$ rpki-client -vvf rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft File: 07chXhZgoZ79Lncvm6envcbuDSg.mft (raw, json) Hash identifier: IOxkiNMc7pbtjWIvQp8la3jaLQVgIVrNlkOqrqQJJS8= Subject key identifier: F9:06:2A:B1:DE:24:3D:DA:CF:5D:AC:BB:38:8C:B9:56:A5:B3:A5:08 Authority key identifier: D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 Certificate issuer: /CN=A912BBC9/serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Certificate serial: 094C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft Manifest number: 0930 Signing time: Fri 18 Jul 2025 20:32:53 +0000 Manifest this update: Fri 18 Jul 2025 20:32:52 +0000 Manifest next update: Fri 25 Jul 2025 20:32:52 +0000 Files and hashes: 1: 07chXhZgoZ79Lncvm6envcbuDSg.crl (hash: kfelpeZ6FPapQ3kBvfG9XrGWbcz6DHDsA2RiIPhY5/o=) 2: 42B13940C3C011EE86C2C317C4F9AE02.roa (hash: LGFMxkvmdVELBOkg0tqQjRMiBrTGNLnJnZeQEwD+enQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2380 (0x94c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BBC9, serialNumber=D3B7215E1660A19EFD2E772F9BA7A7BDC6EE0D28 Validity Not Before: Jul 18 20:32:52 2025 GMT Not After : Jul 25 20:32:52 2025 GMT Subject: CN=687aaf75-98c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:1e:69:ba:ac:f2:10:f1:3d:4b:0e:8e:47:de: 9e:61:8b:2f:2b:0a:52:20:db:af:52:24:60:ec:5d: 0c:68:93:c0:d2:d4:4f:01:f6:77:aa:8e:f4:40:d6: d6:39:48:e9:fb:ac:26:02:60:d5:72:fe:fa:5e:8a: f2:6c:22:b4:cb:0e:f8:32:b8:cf:8a:34:bc:20:07: 4f:78:58:b3:51:16:af:fc:9f:05:35:6c:f8:f2:08: 49:25:5d:f1:8c:7e:84:fd:93:bc:86:67:9c:f7:a6: 57:96:cd:95:78:85:9d:d4:8f:5c:96:34:f8:d0:98: f7:05:ca:a6:1c:03:8c:d1:ee:79:d2:72:b2:95:3b: d6:cf:54:70:b9:57:71:9e:c3:b5:c5:a2:84:07:fc: 28:55:87:28:99:e4:91:80:13:1b:4a:04:be:10:c4: 43:3c:03:c6:10:c6:d8:b1:fd:00:07:4c:fb:ef:1c: 30:94:33:fc:54:68:5c:d1:89:1e:4a:a9:de:59:0d: 3a:b3:55:17:5a:db:92:e6:99:f7:bc:a0:ff:b5:73: 05:20:24:81:3f:7f:16:3b:bf:12:d1:31:ac:94:37: 36:a8:eb:03:3f:91:1c:ab:e4:45:0d:c9:a1:60:95: 9b:4d:de:f0:dd:52:0d:d7:61:5e:60:03:da:77:e4: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:06:2A:B1:DE:24:3D:DA:CF:5D:AC:BB:38:8C:B9:56:A5:B3:A5:08 X509v3 Authority Key Identifier: keyid:D3:B7:21:5E:16:60:A1:9E:FD:2E:77:2F:9B:A7:A7:BD:C6:EE:0D:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07chXhZgoZ79Lncvm6envcbuDSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BBC9/83FF9FECAA8111EAB42A0433C4F9AE02/07chXhZgoZ79Lncvm6envcbuDSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:0d:64:e5:8c:35:e4:d2:67:92:37:9d:a6:bf:22:76:37:34: 