$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: MMpgCAYbHBEdRCnyF100mLTU9kQ1ED0zFrwaSg5JYkQ= Subject key identifier: 63:CA:E8:89:63:C0:45:F7:4D:64:74:29:A1:6F:A4:C8:22:74:EA:66 Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DD9 Signing time: Mon 30 Jun 2025 18:06:17 +0000 Manifest this update: Mon 30 Jun 2025 18:06:17 +0000 Manifest next update: Mon 07 Jul 2025 18:06:17 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: tk69TU7+YxHel2ptWPX7Sd0lb+BuiRMp0y94Mn6sKjM=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 18:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3554 (0xde2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Jun 30 18:06:17 2025 GMT Not After : Jul 7 18:06:17 2025 GMT Subject: CN=6862d219-0edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7d:74:4b:72:9f:2f:c7:a3:52:5b:21:58:ce: e2:db:e0:bf:12:23:c3:02:95:32:27:4a:a3:75:aa: a5:f9:7a:8b:b9:f9:31:db:74:11:77:18:c7:c1:f2: 4c:9d:99:16:d2:ea:57:77:c2:2c:2b:c9:b7:cd:1c: 30:7a:de:c3:b2:d4:06:c8:ed:28:91:57:cb:6c:62: 50:ec:c1:10:d4:74:82:35:c2:35:fd:42:43:15:ff: 62:27:f3:a1:8c:4f:97:95:f5:57:96:e5:d5:e3:99: a4:75:4a:75:d7:c9:3c:ae:15:f5:87:03:a3:77:98: f4:f9:4b:e4:30:bc:a8:03:85:fe:e2:d3:16:df:ed: a7:ab:a1:d3:f0:6f:4e:88:c6:41:05:b0:f7:d9:d7: 83:b5:3e:cd:e3:2a:10:e3:a4:c0:26:63:43:02:74: eb:ce:e6:ff:55:13:20:9e:31:ef:6d:9f:07:2e:b7: fd:a0:f6:a5:6a:4d:10:4a:d0:8d:5d:5b:ae:ba:cd: 98:31:ec:ab:9f:f5:e5:c2:a7:df:b5:18:04:fb:e5: c7:42:9f:a1:0a:05:2a:b9:e9:4b:d3:e1:20:17:57: cf:f2:7f:9d:e6:cd:12:1d:96:57:99:c7:ff:f2:91: ff:30:a5:55:51:2e:3a:ef:c4:e7:45:e6:93:9c:36: d1:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:CA:E8:89:63:C0:45:F7:4D:64:74:29:A1:6F:A4:C8:22:74:EA:66 X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:7e:86:58:98:1b:a3:c3:8a:5a:0d:40:e4:50:ef:d0:a6:2a: 17:5d:8c:d3:db:f8:d3:f4:4d:dc:06:5f:fb:a8:77:c2:9b:58: 7c:5b:e3:4d:02:ad:8b:a0:8d:28:20:49:47:5c:91:3c:54:7e: 47:c0:aa:b8:cb:3b:f5:e4:83:31:8a:38:c0:2f:18:41:bd:72: ba:43:0e:a6:15:15:fa:48:79:03:27:29:bd:dc:5c:a0:68:4f: f4:b6:f0:ae:4f:5b:aa:ff:49:e1:27:11:3c:eb:1e:54:c4:67: 11:a8:02:83:da:c7:19:83:7e:4f:96:6d:42:a3:20:7b:07:50: 8f:2d:c8:20:32:a6:b4:69:70:80:fd:14:29:00:13:9e:bc:9a: 84:dd:24:19:57:4d:6c:9e:91:30:2d:ed:7b:a5:21:3c:59:47: f0:48:4e:20:57:bd:bc:9f:f2:83:98:cb:11:a8:0e:9a:e2:c8: a3:c0:1e:86:a7:c0:96:88:60:37:3c:74:19:5c:a4:75:97:4d: 7c:84:5c:bc:58:68:9c:53:e8:40:c1:d0:ba:52:72:46:72:e1: f3:b4:b4:3b:6f:41:59:83:fd:b5:08:43:34:44:32:3c:2e:ad: 10:63:ea:c7:25:47:db:ac:72:50:b8:cc:56:41:a3:a8:aa:b0: b5:3b:71:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwNjMwMTgwNjE3WhcNMjUwNzA3MTgwNjE3WjAYMRYwFAYD VQQDEw02ODYyZDIxOS0wZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6X10S3KfL8ejUlshWM7i2+C/EiPDApUyJ0qjdaql+XqLufkx23QRdxjHwfJM nZkW0upXd8IsK8m3zRwwet7DstQGyO0okVfLbGJQ7MEQ1HSCNcI1/UJDFf9iJ/Oh jE+XlfVXluXV45mkdUp118k8rhX1hwOjd5j0+UvkMLyoA4X+4tMW3+2nq6HT8G9O iMZBBbD32deDtT7N4yoQ46TAJmNDAnTrzub/VRMgnjHvbZ8HLrf9oPalak0QStCN XVuuus2YMeyrn/XlwqfftRgE++XHQp+hCgUquelL0+EgF1fP8n+d5s0SHZZXmcf/ 8pH/MKVVUS4678TnReaTnDbRmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGPK6Ilj wEX3TWR0KaFvpMgidOpmMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+foZYmBujw4paDUDkUO/QpioXXYzT2/jT9E3cBl/7qHfCm1h8W+NN Aq2LoI0oIElHXJE8VH5HwKq4yzv15IMxijjALxhBvXK6Qw6mFRX6SHkDJym93Fyg aE/0tvCuT1uq/0nhJxE86x5UxGcRqAKD2scZg35Plm1CoyB7B1CPLcggMqa0aXCA /RQpABOevJqE3SQZV01snpEwLe17pSE8WUfwSE4gV728n/KDmMsRqA6a4sijwB6G p8CWiGA3PHQZXKR1l018hFy8WGicU+hAwdC6UnJGcuHztLQ7b0FZg/21CEM0RDI8 Lq0QY+rHJUfbrHJQuMxWQaOoqrC1O3GE -----END CERTIFICATE-----Generated at Wed Jul 2 05:08:46 2025 by rpki-client