$ rpki-client -vvf rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft File: PP5vPrHYknFeQTbpuoVrmPZxR7A.mft (raw, json) Hash identifier: OTWn6dXYcNM5gtYXa934a06g1SYRJUDlv5giMdquMSY= Subject key identifier: 33:17:CB:9E:6F:57:EE:7C:0A:C7:43:B3:34:0C:04:63:AE:42:5F:5D Authority key identifier: 3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 Certificate issuer: /CN=A9122D89/serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Certificate serial: 07B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft Manifest number: 07B1 Signing time: Fri 18 Jul 2025 21:30:20 +0000 Manifest this update: Fri 18 Jul 2025 21:30:19 +0000 Manifest next update: Fri 25 Jul 2025 21:30:19 +0000 Files and hashes: 1: PP5vPrHYknFeQTbpuoVrmPZxR7A.crl (hash: P9Z02qhr2UBz0Z4KZHPTymVQM14HxgPS4OLW71BUZuk=) 2: 7E8114F414E611EB82C98471C4F9AE02.roa (hash: J9GQPP4a7clIhGgoBAM9KLX43lz+eBaMPakWPFWVHmk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:30:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1975 (0x7b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122D89, serialNumber=3CFE6F3EB1D892715E4136E9BA856B98F67147B0 Validity Not Before: Jul 18 21:30:19 2025 GMT Not After : Jul 25 21:30:19 2025 GMT Subject: CN=687abcec-d9df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0f:3b:a3:85:a0:ba:81:5f:04:a1:64:13:9d: 3d:00:32:1e:43:36:3a:29:e0:57:25:4d:b4:25:12: 49:4e:77:a4:30:ec:f4:e7:91:03:91:98:7c:c0:fe: a0:0a:dd:c2:96:7f:4c:42:40:b0:47:3c:45:dd:2c: c7:bf:2c:bc:c1:5d:9e:57:85:0a:de:60:f0:d2:af: a8:f6:c5:bb:26:85:c2:a7:7f:73:5d:be:08:87:0e: c1:46:03:be:43:c2:22:0f:db:a5:ce:f2:3c:8b:fb: 2e:79:c7:d8:0d:f7:b4:60:34:32:da:ef:b7:b8:66: 61:c6:cb:a1:b4:48:01:25:e8:45:b2:33:59:c8:85: 00:75:19:0d:84:be:11:89:3b:c1:8d:72:f1:d3:8a: cc:56:18:40:ba:82:cf:87:10:c5:08:ea:76:36:86: 77:71:e5:3a:9a:a3:03:99:bc:92:f9:ba:22:8f:f8: 81:8f:ea:df:1e:7c:65:4f:83:61:00:9d:20:1d:78: 79:d3:57:f8:75:57:20:79:e5:d3:8c:79:82:97:e2: aa:b9:8e:ec:6b:88:3f:1a:47:11:d7:1c:b3:19:8e: 57:88:55:6c:53:0c:66:db:5e:43:b7:88:d4:4a:7a: 38:c2:d2:df:a6:45:71:c2:c1:3a:f9:68:83:7c:0f: 94:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:17:CB:9E:6F:57:EE:7C:0A:C7:43:B3:34:0C:04:63:AE:42:5F:5D X509v3 Authority Key Identifier: keyid:3C:FE:6F:3E:B1:D8:92:71:5E:41:36:E9:BA:85:6B:98:F6:71:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PP5vPrHYknFeQTbpuoVrmPZxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122D89/C6A4A5E2084411EB9C736514C4F9AE02/PP5vPrHYknFeQTbpuoVrmPZxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:0f:92:a9:4a:44:18:b7:9f:ff:b4:e9:bf:dd:58:aa:6a:c5: