c1:93:6d:0c:dc:c6:3a:6c: b6:eb:09:4a:eb:52:37:d9:4b:c4:c3:65:25:09:05:71:b3:8d: 72:06:7a:ae:76:77:a7:ea:90:4d:d7:ce:57:b8:7b:91:11:0d: ae:04:a1:a6:9d:f9:07:a3:5b:b7:ed:8e:20:11:3d:da:96:5f: 19:da:ab:1e:cb:10:6f:9f:2e:54:2e:bb:8e:1b:4c:fe:12:a3: 72:62:ff:de:14:67:f6:82:96:04:f4:79:a8:0e:69:57:d3:fb: d5:e8:34:bc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwNjAxMTAvBgNVBAUTKEUyMUYyNEUwQzU0REJCOTNGNjY3ODE0NDAyRDY2QUQ0 MDgwNzExMTQwHhcNMjUwODIyMjE1MjA2WhcNMjUwODI5MjE1MjA2WjAYMRYwFAYD VQQDEw02OGE4ZTY4Ni0xMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2xql1E5nG5R98R32RQIuf2XcX94vX+k1/Nr03Xba9bNmBzA/q47dfwBPCicI uX73IkZSvHwQREKQLosf66GTlLQtR4cGmgc4f5y5ADQbDt3wyvl3/9saGfOUswJ0 eMUynh6MAx4AE9UKY+ERDmc8IfpFpbNxNt3JSEblu2VXuiTS2bku8F5xwBpe+PWp S8Pbg8ISoqvLpp2KdiDE39Mj7coiPp/YvBeiz6kWUkmuwT4aLDsu5F/zfCQmsqFL +1WMgiFN/ncpx3g9CRXkmeWD5c8jvoNj/Ktz0QGk6+3R7rFJeMZkDn8AycSH5IuP i/CPK3dodrC4Attaphf/ne5A5wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOPEhunT jk3VoFHLCXBojo9O+D6HMB8GA1UdIwQYMBaAFOIfJODFTbuT9meBRALWatQIBxEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDA2MC81NjkzODlGRTM5 RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1UDJaNEZFQXRacTFBZ0hF UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRoOGs0TVZOdTVQMlo0RkVBdFpxMUFnSEVSUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDA2MC81NjkzODlGRTM5RDAxMUVCOEY0NzE1NjlDNEY5QUUwMi80aDhrNE1WTnU1 UDJaNEZFQXRacTFBZ0hFUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1YVdeUEHLFcLDtM8bZGy6L6mSqc5M69Vmmp8rVrfbiG7LlQH0prt/ 5LVT2Kw0cTfvrYdPvorKcqM8mO1OhG3mhe4wTZtTWj7iUANavnGwSNo0Te+L3Sur sQu9b42KtUkx5UOpyln4VuiRp18nL5UXoqFP0sqsx6y7u8SUxebp99MoZaGnFrC6 xUsVM4aquyZoGOFIq0DNqnHjwZNtDNzGOmy26wlK61I32UvEw2UlCQVxs41yBnqu dnen6pBN185XuHuREQ2uBKGmnfkHo1u37Y4gET3all8Z2qseyxBvny5ULruOG0z+ EqNyYv/eFGf2gpYE9HmoDmlX0/vV6DS8 -----END CERTIFICATE-----Generated at Sat Aug 23 21:20:42 2025 by rpki-client