$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft File: R4pL3QESHRxrMz7MPiW6Gohxmao.mft (raw, json) Hash identifier: Wi576OuMIkx/IVw8WPuAR5YbwcJocEe5TVC2mK7/6cg= Subject key identifier: 07:19:BD:FF:A9:CF:91:00:BF:5B:EF:6A:95:C3:96:A2:F4:D1:97:4A Authority key identifier: 47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA Certificate issuer: /CN=A91DF076/serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Certificate serial: 0DFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft Manifest number: 0DF4 Signing time: Fri 22 Aug 2025 17:58:58 +0000 Manifest this update: Fri 22 Aug 2025 17:58:58 +0000 Manifest next update: Fri 29 Aug 2025 17:58:58 +0000 Files and hashes: 1: R4pL3QESHRxrMz7MPiW6Gohxmao.crl (hash: ZKHQGoHQiB2WrHaUVJNMouAE/wxg/pvjqwkqfqFRXA0=) 2: 7043D43679BB11ECB6D72266C4F9AE02.roa (hash: BOGz00jzThHZrjf4AnHf9t8835VNaXb3kuD1iUSrcgE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3581 (0xdfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF076, serialNumber=478A4BDD01121D1C6B333ECC3E25BA1A887199AA Validity Not Before: Aug 22 17:58:58 2025 GMT Not After : Aug 29 17:58:58 2025 GMT Subject: CN=68a8afe2-d5d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a6:6c:26:38:dc:63:27:36:80:d0:7f:f6:51: 5b:f4:e8:1b:9e:d4:a3:4e:0e:78:66:33:d4:57:31: 26:e7:bf:8c:7f:4b:1d:03:d1:a8:b7:d8:ea:ce:ee: c5:8f:59:cf:e0:bd:30:d6:93:f8:08:28:e3:07:f8: 97:7f:c0:e9:e6:75:70:db:c6:76:27:78:74:9b:06: 91:d4:79:09:5c:17:03:db:09:81:e5:75:14:7a:d9: 25:3c:f1:42:72:76:97:5e:8b:0d:7a:c6:7d:e9:4f: 2b:65:d1:4c:15:a9:4d:68:a1:7e:89:29:72:88:db: 8e:71:9f:f8:dc:29:ff:6e:c1:0e:29:c8:68:43:e9: 42:26:c8:74:f6:46:83:fc:e7:11:50:cd:cc:0d:9d: b0:5f:59:25:99:e1:1e:96:7e:72:9f:90:dd:e7:71: 64:84:bd:e9:60:a4:09:09:8b:2c:e2:f9:c8:52:77: 93:c7:b9:ec:e1:b5:69:89:35:bb:cd:0a:40:74:cf: f0:c1:63:38:e5:b2:ee:04:6f:41:80:b0:c3:43:c0: 62:79:73:72:2d:32:7a:70:3d:4e:e0:a9:f5:c8:0a: 85:ae:0c:25:43:f6:0e:40:ec:2c:ea:9e:0f:23:28: c0:85:4c:a5:ae:18:19:af:80:30:df:48:5c:26:dd: 4d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:19:BD:FF:A9:CF:91:00:BF:5B:EF:6A:95:C3:96:A2:F4:D1:97:4A X509v3 Authority Key Identifier: keyid:47:8A:4B:DD:01:12:1D:1C:6B:33:3E:CC:3E:25:BA:1A:88:71:99:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R4pL3QESHRxrMz7MPiW6Gohxmao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF076/A408F582B90411E9B1D50B41C4F9AE02/R4pL3QESHRxrMz7MPiW6Gohxmao.