$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft File: sCeV0uCeOqo-NtK1ktLg6fu3770.mft (raw, json) Hash identifier: iSzGZKZO5l8f0j46GtFTgmjcs+HHC8Lu+jZqthsbHI8= Subject key identifier: F1:D2:99:3D:3B:AF:C0:B3:97:C2:5B:95:DE:75:88:02:2E:87:BD:53 Authority key identifier: B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD Certificate issuer: /CN=A914E0FE/serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Certificate serial: 7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft Manifest number: 7A Signing time: Sat 19 Jul 2025 07:00:11 +0000 Manifest this update: Sat 19 Jul 2025 07:00:10 +0000 Manifest next update: Sat 26 Jul 2025 07:00:10 +0000 Files and hashes: 1: sCeV0uCeOqo-NtK1ktLg6fu3770.crl (hash: qaWvg+dVy6p3XCCOZpZQVZt2czuJEl6tTQIjpHQeB+g=) 2: FF3178EAB14B11EFB6CD146AC4F9AE02.roa (hash: KPgMUtF2z6om6dSm7+mB/ufWiwTV8TpJVcH2+or0fgs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:00:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=B02795D2E09E3AAA3E36D2B592D2E0E9FBB7EFBD Validity Not Before: Jul 19 07:00:10 2025 GMT Not After : Jul 26 07:00:10 2025 GMT Subject: CN=687b427a-628c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d4:2c:d9:41:2c:7b:c7:ed:ae:75:dc:fc:21: 07:35:cb:ce:ba:09:1e:ce:85:8d:6a:95:db:c6:ec: da:29:d5:09:b0:a7:26:7c:4e:20:50:ee:42:d2:62: f6:ce:db:10:b3:6c:02:d7:e7:d2:de:3e:e5:6c:93: 8f:9b:47:45:ce:43:19:1e:7a:ad:dd:2b:8b:fb:82: 3e:47:8d:60:4e:e3:8d:65:51:d7:7c:ae:f3:49:af: 36:80:c9:94:98:61:21:33:7e:81:02:c6:11:c8:fa: e5:17:9d:56:e3:2c:25:db:d1:54:02:70:9f:ca:27: 63:0e:2a:ec:01:74:b0:5e:26:62:4d:77:9b:3a:50: 9a:68:2d:df:f6:79:84:e7:a7:32:21:f8:97:04:a7: 97:60:c0:5f:f4:38:69:09:67:33:03:b8:1e:20:f8: 2f:da:12:11:df:83:b2:7e:0a:b7:c0:5d:8b:7b:c2: 60:bc:3b:63:e0:35:02:cc:03:a5:7a:37:bb:46:25: 32:8e:5b:c8:fd:48:7b:f3:95:44:e9:5b:78:11:58: fb:36:92:b1:b8:13:3a:c7:28:20:c4:74:27:6a:9b: c4:41:48:32:aa:6d:55:db:bf:cf:da:c4:7c:e7:62: 0e:ca:3e:ab:51:c2:79:59:04:dc:58:69:4b:f5:93: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D2:99:3D:3B:AF:C0:B3:97:C2:5B:95:DE:75:88:02:2E:87:BD:53 X509v3 Authority Key Identifier: keyid:B0:27:95:D2:E0:9E:3A:AA:3E:36:D2:B5:92:D2:E0:E9:FB:B7:EF:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sCeV0uCeOqo-NtK1ktLg6fu3770.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/37334BE2ABCA11EFA994D129C4F9AE02/sCeV0uCeOqo-NtK1ktLg6fu3770.