$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft File: 4Y-ehXQ6vsrARiuP30On20pij_k.mft (raw, json) Hash identifier: J9ZJSm94tFM51cc1A9z0WV88BK0PeYCA26wVGkw4iB4= Subject key identifier: FA:31:E6:16:43:54:22:E9:CC:E0:66:89:7F:7E:DF:B0:34:5E:72:C3 Authority key identifier: E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 Certificate issuer: /CN=A91C9A8D/serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft Manifest number: 0476 Signing time: Sat 23 Aug 2025 00:40:45 +0000 Manifest this update: Sat 23 Aug 2025 00:40:45 +0000 Manifest next update: Sat 30 Aug 2025 00:40:45 +0000 Files and hashes: 1: 4Y-ehXQ6vsrARiuP30On20pij_k.crl (hash: echbvchmhDuDReOFvOwtXdKDytNlD6COvfprhJyp4r4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:40:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9A8D, serialNumber=E18F9E85743ABECAC0462B8FDF43A7DB4A628FF9 Validity Not Before: Aug 23 00:40:45 2025 GMT Not After : Aug 30 00:40:45 2025 GMT Subject: CN=68a90e0d-a6ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ad:cb:44:a5:a5:b5:b1:78:1e:1b:2d:12:ff: 69:71:b3:4b:cd:0d:0e:5e:cb:3d:40:25:56:5d:f5: 7b:a4:cf:70:5d:e1:e5:ac:70:43:69:44:31:91:25: 8b:b9:a5:0d:c5:bf:4d:82:2f:97:61:28:ed:ca:3c: b9:67:40:12:d9:35:d4:ed:7c:d0:35:b5:f4:8d:95: b5:cd:69:45:a1:e1:4b:72:da:b7:4b:78:99:36:0b: f6:09:26:f2:81:bf:88:01:90:57:24:91:d4:e9:2f: bb:98:56:5a:c9:ba:73:a1:02:b8:05:66:3f:97:49: 29:2b:74:b1:72:4d:98:4e:09:20:c3:37:93:d4:b8: ef:c4:8c:16:dd:b1:65:74:e5:cd:9b:ca:53:3b:16: c3:ee:41:96:9d:21:3f:bd:79:a4:15:2e:74:f4:81: 4d:a7:72:2b:3d:2d:d0:a2:4e:28:94:eb:a4:3b:ef: 61:cf:19:44:08:b0:74:5e:2b:6b:15:4f:5e:68:be: 4d:04:23:d9:11:80:26:18:9e:bd:9e:6a:64:11:eb: bd:f1:78:cd:ee:b1:26:84:db:bd:44:d3:af:86:89: 49:b8:f6:7e:12:a9:bf:fb:63:cf:1d:68:aa:74:5e: 08:50:43:e4:40:2b:f1:02:6f:8c:4f:f4:f3:d6:3c: c0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:31:E6:16:43:54:22:E9:CC:E0:66:89:7F:7E:DF:B0:34:5E:72:C3 X509v3 Authority Key Identifier: keyid:E1:8F:9E:85:74:3A:BE:CA:C0:46:2B:8F:DF:43:A7:DB:4A:62:8F:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Y-ehXQ6vsrARiuP30On20pij_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9A8D/32F1F4C283E911ECB873C871C4F9AE02/4Y-ehXQ6vsrARiuP30On20pij_k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:77:fa:77:7d:9e:ff:de:e6:22:dd:ab:ef:ed:fc:88:79:a1: 