5d:a9:54:eb:13:53:fd:63:3a:7b:51:8e:82:f0:27:9b:9f:49: c8:df:e6:4c:82:4b:8b:af:ea:7d:39:04:7f:f4:3f:b0:da:c8: d8:1c:a3:5b:df:c5:5a:0b:67:40:b0:92:54:c8:6e:cf:b6:10: 77:c9:b2:5c:25:df:cd:7f:f9:5f:f7:5e:8c:1e:e0:19:95:c1: 37:80:dd:cd:63:7b:b4:be:43:31:fb:d6:b9:70:77:b5:24:b3: 2e:df:8d:52:85:ca:42:be:6e:38:14:f3:72:c9:f9:83:42:a8: 89:a2:c7:17:9e:c0:68:fa:f4:eb:3e:56:59:d0:58:13:4e:57: 81:3d:34:5f:c1:4c:03:0e:27:31:0f:74:ac:a1:61:17:06:bc: 93:0b:ff:1e:fa:b9:9f:fe:ea:19:7a:b0:7c:c4:7b:6b:63:20: d6:6d:6a:dc:3f:85:f2:54:1c:ea:ed:4b:8c:e7:af:93:58:82: 33:a0:7c:a6:6d:be:e0:30:c6:88:a4:c3:11:25:fd:be:47:ad: 43:d3:07:cd:bb:65:aa:77:03:60:d3:68:c9:af:9c:cd:78:b5: fb:9b:9a:f5:09:4e:92:4f:57:5c:d4:9a:f9:58:3e:b2:85:84: 0f:07:59:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJCQzkxMTAvBgNVBAUTKEQzQjcyMTVFMTY2MEExOUVGRDJFNzcyRjlCQTdBN0JE QzZFRTBEMjgwHhcNMjUwNzE4MjAzMjUyWhcNMjUwNzI1MjAzMjUyWjAYMRYwFAYD VQQDEw02ODdhYWY3NS05OGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7x5puqzyEPE9Sw6OR96eYYsvKwpSINuvUiRg7F0MaJPA0tRPAfZ3qo70QNbW OUjp+6wmAmDVcv76XorybCK0yw74MrjPijS8IAdPeFizURav/J8FNWz48ghJJV3x jH6E/ZO8hmec96ZXls2VeIWd1I9cljT40Jj3BcqmHAOM0e550nKylTvWz1RwuVdx nsO1xaKEB/woVYcomeSRgBMbSgS+EMRDPAPGEMbYsf0AB0z77xwwlDP8VGhc0Yke SqneWQ06s1UXWtuS5pn3vKD/tXMFICSBP38WO78S0TGslDc2qOsDP5Ecq+RFDcmh YJWbTd7w3VIN12FeYAPad+TqkQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkGKrHe JD3az12suziMuVals6UIMB8GA1UdIwQYMBaAFNO3IV4WYKGe/S53L5unp73G7g0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkJDOS84M0ZGOUZFQ0FB ODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29aNzlMbmN2bTZlbnZjYnVE U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3Y2hYaFpnb1o3OUxuY3ZtNmVudmNidURTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QkJDOS84M0ZGOUZFQ0FBODExMUVBQjQyQTA0MzNDNEY5QUUwMi8wN2NoWGhaZ29a NzlMbmN2bTZlbnZjYnVEU2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8DWTljDXk0meSN52mvyJ2NzRdqVTrE1P9Yzp7UY6C8Cebn0nI3+ZM gkuLr+p9OQR/9D+w2sjYHKNb38VaC2dAsJJUyG7PthB3ybJcJd/Nf/lf916MHuAZ lcE3gN3NY3u0vkMx+9a5cHe1JLMu341ShcpCvm44FPNyyfmDQqiJoscXnsBo+vTr PlZZ0FgTTleBPTRfwUwDDicxD3SsoWEXBryTC/8e+rmf/uoZerB8xHtrYyDWbWrc P4XyVBzq7UuM56+TWIIzoHymbb7gMMaIpMMRJf2+R61D0wfNu2WqdwNg02jJr5zN eLX7m5r1CU6ST1dc1Jr5WD6yhYQPB1kY -----END CERTIFICATE-----Generated at Sun Jul 20 07:29:15 2025 by rpki-client