$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft File: 4USmzKVqqTEokShNJidwYk784uw.mft (raw, json) Hash identifier: SM52uwaWaGk3Ezu30/TaBvSxusKaIMq90FDH6PzooBg= Subject key identifier: 89:0C:6A:E3:15:31:F6:AB:E6:42:A4:6D:DD:8F:82:A5:B5:4A:E9:9C Authority key identifier: E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC Certificate issuer: /CN=A91E3493/serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Certificate serial: 04B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft Manifest number: 04AE Signing time: Sat 05 Jul 2025 00:23:30 +0000 Manifest this update: Sat 05 Jul 2025 00:23:30 +0000 Manifest next update: Sat 12 Jul 2025 00:23:30 +0000 Files and hashes: 1: 4USmzKVqqTEokShNJidwYk784uw.crl (hash: +AxnrD8z5RGO594CHe2Q1rlTsBOPzrxPtW6vTtPKMgM=) 2: E7BC076E368A11EC9109BC30C4F9AE02.roa (hash: KvBasDBfRwAoH2EYsCxUrezIZS6Rx7LxrBNPNRo5D98=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=E144A6CCA56AA9312891284D262770624EFCE2EC Validity Not Before: Jul 5 00:23:30 2025 GMT Not After : Jul 12 00:23:30 2025 GMT Subject: CN=68687082-7150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:35:bc:81:f2:89:c3:0f:9d:99:d3:71:0e:58: 6c:f6:ac:31:b9:6c:b6:47:d5:20:e7:f7:11:0f:e1: 34:5b:44:d5:cb:1a:c7:d3:d9:be:6f:18:d7:87:62: f0:d8:44:e7:1b:7c:8e:a7:2f:ec:c7:4f:de:fa:c5: 4e:9c:75:c4:de:62:5e:75:75:71:4f:3c:05:10:92: 63:32:3a:a4:be:d8:0e:ae:50:da:ef:e8:54:4c:35: 18:14:d6:52:5f:d3:34:b4:6b:66:0c:df:49:e2:55: 3b:a5:34:87:bc:ac:55:85:99:ce:e6:46:8e:0a:81: 13:f9:09:34:f9:13:7b:a8:be:b6:d2:44:26:c9:46: 85:68:2e:95:be:7b:91:2c:6a:b7:76:c0:6e:07:48: 64:c8:33:37:51:a8:c8:2d:4c:6e:f5:4f:81:94:3e: ed:77:61:35:ba:5f:84:45:a2:7e:d2:b9:f5:11:12: a7:e1:b7:e0:f7:32:ad:09:b6:0f:a3:b3:aa:bb:0e: 5a:ec:d3:5b:8a:42:04:1e:c4:9d:7e:5a:5f:73:83: 16:cc:83:d6:97:dc:fe:f3:2e:0e:0f:85:cf:28:a2: 21:64:fa:80:60:f5:56:de:86:8b:74:7b:3a:33:78: bb:f7:f6:75:f4:a2:6e:00:09:76:69:5d:15:0d:7e: a7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:0C:6A:E3:15:31:F6:AB:E6:42:A4:6D:DD:8F:82:A5:B5:4A:E9:9C X509v3 Authority Key Identifier: keyid:E1:44:A6:CC:A5:6A:A9:31:28:91:28:4D:26:27:70:62:4E:FC:E2:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4USmzKVqqTEokShNJidwYk784uw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/49A2EE6C368511EC80F52035C4F9AE02/4USmzKVqqTEokShNJidwYk784uw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:21:ee:42:4b:a7:e0:00:a9:0b:9a:ff:c9:25:ba:fd:ba:08: 