$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft File: cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft (raw, json) Hash identifier: RDdTIBWJZ0QHFta40LUEg3EDGcTC6baJxsLQ2+W/NbM= Subject key identifier: 5C:BF:6A:2E:50:30:53:CD:89:27:D8:C6:4F:DF:5C:C1:6D:1D:06:EC Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0C0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft Manifest number: 0C07 Signing time: Sun 20 Jul 2025 18:49:16 +0000 Manifest this update: Sun 20 Jul 2025 18:49:15 +0000 Manifest next update: Sun 27 Jul 2025 18:49:15 +0000 Files and hashes: 1: cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl (hash: QAeddr2+mk4vriF8C0PWoJ6PM53jSna77fA17KPUUp4=) 2: 4697751815B111EA8277BA34C4F9AE02.roa (hash: dxDp9E0tHPQ++XAIde+nxMm3Ga/WWcWY96m0Hl+beDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:49:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3086 (0xc0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31, serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Jul 20 18:49:15 2025 GMT Not After : Jul 27 18:49:15 2025 GMT Subject: CN=687d3a2b-ecde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f9:1a:a8:36:10:fa:e3:85:5d:5d:76:7b:28: 41:da:50:ba:6e:ae:f4:3e:0f:1a:bb:68:d2:cf:e4: c3:81:91:df:c3:d9:ed:dd:02:56:04:43:9a:41:f1: 17:11:f0:40:d7:ff:47:0a:80:be:58:67:9e:42:f8: 55:a2:c3:14:66:d7:19:79:57:d2:39:20:56:4c:56: 95:ce:43:ac:b5:8d:9e:1d:4a:db:a2:8b:d3:a9:15: dd:32:45:d3:59:2f:ef:26:7d:53:45:5c:14:c1:df: 34:14:77:d5:35:84:61:fb:ff:27:68:7c:f8:e1:16: f9:bc:d6:a0:cd:dd:5b:cd:cf:c7:09:99:a3:2e:24: 4f:99:fe:0e:7b:ea:41:7d:cc:6b:29:ed:a5:44:ec: 33:9c:03:c6:d0:fd:15:77:f1:e4:b2:81:3e:d4:c9: 04:09:9f:b4:b9:31:3a:6e:41:43:46:94:b5:60:45: dc:be:8c:0b:26:a1:5a:de:a3:de:84:64:16:c4:55: fc:37:eb:6d:43:f3:14:f5:c9:28:3e:62:56:14:68: ed:b0:93:2c:9a:6b:69:53:2a:91:51:27:d5:39:0f: 4c:17:98:29:fc:f4:6f:73:d9:5e:94:84:e0:e9:49: 11:e3:67:f6:d6:6d:99:42:a8:7d:12:f8:f8:47:f7: 97:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BF:6A:2E:50:30:53:CD:89:27:D8:C6:4F:DF:5C:C1:6D:1D:06:EC X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:16:e5:7f:52:a2:16:7f:bd:23:5d:fd:f2:68:5a:fb:16:cd: be:d5:b8:9e:82:a9:81:d7:fb:cd:27:c1:70:f5:af:09:63:31: 61:dc:8e:d7:52:97:fa:76:51:1a:92:90:e2:0f:68:e9:bc:60: fd:6e:34:27:dc:66:7d:d9:de:81:4b:27:24:57:62:4e:f0:49: 67:95:40:e3:ab:81:bf:c5:ba:2a:1b:a0:39:2a:53:c2:fd:a7: 2d:32:20:0c:9a:6e:c8:27:4f:3c:14:ee:38:c9:9f:49:6e:d1: 94:63:4a:83:2d:03:18:c0:04:ea:33:5a:4c:f8:cd:dc:61:c9: e5:0d:a0:a2:0d:9d:8f:95:84:12:05:f3:6e:19:70:97:c0:b8: 91:35:da:23:26:e4:dc:f6:8e:64:dc:97:cc:c4:9d:e9:d5:ca: 2c:dd:af:03:3a:77:96:ff:72:ac:90:be:17:71:25:fc:3f:42: 7c:4f:17:18:b7:f8:99:d9:ce:e4:90:fc:aa:c9:47:b2:f9:b9: bd:c0:14:b9:25:4a:9c:b1:92:44:7b:e5:22:40:d2:db:b9:00: 98:ac:b5:83:8d:f1:ee:cb:f6:42:26:bf:1f:e3:ed:6d:49:36: 8c:64:04:cf:3c:4c:89:da:85:d7:d3:7d:dd:28:b6:f3:49:07: fb:68:7f:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjUwNzIwMTg0OTE1WhcNMjUwNzI3MTg0OTE1WjAYMRYwFAYD VQQDEw02ODdkM2EyYi1lY2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvPkaqDYQ+uOFXV12eyhB2lC6bq70Pg8au2jSz+TDgZHfw9nt3QJWBEOaQfEX EfBA1/9HCoC+WGeeQvhVosMUZtcZeVfSOSBWTFaVzkOstY2eHUrboovTqRXdMkXT WS/vJn1TRVwUwd80FHfVNYRh+/8naHz44Rb5vNagzd1bzc/HCZmjLiRPmf4Oe+pB fcxrKe2lROwznAPG0P0Vd/HksoE+1MkECZ+0uTE6bkFDRpS1YEXcvowLJqFa3qPe hGQWxFX8N+ttQ/MU9ckoPmJWFGjtsJMsmmtpUyqRUSfVOQ9MF5gp/PRvc9lelITg 6UkR42f21m2ZQqh9Evj4R/eXswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFy/ai5Q MFPNiSfYxk/fXMFtHQbsMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NUMzMS8zOEJGNDA5QTE1OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJr VkcyV0tmUWh3M2I5enZJZFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJFuV/UqIWf70jXf3yaFr7Fs2+1biegqmB1/vNJ8Fw9a8JYzFh3I7X Upf6dlEakpDiD2jpvGD9bjQn3GZ92d6BSyckV2JO8ElnlUDjq4G/xboqG6A5KlPC /actMiAMmm7IJ088FO44yZ9JbtGUY0qDLQMYwATqM1pM+M3cYcnlDaCiDZ2PlYQS BfNuGXCXwLiRNdojJuTc9o5k3JfMxJ3p1cos3a8DOneW/3KskL4XcSX8P0J8TxcY t/iZ2c7kkPyqyUey+bm9wBS5JUqcsZJEe+UiQNLbuQCYrLWDjfHuy/ZCJr8f4+1t STaMZATPPEyJ2oXX033dKLbzSQf7aH+3 -----END CERTIFICATE-----Generated at Tue Jul 22 05:11:02 2025 by rpki-client