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:71:b7:4b:69:8d:f4:af:41:cf:46:84:cb:a5:6a:27:2a:d6: 79:3c:87:1c:a9:99:cb:39:20:54:bf:4b:7e:13:d3:0c:a5:5e: 69:60:a9:06:d6:11:0a:6b:94:7a:d2:e8:a1:22:64:05:cc:90: dc:b9:50:e4:e1:6c:0d:6c:3c:e0:5e:08:77:a1:30:ce:e2:a6: a2:65:0f:8d:b9:55:fe:d1:13:50:f0:8f:dc:ec:aa:58:be:9c: 6c:0d:83:2a:93:d8:ad:af:90:2b:06:c4:30:b2:ea:fc:7d:58: 7b:5d:ce:ee:3d:9f:9d:2c:00:aa:4c:0f:b5:99:ac:2c:0a:d3: 0e:0c:57:8c:e7:9b:f1:9b:94:eb:2d:53:68:39:e1:1a:d4:72: bd:76:2f:db:e3:dd:c1:43:bf:19:48:95:6e:d6:5f:da:47:29: 1a:aa:72:f8:83:83:a9:4a:ce:3b:07:e0:70:2f:0f:8f:54:39: 76:7a:2d:ee:73:0d:4e:76:cf:f5:3a:60:9c:d0:23:38:47:cf: 70:2c:22:b8:24:6e:05:22:ee:0b:a7:8a:9c:da:37:f9:ce:ad: b3:0b:39:ef:49:34:99:75:c9:22:de:90:2a:dc:8a:a0:32:1d: 6c:d5:8d:44:cc:8c:4f:da:41:cf:0e:66:df:08:60:5d:1d:10: 17:bd:88:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYwNzYxMTAvBgNVBAUTKDQ3OEE0QkREMDExMjFEMUM2QjMzM0VDQzNFMjVCQTFB ODg3MTk5QUEwHhcNMjUwODIyMTc1ODU4WhcNMjUwODI5MTc1ODU4WjAYMRYwFAYD VQQDEw02OGE4YWZlMi1kNWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvqZsJjjcYyc2gNB/9lFb9OgbntSjTg54ZjPUVzEm57+Mf0sdA9Got9jqzu7F j1nP4L0w1pP4CCjjB/iXf8Dp5nVw28Z2J3h0mwaR1HkJXBcD2wmB5XUUetklPPFC cnaXXosNesZ96U8rZdFMFalNaKF+iSlyiNuOcZ/43Cn/bsEOKchoQ+lCJsh09kaD /OcRUM3MDZ2wX1klmeEeln5yn5Dd53FkhL3pYKQJCYss4vnIUneTx7ns4bVpiTW7 zQpAdM/wwWM45bLuBG9BgLDDQ8BieXNyLTJ6cD1O4Kn1yAqFrgwlQ/YOQOws6p4P IyjAhUylrhgZr4Aw30hcJt1NOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcZvf+p z5EAv1vvapXDlqL00ZdKMB8GA1UdIwQYMBaAFEeKS90BEh0cazM+zD4luhqIcZmq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjA3Ni9BNDA4RjU4MkI5 MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hSeHJNejdNUGlXNkdvaHht YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I0cEwzUUVTSFJ4ck16N01QaVc2R29oeG1hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjA3Ni9BNDA4RjU4MkI5MDQxMUU5QjFENTBCNDFDNEY5QUUwMi9SNHBMM1FFU0hS eHJNejdNUGlXNkdvaHhtYW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAycbdLaY30r0HPRoTLpWonKtZ5PIccqZnLOSBUv0t+E9MMpV5pYKkG 1hEKa5R60uihImQFzJDcuVDk4WwNbDzgXgh3oTDO4qaiZQ+NuVX+0RNQ8I/c7KpY vpxsDYMqk9itr5ArBsQwsur8fVh7Xc7uPZ+dLACqTA+1mawsCtMODFeM55vxm5Tr LVNoOeEa1HK9di/b493BQ78ZSJVu1l/aRykaqnL4g4OpSs47B+BwLw+PVDl2ei3u cw1Ods/1OmCc0CM4R89wLCK4JG4FIu4Lp4qc2jf5zq2zCznvSTSZdcki3pAq3Iqg Mh1s1Y1EzIxP2kHPDmbfCGBdHRAXvYjX -----END CERTIFICATE-----Generated at Sat Aug 23 14:28:55 2025 by rpki-client