$ rpki-client -vvf rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft File: -o32EYRRvVM4cqyjdiK_c77RlEE.mft (raw, json) Hash identifier: 3Ng8JszeRtmQpfK5+kprsJFXGwLJp/lMQuyrxiaY2sM= Subject key identifier: 8D:4B:A6:10:FD:38:23:13:BC:00:AE:C5:97:B1:36:C5:06:7F:A8:A5 Authority key identifier: FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 Certificate issuer: /CN=A9135450/serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Certificate serial: 027C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft Manifest number: 0278 Signing time: Wed 23 Jul 2025 02:39:25 +0000 Manifest this update: Wed 23 Jul 2025 02:39:24 +0000 Manifest next update: Wed 30 Jul 2025 02:39:24 +0000 Files and hashes: 1: -o32EYRRvVM4cqyjdiK_c77RlEE.crl (hash: RDJIhsaqxpf7r90eEWPkEXqdqByjI+ZGPsuI+Uig+fo=) 2: CA57150418B311EDB72D3165C4F9AE02.roa (hash: sMLXclSpaatsjiefCG2CYL97q01e5mLSlbQCKpyYzHg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 02:39:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135450, serialNumber=FA8DF6118451BD533872ACA37622BF73BED19441 Validity Not Before: Jul 23 02:39:24 2025 GMT Not After : Jul 30 02:39:24 2025 GMT Subject: CN=68804b5c-6d36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ee:02:c3:68:48:fd:0a:11:cb:09:37:40:af: 44:00:b8:cc:db:1c:5b:ba:f0:54:4d:58:26:4a:79: 45:fb:af:f4:26:a7:94:ef:c3:f9:b4:04:56:4e:b0: de:d1:8c:93:51:40:5f:45:75:1c:a4:55:35:87:ae: 0f:84:8a:f7:96:7f:4c:3f:14:36:5a:d3:33:3a:5c: 7c:cd:39:b7:02:42:b1:47:db:e8:9a:dc:f3:b3:fa: fe:92:18:bb:6a:2f:c3:bc:dc:17:12:82:07:00:5f: c3:b8:e9:5b:4e:2d:b8:75:60:c4:ac:fd:48:3e:be: c2:ae:ac:ff:b8:3c:87:ae:ac:36:4f:ce:58:7a:4f: 47:39:ce:86:a4:9b:37:bd:11:e5:a6:52:46:75:f3: fe:45:11:e9:4b:48:f1:35:8b:72:c2:03:a9:5f:24: 46:69:b8:3f:89:f2:ce:ae:e6:e2:06:61:67:6d:9b: a8:ad:a1:5f:d5:76:8b:c2:b1:06:dd:56:71:30:cc: 90:42:ad:66:4e:05:66:53:03:70:58:3b:79:81:80: e5:19:bc:3a:ab:23:3e:b5:d8:89:32:3e:8c:4e:f0: ca:98:e2:9a:73:73:0b:9e:52:f6:3f:f1:e6:53:f7: f1:90:db:fa:34:0a:bf:f8:17:b0:45:ab:95:84:a4: f0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4B:A6:10:FD:38:23:13:BC:00:AE:C5:97:B1:36:C5:06:7F:A8:A5 X509v3 Authority Key Identifier: keyid:FA:8D:F6:11:84:51:BD:53:38:72:AC:A3:76:22:BF:73:BE:D1:94:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-o32EYRRvVM4cqyjdiK_c77RlEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135450/843DC69618B111EDBEC5FE63C4F9AE02/-o32EYRRvVM4cqyjdiK_c77RlEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ca:ce:d0:84:ad:99:37:8a:9a:4d:21:89:42:21:1a:70:f7:bb: e5:e8:52:23:93:40:fe:60:1c:87:11:9c:44:78:c5:6c:1b:61: 6e:4b:4d:3f:64:28:c9:6a:e1:d8:e5:27:7f:df:64:7d:5f:42: 1a:e9:d9:ba:ef:14:5e:89:1f:84:d2:a4:d2:5c:8c:7b:b1:f0: b1:a3:8d:21:6e:0b:5b:b7:38:03:77:76:07:0b:54:34:7e:35: 92:59:e9:35:3d:1a:21:d6:a2:fe:0b:33:f2:7e:65:51:16:01: 2d:7f:11:46:5e:f7:10:3c:73:06:9a:f3:88:92:bf:6e:69:32: e0:8b:6f:19:8b:0d:3b:01:d7:28:d3:80:9b:ae:ee:5f:2d:73: 3f:88:8b:f7:d5:ab:c0:5e:fe:5f:00:77:32:4b:a0:55:bf:32: fb:51:f9:9a:8b:f1:fc:9e:56:8f:84:0f:3d:dc:19:04:36:a8: e8:96:5d:1f:75:85:4c:4a:6b:4a:07:89:67:99:99:8a:45:10: ff:44:81:8d:6c:1c:59:bb:3a:08:e7:eb:ab:00:cd:0e:62:0a: b9:03:bc:57:d6:10:8d:86:5a:7a:2e:3b:85:81:35:db:c4:1b: 55:17:f1:65:59:66:e4:dd:07:37:75:73:40:ea:0e:8c:83:e3: c3:3c:3a:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU0NTAxMTAvBgNVBAUTKEZBOERGNjExODQ1MUJENTMzODcyQUNBMzc2MjJCRjcz QkVEMTk0NDEwHhcNMjUwNzIzMDIzOTI0WhcNMjUwNzMwMDIzOTI0WjAYMRYwFAYD VQQDEw02ODgwNGI1Yy02ZDM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyO4Cw2hI/QoRywk3QK9EALjM2xxbuvBUTVgmSnlF+6/0JqeU78P5tARWTrDe 0YyTUUBfRXUcpFU1h64PhIr3ln9MPxQ2WtMzOlx8zTm3AkKxR9vomtzzs/r+khi7 ai/DvNwXEoIHAF/DuOlbTi24dWDErP1IPr7Crqz/uDyHrqw2T85Yek9HOc6GpJs3 vRHlplJGdfP+RRHpS0jxNYtywgOpXyRGabg/ifLOrubiBmFnbZuoraFf1XaLwrEG 3VZxMMyQQq1mTgVmUwNwWDt5gYDlGbw6qyM+tdiJMj6MTvDKmOKac3MLnlL2P/Hm U/fxkNv6NAq/+BewRauVhKTwfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI1LphD9 OCMTvACuxZexNsUGf6ilMB8GA1UdIwQYMBaAFPqN9hGEUb1TOHKso3Yiv3O+0ZRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTQ1MC84NDNEQzY5NjE4 QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZWTTRjcXlqZGlLX2M3N1Js RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vMzJFWVJSdlZNNGNxeWpkaUtfYzc3UmxFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTQ1MC84NDNEQzY5NjE4QjExMUVEQkVDNUZFNjNDNEY5QUUwMi8tbzMyRVlSUnZW TTRjcXlqZGlLX2M3N1JsRUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDKztCErZk3ippNIYlCIRpw97vl6FIjk0D+YByHEZxEeMVsG2FuS00/ ZCjJauHY5Sd/32R9X0Ia6dm67xReiR+E0qTSXIx7sfCxo40hbgtbtzgDd3YHC1Q0 fjWSWek1PRoh1qL+CzPyfmVRFgEtfxFGXvcQPHMGmvOIkr9uaTLgi28Ziw07Adco 04Cbru5fLXM/iIv31avAXv5fAHcyS6BVvzL7Ufmai/H8nlaPhA893BkENqjoll0f dYVMSmtKB4lnmZmKRRD/RIGNbBxZuzoI5+urAM0OYgq5A7xX1hCNhlp6LjuFgTXb xBtVF/FlWWbk3Qc3dXNA6g6Mg+PDPDpy -----END CERTIFICATE-----Generated at Thu Jul 24 04:59:37 2025 by rpki-client