$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: Ki7iqwuJQdOycR9+8itc9KtNbMdMN9AFaWHL+gk2THA= Subject key identifier: A5:B0:7B:07:39:94:F9:50:C2:C6:8F:0A:25:4C:DE:A2:7F:A1:C4:B5 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0441 Signing time: Thu 03 Jul 2025 00:52:45 +0000 Manifest this update: Thu 03 Jul 2025 00:52:44 +0000 Manifest next update: Thu 10 Jul 2025 00:52:44 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: 1qJCAnvhJ7b0PG7LjOlh7UhXnL6qLgEX8gYTCiMNBqA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:52:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Jul 3 00:52:44 2025 GMT Not After : Jul 10 00:52:44 2025 GMT Subject: CN=6865d45d-c14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:86:96:75:a6:f7:5a:20:4a:19:0a:40:10:c3: d3:d3:df:a2:e2:ef:d1:06:b7:0b:8a:6c:e0:56:f3: d7:4b:72:8a:79:91:10:df:1c:35:20:c2:18:c7:68: 3e:c6:e2:72:0d:b1:52:8d:d5:a8:06:68:6b:1b:e9: ae:82:03:63:57:50:dd:21:ce:16:93:a8:f6:08:17: 09:ff:e3:31:35:ee:50:63:79:cf:3a:f0:c3:51:84: 6d:e9:25:13:f9:50:8b:71:e7:0d:38:8d:1a:1c:7b: 42:ff:cf:12:60:ba:ad:33:45:de:5d:98:72:77:0a: 4c:d9:3a:87:07:8d:96:cd:67:70:87:ea:b0:2a:39: 8c:b6:40:83:cc:53:52:b8:7c:b9:07:13:0b:c7:03: c0:44:56:f4:0d:f2:1c:80:59:0e:5e:19:2d:67:42: 1b:7f:2e:f6:45:7e:fa:a4:bb:ab:c0:7a:2b:43:cb: 7f:44:33:dc:01:af:de:ee:78:0d:ab:45:7f:a8:59: 6f:78:d1:43:7d:7b:2e:2a:8c:93:f8:af:2e:bc:73: ff:53:02:5d:d9:81:38:17:c1:c5:ae:11:0a:2a:27: 5b:a8:0c:09:03:1f:98:af:86:f7:97:1c:44:5f:68: 47:d3:c0:0c:c7:47:98:6f:01:9e:4b:33:e2:c2:60: 30:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B0:7B:07:39:94:F9:50:C2:C6:8F:0A:25:4C:DE:A2:7F:A1:C4:B5 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:68:18:07:ef:b2:1f:e1:e3:0c:8d:61:7a:0c:5e:af:29:2c: cb:3d:5a:99:3e:f0:96:3d:db:76:80:4c:2a:8a:42:5d:cf:8b: 1e:93:6b:5d:34:de:06:65:38:dd:fc:7b:3b:74:05:57:5a:36: 9c:a4:48:6c:e8:10:3b:b3:5a:89:5a:53:9e:27:85:31:dc:f1: e7:c4:fd:c7:7e:ce:6f:ed:75:cb:16:09:00:19:96:92:15:a6: 0f:45:ed:47:2f:16:41:d2:e6:33:61:d9:38:00:6d:43:f1:46: 3a:7b:a7:7b:b0:5b:b9:de:62:b2:40:0a:28:2e:a5:54:b4:20: 45:72:49:50:fa:bc:a3:05:6a:39:9d:87:62:6b:f7:09:3c:da: 5f:b6:5c:21:71:4c:fe:17:2a:57:23:96:4c:73:94:20:d3:bf: f6:ce:1e:35:e8:aa:26:7e:8e:23:02:70:c0:64:12:d4:3b:70: db:6c:c8:79:b1:bc:e1:d1:5a:bf:a2:75:ab:4d:e1:55:b2:05: 98:b2:e8:58:d8:47:a3:7a:6e:8b:6a:02:9c:d3:c7:1f:95:88: e9:a1:20:be:6b:10:8f:de:e1:a1:9e:c3:ed:3a:c9:bf:05:b7: fc:59:7a:41:0b:79:8f:ca:46:c4:64:ef:0a:08:2e:11:c0:ee: 40:36:46:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwNzAzMDA1MjQ0WhcNMjUwNzEwMDA1MjQ0WjAYMRYwFAYD VQQDEw02ODY1ZDQ1ZC1jMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYaWdab3WiBKGQpAEMPT09+i4u/RBrcLimzgVvPXS3KKeZEQ3xw1IMIYx2g+ xuJyDbFSjdWoBmhrG+muggNjV1DdIc4Wk6j2CBcJ/+MxNe5QY3nPOvDDUYRt6SUT +VCLcecNOI0aHHtC/88SYLqtM0XeXZhydwpM2TqHB42WzWdwh+qwKjmMtkCDzFNS uHy5BxMLxwPARFb0DfIcgFkOXhktZ0Ibfy72RX76pLurwHorQ8t/RDPcAa/e7ngN q0V/qFlveNFDfXsuKoyT+K8uvHP/UwJd2YE4F8HFrhEKKidbqAwJAx+Yr4b3lxxE X2hH08AMx0eYbwGeSzPiwmAwiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWwewc5 lPlQwsaPCiVM3qJ/ocS1MB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbaBgH77If4eMMjWF6DF6vKSzLPVqZPvCWPdt2gEwqikJdz4sek2td NN4GZTjd/Hs7dAVXWjacpEhs6BA7s1qJWlOeJ4Ux3PHnxP3Hfs5v7XXLFgkAGZaS FaYPRe1HLxZB0uYzYdk4AG1D8UY6e6d7sFu53mKyQAooLqVUtCBFcklQ+ryjBWo5 nYdia/cJPNpftlwhcUz+FypXI5ZMc5Qg07/2zh416Komfo4jAnDAZBLUO3DbbMh5 sbzh0Vq/onWrTeFVsgWYsuhY2Eejem6LagKc08cflYjpoSC+axCP3uGhnsPtOsm/ Bbf8WXpBC3mPykbEZO8KCC4RwO5ANkY7 -----END CERTIFICATE-----Generated at Fri Jul 4 17:23:02 2025 by rpki-client