$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft File: I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft (raw, json) Hash identifier: BjvO9JnIZTb1va7HapLiPY51wZdrMfiOfMVQcEZNgNk= Subject key identifier: 64:92:21:BD:4B:3D:AD:93:81:4A:27:76:2D:3C:B3:54:0D:82:DA:DF Authority key identifier: 23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 Certificate issuer: /CN=A9146A72/serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Certificate serial: 2D96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft Manifest number: 2D7B Signing time: Fri 18 Jul 2025 15:34:39 +0000 Manifest this update: Fri 18 Jul 2025 15:34:39 +0000 Manifest next update: Fri 25 Jul 2025 15:34:39 +0000 Files and hashes: 1: I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl (hash: lgRWv5DEPw88nmhetteSjGMUvyDjNPBbnOkofgXiRWI=) 2: 3635C928CE3811EF878F6569C4F9AE02.roa (hash: qYH+0NoYqUVH/kICTwmC5FSWgYMcanxVuKqTuwnMQdk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:34:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11670 (0x2d96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=23704D592F57509EDCE5A4AD7BDEEDCF7BDBACE4 Validity Not Before: Jul 18 15:34:39 2025 GMT Not After : Jul 25 15:34:39 2025 GMT Subject: CN=687a698f-a119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b3:8f:63:02:c4:56:a2:83:51:2b:36:a5:0b: 3e:4a:fc:62:db:c0:15:5c:9e:fe:e5:86:34:15:16: 82:86:df:61:05:78:8f:06:a9:9c:52:cb:26:78:b1: d7:97:c8:47:3c:c7:9e:c9:b3:9a:7b:98:62:d9:60: 69:7d:fc:1f:76:9d:c7:26:7f:b7:ca:10:a3:6d:30: 2c:aa:f8:07:c4:6f:f8:c1:59:1c:1d:6d:75:97:13: c3:38:3f:d6:b2:21:c0:a2:d7:de:20:bc:68:09:e0: 6a:72:12:84:01:55:55:de:b3:da:e7:64:aa:5d:f1: 1a:b5:ae:21:ba:9f:ea:f7:b5:5c:f3:31:9c:2e:77: 44:bf:74:33:94:9d:17:ca:a3:a8:d9:ba:43:2e:2b: 77:fd:53:07:23:f9:3a:3e:69:f5:33:3f:a0:3b:17: fa:5c:dd:0b:a5:2d:0d:b5:18:9a:0c:d4:a4:45:e6: 90:5f:86:4a:08:8b:51:36:75:56:69:46:99:71:24: 12:dc:01:85:77:7b:2b:0c:64:ce:08:1b:c3:5c:38: 2e:cf:11:de:8b:69:32:d8:fc:04:f3:86:43:24:2b: c5:4b:99:44:f8:69:08:06:1b:7e:ab:db:cc:e1:ea: 6a:85:7d:8f:05:9f:8e:27:a4:2a:26:09:a7:f3:0b: 14:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:92:21:BD:4B:3D:AD:93:81:4A:27:76:2D:3C:B3:54:0D:82:DA:DF X509v3 Authority Key Identifier: keyid:23:70:4D:59:2F:57:50:9E:DC:E5:A4:AD:7B:DE:ED:CF:7B:DB:AC:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I3BNWS9XUJ7c5aSte97tz3vbrOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/05C891DA89ED11E386916EA55911EA32/I3BNWS9XUJ7c5aSte97tz3vbrOQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:6b:c1:39:66:0c:b3:11:17:24:43:d9:f6:e3:9c:44:80:76: 