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:19:7a:de:70:4b:20:7f:69:fd:66:35:0d:29:04:29:72:e7: 60:a1:1d:5f:57:05:ed:5f:c1:30:c2:b9:1d:a8:8c:57:38:d3: 9d:af:cf:e8:c6:e7:74:e0:a8:b6:16:c0:04:3b:06:e5:34:b1: 51:1c:ca:91:7f:1a:9a:66:5a:8d:45:68:65:5a:4f:eb:47:af: da:92:23:82:52:39:0f:22:36:ef:1d:6d:0c:41:64:2b:80:3b: 1b:de:dc:1d:26:b6:b0:a6:08:4c:1e:99:41:73:65:21:c1:5d: d1:5f:e0:62:95:cd:e2:8b:d5:23:5e:26:73:bd:d8:a6:90:00: ec:5b:7e:7e:54:5b:89:ec:a9:a6:f5:21:fb:68:7b:9b:d0:88: 78:1b:32:96:1d:0e:eb:07:ca:09:2d:25:2a:8b:66:be:65:b9: 91:8f:06:92:a0:15:9e:e3:65:c2:ac:eb:55:c4:16:e2:4b:08: 19:ee:23:44:af:9e:7e:05:fe:42:d3:4f:48:af:a9:76:cd:ca: 07:1f:9c:0a:00:cc:5f:b5:71:9f:44:24:18:dc:64:52:d9:88: 34:89:91:21:24:03:93:9d:d4:dd:c5:ca:5f:1d:26:ed:5b:da: 21:6b:e6:ce:00:3b:a6:15:a2:f6:b5:ee:e3:13:76:22:c8:d6: f6:0a:05:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoQjAyNzk1RDJFMDlFM0FBQTNFMzZEMkI1OTJEMkUwRTlG QkI3RUZCRDAeFw0yNTA3MTkwNzAwMTBaFw0yNTA3MjYwNzAwMTBaMBgxFjAUBgNV BAMTDTY4N2I0MjdhLTYyOGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv1CzZQSx7x+2uddz8IQc1y866CR7OhY1qldvG7Nop1QmwpyZ8TiBQ7kLSYvbO 2xCzbALX59LePuVsk4+bR0XOQxkeeq3dK4v7gj5HjWBO441lUdd8rvNJrzaAyZSY YSEzfoECxhHI+uUXnVbjLCXb0VQCcJ/KJ2MOKuwBdLBeJmJNd5s6UJpoLd/2eYTn pzIh+JcEp5dgwF/0OGkJZzMDuB4g+C/aEhHfg7J+CrfAXYt7wmC8O2PgNQLMA6V6 N7tGJTKOW8j9SHvzlUTpW3gRWPs2krG4EzrHKCDEdCdqm8RBSDKqbVXbv8/axHzn Yg7KPqtRwnlZBNxYaUv1k0cNAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU8dKZPTuv wLOXwluV3nWIAi6HvVMwHwYDVR0jBBgwFoAUsCeV0uCeOqo+NtK1ktLg6fu3770w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzM3MzM0QkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL3NDZVYwdUNlT3FvLU50SzFrdExnNmZ1Mzc3 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0NlVjB1Q2VPcW8tTnRLMWt0TGc2ZnUzNzcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRF MEZFLzM3MzM0QkUyQUJDQTExRUZBOTk0RDEyOUM0RjlBRTAyL3NDZVYwdUNlT3Fv LU50SzFrdExnNmZ1Mzc3MC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHEZet5wSyB/af1mNQ0pBCly52ChHV9XBe1fwTDCuR2ojFc4052vz+jG 53TgqLYWwAQ7BuU0sVEcypF/GppmWo1FaGVaT+tHr9qSI4JSOQ8iNu8dbQxBZCuA Oxve3B0mtrCmCEwemUFzZSHBXdFf4GKVzeKL1SNeJnO92KaQAOxbfn5UW4nsqab1 Iftoe5vQiHgbMpYdDusHygktJSqLZr5luZGPBpKgFZ7jZcKs61XEFuJLCBnuI0Sv nn4F/kLTT0ivqXbNygcfnAoAzF+1cZ9EJBjcZFLZiDSJkSEkA5Od1N3Fyl8dJu1b 2iFr5s4AO6YVova17uMTdiLI1vYKBc0= -----END CERTIFICATE-----Generated at Sun Jul 20 19:07:58 2025 by rpki-client