d2:e6:06:ef:b4:43:36:39:3d:85:06:8f:ff:97:24:c6:a0:0c: d2:af:89:25:30:f4:2b:1f:1f:e5:41:9d:5e:3f:b9:c5:45:4d: c2:de:8b:ed:29:17:bb:1e:20:8a:67:5f:87:89:91:0d:8c:31: 76:d0:19:e9:d0:b0:ef:58:fd:97:97:38:c2:06:41:d6:e2:cb: cf:66:28:45:14:69:57:d2:a1:40:7a:3e:e1:b8:5f:18:a3:ec: 9e:43:83:8c:88:e3:58:cc:9b:1e:b4:be:5d:41:6e:95:ad:0b: c9:16:85:77:73:8f:a1:30:f2:9b:ca:ab:9f:3b:23:d6:90:0b: c4:41:e0:ab:af:1a:fc:77:2d:b1:94:cb:a3:df:43:8b:26:b4: 12:a8:bc:50:62:e1:32:88:ab:67:78:f5:61:42:23:e7:4f:e9: 94:c2:87:09:b7:b8:33:8a:96:15:c3:33:b8:ae:80:32:e6:28: 85:f6:4b:53:a9:f2:ae:6a:06:a8:fb:7c:c0:e6:5d:f9:d8:26: cc:09:18:29:a5:02:b3:33:16:a0:6a:1c:70:3e:c8:d4:89:cc: a9:89:f5:d8:ec:53:60:1a:7c:08:5f:b6:83:ae:9a:1c:2f:21: 5d:91:87:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJEODkxMTAvBgNVBAUTKDNDRkU2RjNFQjFEODkyNzE1RTQxMzZFOUJBODU2Qjk4 RjY3MTQ3QjAwHhcNMjUwNzE4MjEzMDE5WhcNMjUwNzI1MjEzMDE5WjAYMRYwFAYD VQQDEw02ODdhYmNlYy1kOWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA87o4WguoFfBKFkE509ADIeQzY6KeBXJU20JRJJTnekMOz055EDkZh8wP6g Ct3Cln9MQkCwRzxF3SzHvyy8wV2eV4UK3mDw0q+o9sW7JoXCp39zXb4Ihw7BRgO+ Q8IiD9ulzvI8i/suecfYDfe0YDQy2u+3uGZhxsuhtEgBJehFsjNZyIUAdRkNhL4R iTvBjXLx04rMVhhAuoLPhxDFCOp2NoZ3ceU6mqMDmbyS+boij/iBj+rfHnxlT4Nh AJ0gHXh501f4dVcgeeXTjHmCl+KquY7sa4g/GkcR1xyzGY5XiFVsUwxm215Dt4jU Sno4wtLfpkVxwsE6+WiDfA+UkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMXy55v V+58CsdDszQMBGOuQl9dMB8GA1UdIwQYMBaAFDz+bz6x2JJxXkE26bqFa5j2cUew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkQ4OS9DNkE0QTVFMjA4 NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtuRmVRVGJwdW9Wcm1QWnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BQNXZQckhZa25GZVFUYnB1b1ZybVBaeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MkQ4OS9DNkE0QTVFMjA4NDQxMUVCOUM3MzY1MTRDNEY5QUUwMi9QUDV2UHJIWWtu RmVRVGJwdW9Wcm1QWnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHD5KpSkQYt5//tOm/3ViqasXS5gbvtEM2OT2FBo//lyTGoAzSr4kl MPQrHx/lQZ1eP7nFRU3C3ovtKRe7HiCKZ1+HiZENjDF20Bnp0LDvWP2XlzjCBkHW 4svPZihFFGlX0qFAej7huF8Yo+yeQ4OMiONYzJsetL5dQW6VrQvJFoV3c4+hMPKb yqufOyPWkAvEQeCrrxr8dy2xlMuj30OLJrQSqLxQYuEyiKtnePVhQiPnT+mUwocJ t7gzipYVwzO4roAy5iiF9ktTqfKuagao+3zA5l352CbMCRgppQKzMxagahxwPsjU icypifXY7FNgGnwIX7aDrpocLyFdkYe6 -----END CERTIFICATE-----Generated at Sun Jul 20 18:59:47 2025 by rpki-client