$ rpki-client -vvf rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft File: aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft (raw, json) Hash identifier: Xckl4enyBCMJcYO3xQtGEnPsGuWaDPkdYRhkRqOjNb4= Subject key identifier: 42:43:67:16:27:42:E1:72:A9:AB:6E:0C:EE:E9:0A:40:32:7C:BE:EC Authority key identifier: 69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 Certificate issuer: /CN=A9119333/serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Certificate serial: 22D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft Manifest number: 2291 Signing time: Fri 18 Jul 2025 15:58:14 +0000 Manifest this update: Fri 18 Jul 2025 15:58:14 +0000 Manifest next update: Fri 25 Jul 2025 15:58:14 +0000 Files and hashes: 1: aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl (hash: ZyWQvA1gP1oR06zv7XJ0Bfb1gDi81DCdtjGdm6dp3Eg=) 2: 443C3AF2D3F611EFB03C5C14C4F9AE02.roa (hash: QalrWEPHK1c0+wAh4Y9v/QxVAuOH9u4KL51JrDmBQPs=) 3: DD73806ED3C811EF9D76942FC4F9AE02.roa (hash: yV/SjGOrZoU6XjMAo/QC3pR5jQlSni/vmLDt0r4ftkA=) 4: 1AC9199AD3CB11EF84052053C4F9AE02.roa (hash: 3g8CG6eXI2y/sKSche4ErWaN1/woBDrqwhgjSA2yZ4o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:58:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8916 (0x22d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119333, serialNumber=699E6742567BE7329CC3A786DEB7857E2C2420F9 Validity Not Before: Jul 18 15:58:14 2025 GMT Not After : Jul 25 15:58:14 2025 GMT Subject: CN=687a6f16-b86a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e9:aa:ec:7e:70:72:6a:e3:30:26:57:86:e4: 7c:dc:43:27:cf:95:84:9a:b5:27:57:49:94:b8:4c: 95:ea:70:02:3b:7a:30:26:d0:5d:7a:e2:a7:c1:7a: cd:55:2d:ef:ae:42:88:5f:fa:ee:9d:f3:f6:92:01: cd:56:a9:9d:10:79:e1:ef:01:51:54:3b:f4:3a:c5: 62:96:f5:73:15:14:2c:ec:b9:3e:f7:3b:6a:c1:29: a1:71:16:21:30:67:60:d8:2d:4e:b7:48:3e:12:28: ed:e2:97:5c:96:f5:77:47:6d:b1:dc:12:32:12:d1: 98:d7:5b:68:9a:0b:d3:f4:5a:66:25:4e:ef:e1:9e: 42:a3:83:16:de:32:c7:35:e0:83:74:27:46:66:2b: 16:cb:05:df:88:1f:a2:c7:ef:72:9f:9d:14:3f:24: 27:45:90:0f:a1:b3:14:8c:e6:94:02:5b:f0:6d:a9: c9:34:fa:fe:8c:95:c6:02:b2:ea:36:ba:3d:28:9c: fe:87:38:76:88:84:69:ac:1d:a6:ae:1f:16:66:4e: 6b:80:19:15:95:0f:1c:9c:c0:6d:35:36:f4:e6:12: 84:e1:3b:be:24:cd:b8:5c:37:d7:31:63:e0:53:d5: 58:2d:8d:55:7f:66:59:db:12:f8:be:7e:6d:33:35: 19:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:43:67:16:27:42:E1:72:A9:AB:6E:0C:EE:E9:0A:40:32:7C:BE:EC X509v3 Authority Key Identifier: keyid:69:9E:67:42:56:7B:E7:32:9C:C3:A7:86:DE:B7:85:7E:2C:24:20:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ5nQlZ75zKcw6eG3reFfiwkIPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119333/065DA3BAB84411E5B5357B2FC4F9AE02/aZ5nQlZ75zKcw6eG3reFfiwkIPk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:e6:60:4f:a4:c4:f9:14:13:7d:0f:46:23:6a:16:76:2f:f9: b8:bf:a3:5e:18:53:1e:5a:1a:77:8d:58:58:02:64:2f:4e:be: 83:e7:cd:82:50:25:10:b7:72:7c:63:45:42:0f:a1:86:2e:cc: 04:4f:db:a5:2e:e6:ff:d6:56:63:27:7b:de:8c:80:02:12:ea: a4:6f:d3:d9:06:07:46:b7:16:20:28:08:14:d7:39:52:c8:eb: 6e:b8:39:55:9a:d8:0e:53:87:46:ea:be:00:79:d7:35:b1:14: 2f:ff:8e:73:76:49:49:90:68:b0:38:d2:a8:ae:e9:2b:7a:0c: af:b0:32:f4:3e:4d:fe:4f:3a:c4:f2:54:fa:ce:05:3f:ab:59: 4c:b0:c8:1d:56:58:91:a9:57:ac:8b:89:bd:72:e6:c1:68:e9: ec:4b:98:c7:4d:aa:5c:d6:0e:72:91:48:3b:34:3b:26:96:c5: 43:c5:6c:ac:35:16:44:21:ba:4c:6f:2a:74:45:84:66:e9:9c: 83:79:37:f9:73:83:57:0d:a3:6e:35:70:d9:74:07:c6:59:2d: c9:3c:b0:20:dc:68:6c:eb:86:2e:9e:82:4a:4c:d5:58:17:91: ed:6c:0a:0c:64:7e:0f:7b:57:0b:9f:2f:4d:7f:12:e4:37:67: 64:e5:4f:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICItQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkzMzMxMTAvBgNVBAUTKDY5OUU2NzQyNTY3QkU3MzI5Q0MzQTc4NkRFQjc4NTdF MkMyNDIwRjkwHhcNMjUwNzE4MTU1ODE0WhcNMjUwNzI1MTU1ODE0WjAYMRYwFAYD VQQDEw02ODdhNmYxNi1iODZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3emq7H5wcmrjMCZXhuR83EMnz5WEmrUnV0mUuEyV6nACO3owJtBdeuKnwXrN VS3vrkKIX/runfP2kgHNVqmdEHnh7wFRVDv0OsVilvVzFRQs7Lk+9ztqwSmhcRYh MGdg2C1Ot0g+Eijt4pdclvV3R22x3BIyEtGY11tomgvT9FpmJU7v4Z5Co4MW3jLH NeCDdCdGZisWywXfiB+ix+9yn50UPyQnRZAPobMUjOaUAlvwbanJNPr+jJXGArLq Nro9KJz+hzh2iIRprB2mrh8WZk5rgBkVlQ8cnMBtNTb05hKE4Tu+JM24XDfXMWPg U9VYLY1Vf2ZZ2xL4vn5tMzUZnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEJDZxYn QuFyqatuDO7pCkAyfL7sMB8GA1UdIwQYMBaAFGmeZ0JWe+cynMOnht63hX4sJCD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTMzMy8wNjVEQTNCQUI4 NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6S2N3NmVHM3JlRmZpd2tJ UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaNW5RbFo3NXpLY3c2ZUczcmVGZml3a0lQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzMy8wNjVEQTNCQUI4NDQxMUU1QjUzNTdCMkZDNEY5QUUwMi9hWjVuUWxaNzV6 S2N3NmVHM3JlRmZpd2tJUGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC5mBPpMT5FBN9D0YjahZ2L/m4v6NeGFMeWhp3jVhYAmQvTr6D582C UCUQt3J8Y0VCD6GGLswET9ulLub/1lZjJ3vejIACEuqkb9PZBgdGtxYgKAgU1zlS yOtuuDlVmtgOU4dG6r4Aedc1sRQv/45zdklJkGiwONKorukregyvsDL0Pk3+TzrE 8lT6zgU/q1lMsMgdVliRqVesi4m9cubBaOnsS5jHTapc1g5ykUg7NDsmlsVDxWys NRZEIbpMbyp0RYRm6ZyDeTf5c4NXDaNuNXDZdAfGWS3JPLAg3Ghs64YunoJKTNVY F5HtbAoMZH4Pe1cLny9NfxLkN2dk5U8W -----END CERTIFICATE-----Generated at Sun Jul 20 06:16:07 2025 by rpki-client