6d:29:ed:1a:17:f2:1b:7e:4d:73:50:b4:64:87:b3:ea:c7:a2: 70:4b:81:fc:8e:22:8a:76:1c:70:b2:7f:60:0a:87:30:2b:ab: 32:91:a8:19:bc:14:5f:5a:09:44:13:76:41:9d:f1:a5:51:7f: 22:3c:1f:43:b4:4e:c9:c5:9a:7b:b4:e3:28:49:3e:f8:13:d0: 45:b8:6b:3b:9c:e5:8a:96:1b:fe:01:ae:cf:ed:88:06:08:61: ea:0a:75:59:a6:dd:20:96:c0:fe:28:da:fc:58:0d:41:52:6e: 21:e4:ef:61:3b:72:d1:17:10:5c:79:cc:78:ef:a8:e8:dc:13: 1f:36:8f:ae:a5:c7:ff:4b:21:a4:50:3c:47:3e:bb:3f:e5:b3: 20:64:cb:9a:8e:0e:3b:12:d2:4f:93:56:47:d5:63:ef:e5:31: bc:0b:ad:9e:f7:56:19:63:01:89:d1:af:09:8e:8e:c4:2c:7f: c5:3d:3b:4f:2d:d7:e3:c0:31:f6:91:ef:88:58:52:ab:fe:b6: 56:2c:5f:54:36:b8:99:bd:90:ca:80:33:68:da:29:a3:d5:cb: 9d:a5:8d:94:2e:c8:89:82:c4:e7:55:fd:c5:1b:3e:a4:a7:ff: 65:3f:42:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKDIzNzA0RDU5MkY1NzUwOUVEQ0U1QTRBRDdCREVFRENG N0JEQkFDRTQwHhcNMjUwNzE4MTUzNDM5WhcNMjUwNzI1MTUzNDM5WjAYMRYwFAYD VQQDEw02ODdhNjk4Zi1hMTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LOPYwLEVqKDUSs2pQs+Svxi28AVXJ7+5YY0FRaCht9hBXiPBqmcUssmeLHX l8hHPMeeybOae5hi2WBpffwfdp3HJn+3yhCjbTAsqvgHxG/4wVkcHW11lxPDOD/W siHAotfeILxoCeBqchKEAVVV3rPa52SqXfEata4hup/q97Vc8zGcLndEv3QzlJ0X yqOo2bpDLit3/VMHI/k6Pmn1Mz+gOxf6XN0LpS0NtRiaDNSkReaQX4ZKCItRNnVW aUaZcSQS3AGFd3srDGTOCBvDXDguzxHei2ky2PwE84ZDJCvFS5lE+GkIBht+q9vM 4epqhX2PBZ+OJ6QqJgmn8wsUxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSSIb1L Pa2TgUondi08s1QNgtrfMB8GA1UdIwQYMBaAFCNwTVkvV1Ce3OWkrXve7c9726zk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi8wNUM4OTFEQTg5 RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVKN2M1YVN0ZTk3dHozdmJy T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0kzQk5XUzlYVUo3YzVhU3RlOTd0ejN2YnJPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi8wNUM4OTFEQTg5RUQxMUUzODY5MTZFQTU1OTExRUEzMi9JM0JOV1M5WFVK N2M1YVN0ZTk3dHozdmJyT1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBha8E5ZgyzERckQ9n245xEgHZtKe0aF/Ibfk1zULRkh7Pqx6JwS4H8 jiKKdhxwsn9gCocwK6sykagZvBRfWglEE3ZBnfGlUX8iPB9DtE7JxZp7tOMoST74 E9BFuGs7nOWKlhv+Aa7P7YgGCGHqCnVZpt0glsD+KNr8WA1BUm4h5O9hO3LRFxBc ecx476jo3BMfNo+upcf/SyGkUDxHPrs/5bMgZMuajg47EtJPk1ZH1WPv5TG8C62e 91YZYwGJ0a8Jjo7ELH/FPTtPLdfjwDH2ke+IWFKr/rZWLF9UNriZvZDKgDNo2imj 1cudpY2ULsiJgsTnVf3FGz6kp/9lP0Kf -----END CERTIFICATE-----Generated at Sun Jul 20 12:03:35 2025 by rpki-client