$ rpki-client -vvf rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft File: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft (raw, json) Hash identifier: GS1hfr1BOj1yicaR4FLGVDoFqmEBevIGvuC60gSTZ64= Subject key identifier: 6A:F5:C2:8D:B3:D2:CC:EE:A3:B2:69:3B:C8:C5:AA:6B:38:55:1F:71 Authority key identifier: E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 Certificate issuer: /CN=A91F59A6/serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Certificate serial: 0886 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft Manifest number: 086F Signing time: Wed 02 Jul 2025 18:18:52 +0000 Manifest this update: Wed 02 Jul 2025 18:18:51 +0000 Manifest next update: Wed 09 Jul 2025 18:18:51 +0000 Files and hashes: 1: 4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl (hash: izTzOI3avx2DtqWr6RrczSArAPdn3lnvganFOx5qwF0=) 2: 18B1B5361CE611EBB543881CC4F9AE02.roa (hash: qnuam7WR9nNoSALeN6aIELormJYa9PcytIxvW+OP1aE=) 3: 19B0BAAE1CE611EBB543881CC4F9AE02.roa (hash: /kIJQGWq5uSGzv2Hlgx55daJuqaTWlcXb9ZHCo//sns=) 4: D385E420314711EBA579873DC4F9AE02.roa (hash: o1Hw/spcKOOb0VVRRR+YO5Yydeov4PBZjAAS3/6uAVI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:18:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F59A6, serialNumber=E25FCD9B7725853942791A62D475ECFED7C03F64 Validity Not Before: Jul 2 18:18:51 2025 GMT Not After : Jul 9 18:18:51 2025 GMT Subject: CN=6865780b-34f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:2a:f6:b9:79:d9:9d:88:de:7c:89:8b:48:e9: 5f:ae:09:df:31:dc:37:7d:4a:1d:ba:5c:ac:76:0c: c7:b7:6d:4e:d6:a0:9e:29:10:b2:7a:4f:59:d6:fb: 9b:c6:f7:6a:83:d2:3c:48:38:f0:97:58:b8:47:9a: 14:db:4d:86:d7:24:36:fe:82:0e:af:a0:d8:7f:60: 84:a9:44:6f:3f:84:32:3a:82:1f:48:84:8f:29:92: 50:65:f6:ba:04:fe:3c:38:0a:5c:11:58:46:3f:19: d5:f0:fb:a5:0a:b9:83:72:02:d9:54:3a:91:44:9e: 56:9a:81:41:9c:07:27:55:4f:47:d2:33:b4:25:77: 2d:d6:4e:89:bd:06:8e:b0:0e:07:c3:7f:e0:9e:96: 84:bf:52:ba:69:fc:bf:bd:ea:ad:04:c0:44:6f:c0: a8:f7:a5:5e:60:f0:91:2e:8b:52:c9:c3:8a:eb:78: 0b:11:dd:7f:a0:5a:35:67:2a:36:a7:2e:5a:4a:93: 96:e0:18:38:54:3b:d2:d5:9b:ef:d4:7f:94:80:22: 70:a8:7e:53:40:00:be:d2:b0:fb:26:a3:00:79:a7: 3e:94:22:29:40:27:e0:e9:b4:9a:30:de:3d:c1:a8: 7f:4c:83:34:ff:44:47:e3:71:ac:01:9b:c8:fb:73: bb:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F5:C2:8D:B3:D2:CC:EE:A3:B2:69:3B:C8:C5:AA:6B:38:55:1F:71 X509v3 Authority Key Identifier: