$ rpki-client -vvf rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft File: Fz6pPabl71KPpzMJc4hIg92lJ-4.mft (raw, json) Hash identifier: Gj8tz0nLIOUCIJYLWyb5AN/Bw4Y/yTqDN2cAxPxODD8= Subject key identifier: 39:5C:42:C4:6C:E3:05:DF:96:AD:E1:94:B0:09:DB:8F:DA:E0:64:B8 Authority key identifier: 17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE Certificate issuer: /CN=A9145E09/serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Certificate serial: 3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft Manifest number: 3C Signing time: Sat 19 Jul 2025 07:47:54 +0000 Manifest this update: Sat 19 Jul 2025 07:47:53 +0000 Manifest next update: Sat 26 Jul 2025 07:47:53 +0000 Files and hashes: 1: Fz6pPabl71KPpzMJc4hIg92lJ-4.crl (hash: NHR1iM7LUdMmFUL7SMGldGlqxB4SY0M99kp1gtJ9K90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:47:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145E09, serialNumber=173EA93DA6E5EF528FA7330973884883DDA527EE Validity Not Before: Jul 19 07:47:53 2025 GMT Not After : Jul 26 07:47:53 2025 GMT Subject: CN=687b4daa-76e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:5b:4c:9d:fe:6f:7d:fa:7d:75:8d:e1:62:ef: 83:1a:0f:87:5f:e8:5a:c8:4f:c3:bd:47:99:96:aa: 95:67:ce:21:ee:34:7f:01:98:f4:7c:f5:b8:e4:56: 81:1a:05:98:1a:35:f7:c7:ab:cc:4a:c5:dc:3a:da: 58:87:76:96:61:0d:67:8b:eb:0b:95:00:99:4b:27: c5:2b:57:22:b7:43:0b:13:4d:22:9f:c1:9d:52:19: e6:ed:3a:9a:e3:06:53:09:5b:41:ec:07:7c:00:e8: 1b:84:d4:81:f8:ab:0b:e3:0e:98:bf:62:13:ce:d6: 77:ab:b7:1b:f5:af:e8:2b:da:32:71:b4:f1:ef:25: 5f:a9:0e:bd:a7:7b:c3:66:c1:b2:ae:31:d6:f2:f3: aa:45:74:76:f8:44:b4:76:5b:6a:c5:eb:b1:0f:85: e1:12:86:0c:98:b7:92:e5:e0:cb:5b:65:8c:24:e5: 9d:3d:b6:f9:28:1c:6d:a2:52:8e:43:6e:7e:14:13: e4:4f:10:97:80:e6:a8:9a:da:1a:f3:7b:93:e4:22: 14:71:04:25:b3:9b:c6:a2:93:e0:7f:30:ad:78:35: 3d:62:31:41:8f:d1:16:b3:1d:cc:82:76:c2:16:32: 67:bf:9d:c1:3b:9f:9c:78:c3:1e:7a:0f:9a:6e:23: 18:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5C:42:C4:6C:E3:05:DF:96:AD:E1:94:B0:09:DB:8F:DA:E0:64:B8 X509v3 Authority Key Identifier: keyid:17:3E:A9:3D:A6:E5:EF:52:8F:A7:33:09:73:88:48:83:DD:A5:27:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fz6pPabl71KPpzMJc4hIg92lJ-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145E09/8F625C4E08C811F0A0D34E56C4F9AE02/Fz6pPabl71KPpzMJc4hIg92lJ-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bf:b8:3f:e6:75:bd:3a:74:6d:47:db:2a:09:cb:40:55:51:97: