$ rpki-client -vvf rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft File: 320AK7yrolDSrmtEVOPL_WfSx-o.mft (raw, json) Hash identifier: 7AuWClmuruqdFer7vWxK3uprQ78nvfnZXhz0p80SsCw= Subject key identifier: 1D:57:5F:64:B6:26:D2:E2:46:FC:D1:84:6F:57:33:67:37:92:7C:A8 Authority key identifier: DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA Certificate issuer: /CN=A9143DE2/serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Certificate serial: 09A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft Manifest number: 099F Signing time: Fri 18 Jul 2025 20:18:12 +0000 Manifest this update: Fri 18 Jul 2025 20:18:12 +0000 Manifest next update: Fri 25 Jul 2025 20:18:12 +0000 Files and hashes: 1: 320AK7yrolDSrmtEVOPL_WfSx-o.crl (hash: Wc217vD/VmQ3lNlfRDkR3dHvoHQmh/I/W7btvfrFePg=) 2: C07738FE9F4511EB88EBCA76C4F9AE02.roa (hash: EW5gw++/Nv/7XkyhmrGAdJFCyCQBgQSX+Pdw0qIT5p4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 20:18:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2473 (0x9a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143DE2, serialNumber=DF6D002BBCABA250D2AE6B4454E3CBFD67D2C7EA Validity Not Before: Jul 18 20:18:12 2025 GMT Not After : Jul 25 20:18:12 2025 GMT Subject: CN=687aac04-4142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:df:b8:1f:82:06:aa:ca:75:97:d1:0a:ae:20: e0:fa:59:ab:96:61:53:ee:8d:06:12:ca:ea:08:16: f8:d2:6e:c2:84:d4:d2:90:d1:46:07:bb:b1:6e:02: a9:6a:0c:78:c8:92:cb:96:c2:7a:42:85:1d:c4:a7: 87:b5:70:a8:b4:5a:4b:0c:69:db:4c:ad:28:34:ff: 59:28:e8:a2:6c:12:87:81:c7:8f:54:41:4a:a3:32: cd:76:29:6d:29:f8:69:9a:a1:93:3e:8b:f4:c2:e2: ed:91:29:9b:3b:5f:3b:7a:7e:f5:62:f7:92:38:73: a2:0a:fd:6b:bc:6d:ab:9a:8b:aa:4a:3b:e0:0a:82: 29:f9:6a:99:17:a9:0e:ad:cb:c9:fb:c4:f0:75:af: 8a:3f:77:0e:41:c1:ae:9d:67:f9:1f:ed:33:c8:08: ff:f9:2d:b5:4d:01:02:d8:2a:4f:98:73:0f:ff:68: 6b:54:e4:06:dd:a7:62:34:b6:52:87:a8:59:1e:f1: 84:74:7c:9a:81:42:09:84:c2:1f:fc:1f:9f:e0:53: 39:f4:2c:81:29:26:8c:ad:21:98:1b:9f:fa:f5:47: bd:73:8d:2d:2b:b9:ef:f8:0e:46:5a:58:76:12:33: 03:7b:81:01:6d:4a:ed:9c:19:f4:1a:af:6b:be:c9: 85:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:57:5F:64:B6:26:D2:E2:46:FC:D1:84:6F:57:33:67:37:92:7C:A8 X509v3 Authority Key Identifier: keyid:DF:6D:00:2B:BC:AB:A2:50:D2:AE:6B:44:54:E3:CB:FD:67:D2:C7:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/320AK7yrolDSrmtEVOPL_WfSx-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143DE2/D218DD528E9711EA8C2DE537C4F9AE02/320AK7yrolDSrmtEVOPL_WfSx-o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:7d:76:ad:c1:17:3c:fd:5c:c4:48:fa:7a:02:f8:84:85:81: 