$ rpki-client -vvf rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft File: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft (raw, json) Hash identifier: 1F1aKSXu1gJtYSufccyyweD7bQttMmN7vugUPywCgkg= Subject key identifier: 3A:2C:12:3E:91:15:B8:69:4B:50:B2:25:E7:D5:64:0C:99:97:ED:82 Authority key identifier: 9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 Certificate issuer: /CN=A9147CBE/serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Certificate serial: 5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft Manifest number: 5E Signing time: Mon 21 Jul 2025 07:18:15 +0000 Manifest this update: Mon 21 Jul 2025 07:18:14 +0000 Manifest next update: Mon 28 Jul 2025 07:18:14 +0000 Files and hashes: 1: mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl (hash: aewiEh0houupeyqEoFyYGxdKIhBGOcr7tPEKTiQTJk0=) 2: 6D66CE8017BA11F094861F7DC4F9AE02.roa (hash: +D4BVGFKWyg9Pr75Q40/ty5hMk4DuavCG4i3TGDDyg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:18:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147CBE, serialNumber=9A1624F46082F54AC5778859E226BD3BA69023F4 Validity Not Before: Jul 21 07:18:14 2025 GMT Not After : Jul 28 07:18:14 2025 GMT Subject: CN=687de9b7-7b61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7d:e4:25:33:85:c4:b6:87:f3:3c:94:d3:8f: 40:ce:1e:1c:ef:93:94:d9:94:2b:0f:24:a3:a1:b6: cf:82:9a:39:6b:c3:6d:a9:69:1d:5d:c2:0e:d7:6e: 47:bc:78:da:aa:2e:37:d6:a8:8e:41:5b:62:87:6c: 75:eb:ed:df:80:05:17:84:55:8b:3e:2f:4b:6b:1c: f4:c0:c1:25:b0:bb:4e:b5:23:1c:0b:67:f5:2b:7a: 7c:49:6d:6a:e6:1e:12:f0:18:e4:76:e4:d2:08:f3: 67:66:f2:41:51:7c:0a:0d:c5:45:47:36:73:6c:36: 81:bd:50:ef:55:e7:1e:6a:39:c8:12:3c:93:c0:83: dc:f1:64:a5:ff:8c:47:7c:1b:1d:91:68:b1:d4:c0: f4:0b:cd:d4:b9:cf:2e:eb:d7:a7:5e:04:81:7a:f1: 5f:74:c4:39:05:ea:06:bd:df:82:9c:2b:70:0a:41: 00:50:84:55:c4:b3:01:d4:1e:61:2a:4b:74:21:ac: b9:b4:42:3f:24:b5:26:db:0b:8f:44:ad:7e:22:b5: ec:89:09:2d:81:6f:e7:96:79:16:86:58:ed:4f:ca: 70:a1:19:ec:d1:c9:fc:93:26:4b:f9:06:51:6c:e2: 80:bb:c1:86:77:1f:de:f9:c5:de:1c:b0:b0:07:71: 39:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:2C:12:3E:91:15:B8:69:4B:50:B2:25:E7:D5:64:0C:99:97:ED:82 X509v3 Authority Key Identifier: keyid:9A:16:24:F4:60:82:F5:4A:C5:77:88:59:E2:26:BD:3B:A6:90:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147CBE/83BA87AED7C211EF8190DA5CC4F9AE02/mhYk9GCC9UrFd4hZ4ia9O6aQI_Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:8a:0c:f7:27:bd:b8:64:7e:42:08:2d:e6:80:ed:2b:6e:d9: