$ rpki-client -vvf rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft File: u5rRr2kxSy7y9klB8Db94PfMTwI.mft (raw, json) Hash identifier: Mwm6uBIdmcVXASEifLCxZU9GP3dT49xhPz1XNHlhRJ4= Subject key identifier: 40:0E:08:62:F0:99:65:46:AD:FC:90:2B:18:A5:C2:9D:0C:60:2C:4E Authority key identifier: BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02 Certificate issuer: /CN=A911DA8C/serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02 Certificate serial: 0164 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft Manifest number: 0161 Signing time: Mon 21 Jul 2025 01:24:15 +0000 Manifest this update: Mon 21 Jul 2025 01:24:14 +0000 Manifest next update: Mon 28 Jul 2025 01:24:14 +0000 Files and hashes: 1: u5rRr2kxSy7y9klB8Db94PfMTwI.crl (hash: T4YAn7Dz16r/U4fZstlDUPGF+/8j7oRHc2H6fWvUw1k=) 2: B6369EA2521711EE899DAC80C4F9AE02.roa (hash: HmUyjBFHI1+/W084EHPJ3tp/TeXvZpxhICsUCVrwFxo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.crl rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 01:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 356 (0x164) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DA8C, serialNumber=BB9AD1AF69314B2EF2F64941F036FDE0F7CC4F02 Validity Not Before: Jul 21 01:24:14 2025 GMT Not After : Jul 28 01:24:14 2025 GMT Subject: CN=687d96bf-303a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:41:1c:5c:e3:26:9e:c6:08:02:d6:20:b9:bd: 6e:6e:59:dc:9b:1c:d9:a5:cf:ba:00:d6:bd:4a:13: b2:1c:61:49:49:61:bf:d2:0c:ad:82:c3:6e:f2:29: ba:d8:19:39:0a:09:c4:31:e5:a4:0b:da:0d:81:9d: a3:0e:65:19:2c:c3:54:e0:b8:58:0b:d4:21:a5:52: 7a:00:a5:b1:12:90:b5:67:cd:38:f4:66:9a:77:9e: c7:3d:cd:1b:e2:5a:5f:fd:41:5d:bd:2a:d7:01:43: 59:7f:64:bf:db:0e:cc:e0:40:e0:f1:5b:ac:95:ed: ad:ad:bc:f2:21:db:9f:b7:b5:9f:1f:f6:0c:52:b9: c7:a7:f8:a3:5c:0e:1f:ec:65:79:6a:ae:3c:1d:42: a0:83:4a:8c:5e:6f:74:50:16:cf:ed:48:37:da:f1: 35:cd:a3:40:5b:c2:dc:e8:13:4f:b9:fc:5e:7f:1b: c1:d6:96:1e:d1:45:4e:46:38:d4:a7:45:16:4c:41: 32:21:11:ed:3e:9c:80:99:5b:50:ae:47:ec:a0:b7: 3c:88:46:19:8e:81:72:72:f6:09:b7:73:90:08:b1: e6:99:55:ee:0a:06:b6:83:07:b8:63:71:0f:66:e2: 36:eb:ed:1b:85:b4:10:57:99:60:7a:01:5d:5a:40: 49:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0E:08:62:F0:99:65:46:AD:FC:90:2B:18:A5:C2:9D:0C:60:2C:4E X509v3 Authority Key Identifier: keyid:BB:9A:D1:AF:69:31:4B:2E:F2:F6:49:41:F0:36:FD:E0:F7:CC:4F:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u5rRr2kxSy7y9klB8Db94PfMTwI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DA8C/546EF3BA4B9911EEBB360B55C4F9AE02/u5rRr2kxSy7y9klB8Db94PfMTwI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:a4:11:9a:75:f5:ed:31:4a:bf:16:ce:bc:1d:6d:f2:0b:fd: 