$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: yVCuR1sePt3b8SW8Ctim2TnT2NX1sCIsoIOvyOhe0o4= Subject key identifier: 08:F2:14:D5:ED:02:6D:5A:47:55:A3:FB:6A:BE:DF:9D:21:45:71:D4 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 0278 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0275 Signing time: Mon 21 Jul 2025 02:02:08 +0000 Manifest this update: Mon 21 Jul 2025 02:02:07 +0000 Manifest next update: Mon 28 Jul 2025 02:02:07 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: 4NMKp8VprbRppKBadopjia4SjihJbspxHENUhjjfwg4=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: WFDjDT7W6+N2rDzG8WkRgFqhswGIShiXVMiFtccQ1zc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 632 (0x278) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Jul 21 02:02:07 2025 GMT Not After : Jul 28 02:02:07 2025 GMT Subject: CN=687d9f9f-45a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:78:bc:dc:51:74:0a:a8:9a:77:f3:fb:95:3f: 2d:35:ff:5e:53:cd:be:d2:38:65:fe:d2:e0:b2:53: f8:9b:5d:1e:8c:76:71:ca:92:88:90:ff:80:4a:33: 5e:43:67:4c:c4:2d:90:a5:de:1f:f0:d2:a8:d5:3c: be:72:fe:37:0c:65:f7:6f:c8:3b:ab:9b:cd:9a:5c: 61:d2:0f:48:96:ec:03:db:17:39:2a:01:07:83:40: 83:bb:d6:2f:04:f4:d2:96:8a:35:23:32:c7:a4:b1: d7:4c:d7:03:a8:8d:59:56:c7:d4:66:24:39:97:ee: 67:10:fe:15:03:9c:6b:ac:2f:9b:fc:c9:dc:ac:dd: c9:2a:c3:12:f5:f6:c4:71:55:e8:36:e9:cb:72:3a: a0:c5:0f:21:d4:78:68:8d:7f:f1:2d:84:97:1c:2b: 3d:36:aa:38:ca:7e:c4:80:51:c1:e9:7f:2a:bb:da: 28:ff:91:4f:2a:f6:b1:fc:60:f2:9d:4b:7f:28:58: 21:0f:f7:30:2a:dd:62:b8:04:d1:53:4a:d9:e7:74: 83:09:ae:8c:ef:f9:10:e3:84:bf:78:52:61:b7:f3: 4d:11:5d:70:89:85:f5:88:d7:75:23:04:6d:6c:4c: c2:9e:10:1f:49:3f:ae:29:d4:4f:1f:1d:56:69:bc: 13:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:F2:14:D5:ED:02:6D:5A:47:55:A3:FB:6A:BE:DF:9D:21:45:71:D4 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:59:e3:5e:f8:ff:f8:79:a8:eb:94:dc:e4:15:4a:a9:f2:56: db:d6:c5:ea:93:d0:cf:11:16:14:cf:2e:17:5c:ef:60:55:72: 6e:a6:d5:91:0f:4f:f2:a7:71:cd:52:8c:68:b9:1e:af:60:17: fb:29:f6:c8:8a:eb:8c:0d:62:49:5c:6a:89:25:8b:29:25:7e: f2:a2:8e:12:47:20:c4:05:ca:68:c3:9c:3a:6a:27:b3:1d:72: a7:25:19:b3:b5:c9:8d:eb:9c:98:35:21:ed:8e:14:1c:c5:01: 54:10:a5:3d:8b:a9:9a:11:7f:c9:50:23:68:fe:ac:c5:d0:c4: 52:ac:55:76:64:09:44:be:06:b2:11:76:67:89:ec:cc:55:0f: b3:04:30:76:2a:dd:a1:09:17:32:a4:31:a1:4f:a6:43:f6:a8: 63:ae:98:83:5f:7a:51:ae:5f:0c:27:33:97:7d:71:76:01:ad: 2c:c5:35:f4:4b:2c:7f:ea:88:12:6e:89:58:2e:58:fb:52:14: d4:6c:77:44:05:1d:f7:64:13:88:12:c1:d9:be:cc:01:26:54: 39:b6:bc:d1:c7:05:c2:68:ac:5b:51:11:d4:df:91:e2:ad:0e: 3d:ca:66:d0:71:17:4a:04:c2:10:94:3b:b7:3a:9a:7e:ae:ec: e9:eb:00:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwNzIxMDIwMjA3WhcNMjUwNzI4MDIwMjA3WjAYMRYwFAYD VQQDEw02ODdkOWY5Zi00NWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXi83FF0Cqiad/P7lT8tNf9eU82+0jhl/tLgslP4m10ejHZxypKIkP+ASjNe Q2dMxC2Qpd4f8NKo1Ty+cv43DGX3b8g7q5vNmlxh0g9IluwD2xc5KgEHg0CDu9Yv BPTSloo1IzLHpLHXTNcDqI1ZVsfUZiQ5l+5nEP4VA5xrrC+b/MncrN3JKsMS9fbE cVXoNunLcjqgxQ8h1HhojX/xLYSXHCs9Nqo4yn7EgFHB6X8qu9oo/5FPKvax/GDy nUt/KFghD/cwKt1iuATRU0rZ53SDCa6M7/kQ44S/eFJht/NNEV1wiYX1iNd1IwRt bEzCnhAfST+uKdRPHx1WabwTpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjyFNXt Am1aR1Wj+2q+350hRXHUMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAKWeNe+P/4eajrlNzkFUqp8lbb1sXqk9DPERYUzy4XXO9gVXJuptWR D0/yp3HNUoxouR6vYBf7KfbIiuuMDWJJXGqJJYspJX7yoo4SRyDEBcpow5w6aiez HXKnJRmztcmN65yYNSHtjhQcxQFUEKU9i6maEX/JUCNo/qzF0MRSrFV2ZAlEvgay EXZniezMVQ+zBDB2Kt2hCRcypDGhT6ZD9qhjrpiDX3pRrl8MJzOXfXF2Aa0sxTX0 Syx/6ogSbolYLlj7UhTUbHdEBR33ZBOIEsHZvswBJlQ5trzRxwXCaKxbURHU35Hi rQ49ymbQcRdKBMIQlDu3Opp+ruzp6wAf -----END CERTIFICATE-----Generated at Wed Jul 23 02:30:17 2025 by rpki-client