67:c4:fb:f0:16:7a:60:ce:45:24:0c:1e:4a:fa:55:be:e4:1d: 5c:ad:f6:d3:43:18:b2:63:ee:df:b2:66:8a:1f:f2:3b:5d:0d: 37:8e:42:b7:75:ac:9a:9c:94:17:0a:f9:06:4b:1a:eb:50:c0: 3b:d0:6b:d2:f6:88:6d:cd:40:32:1e:21:78:a9:99:80:c2:d4: 9d:04:91:33:8c:82:f3:dd:90:e5:93:cf:2b:9c:6e:0b:f1:70: 7a:5e:9a:4d:69:81:69:3c:e3:a2:af:aa:45:71:8b:65:c4:80: b3:72:f3:24:ad:4d:61:61:40:c8:ea:f0:14:6f:70:25:d0:1a: f6:a2:db:b1:48:79:8b:6c:71:2b:e1:88:92:c3:6d:0d:32:83: c7:77:5b:e9:5e:44:66:d1:02:b2:0d:2c:7b:ff:38:8c:d6:19: a3:96:21:67:4f:3a:7a:31:ce:cf:3f:1f:9e:47:23:95:60:a1: 42:e9:00:5f:47:ed:02:31:51:51:33:34:1f:6e:72:ec:16:bd: 4b:2a:7a:8b:0e:ae:47:46:99:b0:44:84:d0:25:2c:a5:e8:f6: c3:05:ed:01:a0:93:2b:f3:99:bc:ae:69:ae:ad:93:49:39:e8: 65:b2:58:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNERTIxMTAvBgNVBAUTKERGNkQwMDJCQkNBQkEyNTBEMkFFNkI0NDU0RTNDQkZE NjdEMkM3RUEwHhcNMjUwNzE4MjAxODEyWhcNMjUwNzI1MjAxODEyWjAYMRYwFAYD VQQDEw02ODdhYWMwNC00MTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnN+4H4IGqsp1l9EKriDg+lmrlmFT7o0GEsrqCBb40m7ChNTSkNFGB7uxbgKp agx4yJLLlsJ6QoUdxKeHtXCotFpLDGnbTK0oNP9ZKOiibBKHgcePVEFKozLNdilt KfhpmqGTPov0wuLtkSmbO187en71YveSOHOiCv1rvG2rmouqSjvgCoIp+WqZF6kO rcvJ+8Twda+KP3cOQcGunWf5H+0zyAj/+S21TQEC2CpPmHMP/2hrVOQG3adiNLZS h6hZHvGEdHyagUIJhMIf/B+f4FM59CyBKSaMrSGYG5/69Ue9c40tK7nv+A5GWlh2 EjMDe4EBbUrtnBn0Gq9rvsmFDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB1XX2S2 JtLiRvzRhG9XM2c3knyoMB8GA1UdIwQYMBaAFN9tACu8q6JQ0q5rRFTjy/1n0sfq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0RFMi9EMjE4REQ1MjhF OTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9sRFNybXRFVk9QTF9XZlN4 LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMyMEFLN3lyb2xEU3JtdEVWT1BMX1dmU3gtby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0RFMi9EMjE4REQ1MjhFOTcxMUVBOEMyREU1MzdDNEY5QUUwMi8zMjBBSzd5cm9s RFNybXRFVk9QTF9XZlN4LW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcfXatwRc8/VzESPp6AviEhYFnxPvwFnpgzkUkDB5K+lW+5B1crfbT QxiyY+7fsmaKH/I7XQ03jkK3dayanJQXCvkGSxrrUMA70GvS9ohtzUAyHiF4qZmA wtSdBJEzjILz3ZDlk88rnG4L8XB6XppNaYFpPOOir6pFcYtlxICzcvMkrU1hYUDI 6vAUb3Al0Br2otuxSHmLbHEr4YiSw20NMoPHd1vpXkRm0QKyDSx7/ziM1hmjliFn Tzp6Mc7PPx+eRyOVYKFC6QBfR+0CMVFRMzQfbnLsFr1LKnqLDq5HRpmwRITQJSyl 6PbDBe0BoJMr85m8rmmurZNJOehlslhA -----END CERTIFICATE-----Generated at Sun Jul 20 11:34:13 2025 by rpki-client