c5:86:ff:df:4d:ac:a0:0b:1c:21:81:47:4e:fa:b2:44:8d:02: 67:b0:e5:25:11:15:1a:d8:64:b9:9c:2d:9a:ce:22:85:23:07: 97:d2:ae:83:4b:42:76:db:dc:40:74:23:4c:e5:66:66:12:0e: 39:b7:a3:19:17:ab:e2:9a:7c:64:31:d6:e2:53:93:ad:74:b8: 3c:6e:1d:6a:b6:cd:29:ca:fb:a9:d4:0f:52:58:30:3b:a8:ad: 1d:2d:0e:1e:bb:20:55:1e:3b:ca:85:58:ba:15:07:a0:d6:5b: 07:67:3e:67:45:39:9e:0f:b0:a8:ed:f2:3f:30:ba:fd:a7:c8: aa:e0:b3:5a:59:1f:15:07:26:0f:74:84:91:b8:7f:e7:c3:d7: 3b:93:97:32:a8:36:44:e1:90:cf:88:fe:09:08:ec:70:3b:ca: 74:db:ca:c5:80:41:6f:9b:38:82:58:20:dc:80:91:0f:e9:70: 76:9f:83:87:32:0e:0f:50:40:f4:c2:e1:53:58:a4:4b:15:59: a1:8e:79:f0:e0:81:3d:f9:fd:c4:02:12:8a:a8:e8:a8:2f:71: f6:db:65:2d:42:51:ac:3e:6a:4f:2a:60:2d:2b:8a:e5:d5:a5: 51:48:29:91 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 N0NCRTExMC8GA1UEBRMoOUExNjI0RjQ2MDgyRjU0QUM1Nzc4ODU5RTIyNkJEM0JB NjkwMjNGNDAeFw0yNTA3MjEwNzE4MTRaFw0yNTA3MjgwNzE4MTRaMBgxFjAUBgNV BAMTDTY4N2RlOWI3LTdiNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLfeQlM4XEtofzPJTTj0DOHhzvk5TZlCsPJKOhts+Cmjlrw22paR1dwg7Xbke8 eNqqLjfWqI5BW2KHbHXr7d+ABReEVYs+L0trHPTAwSWwu061IxwLZ/UrenxJbWrm HhLwGOR25NII82dm8kFRfAoNxUVHNnNsNoG9UO9V5x5qOcgSPJPAg9zxZKX/jEd8 Gx2RaLHUwPQLzdS5zy7r16deBIF68V90xDkF6ga934KcK3AKQQBQhFXEswHUHmEq S3QhrLm0Qj8ktSbbC49ErX4iteyJCS2Bb+eWeRaGWO1PynChGezRyfyTJkv5BlFs 4oC7wYZ3H975xd4csLAHcTkXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOiwSPpEV uGlLULIl59VkDJmX7YIwHwYDVR0jBBgwFoAUmhYk9GCC9UrFd4hZ4ia9O6aQI/Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3Q0JFLzgzQkE4N0FFRDdD MjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVyRmQ0aFo0aWE5TzZhUUlf US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbWhZazlHQ0M5VXJGZDRoWjRpYTlPNmFRSV9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3 Q0JFLzgzQkE4N0FFRDdDMjExRUY4MTkwREE1Q0M0RjlBRTAyL21oWWs5R0NDOVVy RmQ0aFo0aWE5TzZhUUlfUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIeKDPcnvbhkfkIILeaA7Stu2cWG/99NrKALHCGBR076skSNAmew5SUR FRrYZLmcLZrOIoUjB5fSroNLQnbb3EB0I0zlZmYSDjm3oxkXq+KafGQx1uJTk610 uDxuHWq2zSnK+6nUD1JYMDuorR0tDh67IFUeO8qFWLoVB6DWWwdnPmdFOZ4PsKjt 8j8wuv2nyKrgs1pZHxUHJg90hJG4f+fD1zuTlzKoNkThkM+I/gkI7HA7ynTbysWA QW+bOIJYINyAkQ/pcHafg4cyDg9QQPTC4VNYpEsVWaGOefDggT35/cQCEoqo6Kgv cfbbZS1CUaw+ak8qYC0riuXVpVFIKZE= -----END CERTIFICATE-----Generated at Wed Jul 23 02:27:13 2025 by rpki-client