$ rpki-client -vvf rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft File: r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft (raw, json) Hash identifier: zksEyriJliWxIGJZtwG7YrDdXI1lEAHghtgBBZvY+64= Subject key identifier: 2B:76:9C:D3:E6:02:05:B9:96:5C:82:26:AA:94:D9:84:EC:DF:CC:33 Authority key identifier: AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 Certificate issuer: /CN=A9127686/serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Certificate serial: 04D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft Manifest number: 04CC Signing time: Fri 25 Jul 2025 00:10:37 +0000 Manifest this update: Fri 25 Jul 2025 00:10:37 +0000 Manifest next update: Fri 01 Aug 2025 00:10:37 +0000 Files and hashes: 1: r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl (hash: zNUXsK8M4kDuQ9hWRQyUyeK6pr3H96LOl3LfGSfVYfI=) 2: 54BBE48A304411EC830F8610C4F9AE02.roa (hash: ES0KtplnGhM27Vh/hroAKpFu+jIJhHlyayZgnN5P/Xk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 00:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1233 (0x4d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127686, serialNumber=AF71F5B16795F9B7CF2B245848077E11685BA6F0 Validity Not Before: Jul 25 00:10:37 2025 GMT Not After : Aug 1 00:10:37 2025 GMT Subject: CN=6882cb7d-9f53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cb:6f:e2:01:e0:93:27:a3:c0:e8:77:68:71: 97:10:86:f1:7b:2f:de:ce:81:36:a6:57:79:a3:09: 9f:8b:81:ad:10:17:17:79:ac:ef:79:e6:81:3c:5c: 5c:e8:09:cd:20:0e:c0:6d:12:e7:77:68:68:95:b0: e5:fd:63:8e:fd:39:7f:68:fd:0f:36:f9:6e:2d:ac: 06:41:bc:a8:e8:07:01:85:77:70:2a:0e:cd:32:d0: 79:e5:cc:73:89:ce:db:b2:3c:6c:ce:eb:57:ef:11: 90:8d:57:c1:76:33:a1:64:dc:44:e4:4d:52:58:b4: 12:78:ad:e7:78:c0:d1:13:38:9d:fe:1e:64:39:08: bc:42:16:0d:c1:b0:76:f0:72:e4:b9:75:92:e2:d2: 1a:a2:da:27:db:fa:38:ea:7b:42:86:d1:78:fb:65: 84:b8:e6:75:6e:77:1f:d4:d0:ba:3d:13:f7:d4:be: 7b:8a:a5:0c:4c:92:dc:35:a7:f8:f7:64:bc:a7:88: 13:28:33:e7:de:99:5d:ed:88:97:e4:34:88:2e:c4: f8:2c:91:c5:92:29:90:2e:a5:a5:6f:88:a9:e9:37: fb:c7:3b:61:30:c2:d4:b6:eb:6b:ee:7c:be:70:2b: 20:2f:ed:23:a1:7f:21:50:65:17:4b:a4:4d:32:9c: 6e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:76:9C:D3:E6:02:05:B9:96:5C:82:26:AA:94:D9:84:EC:DF:CC:33 X509v3 Authority Key Identifier: keyid:AF:71:F5:B1:67:95:F9:B7:CF:2B:24:58:48:07:7E:11:68:5B:A6:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r3H1sWeV-bfPKyRYSAd-EWhbpvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127686/C74B1FFE304211ECAF185A10C4F9AE02/r3H1sWeV-bfPKyRYSAd-EWhbpvA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:57:26:9c:e1:a8:a4:15:4c:b0:c0:26:15:8f:cb:b5:f3:48: ce:e4:fd:65:74:49:c2:25:5e:9e:65:d3:c2:78:aa:1f:16:6d: ee:42:68:61:e5:5f:1b:29:1d:4b:5f:2f:51:07:a3:db:7d:9c: b5:20:63:21:4a:34:73:71:2a:6d:9e:50:b9:5a:0d:01:bb:70: 16:e4:ad:e9:c9:e3:eb:84:d7:07:f1:3e:f1:30:fb:72:90:33: 41:86:72:e0:08:6b:d8:01:6d:3f:bc:cc:58:c9:b0:f7:84:77: 76:fe:7e:82:2f:f5:28:09:76:61:8e:2d:d3:82:30:11:a7:c9: a3:52:32:62:1f:fb:cb:e5:98:5d:c9:46:56:e0:d2:56:95:82: f4:db:ee:79:af:ac:38:e3:8f:85:00:ac:62:9b:f3:f9:96:de: cf:30:15:6a:d7:85:c7:8f:30:7f:84:ea:05:7d:8f:74:53:9b: 66:43:25:fd:1f:5d:f2:2b:1d:22:d9:8f:bf:7f:06:73:91:11: 63:ab:63:3d:d2:1f:61:13:cb:a6:28:71:67:ff:cc:6a:44:27: 0f:a4:de:f8:62:89:dc:4e:e8:c5:98:6e:72:c8:36:16:c4:c9: 54:02:a5:75:14:96:4e:87:ae:75:ea:e0:22:39:27:b9:b0:67: 4b:7f:12:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2ODYxMTAvBgNVBAUTKEFGNzFGNUIxNjc5NUY5QjdDRjJCMjQ1ODQ4MDc3RTEx Njg1QkE2RjAwHhcNMjUwNzI1MDAxMDM3WhcNMjUwODAxMDAxMDM3WjAYMRYwFAYD VQQDEw02ODgyY2I3ZC05ZjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuMtv4gHgkyejwOh3aHGXEIbxey/ezoE2pld5owmfi4GtEBcXeazveeaBPFxc 6AnNIA7AbRLnd2holbDl/WOO/Tl/aP0PNvluLawGQbyo6AcBhXdwKg7NMtB55cxz ic7bsjxszutX7xGQjVfBdjOhZNxE5E1SWLQSeK3neMDREzid/h5kOQi8QhYNwbB2 8HLkuXWS4tIaoton2/o46ntChtF4+2WEuOZ1bncf1NC6PRP31L57iqUMTJLcNaf4 92S8p4gTKDPn3pld7YiX5DSILsT4LJHFkimQLqWlb4ip6Tf7xzthMMLUtutr7ny+ cCsgL+0joX8hUGUXS6RNMpxuSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCt2nNPm AgW5llyCJqqU2YTs38wzMB8GA1UdIwQYMBaAFK9x9bFnlfm3zyskWEgHfhFoW6bw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY4Ni9DNzRCMUZGRTMw NDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1iZlBLeVJZU0FkLUVXaGJw dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3IzSDFzV2VWLWJmUEt5UllTQWQtRVdoYnB2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzY4Ni9DNzRCMUZGRTMwNDIxMUVDQUYxODVBMTBDNEY5QUUwMi9yM0gxc1dlVi1i ZlBLeVJZU0FkLUVXaGJwdkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9Vyac4aikFUywwCYVj8u180jO5P1ldEnCJV6eZdPCeKofFm3uQmhh 5V8bKR1LXy9RB6PbfZy1IGMhSjRzcSptnlC5Wg0Bu3AW5K3pyePrhNcH8T7xMPty kDNBhnLgCGvYAW0/vMxYybD3hHd2/n6CL/UoCXZhji3TgjARp8mjUjJiH/vL5Zhd yUZW4NJWlYL02+55r6w444+FAKxim/P5lt7PMBVq14XHjzB/hOoFfY90U5tmQyX9 H13yKx0i2Y+/fwZzkRFjq2M90h9hE8umKHFn/8xqRCcPpN74YoncTujFmG5yyDYW xMlUAqV1FJZOh6516uAiOSe5sGdLfxLv -----END CERTIFICATE-----Generated at Sat Jul 26 00:47:54 2025 by rpki-client