$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft File: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft (raw, json) Hash identifier: OeF/1NPjJbr8O9uv5vpjams8W2tHXK7oiOztaAXpMJw= Subject key identifier: DF:DA:FD:B5:A3:2F:DC:EB:0F:CE:72:7F:AC:35:EB:05:F0:1D:60:B4 Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0AE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft Manifest number: 0AE1 Signing time: Fri 22 Aug 2025 19:32:41 +0000 Manifest this update: Fri 22 Aug 2025 19:32:40 +0000 Manifest next update: Fri 29 Aug 2025 19:32:40 +0000 Files and hashes: 1: 4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl (hash: ULT9wffIdrOBG0Yj0twQ5h9c8NymfDBJJIeJxeSfD/A=) 2: 29B9D5B8524111EABEF0A119C4F9AE02.roa (hash: XgnhviRQUKAkeu4itRmlPhHlV4kxqNIZcBKK2pdxl3k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:32:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2792 (0xae8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Aug 22 19:32:40 2025 GMT Not After : Aug 29 19:32:40 2025 GMT Subject: CN=68a8c5d8-e8a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:11:a2:ee:23:d9:60:0d:f6:b7:1d:4b:8a:ae: c3:58:ca:aa:d8:66:0e:45:1c:7b:07:7d:10:ae:37: cf:be:e0:89:ff:0b:f5:ed:87:af:6e:54:ee:37:57: a3:c3:19:20:52:f0:7a:0f:17:59:5a:18:1b:41:a6: 43:ee:b0:e8:0d:f1:f5:dd:6a:87:ef:8f:83:52:2f: fb:40:7d:e1:17:71:42:c2:34:02:d1:b3:1b:2d:9d: 2c:60:22:39:3d:3e:27:b3:72:c1:8e:b5:40:80:4b: c5:c9:a0:17:5f:df:d8:4d:a0:4a:96:fb:3e:f0:98: d7:a0:27:07:d7:74:4b:19:02:4b:25:45:74:5f:17: ac:e8:df:04:39:5f:19:85:68:84:56:1c:fb:d6:13: f6:c1:e5:1b:c1:bb:ef:f5:70:9a:5a:33:d0:83:70: 58:26:87:7c:90:7c:32:31:f5:37:e1:93:14:96:9c: 9b:ee:f2:f9:8e:dd:86:81:3d:d0:43:3f:43:13:25: 9b:73:39:f4:44:2a:db:cc:88:ba:d8:25:c6:d2:a1: 43:5f:29:cd:3c:42:ac:be:50:48:75:6d:c6:58:61: d8:ac:21:56:a2:f4:d8:3a:08:6d:8b:f1:eb:d6:1f: 5a:f1:94:c8:d4:e1:af:36:20:22:61:a9:15:f9:e4: 35:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:DA:FD:B5:A3:2F:DC:EB:0F:CE:72:7F:AC:35:EB:05:F0:1D:60:B4 X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:e0:2b:b9:db:ff:99:60:f3:46:f5:51:30:e4:3a:2d:0b:b8: 2e:d0:53:d7:61:b1:3f:6b:17:3b:fc:9c:ba:51:eb:8d:08:30: 4f:c8:e0:44:16:47:af:4f:7b:6f:aa:46:08:24:f5:b6:58:ce: fa:c2:dd:dc:6f:fc:b9:8e:28:7d:2a:fc:52:73:c3:6d:d1:2c: 63:03:a6:a4:5f:2d:6b:c9:25:25:c8:30:cd:fe:1a:8c:64:dc: 09:99:b8:01:61:3d:cd:b8:4a:4e:9b:06:7c:99:a1:ea:d9:ea: c5:32:1f:7e:af:a7:9c:c4:6d:ed:6a:5b:7f:2c:51:99:45:be: 1a:1d:82:73:0b:e3:83:6f:9e:59:0b:b1:27:3d:85:80:2f:5b: 13:eb:43:63:51:57:a4:6c:85:ea:23:7d:bd:2a:0b:fc:25:54: 62:ab:12:43:e4:6e:d6:f3:1f:35:e5:90:37:d4:2c:79:2e:69: 0e:83:0e:46:aa:36:30:f1:da:24:1c:c6:bd:7a:cb:3a:1d:56: 5d:bb:0d:aa:5b:5a:b3:06:42:cf:da:f2:fb:c1:e2:8e:d1:44: 7d:b3:d1:29:3b:5a:a0:7e:06:c3:84:62:12:7f:a4:41:28:dd: 88:22:36:4c:6a:03:4d:1b:c8:9f:ec:ce:05:c9:07:1c:81:36: c8:93:cd:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCugwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjUwODIyMTkzMjQwWhcNMjUwODI5MTkzMjQwWjAYMRYwFAYD VQQDEw02OGE4YzVkOC1lOGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxGi7iPZYA32tx1Liq7DWMqq2GYORRx7B30QrjfPvuCJ/wv17YevblTuN1ej wxkgUvB6DxdZWhgbQaZD7rDoDfH13WqH74+DUi/7QH3hF3FCwjQC0bMbLZ0sYCI5 PT4ns3LBjrVAgEvFyaAXX9/YTaBKlvs+8JjXoCcH13RLGQJLJUV0Xxes6N8EOV8Z hWiEVhz71hP2weUbwbvv9XCaWjPQg3BYJod8kHwyMfU34ZMUlpyb7vL5jt2GgT3Q Qz9DEyWbczn0RCrbzIi62CXG0qFDXynNPEKsvlBIdW3GWGHYrCFWovTYOghti/Hr 1h9a8ZTI1OGvNiAiYakV+eQ1vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/a/bWj L9zrD85yf6w16wXwHWC0MB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MENBMS83MDYzRTQyNDUyM0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklD bXV2aDRUQ0FtZVlrbk5OaVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA74Cu52/+ZYPNG9VEw5DotC7gu0FPXYbE/axc7/Jy6UeuNCDBPyOBE FkevT3tvqkYIJPW2WM76wt3cb/y5jih9KvxSc8Nt0SxjA6akXy1rySUlyDDN/hqM ZNwJmbgBYT3NuEpOmwZ8maHq2erFMh9+r6ecxG3talt/LFGZRb4aHYJzC+ODb55Z C7EnPYWAL1sT60NjUVekbIXqI329Kgv8JVRiqxJD5G7W8x815ZA31Cx5LmkOgw5G qjYw8dokHMa9ess6HVZduw2qW1qzBkLP2vL7weKO0UR9s9EpO1qgfgbDhGISf6RB KN2IIjZMagNNG8if7M4FyQccgTbIk82Q -----END CERTIFICATE-----Generated at Sat Aug 23 21:31:02 2025 by rpki-client