81:a6:1a:03:a4:ee:54:df:e9:75:d8:78:73:b5:4a:0c:2c:bc: 6d:ab:00:49:f7:2f:c3:e3:30:f5:92:40:c5:2a:2a:54:2d:8a: e8:d2:dc:93:14:3d:69:16:c3:de:74:f0:e2:f9:43:9d:c7:4a: ad:34:6c:a7:c5:83:ac:be:09:ae:02:50:45:f6:82:b0:eb:8d: 94:92:ea:de:68:fa:eb:b2:7a:84:a4:f0:ca:b0:0d:d6:b7:6d: 4c:28:69:be:16:a4:81:47:01:a7:d4:22:b5:a4:a0:c5:0d:77: 44:9b:ed:a3:86:de:7f:64:95:cc:a7:6f:5f:ff:84:50:d7:be: eb:80:84:56:c2:2e:e4:99:14:be:d1:69:e3:d3:9a:fd:63:9e: 15:51:02:69:13:c6:b4:4e:6d:a5:28:4d:0b:b9:9b:3f:16:73: 22:82:da:95:0e:f3:4f:d9:6f:0e:d3:93:08:02:c5:0f:ed:ea: 1a:90:1e:e9:fd:2c:ef:c4:1b:4b:50:b9:fb:73:ab:e5:77:8c: 01:06:45:94:8b:d5:0b:cd:0b:6e:8f:fb:53:a5:9f:1b:ee:8b: 3e:07:11:cd:e5:22:4e:21:c8:73:09:e7:a5:25:f7:52:cf:f1: f4:0b:b6:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURBOEMxMTAvBgNVBAUTKEJCOUFEMUFGNjkzMTRCMkVGMkY2NDk0MUYwMzZGREUw RjdDQzRGMDIwHhcNMjUwNzIxMDEyNDE0WhcNMjUwNzI4MDEyNDE0WjAYMRYwFAYD VQQDEw02ODdkOTZiZi0zMDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEEcXOMmnsYIAtYgub1ublncmxzZpc+6ANa9ShOyHGFJSWG/0gytgsNu8im6 2Bk5CgnEMeWkC9oNgZ2jDmUZLMNU4LhYC9QhpVJ6AKWxEpC1Z8049Gaad57HPc0b 4lpf/UFdvSrXAUNZf2S/2w7M4EDg8Vusle2trbzyIduft7WfH/YMUrnHp/ijXA4f 7GV5aq48HUKgg0qMXm90UBbP7Ug32vE1zaNAW8Lc6BNPufxefxvB1pYe0UVORjjU p0UWTEEyIRHtPpyAmVtQrkfsoLc8iEYZjoFycvYJt3OQCLHmmVXuCga2gwe4Y3EP ZuI26+0bhbQQV5lgegFdWkBJRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAOCGLw mWVGrfyQKxilwp0MYCxOMB8GA1UdIwQYMBaAFLua0a9pMUsu8vZJQfA2/eD3zE8C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREE4Qy81NDZFRjNCQTRC OTkxMUVFQkIzNjBCNTVDNEY5QUUwMi91NXJScjJreFN5N3k5a2xCOERiOTRQZk1U d0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U1clJyMmt4U3k3eTlrbEI4RGI5NFBmTVR3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REE4Qy81NDZFRjNCQTRCOTkxMUVFQkIzNjBCNTVDNEY5QUUwMi91NXJScjJreFN5 N3k5a2xCOERiOTRQZk1Ud0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdpBGadfXtMUq/Fs68HW3yC/2BphoDpO5U3+l12HhztUoMLLxtqwBJ 9y/D4zD1kkDFKipULYro0tyTFD1pFsPedPDi+UOdx0qtNGynxYOsvgmuAlBF9oKw 642UkureaPrrsnqEpPDKsA3Wt21MKGm+FqSBRwGn1CK1pKDFDXdEm+2jht5/ZJXM p29f/4RQ177rgIRWwi7kmRS+0Wnj05r9Y54VUQJpE8a0Tm2lKE0LuZs/FnMigtqV DvNP2W8O05MIAsUP7eoakB7p/SzvxBtLULn7c6vld4wBBkWUi9ULzQtuj/tTpZ8b 7os+BxHN5SJOIchzCeelJfdSz/H0C7Y1 -----END CERTIFICATE-----Generated at Mon Jul 21 06:52:36 2025 by rpki-client