$ rpki-client -vvf rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft File: ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft (raw, json) Hash identifier: BiOjpjc6i9ef6byii8h/UvUdTTGzIP7kBCV/gn7Ffkg= Subject key identifier: 07:5A:FD:A0:B9:FC:1B:4E:7F:67:DC:90:C3:84:57:A9:A2:E8:AB:8E Authority key identifier: 72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 Certificate issuer: /CN=A913C91D/serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Certificate serial: 108C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft Manifest number: 1082 Signing time: Fri 18 Jul 2025 17:31:16 +0000 Manifest this update: Fri 18 Jul 2025 17:31:15 +0000 Manifest next update: Fri 25 Jul 2025 17:31:15 +0000 Files and hashes: 1: ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl (hash: NFksj/st27YuQ84dG1tEdCJay1I5mxxmLHFNrAa9fJQ=) 2: 39C6EF3688BF11EABC04973FC4F9AE02.roa (hash: yd71n8eugD8WrOND6JHlcb+DlT4vihP97eJVROksTM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:31:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4236 (0x108c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C91D, serialNumber=72D65BB3CAD4A098F36F4137594CC7FEC2FA28A3 Validity Not Before: Jul 18 17:31:15 2025 GMT Not After : Jul 25 17:31:15 2025 GMT Subject: CN=687a84e3-2d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:da:be:4b:b3:c1:0b:4e:48:c1:d5:41:ce:d0: e1:7e:49:e1:21:3f:52:e8:5c:a7:ce:d5:b2:00:df: 3b:59:9f:52:d2:e0:0a:65:49:3f:0b:64:fe:36:a2: 40:03:12:92:1d:5a:1a:f5:1f:57:28:f7:8a:c9:8c: 2a:ed:62:17:0e:08:c2:18:eb:c7:63:47:75:26:95: e9:f9:25:8a:45:92:e2:3e:83:6b:9d:f5:b3:3d:f3: 99:08:92:fb:6e:a4:1c:5f:29:60:12:e2:e7:fb:22: 51:2b:1e:38:e9:e8:72:1e:a9:5b:02:17:6a:34:50: 3d:2e:22:7e:c5:31:59:ea:ac:5d:bc:18:43:09:17: c8:ef:f9:18:4f:4f:9e:33:d1:85:a8:aa:ba:97:da: 2f:3f:24:e2:c0:67:a4:21:a7:9b:4e:44:31:b1:7c: 7b:b5:43:08:18:3b:08:d2:54:49:3e:d3:4a:a3:ea: c2:0e:5f:23:1c:77:3f:00:4d:72:fb:39:45:12:6d: e9:8c:81:1d:bf:8f:0b:12:81:a5:3c:ae:71:44:ed: e7:e2:c7:d1:4a:52:05:a2:e2:dc:58:46:ee:76:1c: a6:f2:58:0d:6f:34:44:64:96:f3:57:ce:f4:b4:81: c7:4d:de:4e:99:bd:27:39:0b:73:79:d5:fd:da:63: 76:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:5A:FD:A0:B9:FC:1B:4E:7F:67:DC:90:C3:84:57:A9:A2:E8:AB:8E X509v3 Authority Key Identifier: keyid:72:D6:5B:B3:CA:D4:A0:98:F3:6F:41:37:59:4C:C7:FE:C2:FA:28:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ctZbs8rUoJjzb0E3WUzH_sL6KKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C91D/D90CD874358411E99A990228C4F9AE02/ctZbs8rUoJjzb0E3WUzH_sL6KKM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:c2:d1:ca:cc:36:7d:d7:2e:02:b9:4a:ec:f6:9b:a8:c0:ee: df:0d:d9:6a:93:ad:ce:47:05:65:c0:31:63:1a:6a:05:0d:de: 04:c7:8a:0c:cb:9a:0f:b7:19:b7:89:e9:63:67:9e:42:ba:05: 07:c6:90:7b:9a:cc:85:4c:f9:6c:d4:f0:a9:8c:af:1c:96:a8: bb:d3:ff:c1:6a:98:9a:d3:4f:ff:5a:ef:36:0a:85:40:8d:15: 07:27:07:e9:51:33:64:1f:00:36:26:62:1b:87:78:e7:85:1b: e7:59:c1:fe:67:af:3d:2f:6d:31:b0:a3:22:2a:d2:5a:64:d2: cc:86:cb:84:b2:34:c1:74:0d:8d:1b:95:fe:0d:c6:82:d4:ec: 01:0a:e8:fe:bf:07:9b:53:d9:3b:b9:a9:bd:65:f7:f5:a8:be: f2:4a:c5:12:b5:53:73:d3:93:5f:69:a9:d8:82:32:41:4c:bf: ba:26:0f:8b:58:fd:56:1b:6a:d5:30:0b:63:80:2d:74:1e:98: db:ac:ed:14:35:58:7e:fd:d5:99:1c:4c:77:ec:aa:41:d5:e5: 7f:65:b0:87:df:19:11:a1:27:0d:1e:e7:04:fb:ce:81:8d:d0: 61:b2:d3:26:86:47:d3:26:96:83:0d:84:bb:2a:93:6a:3c:0d: b8:7e:63:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M5MUQxMTAvBgNVBAUTKDcyRDY1QkIzQ0FENEEwOThGMzZGNDEzNzU5NENDN0ZF QzJGQTI4QTMwHhcNMjUwNzE4MTczMTE1WhcNMjUwNzI1MTczMTE1WjAYMRYwFAYD VQQDEw02ODdhODRlMy0yZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqNq+S7PBC05IwdVBztDhfknhIT9S6FynztWyAN87WZ9S0uAKZUk/C2T+NqJA AxKSHVoa9R9XKPeKyYwq7WIXDgjCGOvHY0d1JpXp+SWKRZLiPoNrnfWzPfOZCJL7 bqQcXylgEuLn+yJRKx446ehyHqlbAhdqNFA9LiJ+xTFZ6qxdvBhDCRfI7/kYT0+e M9GFqKq6l9ovPyTiwGekIaebTkQxsXx7tUMIGDsI0lRJPtNKo+rCDl8jHHc/AE1y +zlFEm3pjIEdv48LEoGlPK5xRO3n4sfRSlIFouLcWEbudhym8lgNbzREZJbzV870 tIHHTd5Omb0nOQtzedX92mN2vQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAda/aC5 /BtOf2fckMOEV6mi6KuOMB8GA1UdIwQYMBaAFHLWW7PK1KCY829BN1lMx/7C+iij MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzkxRC9EOTBDRDg3NDM1 ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9KanpiMEUzV1V6SF9zTDZL S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N0WmJzOHJVb0pqemIwRTNXVXpIX3NMNktLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QzkxRC9EOTBDRDg3NDM1ODQxMUU5OUE5OTAyMjhDNEY5QUUwMi9jdFpiczhyVW9K anpiMEUzV1V6SF9zTDZLS00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdwtHKzDZ91y4CuUrs9puowO7fDdlqk63ORwVlwDFjGmoFDd4Ex4oM y5oPtxm3ieljZ55CugUHxpB7msyFTPls1PCpjK8clqi70//Bapia00//Wu82CoVA jRUHJwfpUTNkHwA2JmIbh3jnhRvnWcH+Z689L20xsKMiKtJaZNLMhsuEsjTBdA2N G5X+DcaC1OwBCuj+vwebU9k7uam9Zff1qL7ySsUStVNz05NfaanYgjJBTL+6Jg+L WP1WG2rVMAtjgC10HpjbrO0UNVh+/dWZHEx37KpB1eV/ZbCH3xkRoScNHucE+86B jdBhstMmhkfTJpaDDYS7KpNqPA24fmOl -----END CERTIFICATE-----Generated at Sun Jul 20 11:30:21 2025 by rpki-client