keyid:E2:5F:CD:9B:77:25:85:39:42:79:1A:62:D4:75:EC:FE:D7:C0:3F:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F59A6/E4EDAC18CB1A11EA87CD5544C4F9AE02/4l_Nm3clhTlCeRpi1HXs_tfAP2Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:59:2d:3f:9d:07:53:d0:27:9a:fa:1c:ef:1d:af:78:4d:70: f3:83:dd:83:0f:63:b3:77:09:fe:79:b5:11:9c:ac:f6:51:9b: 6e:ec:4f:34:27:bb:35:4d:b6:56:cb:8e:e8:d0:6d:45:68:f3: 18:9b:38:6c:b5:8b:31:2e:93:00:0c:33:35:cb:dd:b0:d5:b7: bf:0a:cb:bc:2a:28:1e:ca:46:48:5d:7c:05:db:36:6c:91:59: 27:57:96:68:37:96:12:35:d3:91:0d:48:72:65:84:23:87:84: 32:35:9d:5d:09:fa:98:3b:93:67:14:f3:58:9d:ab:a2:5a:c7: e5:ef:79:af:6f:5e:3a:2b:df:cf:df:27:a7:8a:e4:57:5a:e3: e2:04:76:24:56:48:74:d9:64:ab:32:3f:09:92:a4:b7:2e:8a: 1d:a5:03:c0:2b:4c:81:bf:f4:b2:05:b1:e1:f7:06:64:63:a0: 18:75:53:ae:5d:22:47:cd:7f:46:0e:13:9d:07:0d:4e:a5:01: a7:31:da:e2:2d:d8:a4:23:48:0a:f8:11:22:37:cd:5b:a4:b7: 41:45:5b:65:7b:9a:b1:ce:88:20:67:ac:4a:9f:f4:b9:1d:d7: bc:60:54:29:87:2d:bd:76:34:df:77:b4:a8:98:a1:32:37:f1: 8d:34:d6:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU5QTYxMTAvBgNVBAUTKEUyNUZDRDlCNzcyNTg1Mzk0Mjc5MUE2MkQ0NzVFQ0ZF RDdDMDNGNjQwHhcNMjUwNzAyMTgxODUxWhcNMjUwNzA5MTgxODUxWjAYMRYwFAYD VQQDEw02ODY1NzgwYi0zNGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnir2uXnZnYjefImLSOlfrgnfMdw3fUodulysdgzHt21O1qCeKRCyek9Z1vub xvdqg9I8SDjwl1i4R5oU202G1yQ2/oIOr6DYf2CEqURvP4QyOoIfSISPKZJQZfa6 BP48OApcEVhGPxnV8PulCrmDcgLZVDqRRJ5WmoFBnAcnVU9H0jO0JXct1k6JvQaO sA4Hw3/gnpaEv1K6afy/veqtBMBEb8Co96VeYPCRLotSycOK63gLEd1/oFo1Zyo2 py5aSpOW4Bg4VDvS1Zvv1H+UgCJwqH5TQAC+0rD7JqMAeac+lCIpQCfg6bSaMN49 wah/TIM0/0RH43GsAZvI+3O7WQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGr1wo2z 0szuo7JpO8jFqms4VR9xMB8GA1UdIwQYMBaAFOJfzZt3JYU5QnkaYtR17P7XwD9k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTlBNi9FNEVEQUMxOENC MUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhUbENlUnBpMUhYc190ZkFQ MlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRsX05tM2NsaFRsQ2VScGkxSFhzX3RmQVAyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTlBNi9FNEVEQUMxOENCMUExMUVBODdDRDU1NDRDNEY5QUUwMi80bF9ObTNjbGhU bENlUnBpMUhYc190ZkFQMlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB0WS0/nQdT0Cea+hzvHa94TXDzg92DD2Ozdwn+ebURnKz2UZtu7E80 J7s1TbZWy47o0G1FaPMYmzhstYsxLpMADDM1y92w1be/Csu8KigeykZIXXwF2zZs kVknV5ZoN5YSNdORDUhyZYQjh4QyNZ1dCfqYO5NnFPNYnauiWsfl73mvb146K9/P 3yeniuRXWuPiBHYkVkh02WSrMj8JkqS3LoodpQPAK0yBv/SyBbHh9wZkY6AYdVOu XSJHzX9GDhOdBw1OpQGnMdriLdikI0gK+BEiN81bpLdBRVtle5qxzoggZ6xKn/S5 Hde8YFQphy29djTfd7SomKEyN/GNNNZ2 -----END CERTIFICATE-----Generated at Thu Jul 3 00:49:48 2025 by rpki-client