$ rpki-client -vvf rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft File: P9UxYCV9sBsu4O8BPB4tQusaKI0.mft (raw, json) Hash identifier: 89l/GVP8hfqLKm/U93WQxh88nSYg9bTseMSxAx2RIT0= Subject key identifier: 8B:68:85:4A:80:90:CE:3A:A3:7A:C6:25:80:C0:0C:00:03:F6:2F:BC Authority key identifier: 3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D Certificate issuer: /CN=A911D51C/serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D Certificate serial: 050D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft Manifest number: 0509 Signing time: Sun 20 Jul 2025 23:49:41 +0000 Manifest this update: Sun 20 Jul 2025 23:49:41 +0000 Manifest next update: Sun 27 Jul 2025 23:49:41 +0000 Files and hashes: 1: P9UxYCV9sBsu4O8BPB4tQusaKI0.crl (hash: oztKXAoDDhBkeLESH2PiEUs90mJ/mRrlgq0C5ZLA/g4=) 2: A7493DA6145611ECAA3B5769C4F9AE02.roa (hash: ECduF6HgxTLoDLFAm0PdDIfSdNYqt9EVcY+nm8e4XyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1293 (0x50d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D51C, serialNumber=3FD53160257DB01B2EE0EF013C1E2D42EB1A288D Validity Not Before: Jul 20 23:49:41 2025 GMT Not After : Jul 27 23:49:41 2025 GMT Subject: CN=687d8095-760a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:74:17:e4:36:5f:d0:57:49:b3:f8:6d:ec:32: ad:0c:06:3c:0e:0d:82:a7:e8:21:74:66:a8:4a:f0: f2:4b:7a:92:e5:3c:c8:46:27:c3:d7:f8:c1:42:06: ab:bb:ee:ba:ce:80:f5:e6:ae:f9:10:96:19:15:c2: 8e:a5:ad:b7:f6:30:92:c9:f0:18:b4:17:36:52:67: b1:d7:c7:37:ed:a6:32:ae:3d:f6:bc:3f:d1:bb:92: 8f:73:9c:56:85:00:ae:ef:89:76:7f:79:24:7b:bb: 90:a9:7e:2a:6e:63:18:61:49:65:aa:2f:9e:ae:6d: 86:c9:02:76:3a:6e:06:bf:24:49:c1:65:24:a4:5e: 8e:7e:83:db:4f:7c:72:71:0c:3d:70:8f:84:65:88: 39:4a:ce:5b:92:c5:4f:8b:47:1c:c1:2b:4e:6a:47: 6b:f1:6d:5f:c9:ee:36:6a:1c:8f:ff:87:74:45:38: 40:4f:54:d6:ba:d7:48:58:71:0a:0d:d8:1b:38:cd: 95:ea:44:be:59:90:a9:bf:59:50:ee:de:24:b0:0a: fb:36:e9:bf:01:9a:2c:d8:15:d1:d5:ab:7d:9e:24: 03:85:5e:31:ec:c1:1e:12:ce:b0:2a:c9:f4:ce:dc: ab:8f:4b:9f:7a:df:71:85:b2:8c:12:37:9c:07:78: 02:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:68:85:4A:80:90:CE:3A:A3:7A:C6:25:80:C0:0C:00:03:F6:2F:BC X509v3 Authority Key Identifier: keyid:3F:D5:31:60:25:7D:B0:1B:2E:E0:EF:01:3C:1E:2D:42:EB:1A:28:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P9UxYCV9sBsu4O8BPB4tQusaKI0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D51C/BD312716145411ECA4687268C4F9AE02/P9UxYCV9sBsu4O8BPB4tQusaKI0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:89:9f:4e:90:53:90:d4:6d:d4:1c:d9:60:8c:8a:a1:70:6e: 