$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: 7DtSMt0ufbmvm10lfPi+vtLh2FW72PRb59RKwQkDIXE= Subject key identifier: BC:5D:D9:9A:65:C3:9B:6B:D9:F3:D7:C6:74:3D:38:36:04:D1:DF:C9 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 08A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 0889 Signing time: Fri 22 Aug 2025 18:11:14 +0000 Manifest this update: Fri 22 Aug 2025 18:11:13 +0000 Manifest next update: Fri 29 Aug 2025 18:11:13 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: 5JUjNTpv+ohgDuxcmop8JSDnYKxYrFJXHPioRry4U4o=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: qnuam7WR9nNoSALeN6aIELormJYa9PcytIxvW+OP1aE=) 3: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: /kIJQGWq5uSGzv2Hlgx55daJuqaTWlcXb9ZHCo//sns=) 4: D385E420314711EBA579873DC4F9AE02.roa (hash: o1Hw/spcKOOb0VVRRR+YO5Yydeov4PBZjAAS3/6uAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:11:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2208 (0x8a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Aug 22 18:11:13 2025 GMT Not After : Aug 29 18:11:13 2025 GMT Subject: CN=68a8b2c1-39bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d8:2f:a6:d1:c8:8f:60:02:52:db:24:c3:7a: f5:97:0e:cd:43:9e:e6:36:39:3f:72:e4:ea:63:6c: 65:ef:2c:42:d6:33:bd:91:d2:8a:e3:6b:f7:63:4e: 6b:30:eb:8f:bc:20:45:5e:4b:73:92:8d:a9:e7:89: 17:cf:57:fb:1e:5a:89:84:5b:a3:61:70:4c:2c:fa: fe:d5:d2:19:8c:1f:37:ab:60:aa:4e:30:54:bf:44: 8f:ec:6e:29:d0:f7:1c:6d:54:97:70:ca:3c:48:85: df:b6:84:2e:bf:f2:eb:19:af:08:7c:44:d2:9c:74: 21:88:66:2d:eb:dc:84:d6:72:9e:36:7e:b1:cc:54: 6d:84:8c:ec:63:35:24:70:22:77:30:17:99:01:87: 53:ab:44:03:fc:51:aa:8d:e5:44:68:d2:14:d9:7f: 98:5b:80:27:fc:d5:12:13:87:1a:9e:ad:bd:03:b1: 5b:86:07:9e:c0:99:98:d4:ef:c4:58:66:63:10:df: 6b:be:98:d1:45:bb:ed:61:f8:b1:02:dc:f1:74:a6: 71:f5:a1:d2:2e:ad:5d:ac:36:31:cd:03:2a:c5:e0: 41:62:3c:89:89:56:19:52:25:34:59:59:53:de:e0: 09:5a:95:92:4b:f7:dd:a6:60:79:82:1f:2f:43:05: ef:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5D:D9:9A:65:C3:9B:6B:D9:F3:D7:C6:74:3D:38:36:04:D1:DF:C9 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:a1:26:d1:26:ea:26:2b:d4:1c:0b:0f:f5:97:38:9b:15:02: 3b:f1:0d:be:47:2e:02:b2:df:33:c8:92:f9:9f:05:17:6c:d7: ef:c3:5e:b9:e2:5b:79:ab:b9:8e:77:a3:ed:36:cd:3b:bf:56: 1d:a4:02:c2:45:be:5d:f1:12:8f:f0:59:80:85:1f:2e:68:c1: 2e:bb:9e:70:37:a2:fb:e8:c9:cb:7f:3c:1f:0e:3f:a2:b0:e4: 94:8e:66:49:d5:9f:ab:f4:2c:0b:66:bb:5c:59:5f:78:f9:25: c4:ca:d7:5f:ed:e4:4a:08:36:98:72:2e:31:d1:ee:33:07:61: 1f:ee:02:fe:b4:8e:00:cb:fe:3d:e5:34:a6:dd:7e:d9:e1:96: 48:e6:1c:08:dd:a7:c5:4d:b8:79:a7:b5:ad:fd:f6:97:1b:29: 77:18:30:0d:24:09:3b:d0:42:70:ce:28:3e:25:3c:03:9f:e2: 34:fc:2a:fd:13:7f:72:22:7c:82:48:46:7a:24:3c:f0:58:b6: 16:fa:3e:c4:d2:18:7a:87:cb:42:7a:ee:f0:29:69:a0:e1:eb: 9b:e1:ed:19:93:04:f8:2a:8b:0f:2b:e8:58:9e:99:b2:80:fe: fe:c4:dd:bb:20:25:86:39:16:81:8b:bd:7b:59:0d:b8:d9:13: 8b:31:2a:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjUwODIyMTgxMTEzWhcNMjUwODI5MTgxMTEzWjAYMRYwFAYD VQQDEw02OGE4YjJjMS0zOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8dgvptHIj2ACUtskw3r1lw7NQ57mNjk/cuTqY2xl7yxC1jO9kdKK42v3Y05r MOuPvCBFXktzko2p54kXz1f7HlqJhFujYXBMLPr+1dIZjB83q2CqTjBUv0SP7G4p 0PccbVSXcMo8SIXftoQuv/LrGa8IfETSnHQhiGYt69yE1nKeNn6xzFRthIzsYzUk cCJ3MBeZAYdTq0QD/FGqjeVEaNIU2X+YW4An/NUSE4canq29A7FbhgeewJmY1O/E WGZjEN9rvpjRRbvtYfixAtzxdKZx9aHSLq1drDYxzQMqxeBBYjyJiVYZUiU0WVlT 3uAJWpWSS/fdpmB5gh8vQwXv7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxd2Zpl w5tr2fPXxnQ9ODYE0d/JMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7oSbRJuomK9QcCw/1lzibFQI78Q2+Ry4Cst8zyJL5nwUXbNfvw165 4lt5q7mOd6PtNs07v1YdpALCRb5d8RKP8FmAhR8uaMEuu55wN6L76MnLfzwfDj+i sOSUjmZJ1Z+r9CwLZrtcWV94+SXEytdf7eRKCDaYci4x0e4zB2Ef7gL+tI4Ay/49 5TSm3X7Z4ZZI5hwI3afFTbh5p7Wt/faXGyl3GDANJAk70EJwzig+JTwDn+I0/Cr9 E39yInyCSEZ6JDzwWLYW+j7E0hh6h8tCeu7wKWmg4eub4e0ZkwT4KosPK+hYnpmy gP7+xN27ICWGORaBi717WQ242ROLMSoW -----END CERTIFICATE-----Generated at Sat Aug 23 12:32:21 2025 by rpki-client