$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft File: D9Qkj9SLoa4LYNjPakPbM7b09ro.mft (raw, json) Hash identifier: SqAsRf0zIJQElj+vryDwX6d7O1FumrP14zdkD+QP4LA= Subject key identifier: 0C:D2:2D:98:9F:6B:AD:6C:B6:13:91:2D:B9:38:77:8A:0E:CB:F2:EC Authority key identifier: 0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA Certificate issuer: /CN=A911B5AC/serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Certificate serial: 01EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft Manifest number: 01E7 Signing time: Mon 21 Jul 2025 02:40:23 +0000 Manifest this update: Mon 21 Jul 2025 02:40:22 +0000 Manifest next update: Mon 28 Jul 2025 02:40:22 +0000 Files and hashes: 1: D9Qkj9SLoa4LYNjPakPbM7b09ro.crl (hash: /9oryRpPe0Tk/m+q6cnX4X6E3gnFzjZf0poWA45sffo=) 2: CA181F42791211ED9D926781C4F9AE02.roa (hash: zvSljqq8u0aCswP8WadYkts+Ql8DETe3wBjOyVuGUoM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5AC, serialNumber=0FD4248FD48BA1AE0B60D8CF6A43DB33B6F4F6BA Validity Not Before: Jul 21 02:40:22 2025 GMT Not After : Jul 28 02:40:22 2025 GMT Subject: CN=687da896-3134 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cd:96:9f:b8:81:4c:52:a9:f6:c2:15:ec:3c: 8a:a0:27:78:c5:3e:aa:e3:a0:d4:ae:64:43:e9:46: be:8c:66:ae:7a:81:40:8a:59:52:12:e7:e6:81:5b: 19:7b:a8:46:60:c3:18:77:0c:72:f2:9c:47:65:6e: 36:c0:10:9b:36:16:db:56:19:58:32:ed:d7:fa:f3: 59:fd:58:e5:39:ec:06:d4:73:f1:79:57:e3:9c:d9: 0d:2b:fd:63:29:4b:6e:1d:47:b8:c3:35:4b:fb:a4: e9:b6:d5:69:52:29:18:9d:24:8c:86:32:d5:fd:02: ad:14:6a:90:a9:72:aa:ac:b6:e9:b6:78:57:28:ae: d5:35:5a:2b:9f:1f:9f:31:54:3f:6c:5e:ed:f3:44: f2:07:78:fe:c1:ff:f5:d7:8b:cc:3b:60:c4:1d:93: 64:5e:50:f3:cd:c4:63:53:c2:72:f1:80:af:b5:aa: b4:9f:b5:4a:2c:15:36:ae:b0:b1:c7:a1:30:e6:49: 0b:f6:f5:c5:78:8e:6e:79:4b:1f:e6:a3:94:6a:7e: 6a:e5:b7:e9:6f:e0:d2:6d:31:39:27:19:70:fc:c4: d7:bf:33:7a:90:1e:85:73:e9:7a:ab:8d:2f:31:58: 86:a6:4d:2a:a7:ad:49:11:e4:b1:d7:00:83:40:4e: a7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:D2:2D:98:9F:6B:AD:6C:B6:13:91:2D:B9:38:77:8A:0E:CB:F2:EC X509v3 Authority Key Identifier: keyid:0F:D4:24:8F:D4:8B:A1:AE:0B:60:D8:CF:6A:43:DB:33:B6:F4:F6:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9Qkj9SLoa4LYNjPakPbM7b09ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5AC/5FAF5642790E11ED8E7C1B79C4F9AE02/D9Qkj9SLoa4LYNjPakPbM7b09ro.