$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft File: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft (raw, json) Hash identifier: dLlzhIMw9jchIdksChqkmDTFmi7wb+xxxJ/b45J+Iug= Subject key identifier: 99:26:8C:F2:27:84:9C:D8:76:AE:62:69:C5:6C:70:B4:49:02:1E:3D Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft Manifest number: BA Signing time: Tue 01 Jul 2025 06:34:58 +0000 Manifest this update: Tue 01 Jul 2025 06:34:57 +0000 Manifest next update: Tue 08 Jul 2025 06:34:57 +0000 Files and hashes: 1: 4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl (hash: rCAKhBiggDhyngSKaXYTgsPQxr4+BCmk5aYE9IbAiMY=) 2: 0B725F44496D11EF9F7F2116C4F9AE02.roa (hash: SsTEks9DzvfjnZoXdnmZIWjNSHqbFmVLR2wVP5eTyr8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Jul 1 06:34:57 2025 GMT Not After : Jul 8 06:34:57 2025 GMT Subject: CN=68638191-6286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:39:9f:1a:23:d4:47:83:f9:e4:a9:a7:b4:17: 2f:92:cf:99:f1:47:36:62:9e:89:ea:dc:fb:97:ea: d7:e0:ff:0e:a9:7d:bc:e5:0a:58:f5:08:b1:b9:3a: f4:d7:48:a3:dd:c8:e2:73:12:75:94:4d:a5:30:60: 31:ba:e1:63:fb:34:bc:36:fd:d7:72:a2:36:ba:5a: b0:01:b7:04:1d:e6:81:46:90:7d:7c:19:e8:d3:8c: 2d:0a:98:e3:59:02:78:a2:ce:bb:18:02:84:2a:a0: d0:01:a7:80:4f:cb:27:69:05:fa:1e:6f:f7:6c:04: df:45:c9:b9:c5:a0:b7:55:5b:54:5d:ae:c3:af:39: 7b:0d:91:cb:f3:f2:0f:ab:e4:77:ad:f0:76:40:42: e8:70:b3:1d:e6:82:66:ae:ed:85:6c:f7:f1:eb:2f: e1:ca:26:ab:8b:62:6c:bb:b2:ad:f6:6a:d0:ba:03: 47:2e:29:f0:79:52:8e:13:14:99:71:e6:81:e1:cc: 23:bd:d9:ce:b2:4b:40:d5:36:55:6d:2b:1e:f3:72: 77:22:ac:cc:c9:74:00:6e:b6:f9:08:f4:22:6b:a9: 5f:5c:83:56:d4:42:bf:8a:e5:eb:29:ed:a9:78:55: a2:2a:2f:77:84:04:a7:03:6d:ac:d4:78:59:95:be: 3a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:26:8C:F2:27:84:9C:D8:76:AE:62:69:C5:6C:70:B4:49:02:1E:3D X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:a5:cc:68:3d:82:a0:bb:42:ef:14:88:20:e9:2b:79:22:e8: 0d:58:6f:b2:95:b9:15:7c:dc:28:b5:b8:c4:09:66:cc:07:08: 55:a0:50:f8:42:d2:61:ec:35:28:3f:3d:cc:5a:00:30:e7:76: 1b:83:a0:3f:30:1f:0f:70:74:2e:ea:0d:3d:5a:b7:79:4d:7a: 38:33:2f:42:8f:a5:31:f2:29:df:b5:94:00:66:e5:4a:da:aa: 9a:b2:81:ee:5e:f3:b7:67:2b:72:cd:b9:f1:fa:63:f8:74:31: 70:5d:a8:ec:4c:06:ab:09:ac:3c:59:72:74:ff:a7:72:6b:93: 75:5a:bd:49:4c:06:27:f9:29:ee:f6:66:49:5d:33:72:c6:24: 18:14:63:fd:73:04:f5:76:c4:ac:14:52:ba:f8:23:1d:22:81: fd:55:cb:0d:4f:e3:59:9c:a5:67:1f:73:be:1f:ad:b8:73:2f: 5d:0c:5a:1f:dd:84:c9:de:4d:1c:00:c8:c9:bb:56:68:5c:fe: 50:37:3d:9d:fd:2a:e1:c4:ff:da:71:54:d0:7d:5f:a8:41:da: 10:ae:5a:5c:89:28:bf:0c:b9:7d:f7:30:c8:f6:14:67:c9:80: dc:3c:ab:09:68:7a:18:c0:2f:97:82:c4:a6:b3:cc:5e:ef:ab: 70:10:b2:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjUwNzAxMDYzNDU3WhcNMjUwNzA4MDYzNDU3WjAYMRYwFAYD VQQDEw02ODYzODE5MS02Mjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDmfGiPUR4P55KmntBcvks+Z8Uc2Yp6J6tz7l+rX4P8OqX285QpY9QixuTr0 10ij3cjicxJ1lE2lMGAxuuFj+zS8Nv3XcqI2ulqwAbcEHeaBRpB9fBno04wtCpjj WQJ4os67GAKEKqDQAaeAT8snaQX6Hm/3bATfRcm5xaC3VVtUXa7Drzl7DZHL8/IP q+R3rfB2QELocLMd5oJmru2FbPfx6y/hyiari2Jsu7Kt9mrQugNHLinweVKOExSZ ceaB4cwjvdnOsktA1TZVbSse83J3IqzMyXQAbrb5CPQia6lfXINW1EK/iuXrKe2p eFWiKi93hASnA22s1HhZlb46hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkmjPIn hJzYdq5iacVscLRJAh49MB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTYwNC8xMjBDMkM3NDNDRUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgy ZUduQU9rZjR4Qm45UWdBV3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQpcxoPYKgu0LvFIgg6St5IugNWG+ylbkVfNwotbjECWbMBwhVoFD4 QtJh7DUoPz3MWgAw53Ybg6A/MB8PcHQu6g09Wrd5TXo4My9Cj6Ux8inftZQAZuVK 2qqasoHuXvO3Zytyzbnx+mP4dDFwXajsTAarCaw8WXJ0/6dya5N1Wr1JTAYn+Snu 9mZJXTNyxiQYFGP9cwT1dsSsFFK6+CMdIoH9VcsNT+NZnKVnH3O+H624cy9dDFof 3YTJ3k0cAMjJu1ZoXP5QNz2d/SrhxP/acVTQfV+oQdoQrlpciSi/DLl99zDI9hRn yYDcPKsJaHoYwC+XgsSms8xe76twELKZ -----END CERTIFICATE-----Generated at Thu Jul 3 05:59:50 2025 by rpki-client