$ rpki-client -vvf rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft File: ajK9E9_Nd-8bXAUr427YmtIScNs.mft (raw, json) Hash identifier: xzwhV6BMc9UhzzM8nL7BT2BihJtTB+WnaFBxWJbITHA= Subject key identifier: 78:09:A9:01:5D:89:4E:AD:6B:7E:46:41:62:C2:2C:5E:5B:1C:E1:9E Authority key identifier: 6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB Certificate issuer: /CN=A911C812/serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Certificate serial: 0811 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft Manifest number: 080A Signing time: Sun 20 Jul 2025 21:01:53 +0000 Manifest this update: Sun 20 Jul 2025 21:01:52 +0000 Manifest next update: Sun 27 Jul 2025 21:01:52 +0000 Files and hashes: 1: ajK9E9_Nd-8bXAUr427YmtIScNs.crl (hash: KCjxRhfSwLgjZ3s2ADTezNhJItpe8oZp4EulIpm8UHA=) 2: 477192ACF3FA11EAB9D11D26C4F9AE02.roa (hash: fA68vPB23i/OAo2Tlmrq8T3cX2gqQgOTyj+Ul9pJg/w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2065 (0x811) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C812, serialNumber=6A32BD13DFCD77EF1B5C052BE36ED89AD21270DB Validity Not Before: Jul 20 21:01:52 2025 GMT Not After : Jul 27 21:01:52 2025 GMT Subject: CN=687d5941-5b3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ca:ae:25:71:2c:88:eb:bb:68:38:f9:c4:4c: ed:56:d5:14:ad:7b:d2:58:19:1e:04:0f:31:87:7c: 72:68:c1:84:83:0a:4b:51:7c:54:2f:a5:dd:42:85: 58:c8:25:0b:5c:5b:a2:5d:5b:e7:bf:bc:77:cc:11: 36:17:59:5b:86:c2:5c:5a:81:b1:41:c6:d8:9f:96: 88:87:90:71:85:ec:cc:0e:52:46:01:4c:e2:ad:8d: 56:36:c4:80:6f:9d:25:2b:06:a6:9e:a6:c1:04:64: 64:b4:32:33:8e:29:6e:94:92:ff:79:a1:dc:8d:59: c4:1e:28:f9:f0:84:c1:13:96:ea:8a:14:c9:be:e6: 7c:17:e3:cb:4c:a9:17:e9:6e:29:47:2e:24:a6:61: 4b:f3:97:f0:80:01:46:11:f5:c5:8b:f4:da:13:48: 75:81:0d:37:b4:57:12:9a:61:18:3b:f7:84:2b:eb: 45:79:93:d6:ef:01:5b:ae:3a:86:51:e0:e6:59:1a: 76:cf:12:08:ae:f4:19:65:a8:c9:e3:bb:78:80:d9: 48:e8:e1:5e:94:10:e4:7d:f7:6e:98:09:07:f2:8d: d0:d1:54:c5:ab:fd:97:a6:b7:65:4f:8c:92:9d:62: 84:d5:97:a4:79:01:0d:a6:d5:8b:33:4c:fe:61:e0: 2c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:09:A9:01:5D:89:4E:AD:6B:7E:46:41:62:C2:2C:5E:5B:1C:E1:9E X509v3 Authority Key Identifier: keyid:6A:32:BD:13:DF:CD:77:EF:1B:5C:05:2B:E3:6E:D8:9A:D2:12:70:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ajK9E9_Nd-8bXAUr427YmtIScNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C812/B25EF990E91611EAA705D84FC4F9AE02/ajK9E9_Nd-8bXAUr427YmtIScNs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:cc:b2:b2:b6:5f:48:e2:d6:7e:5d:56:58:46:7f:a0:83:46: