$ rpki-client -vvf rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft File: U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft (raw, json) Hash identifier: CWkrNz7XA6PO9m5ceV9vmSinxpxYM7f+ukQO05w1Rxk= Subject key identifier: 5F:A3:F9:9F:4A:53:AB:2C:55:82:87:F0:06:30:98:A0:1B:90:B0:81 Authority key identifier: 53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF Certificate issuer: /CN=A9130837/serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Certificate serial: 04C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft Manifest number: 04BA Signing time: Sat 19 Jul 2025 00:16:08 +0000 Manifest this update: Sat 19 Jul 2025 00:16:08 +0000 Manifest next update: Sat 26 Jul 2025 00:16:08 +0000 Files and hashes: 1: U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl (hash: b550k3Y/D+2V3DlXh057+bwNh+XOuMtUp7N03FVUSq0=) 2: 1C032F5A36E711EC9581EC54C4F9AE02.roa (hash: zuaM96z3jhp+fAEf2SKv65O5x2n5mX1/wYZc1QfKJIE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:16:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130837, serialNumber=5368B8C8D6963EAD839905A486F53C44B041A5EF Validity Not Before: Jul 19 00:16:08 2025 GMT Not After : Jul 26 00:16:08 2025 GMT Subject: CN=687ae3c8-f094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f4:2c:2c:d8:8a:98:28:1f:f5:8a:39:db:26: 65:a8:10:e2:2f:e1:fa:b5:ad:c1:e5:06:9e:ae:8c: f3:be:3a:62:9a:98:97:f5:42:b4:e5:fd:77:2d:2d: f2:4e:c1:a7:74:17:eb:c7:61:17:a7:0f:e6:19:b0: f4:5a:1b:ff:e0:81:49:ef:bc:c0:0f:27:b2:01:03: 13:0f:4a:09:f6:7d:3a:2f:89:0e:83:a4:6b:71:3a: 58:53:6f:a5:79:67:52:9c:0f:b3:2f:ff:a4:ad:e4: aa:7b:a0:d7:62:39:b8:30:7b:a6:11:3e:8a:19:cf: bb:8d:45:0b:24:eb:40:3d:ed:d5:1c:03:cb:f1:5b: 1c:f8:92:2d:b8:c0:b9:3b:db:98:22:4a:97:05:43: a8:f8:e7:1f:35:b6:a4:9b:75:48:aa:7c:7b:32:ea: e3:a7:8f:eb:3a:09:54:e1:19:5e:82:c9:bc:ab:92: fc:70:5d:fc:bc:38:95:86:e2:1e:bc:02:80:d4:2a: 29:d0:67:c5:5c:ab:b0:68:8c:e9:ea:28:5d:c4:3a: bb:1b:7d:5e:ce:f8:a6:bf:16:25:90:2e:a4:74:50: 56:84:ef:c0:c2:83:e4:e1:91:8d:0b:63:10:dd:50: 33:53:d1:d8:2b:ff:b2:f7:f6:6d:5a:b3:7a:89:1b: e6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:A3:F9:9F:4A:53:AB:2C:55:82:87:F0:06:30:98:A0:1B:90:B0:81 X509v3 Authority Key Identifier: keyid:53:68:B8:C8:D6:96:3E:AD:83:99:05:A4:86:F5:3C:44:B0:41:A5:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2i4yNaWPq2DmQWkhvU8RLBBpe8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130837/E3F87CB236E311ECBC8CC250C4F9AE02/U2i4yNaWPq2DmQWkhvU8RLBBpe8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:34:d1:65:92:c5:b2:cf:c9:73:1f:f4:57:b2:35:21:ff:6b: f8:33:1a:82:b8:1b:6f:f9:04:26:fd:73:bb:42:8a:9a:38:cb: 8b:cb:dd:cd:32:90:05:d6:01:ab:d3:ae:27:66:2d:ea:36:c0: 25:84:74:69:be:3f:ef:17:5e:57:99:07:8c:32:92:e7:15:b3: 78:9b:b9:6d:6c:cd:14:63:e6:b5:73:9c:2b:88:70:7d:13:99: 2f:70:27:24:9f:7c:ae:0e:38:a7:52:4f:7a:99:89:62:a2:84: e0:97:31:f2:94:42:f8:02:54:65:86:64:84:fd:9a:1e:ca:08: b0:1d:bb:3b:c3:b1:8c:c6:fb:e0:47:a4:1c:e7:e5:83:39:0a: ee:a0:8e:b7:39:53:4b:c2:ea:ef:33:9a:18:33:fa:58:65:80: e2:86:74:77:95:3e:10:92:4a:fa:ff:35:47:33:7e:1c:9d:b8: a7:42:59:f8:34:ae:13:75:1b:1a:6e:07:71:1c:9b:42:3d:fc: 8a:a7:0d:f9:dd:89:56:1e:f6:88:be:8d:4e:3d:43:a7:3e:f5: 2b:38:16:5f:c0:e4:4d:e7:65:27:8d:14:df:1e:b9:95:89:ea: 66:70:1c:75:e6:28:4c:41:a1:14:eb:dc:90:5b:f1:2e:89:f2: b8:5c:3c:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA4MzcxMTAvBgNVBAUTKDUzNjhCOEM4RDY5NjNFQUQ4Mzk5MDVBNDg2RjUzQzQ0 QjA0MUE1RUYwHhcNMjUwNzE5MDAxNjA4WhcNMjUwNzI2MDAxNjA4WjAYMRYwFAYD VQQDEw02ODdhZTNjOC1mMDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvQsLNiKmCgf9Yo52yZlqBDiL+H6ta3B5QaerozzvjpimpiX9UK05f13LS3y TsGndBfrx2EXpw/mGbD0Whv/4IFJ77zADyeyAQMTD0oJ9n06L4kOg6RrcTpYU2+l eWdSnA+zL/+kreSqe6DXYjm4MHumET6KGc+7jUULJOtAPe3VHAPL8Vsc+JItuMC5 O9uYIkqXBUOo+OcfNbakm3VIqnx7Murjp4/rOglU4Rlegsm8q5L8cF38vDiVhuIe vAKA1Cop0GfFXKuwaIzp6ihdxDq7G31ezvimvxYlkC6kdFBWhO/AwoPk4ZGNC2MQ 3VAzU9HYK/+y9/ZtWrN6iRvmYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+j+Z9K U6ssVYKH8AYwmKAbkLCBMB8GA1UdIwQYMBaAFFNouMjWlj6tg5kFpIb1PESwQaXv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDgzNy9FM0Y4N0NCMjM2 RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1BxMkRtUVdraHZVOFJMQkJw ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UyaTR5TmFXUHEyRG1RV2todlU4UkxCQnBlOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MDgzNy9FM0Y4N0NCMjM2RTMxMUVDQkM4Q0MyNTBDNEY5QUUwMi9VMmk0eU5hV1Bx MkRtUVdraHZVOFJMQkJwZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeNNFlksWyz8lzH/RXsjUh/2v4MxqCuBtv+QQm/XO7QoqaOMuLy93N MpAF1gGr064nZi3qNsAlhHRpvj/vF15XmQeMMpLnFbN4m7ltbM0UY+a1c5wriHB9 E5kvcCckn3yuDjinUk96mYliooTglzHylEL4AlRlhmSE/ZoeygiwHbs7w7GMxvvg R6Qc5+WDOQruoI63OVNLwurvM5oYM/pYZYDihnR3lT4Qkkr6/zVHM34cnbinQln4 NK4TdRsabgdxHJtCPfyKpw353YlWHvaIvo1OPUOnPvUrOBZfwORN52UnjRTfHrmV iepmcBx15ihMQaEU69yQW/EuifK4XDwo -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:22 2025 by rpki-client