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ea:32:19:22:61:9a:2e:26:64:77:73:d2:c8:59:44:7d:1b: 54:12:93:5d:f4:e1:fe:d2:65:a7:d9:3a:bf:7f:14:ab:9e:41: a9:1a:13:1d:29:24:b3:99:7d:60:8a:75:f0:68:6d:e7:fa:38: 18:f2:80:e1:84:3e:3d:6d:b4:a7:67:c4:d7:0e:2d:b6:33:5b: 01:04:06:dc:61:db:9e:36:2f:2a:2b:3a:29:ad:b8:cb:5b:a6: 65:be:bc:cb:88:cf:07:23:00:0c:f4:93:3b:ff:e9:83:85:d8: 5f:db:a6:5b:5e:1d:14:c3:d6:4d:1c:a3:ea:96:76:e7:18:56: 9e:a3:27:b9:b0:8c:3d:db:e9:a1:7f:63:90:6c:15:17:77:8c: 37:1a:e9:d4:dc:b0:43:27:53:53:3c:34:b7:ba:20:b3:a6:62: 7b:24:3f:0e:c7:89:c6:a0:de:99:b8:96:93:5f:29:b3:45:33: 56:df:41:ec:9f:33:39:11:47:c8:2c:1f:c6:f9:f8:73:53:44: 83:bf:85:f2:5c:72:b4:dd:9f:eb:9b:02:92:59:1d:74:68:b6: b8:76:b9:a3:1d:2b:7c:86:84:04:a6:73:2c:4e:db:39:0e:f9: 94:2e:46:62:99:28:4a:97:c4:b9:dd:de:10:d0:d9:b0:21:fd: 5d:ec:f0:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QUMxMTAvBgNVBAUTKDBGRDQyNDhGRDQ4QkExQUUwQjYwRDhDRjZBNDNEQjMz QjZGNEY2QkEwHhcNMjUwNzIxMDI0MDIyWhcNMjUwNzI4MDI0MDIyWjAYMRYwFAYD VQQDEw02ODdkYTg5Ni0zMTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc2Wn7iBTFKp9sIV7DyKoCd4xT6q46DUrmRD6Ua+jGaueoFAillSEufmgVsZ e6hGYMMYdwxy8pxHZW42wBCbNhbbVhlYMu3X+vNZ/VjlOewG1HPxeVfjnNkNK/1j KUtuHUe4wzVL+6TpttVpUikYnSSMhjLV/QKtFGqQqXKqrLbptnhXKK7VNVornx+f MVQ/bF7t80TyB3j+wf/114vMO2DEHZNkXlDzzcRjU8Jy8YCvtaq0n7VKLBU2rrCx x6Ew5kkL9vXFeI5ueUsf5qOUan5q5bfpb+DSbTE5Jxlw/MTXvzN6kB6Fc+l6q40v MViGpk0qp61JEeSx1wCDQE6n0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzSLZif a61sthORLbk4d4oOy/LsMB8GA1UdIwQYMBaAFA/UJI/Ui6GuC2DYz2pD2zO29Pa6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVBQy81RkFGNTY0Mjc5 MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9hNExZTmpQYWtQYk03YjA5 cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5UWtqOVNMb2E0TFlOalBha1BiTTdiMDlyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVBQy81RkFGNTY0Mjc5MEUxMUVEOEU3QzFCNzlDNEY5QUUwMi9EOVFrajlTTG9h NExZTmpQYWtQYk03YjA5cm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf6jIZImGaLiZkd3PSyFlEfRtUEpNd9OH+0mWn2Tq/fxSrnkGpGhMd KSSzmX1ginXwaG3n+jgY8oDhhD49bbSnZ8TXDi22M1sBBAbcYdueNi8qKzoprbjL W6ZlvrzLiM8HIwAM9JM7/+mDhdhf26ZbXh0Uw9ZNHKPqlnbnGFaeoye5sIw92+mh f2OQbBUXd4w3GunU3LBDJ1NTPDS3uiCzpmJ7JD8Ox4nGoN6ZuJaTXymzRTNW30Hs nzM5EUfILB/G+fhzU0SDv4XyXHK03Z/rmwKSWR10aLa4drmjHSt8hoQEpnMsTts5 DvmULkZimShKl8S53d4Q0NmwIf1d7PC1 -----END CERTIFICATE-----Generated at Mon Jul 21 07:02:18 2025 by rpki-client