$ rpki-client -vvf rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft File: nFh2OitDfLKSxGQXuNSO32tXAc8.mft (raw, json) Hash identifier: KIKmF1SUzlbkheRw+uCg7036O3+hyIQyyUWX5JC1CFw= Subject key identifier: 65:08:25:A9:38:4F:A7:23:4A:CF:24:6E:23:60:79:41:60:DA:EE:B2 Authority key identifier: 9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF Certificate issuer: /CN=A9130683/serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Certificate serial: 0766 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft Manifest number: 075F Signing time: Sun 20 Jul 2025 21:45:34 +0000 Manifest this update: Sun 20 Jul 2025 21:45:34 +0000 Manifest next update: Sun 27 Jul 2025 21:45:34 +0000 Files and hashes: 1: nFh2OitDfLKSxGQXuNSO32tXAc8.crl (hash: 7sEWbyE3pTTXkSiQRr7Pt3+3aZwe4z3TCTkEdwLwaVY=) 2: EEF3557C75A211EBBCD0587BC4F9AE02.roa (hash: jIN2PY6GWYE7IvHCsXUW4P6OWa+fFCSoJx89CCKLLFQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:45:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1894 (0x766) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130683, serialNumber=9C58763A2B437CB292C46417B8D48EDF6B5701CF Validity Not Before: Jul 20 21:45:34 2025 GMT Not After : Jul 27 21:45:34 2025 GMT Subject: CN=687d637e-b5e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a9:e9:53:82:4f:c2:36:be:2f:f0:e6:94:b2: e5:d3:3e:e7:bb:6a:a9:fa:59:ee:2f:1f:7f:25:e4: 1c:fb:9b:48:94:d6:55:d0:a5:15:ae:5d:84:60:5b: 54:c5:09:8f:6d:64:2f:74:96:84:1c:fb:b0:7e:78: 46:7f:25:44:2d:f2:68:8d:21:7c:a2:b8:23:85:7b: e0:74:0e:1d:79:ff:ec:6f:6e:06:1f:9e:ef:ef:9f: 9c:16:ac:04:99:ec:ba:7b:23:a9:a3:6a:fd:e4:e7: c0:54:df:ab:96:21:5f:3a:cc:7d:7c:01:20:d8:1c: e9:94:e5:92:d5:6d:3f:da:4b:75:cf:49:92:51:a4: c1:e1:30:ed:93:eb:41:8b:78:f6:e6:03:ec:a1:1b: 1f:87:8a:24:5a:86:57:66:35:b6:ea:08:4a:22:05: f6:7f:d0:e0:7e:52:f3:af:b4:cb:9f:f9:8f:4e:9d: 0a:54:32:f7:2e:9f:a8:a5:9e:05:10:5d:00:d0:b7: 9a:c3:84:a9:35:5c:05:15:49:1d:3f:d8:6e:c7:e4: 66:7b:88:8d:1c:9a:9b:34:68:0a:ef:9e:3e:5a:50: 26:46:90:1d:2c:95:f7:a7:60:35:95:49:5a:2b:b8: 4a:29:b4:bf:be:43:eb:9d:84:54:6e:c9:25:18:3d: ee:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:08:25:A9:38:4F:A7:23:4A:CF:24:6E:23:60:79:41:60:DA:EE:B2 X509v3 Authority Key Identifier: keyid:9C:58:76:3A:2B:43:7C:B2:92:C4:64:17:B8:D4:8E:DF:6B:57:01:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nFh2OitDfLKSxGQXuNSO32tXAc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130683/53D754FE2A4211EB9C46CD4CC4F9AE02/nFh2OitDfLKSxGQXuNSO32tXAc8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:ba:7c:4e:b3:4b:81:99:6e:97:7c:5b:2c:c5:9e:30:bb:ea: f7:bf:20:19:3b:f5:27:0c:24:f6:f5:0b:a5:6d:64:d5:08:0a: 84:a5:c1:c7:7d:c3:3f:d9:18:8f:b8:b9:0c:5c:fa:e0:a6:12: 59:b1:87:23:68:11:72:2e:4c:8b:48:24:83:85:fc:0d:ab:c0: f4:20:53:2e:f1:a8:eb:ff:86:58:44:dd:20:a9:e1:0f:81:e4: 7a:87:bf:d1:14:50:aa:bc:93:e8:e9:ae:6c:c3:1f:aa:5d:a4: 4e:ac:70:ad:dd:d4:ea:d5:76:66:f9:36:5b:fc:ad:a7:d6:cb: 84:c7:ad:5b:2a:02:36:17:88:67:8d:d9:33:9b:44:99:10:96: ef:3b:a6:d5:49:bb:09:d4:32:03:1c:89:0a:78:07:70:b7:34: cf:6b:a2:22:d8:c3:54:a7:f1:db:ed:e1:39:55:ce:c7:04:d9: 57:38:bc:d5:2b:88:a9:71:94:2c:78:ae:70:a2:d7:c2:98:c2: ae:ad:13:de:76:97:d7:4c:de:d1:e6:58:b4:14:3c:86:21:b2: 04:45:0c:17:48:b0:a2:9d:52:35:8a:fa:88:02:42:a2:92:7e: 3f:d6:cf:01:6f:4b:89:a7:6d:17:41:2c:8f:e9:a7:f2:48:3f: 1b:de:6a:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA2ODMxMTAvBgNVBAUTKDlDNTg3NjNBMkI0MzdDQjI5MkM0NjQxN0I4RDQ4RURG NkI1NzAxQ0YwHhcNMjUwNzIwMjE0NTM0WhcNMjUwNzI3MjE0NTM0WjAYMRYwFAYD VQQDEw02ODdkNjM3ZS1iNWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtanpU4JPwja+L/DmlLLl0z7nu2qp+lnuLx9/JeQc+5tIlNZV0KUVrl2EYFtU xQmPbWQvdJaEHPuwfnhGfyVELfJojSF8orgjhXvgdA4def/sb24GH57v75+cFqwE mey6eyOpo2r95OfAVN+rliFfOsx9fAEg2BzplOWS1W0/2kt1z0mSUaTB4TDtk+tB i3j25gPsoRsfh4okWoZXZjW26ghKIgX2f9DgflLzr7TLn/mPTp0KVDL3Lp+opZ4F EF0A0Leaw4SpNVwFFUkdP9hux+Rme4iNHJqbNGgK754+WlAmRpAdLJX3p2A1lUla K7hKKbS/vkPrnYRUbsklGD3uHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUIJak4 T6cjSs8kbiNgeUFg2u6yMB8GA1UdIwQYMBaAFJxYdjorQ3yyksRkF7jUjt9rVwHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDY4My81M0Q3NTRGRTJB NDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZMS1N4R1FYdU5TTzMydFhB YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25GaDJPaXREZkxLU3hHUVh1TlNPMzJ0WEFjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDY4My81M0Q3NTRGRTJBNDIxMUVCOUM0NkNENENDNEY5QUUwMi9uRmgyT2l0RGZM S1N4R1FYdU5TTzMydFhBYzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNunxOs0uBmW6XfFssxZ4wu+r3vyAZO/UnDCT29QulbWTVCAqEpcHH fcM/2RiPuLkMXPrgphJZsYcjaBFyLkyLSCSDhfwNq8D0IFMu8ajr/4ZYRN0gqeEP geR6h7/RFFCqvJPo6a5swx+qXaROrHCt3dTq1XZm+TZb/K2n1suEx61bKgI2F4hn jdkzm0SZEJbvO6bVSbsJ1DIDHIkKeAdwtzTPa6Ii2MNUp/Hb7eE5Vc7HBNlXOLzV K4ipcZQseK5wotfCmMKurRPedpfXTN7R5li0FDyGIbIERQwXSLCinVI1ivqIAkKi kn4/1s8Bb0uJp20XQSyP6afySD8b3moo -----END CERTIFICATE-----Generated at Mon Jul 21 07:03:24 2025 by rpki-client