19:a0:d2:33:88:47:97:6a:6c:ad:97:f7:76:30:46:1b:39:01: 67:4c:63:f5:33:17:13:a7:6a:9f:05:e4:19:01:47:18:bb:ba: 99:a2:12:46:c7:ad:6f:3c:2e:d2:ad:18:e1:38:2a:69:04:60: ae:2d:5b:37:c4:2b:36:89:73:fa:44:15:51:0f:ad:9e:b8:8d: 4c:59:85:87:45:93:bd:22:bf:d7:d7:a8:c5:8b:15:3d:c5:b7: 3c:fe:84:95:cb:a2:34:87:d8:28:e5:4a:19:43:de:1b:0e:dd: 33:08:fa:82:b0:d8:e8:a0:7a:d1:9d:b8:a7:de:1a:34:9c:60: 58:d2:fa:3b:37:98:90:63:c0:af:34:91:30:65:5e:1c:95:21: 8b:ef:e8:33:c8:85:f6:67:07:b5:aa:6c:84:c3:d9:a0:f5:3e: 91:c7:26:72:d5:64:c6:c2:97:f3:66:2e:a4:89:30:7c:86:73: a8:1b:64:59:2c:5b:79:50:29:4d:1f:0e:d9:f7:99:a7:d2:d2: bd:19:3d:2b:99:22:9d:d5:b8:7e:27:8f:e3:72:8d:18:f2:da: 1b:4e:79:3e:9a:3d:6f:18:2b:ac:bf:59:24:09:56:bd:74:15: 1e:1f:ca:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ1MUMxMTAvBgNVBAUTKDNGRDUzMTYwMjU3REIwMUIyRUUwRUYwMTNDMUUyRDQy RUIxQTI4OEQwHhcNMjUwNzIwMjM0OTQxWhcNMjUwNzI3MjM0OTQxWjAYMRYwFAYD VQQDEw02ODdkODA5NS03NjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHQX5DZf0FdJs/ht7DKtDAY8Dg2Cp+ghdGaoSvDyS3qS5TzIRifD1/jBQgar u+66zoD15q75EJYZFcKOpa239jCSyfAYtBc2Umex18c37aYyrj32vD/Ru5KPc5xW hQCu74l2f3kke7uQqX4qbmMYYUllqi+erm2GyQJ2Om4GvyRJwWUkpF6OfoPbT3xy cQw9cI+EZYg5Ss5bksVPi0ccwStOakdr8W1fye42ahyP/4d0RThAT1TWutdIWHEK DdgbOM2V6kS+WZCpv1lQ7t4ksAr7Num/AZos2BXR1at9niQDhV4x7MEeEs6wKsn0 ztyrj0ufet9xhbKMEjecB3gC7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFItohUqA kM46o3rGJYDADAAD9i+8MB8GA1UdIwQYMBaAFD/VMWAlfbAbLuDvATweLULrGiiN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDUxQy9CRDMxMjcxNjE0 NTQxMUVDQTQ2ODcyNjhDNEY5QUUwMi9QOVV4WUNWOXNCc3U0TzhCUEI0dFF1c2FL STAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A5VXhZQ1Y5c0JzdTRPOEJQQjR0UXVzYUtJMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDUxQy9CRDMxMjcxNjE0NTQxMUVDQTQ2ODcyNjhDNEY5QUUwMi9QOVV4WUNWOXNC c3U0TzhCUEI0dFF1c2FLSTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAliZ9OkFOQ1G3UHNlgjIqhcG4ZoNIziEeXamytl/d2MEYbOQFnTGP1 MxcTp2qfBeQZAUcYu7qZohJGx61vPC7SrRjhOCppBGCuLVs3xCs2iXP6RBVRD62e uI1MWYWHRZO9Ir/X16jFixU9xbc8/oSVy6I0h9go5UoZQ94bDt0zCPqCsNjooHrR nbin3ho0nGBY0vo7N5iQY8CvNJEwZV4clSGL7+gzyIX2Zwe1qmyEw9mg9T6RxyZy 1WTGwpfzZi6kiTB8hnOoG2RZLFt5UClNHw7Z95mn0tK9GT0rmSKd1bh+J4/jco0Y 8tobTnk+mj1vGCusv1kkCVa9dBUeH8oH -----END CERTIFICATE-----Generated at Mon Jul 21 08:06:37 2025 by rpki-client