8f:23:83:66:ce:e2:1a:c9:75:3b:07:8e:7f:7c:39:65:4a:f4: 75:dd:d9:e7:fd:30:4b:73:22:38:b1:cb:77:72:d9:59:9a:58: 2c:40:58:72:b7:18:b1:b3:33:39:08:0f:22:f7:6e:72:75:2f: ad:89:a8:6f:2b:80:52:ee:67:69:dd:41:67:a5:7a:2d:74:e1: a2:fc:7e:1f:4c:f0:4a:14:d4:5e:25:7f:94:32:d8:24:70:f1: a1:49:73:3c:94:e4:de:52:ec:d5:d5:45:27:a7:76:94:87:fa: 4e:5c:8f:d0:66:54:a9:54:3d:1b:98:13:e9:99:66:89:88:3f: ab:95:5f:df:3b:b3:fb:80:0e:79:26:08:3b:60:9f:6c:31:59: 92:44:04:32:b5:75:b7:3a:0c:60:0e:88:94:37:49:ef:0e:0a: 9b:f7:6c:1a:dd:b8:5a:e6:25:47:4a:04:1e:46:af:cf:90:d8: db:3b:f9:36:06:d3:56:59:0f:9b:41:04:67:83:b9:46:a0:15: 5f:4b:a2:9d:1e:d5:f9:dc:4b:9a:07:0f:36:ee:95:cf:ad:b8: d4:13:40:42:44:ad:f0:79:c5:39:76:ed:38:24:94:12:0d:d7: 2d:07:8f:b6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM0OTMxMTAvBgNVBAUTKEUxNDRBNkNDQTU2QUE5MzEyODkxMjg0RDI2Mjc3MDYy NEVGQ0UyRUMwHhcNMjUwNzA1MDAyMzMwWhcNMjUwNzEyMDAyMzMwWjAYMRYwFAYD VQQDEw02ODY4NzA4Mi03MTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DW8gfKJww+dmdNxDlhs9qwxuWy2R9Ug5/cRD+E0W0TVyxrH09m+bxjXh2Lw 2ETnG3yOpy/sx0/e+sVOnHXE3mJedXVxTzwFEJJjMjqkvtgOrlDa7+hUTDUYFNZS X9M0tGtmDN9J4lU7pTSHvKxVhZnO5kaOCoET+Qk0+RN7qL620kQmyUaFaC6VvnuR LGq3dsBuB0hkyDM3UajILUxu9U+BlD7td2E1ul+ERaJ+0rn1ERKn4bfg9zKtCbYP o7Oquw5a7NNbikIEHsSdflpfc4MWzIPWl9z+8y4OD4XPKKIhZPqAYPVW3oaLdHs6 M3i79/Z19KJuAAl2aV0VDX6n2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIkMauMV Mfar5kKkbd2PgqW1SumcMB8GA1UdIwQYMBaAFOFEpsylaqkxKJEoTSYncGJO/OLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzQ5My80OUEyRUU2QzM2 ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFURW9rU2hOSmlkd1lrNzg0 dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRVU216S1ZxcVRFb2tTaE5KaWR3WWs3ODR1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My80OUEyRUU2QzM2ODUxMUVDODBGNTIwMzVDNEY5QUUwMi80VVNtektWcXFU RW9rU2hOSmlkd1lrNzg0dXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC0Ie5CS6fgAKkLmv/JJbr9ugiPI4NmzuIayXU7B45/fDllSvR13dnn /TBLcyI4sct3ctlZmlgsQFhytxixszM5CA8i925ydS+tiahvK4BS7mdp3UFnpXot dOGi/H4fTPBKFNReJX+UMtgkcPGhSXM8lOTeUuzV1UUnp3aUh/pOXI/QZlSpVD0b mBPpmWaJiD+rlV/fO7P7gA55Jgg7YJ9sMVmSRAQytXW3OgxgDoiUN0nvDgqb92wa 3bha5iVHSgQeRq/PkNjbO/k2BtNWWQ+bQQRng7lGoBVfS6KdHtX53EuaBw827pXP rbjUE0BCRK3wecU5du04JJQSDdctB4+2 -----END CERTIFICATE-----Generated at Sat Jul 5 05:07:34 2025 by rpki-client