23:a9:5b:60:0f:01:7a:f1:88:5a:c0:12:b6:0b:a2:b6:bc:95: 6f:c3:33:ec:2f:ab:51:49:62:3d:ed:11:b2:3c:33:45:a8:db: 2e:39:ad:62:9b:87:fa:9c:c0:dd:83:92:27:f3:8f:28:6b:6e: 1a:1d:0c:62:8f:0b:9e:cb:b0:69:fa:25:6e:e1:0e:a0:43:22: a1:ee:d5:5c:15:65:b4:40:b0:c1:15:ee:c2:33:71:e0:7d:f1: 34:58:b1:e7:7c:27:60:ee:79:d6:ea:6b:ef:5f:de:1b:bd:33: 41:fa:34:62:4d:04:fb:05:e6:b4:49:0f:48:b0:cf:24:5a:c2: 1d:40:ad:a2:a8:6b:73:88:68:53:a5:9c:64:78:8b:1d:62:35: 7f:e0:1c:96:70:ee:d3:b8:02:b9:68:57:95:c4:f0:75:7b:09: 97:13:35:02:02:d4:df:8a:c1:8c:0a:d5:9d:bf:b8:00:e2:3f: 1c:45:2f:73:23:62:6b:e5:ad:a9:1a:8d:f1:7b:e0:ba:f4:39: 36:f1:2e:22:d2:fe:1d:ee:2f:36:30:e2:ee:a1:9f:0e:cc:57: 8f:0f:97:a5:55:55:85:0a:e7:95:d9:fe:c3:a9:2d:91:ca:63: 07:1b:e0:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlBOEQxMTAvBgNVBAUTKEUxOEY5RTg1NzQzQUJFQ0FDMDQ2MkI4RkRGNDNBN0RC NEE2MjhGRjkwHhcNMjUwODIzMDA0MDQ1WhcNMjUwODMwMDA0MDQ1WjAYMRYwFAYD VQQDEw02OGE5MGUwZC1hNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwK3LRKWltbF4HhstEv9pcbNLzQ0OXss9QCVWXfV7pM9wXeHlrHBDaUQxkSWL uaUNxb9Ngi+XYSjtyjy5Z0AS2TXU7XzQNbX0jZW1zWlFoeFLctq3S3iZNgv2CSby gb+IAZBXJJHU6S+7mFZaybpzoQK4BWY/l0kpK3Sxck2YTgkgwzeT1LjvxIwW3bFl dOXNm8pTOxbD7kGWnSE/vXmkFS509IFNp3IrPS3Qok4olOukO+9hzxlECLB0Xitr FU9eaL5NBCPZEYAmGJ69nmpkEeu98XjN7rEmhNu9RNOvholJuPZ+Eqm/+2PPHWiq dF4IUEPkQCvxAm+MT/Tz1jzAjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPox5hZD VCLpzOBmiX9+37A0XnLDMB8GA1UdIwQYMBaAFOGPnoV0Or7KwEYrj99Dp9tKYo/5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUE4RC8zMkYxRjRDMjgz RTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZzckFSaXVQMzBPbjIwcGlq X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZLWVoWFE2dnNyQVJpdVAzME9uMjBwaWpfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUE4RC8zMkYxRjRDMjgzRTkxMUVDQjg3M0M4NzFDNEY5QUUwMi80WS1laFhRNnZz ckFSaXVQMzBPbjIwcGlqX2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAed/p3fZ7/3uYi3avv7fyIeaEjqVtgDwF68YhawBK2C6K2vJVvwzPs L6tRSWI97RGyPDNFqNsuOa1im4f6nMDdg5In848oa24aHQxijwuey7Bp+iVu4Q6g QyKh7tVcFWW0QLDBFe7CM3HgffE0WLHnfCdg7nnW6mvvX94bvTNB+jRiTQT7Bea0 SQ9IsM8kWsIdQK2iqGtziGhTpZxkeIsdYjV/4ByWcO7TuAK5aFeVxPB1ewmXEzUC AtTfisGMCtWdv7gA4j8cRS9zI2Jr5a2pGo3xe+C69Dk28S4i0v4d7i82MOLuoZ8O zFePD5elVVWFCueV2f7DqS2RymMHG+B4 -----END CERTIFICATE-----Generated at Sat Aug 23 16:12:39 2025 by rpki-client