$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft File: s9da4ezu9vkr0X0MSzZRjVvndvE.mft (raw, json) Hash identifier: GemZuNh2rySKn09V/GpNP9DJtD7I+QZJd2f62qkvOYY= Subject key identifier: BD:4E:4E:2B:B2:60:A6:F2:0F:73:5B:AA:32:C7:E1:8F:3D:64:3F:E2 Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft Manifest number: E8 Signing time: Sat 19 Jul 2025 05:36:24 +0000 Manifest this update: Sat 19 Jul 2025 05:36:24 +0000 Manifest next update: Sat 26 Jul 2025 05:36:24 +0000 Files and hashes: 1: s9da4ezu9vkr0X0MSzZRjVvndvE.crl (hash: x+DA+tMZyUVdCpkLYZ7r8Yz8I17U7ftmqEv3MaK7/pY=) 2: 7E15FE0C27B711EF8867AA49C4F9AE02.roa (hash: xJBS1rE4hyaBoQRSLDqWi8kJZTi9bOV+WLs5Y+jjSRs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:36:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: Jul 19 05:36:24 2025 GMT Not After : Jul 26 05:36:24 2025 GMT Subject: CN=687b2ed8-7272 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:71:36:34:9d:e0:57:d4:1a:d4:61:18:5d:36: 2a:98:15:e1:12:81:21:35:38:8c:fb:2d:db:8e:8a: 65:e2:2e:a3:80:7e:40:2b:c2:51:21:29:40:07:d5: a0:fe:06:2d:41:ea:5b:bd:0f:04:ca:08:d9:8b:f7: a5:25:5c:f5:f5:bc:39:aa:bd:32:e4:a6:6a:0e:34: 11:74:70:4c:d1:ee:8b:d3:ba:d4:61:cf:0e:3e:f1: ed:8d:78:0a:96:fb:3a:b2:10:1c:5f:72:d0:1d:ac: fb:15:1c:46:60:3a:9a:58:ef:08:e6:4a:c5:c9:71: 5c:46:7e:04:e8:b2:56:34:70:9b:65:11:55:63:06: 79:65:34:61:30:2a:2d:81:20:bd:b1:04:ee:f9:d9: aa:e4:33:d2:80:f4:b2:46:d6:4f:c8:4e:a7:94:c0: 49:12:b8:76:a5:ca:14:1a:1c:5c:f1:9f:e5:1c:75: b7:ac:38:ff:b3:3f:bf:29:17:27:47:f7:66:04:ea: 08:40:e0:5a:7b:a1:66:f4:c4:65:08:f9:21:ab:fa: db:1c:f4:d1:00:40:51:f3:77:50:3b:6e:47:8a:74: 0f:8b:07:37:84:d1:17:c8:88:4a:d3:dd:4c:86:b7: 14:2a:c3:19:f4:57:54:f3:ae:6a:5c:9a:d4:9b:95: ab:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:4E:4E:2B:B2:60:A6:F2:0F:73:5B:AA:32:C7:E1:8F:3D:64:3F:E2 X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:28:8f:54:81:52:53:94:46:14:ea:03:67:f5:56:8b:e1:7c: 9f:9f:68:cb:b5:0a:3e:c7:59:e7:2a:1b:9f:45:9d:5a:f5:7f: cd:2d:4d:93:0c:7a:7b:92:99:ac:8f:31:3c:85:63:eb:e9:9e: cd:c5:82:09:63:23:9b:8e:3c:65:c8:5c:36:51:04:e9:1b:bb: 8f:91:de:9d:a3:4f:27:11:5e:72:3d:dd:ff:bd:f8:2f:fe:24: 06:ae:bd:23:d4:ca:d6:43:e5:12:46:b3:3e:e2:31:6d:2e:34: d6:6d:c8:79:fe:51:e7:19:5a:a3:97:23:57:c7:7a:36:4e:db: 5f:da:20:89:fd:8f:11:ba:c8:8d:96:01:0d:bd:0b:44:30:e3: 34:70:ab:9c:e6:8c:90:62:69:54:db:40:1e:c8:55:ce:aa:b1: dd:89:84:0a:44:f2:a5:ca:14:18:a1:b1:31:a7:f2:3e:8f:b2: 66:63:e2:d6:60:bb:ab:e9:d6:13:91:5b:5f:9f:3f:2f:3c:87: b7:ae:af:03:b1:33:2f:a9:67:e0:f8:85:36:be:11:d3:13:0a: b0:ed:37:de:5c:38:5a:4c:62:9b:4c:12:6f:19:e3:48:de:d5: 55:66:a8:d7:b1:82:81:d9:6e:6a:1e:4a:16:c9:6b:39:4c:90: 05:e4:f6:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwNzE5MDUzNjI0WhcNMjUwNzI2MDUzNjI0WjAYMRYwFAYD VQQDEw02ODdiMmVkOC03MjcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3E2NJ3gV9Qa1GEYXTYqmBXhEoEhNTiM+y3bjopl4i6jgH5AK8JRISlAB9Wg /gYtQepbvQ8EygjZi/elJVz19bw5qr0y5KZqDjQRdHBM0e6L07rUYc8OPvHtjXgK lvs6shAcX3LQHaz7FRxGYDqaWO8I5krFyXFcRn4E6LJWNHCbZRFVYwZ5ZTRhMCot gSC9sQTu+dmq5DPSgPSyRtZPyE6nlMBJErh2pcoUGhxc8Z/lHHW3rDj/sz+/KRcn R/dmBOoIQOBae6Fm9MRlCPkhq/rbHPTRAEBR83dQO25HinQPiwc3hNEXyIhK091M hrcUKsMZ9FdU865qXJrUm5WrbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1OTiuy YKbyD3NbqjLH4Y89ZD/iMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjVDQS85RTdDMkNFRTAyNEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2 a3IwWDBNU3paUmpWdm5kdkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEKI9UgVJTlEYU6gNn9VaL4Xyfn2jLtQo+x1nnKhufRZ1a9X/NLU2T DHp7kpmsjzE8hWPr6Z7NxYIJYyObjjxlyFw2UQTpG7uPkd6do08nEV5yPd3/vfgv /iQGrr0j1MrWQ+USRrM+4jFtLjTWbch5/lHnGVqjlyNXx3o2Tttf2iCJ/Y8RusiN lgENvQtEMOM0cKuc5oyQYmlU20AeyFXOqrHdiYQKRPKlyhQYobExp/I+j7JmY+LW YLur6dYTkVtfnz8vPIe3rq8DsTMvqWfg+IU2vhHTEwqw7TfeXDhaTGKbTBJvGeNI 3tVVZqjXsYKB2W5qHkoWyWs5TJAF5Pac -----END CERTIFICATE-----Generated at Sun Jul 20 15:08:56 2025 by rpki-client