fa:06:15:95:90:fe:2f:3e:8f:3a:d9:69:d1:96:99:12:3b:d1: 0b:a8:b6:e0:22:83:e4:a3:a9:af:3d:51:be:db:1e:08:ae:96: 64:fd:80:36:e2:82:ae:ec:a4:ca:67:94:f8:be:aa:fe:27:f5: 84:c3:e2:da:51:45:7c:70:a0:89:bb:cb:e4:91:3e:8a:da:b4: 99:d2:85:2c:6e:cd:b9:04:45:04:84:e5:5f:f2:14:f0:47:d4: 5a:82:3a:b5:ca:9d:f4:aa:9c:79:98:83:72:2d:bc:f4:fb:cb: 0b:ba:c8:fe:67:45:b7:74:20:37:7d:e8:43:ea:27:70:a0:9a: 62:e5:40:bb:5d:bb:da:ce:7a:99:f9:20:62:e4:74:fc:c2:8b: 65:5a:26:7f:3c:b0:16:4d:ba:8e:bb:4b:c0:60:26:2e:6e:48: d5:11:54:07:22:4f:67:bf:7d:36:f7:3f:5a:3d:96:db:5e:4f: cd:d7:2b:ef:9f:55:bb:2a:4a:11:d4:77:34:6b:e4:bd:3a:ed: ec:09:ae:41:ce:c8:e6:89:fa:ff:53:f1:0f:06:35:c2:ca:bd: 78:6c:f2:28:68:7e:8a:ea:9a:e4:fd:f7:d7:e8:ab:c2:04:e7: 05:eb:2b:dc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBPDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NUUwOTExMC8GA1UEBRMoMTczRUE5M0RBNkU1RUY1MjhGQTczMzA5NzM4ODQ4ODNE REE1MjdFRTAeFw0yNTA3MTkwNzQ3NTNaFw0yNTA3MjYwNzQ3NTNaMBgxFjAUBgNV BAMTDTY4N2I0ZGFhLTc2ZTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZW0yd/m99+n11jeFi74MaD4df6FrIT8O9R5mWqpVnziHuNH8BmPR89bjkVoEa BZgaNffHq8xKxdw62liHdpZhDWeL6wuVAJlLJ8UrVyK3QwsTTSKfwZ1SGebtOprj BlMJW0HsB3wA6BuE1IH4qwvjDpi/YhPO1nertxv1r+gr2jJxtPHvJV+pDr2ne8Nm wbKuMdby86pFdHb4RLR2W2rF67EPheEShgyYt5Ll4MtbZYwk5Z09tvkoHG2iUo5D bn4UE+RPEJeA5qia2hrze5PkIhRxBCWzm8aik+B/MK14NT1iMUGP0RazHcyCdsIW Mme/ncE7n5x4wx56D5puIxiJAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOVxCxGzj Bd+WreGUsAnbj9rgZLgwHwYDVR0jBBgwFoAUFz6pPabl71KPpzMJc4hIg92lJ+4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1RTA5LzhGNjI1QzRFMDhD ODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFLUHB6TUpjNGhJZzkybEot NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRno2cFBhYmw3MUtQcHpNSmM0aElnOTJsSi00LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ1 RTA5LzhGNjI1QzRFMDhDODExRjBBMEQzNEU1NkM0RjlBRTAyL0Z6NnBQYWJsNzFL UHB6TUpjNGhJZzkybEotNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAL+4P+Z1vTp0bUfbKgnLQFVRl/oGFZWQ/i8+jzrZadGWmRI70QuotuAi g+Sjqa89Ub7bHgiulmT9gDbigq7spMpnlPi+qv4n9YTD4tpRRXxwoIm7y+SRPora tJnShSxuzbkERQSE5V/yFPBH1FqCOrXKnfSqnHmYg3ItvPT7ywu6yP5nRbd0IDd9 6EPqJ3CgmmLlQLtdu9rOepn5IGLkdPzCi2VaJn88sBZNuo67S8BgJi5uSNURVAci T2e/fTb3P1o9ltteT83XK++fVbsqShHUdzRr5L067ewJrkHOyOaJ+v9T8Q8GNcLK vXhs8ihoforqmuT999foq8IE5wXrK9w= -----END CERTIFICATE-----Generated at Sun Jul 20 07:42:52 2025 by rpki-client