a6:83:bf:8d:b1:24:86:58:d1:63:a6:78:b9:64:c0:2b:11:54: e0:46:29:5e:41:3e:eb:9d:f2:de:82:e2:4e:5c:89:79:3e:9d: e3:84:aa:ed:d4:78:8f:6a:e7:d3:97:68:e7:85:2f:c6:fa:61: 96:1c:c4:2e:b5:9b:eb:16:ce:b3:80:10:27:b6:dc:83:c2:9e: 90:df:f8:81:66:88:33:19:07:81:bb:32:68:21:c8:4f:81:3d: bc:d4:51:1f:0f:58:2f:13:ad:e9:2a:b8:6c:ef:60:31:37:32: 7f:0a:a0:7b:a3:20:e4:b4:4f:b4:c3:04:93:a6:14:27:2e:e5: b5:66:02:48:97:b7:10:f6:29:4f:a6:41:a6:db:39:fc:bb:23: f8:b7:18:f7:d6:bf:0f:a0:22:57:ab:b4:cd:d1:77:57:7b:d1: 46:5a:f4:30:8b:2e:2a:2b:b0:b9:d2:44:d5:ce:8d:0a:99:af: ad:6d:ab:c1:97:b0:41:c7:8f:cf:59:79:3d:d3:50:53:8f:33: 6f:c1:e3:2f:ec:5e:db:af:a2:fa:98:1d:fc:86:1b:a8:86:bf: 24:16:bc:18:48:c3:4a:2c:b3:59:35:25:cb:86:a7:86:ff:1b: 9d:59:99:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM4MTIxMTAvBgNVBAUTKDZBMzJCRDEzREZDRDc3RUYxQjVDMDUyQkUzNkVEODlB RDIxMjcwREIwHhcNMjUwNzIwMjEwMTUyWhcNMjUwNzI3MjEwMTUyWjAYMRYwFAYD VQQDEw02ODdkNTk0MS01YjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MquJXEsiOu7aDj5xEztVtUUrXvSWBkeBA8xh3xyaMGEgwpLUXxUL6XdQoVY yCULXFuiXVvnv7x3zBE2F1lbhsJcWoGxQcbYn5aIh5BxhezMDlJGAUzirY1WNsSA b50lKwamnqbBBGRktDIzjilulJL/eaHcjVnEHij58ITBE5bqihTJvuZ8F+PLTKkX 6W4pRy4kpmFL85fwgAFGEfXFi/TaE0h1gQ03tFcSmmEYO/eEK+tFeZPW7wFbrjqG UeDmWRp2zxIIrvQZZajJ47t4gNlI6OFelBDkffdumAkH8o3Q0VTFq/2XprdlT4yS nWKE1ZekeQENptWLM0z+YeAsqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgJqQFd iU6ta35GQWLCLF5bHOGeMB8GA1UdIwQYMBaAFGoyvRPfzXfvG1wFK+Nu2JrSEnDb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzgxMi9CMjVFRjk5MEU5 MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQtOGJYQVVyNDI3WW10SVNj TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FqSzlFOV9OZC04YlhBVXI0MjdZbXRJU2NOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzgxMi9CMjVFRjk5MEU5MTYxMUVBQTcwNUQ4NEZDNEY5QUUwMi9haks5RTlfTmQt OGJYQVVyNDI3WW10SVNjTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQClzLKytl9I4tZ+XVZYRn+gg0amg7+NsSSGWNFjpni5ZMArEVTgRile QT7rnfLeguJOXIl5Pp3jhKrt1HiPaufTl2jnhS/G+mGWHMQutZvrFs6zgBAnttyD wp6Q3/iBZogzGQeBuzJoIchPgT281FEfD1gvE63pKrhs72AxNzJ/CqB7oyDktE+0 wwSTphQnLuW1ZgJIl7cQ9ilPpkGm2zn8uyP4txj31r8PoCJXq7TN0XdXe9FGWvQw iy4qK7C50kTVzo0Kma+tbavBl7BBx4/PWXk901BTjzNvweMv7F7br6L6mB38hhuo hr8kFrwYSMNKLLNZNSXLhqeG/xudWZk9 -----END CERTIFICATE-----Generated at Mon Jul 21 07:02:20 2025 by rpki-client