$ rpki-client -vvf rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft File: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft (raw, json) Hash identifier: 44ANc/fZ16JNodu5UblXuFPLoZyHRPDidf6mMSNd7a0= Subject key identifier: A8:1E:BF:A0:44:D1:B8:EB:1E:6C:E3:DD:01:11:11:AC:52:97:E2:FF Authority key identifier: 43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B Certificate issuer: /CN=A9132C09/serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B Certificate serial: 0155 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft Manifest number: 0155 Signing time: Sat 19 Jul 2025 04:16:31 +0000 Manifest this update: Sat 19 Jul 2025 04:16:31 +0000 Manifest next update: Sat 26 Jul 2025 04:16:31 +0000 Files and hashes: 1: Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl (hash: ciUgC9UDcS/loj3j529YmyYBEk3VIvniQIvZI3ab6/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:16:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 341 (0x155) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132C09, serialNumber=43929D916DC9C9CE3463FF9158CCBEFE9F182C3B Validity Not Before: Jul 19 04:16:31 2025 GMT Not After : Jul 26 04:16:31 2025 GMT Subject: CN=687b1c1f-3b73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:26:c4:8f:e3:b9:4a:b7:08:3f:cd:c2:78:5f: c4:6b:b6:00:ef:6f:e2:5f:32:c9:f2:d7:9c:1b:fc: f7:e9:c2:f4:ea:e3:b5:bb:07:34:e9:1d:b7:f3:8f: 27:01:82:d5:c0:48:aa:30:c2:81:bb:1d:64:40:83: 2f:b5:3f:fa:60:23:16:8e:99:ee:f7:24:29:a1:95: e2:5f:0b:fa:d7:23:b6:80:01:0a:9f:01:14:4c:f8: 64:86:58:6e:f6:ed:17:2a:74:81:8f:3f:57:ba:09: 13:d7:be:24:fc:8c:ef:65:d0:96:22:93:77:07:40: d4:ea:d4:73:32:32:e8:f9:95:5d:57:31:b7:80:01: 31:d1:4e:cc:c4:73:a6:9e:df:13:37:fa:28:58:48: fc:7f:78:ec:97:60:1a:9a:70:2b:38:08:53:4f:c7: 26:87:89:8c:2b:cc:5c:20:26:ac:ed:64:f2:dd:e2: e0:c2:00:55:eb:40:af:4b:df:4d:b9:32:72:a7:d6: ba:1e:40:96:ca:c7:1f:e7:ee:89:4c:4d:11:02:e2: f8:14:82:5b:bc:19:ae:8b:d8:bc:39:b9:91:fd:28: 90:66:d9:5e:ce:55:89:33:52:e7:af:66:70:69:86: 35:df:80:77:f3:29:e0:ea:5b:8d:00:76:c9:4a:20: f3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:1E:BF:A0:44:D1:B8:EB:1E:6C:E3:DD:01:11:11:AC:52:97:E2:FF X509v3 Authority Key Identifier: keyid:43:92:9D:91:6D:C9:C9:CE:34:63:FF:91:58:CC:BE:FE:9F:18:2C:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132C09/CD6D520256C511EEBED32E0BC4F9AE02/Q5KdkW3Jyc40Y_-RWMy-_p8YLDs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:87:75:68:07:56:f9:86:80:c3:e6:2f:ec:25:c4:47:b7:4a: 6e:19:04:f3:1e:3b:53:95:96:06:5c:87:37:7d:fe:5a:79:a4: 0d:b4:8f:94:f1:95:86:ea:f7:41:b4:ff:09:9a:90:06:58:0f: 01:c0:3e:45:01:56:ab:86:a8:cc:40:0d:13:ea:17:42:00:91: 29:40:0c:99:54:e0:c3:41:e3:a2:b7:28:f7:8e:e8:87:4c:cf: a1:f6:2d:fa:db:06:ed:fe:ca:af:e0:85:89:62:9e:e7:25:09: cc:06:33:c5:46:ac:22:58:5b:e8:3f:da:dd:97:ab:c0:87:bb: d7:50:0e:fa:15:2c:1b:a0:f9:33:2f:35:b8:c7:50:45:53:dc: 3d:90:d3:18:e7:5b:73:c5:be:88:8b:25:1f:ff:e9:e8:97:2d: 2b:24:60:d4:a1:9b:23:38:ac:d8:f6:bb:83:3c:bc:5f:c2:c8: 48:3b:2a:30:ea:b3:e4:b9:a1:0a:b8:77:bd:59:0f:8c:46:5d: 6d:e6:21:48:a3:89:25:a7:e8:a5:96:a2:9a:55:06:47:b9:a9: 0a:fb:3c:f3:e1:7d:77:cb:a0:5e:69:c1:e8:5a:1c:fe:4b:99: 67:7b:19:58:fb:1d:53:0f:61:6c:5f:f5:db:e7:18:10:ca:3d: cd:32:8a:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJDMDkxMTAvBgNVBAUTKDQzOTI5RDkxNkRDOUM5Q0UzNDYzRkY5MTU4Q0NCRUZF OUYxODJDM0IwHhcNMjUwNzE5MDQxNjMxWhcNMjUwNzI2MDQxNjMxWjAYMRYwFAYD VQQDEw02ODdiMWMxZi0zYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxybEj+O5SrcIP83CeF/Ea7YA72/iXzLJ8tecG/z36cL06uO1uwc06R23848n AYLVwEiqMMKBux1kQIMvtT/6YCMWjpnu9yQpoZXiXwv61yO2gAEKnwEUTPhkhlhu 9u0XKnSBjz9XugkT174k/IzvZdCWIpN3B0DU6tRzMjLo+ZVdVzG3gAEx0U7MxHOm nt8TN/ooWEj8f3jsl2AamnArOAhTT8cmh4mMK8xcICas7WTy3eLgwgBV60CvS99N uTJyp9a6HkCWyscf5+6JTE0RAuL4FIJbvBmui9i8ObmR/SiQZtlezlWJM1Lnr2Zw aYY134B38yng6luNAHbJSiDziQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKgev6BE 0bjrHmzj3QEREaxSl+L/MB8GA1UdIwQYMBaAFEOSnZFtycnONGP/kVjMvv6fGCw7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkMwOS9DRDZENTIwMjU2 QzUxMUVFQkVEMzJFMEJDNEY5QUUwMi9RNUtka1czSnljNDBZXy1SV015LV9wOFlM RHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E1S2RrVzNKeWM0MFlfLVJXTXktX3A4WUxEcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkMwOS9DRDZENTIwMjU2QzUxMUVFQkVEMzJFMEJDNEY5QUUwMi9RNUtka1czSnlj NDBZXy1SV015LV9wOFlMRHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjh3VoB1b5hoDD5i/sJcRHt0puGQTzHjtTlZYGXIc3ff5aeaQNtI+U 8ZWG6vdBtP8JmpAGWA8BwD5FAVarhqjMQA0T6hdCAJEpQAyZVODDQeOityj3juiH TM+h9i362wbt/sqv4IWJYp7nJQnMBjPFRqwiWFvoP9rdl6vAh7vXUA76FSwboPkz LzW4x1BFU9w9kNMY51tzxb6IiyUf/+noly0rJGDUoZsjOKzY9ruDPLxfwshIOyow 6rPkuaEKuHe9WQ+MRl1t5iFIo4klp+illqKaVQZHuakK+zzz4X13y6BeacHoWhz+ S5lnexlY+x1TD2FsX/Xb5xgQyj3NMorg -----END CERTIFICATE-----Generated at Sun Jul 20 11:34:17 2025 by rpki-client