$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft File: 1O0zil4gh9gu9ML2RZm0ERJy5eA.mft (raw, json) Hash identifier: 7itBLXf3szDqBP1S5AFTTNNwABY0jAoKoL0qP0riUsQ= Subject key identifier: 2D:BC:BB:FE:39:7D:2C:57:33:A8:12:AA:AC:A0:70:C4:0A:98:DC:1E Authority key identifier: D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 Certificate issuer: /CN=A914ECA4/serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Certificate serial: 0739 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft Manifest number: 0732 Signing time: Sat 26 Jul 2025 21:58:31 +0000 Manifest this update: Sat 26 Jul 2025 21:58:31 +0000 Manifest next update: Sat 02 Aug 2025 21:58:31 +0000 Files and hashes: 1: 1O0zil4gh9gu9ML2RZm0ERJy5eA.crl (hash: O3gypv8gs4kiKZOZwHEVSFUKhB36qJ+z8eifQE6fUic=) 2: FC07CE5C3A7C11EBB38FF025C4F9AE02.roa (hash: P6M32s9N/Ait6pG90TBg5gFRqcz9Jw3z+OITkwygUn4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 Aug 2025 21:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECA4, serialNumber=D4ED338A5E2087D82EF4C2F64599B4111272E5E0 Validity Not Before: Jul 26 21:58:31 2025 GMT Not After : Aug 2 21:58:31 2025 GMT Subject: CN=68854f87-ee9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ff:e9:71:0d:75:b7:1f:ea:50:18:7c:4b:d8: 33:eb:e7:14:60:2e:7b:1a:3d:1e:11:8e:16:28:79: 36:84:40:c6:57:b8:e4:9f:5f:df:8b:b7:88:cc:b5: 6c:a2:e0:2c:fc:53:9d:3f:c6:94:e3:24:56:1a:57: 3e:99:1f:ac:17:4d:45:1b:b0:e6:63:d1:07:f8:25: 42:46:75:56:80:53:fc:92:bf:23:19:d9:03:4b:76: 72:d1:8d:2d:f6:6f:ae:7c:62:8f:18:69:01:f4:27: e0:ba:a2:0e:ac:c1:6c:75:f6:0e:47:14:61:96:d2: e1:8b:0b:e1:bd:55:57:69:c1:fe:01:bc:37:6d:0b: 3c:04:99:c8:01:28:a2:31:75:49:63:96:26:59:75: b6:06:87:2d:2e:58:ad:35:83:46:68:9f:df:76:1f: a3:9b:7d:a8:eb:74:f0:57:b2:65:39:98:63:93:a0: c7:f8:d8:ae:00:ef:71:ae:61:40:f4:47:f9:f9:96: ae:cd:10:e3:28:38:ed:fc:da:de:14:bb:8d:6f:92: 3a:20:6a:da:2f:90:8f:bf:43:b4:8d:3b:cc:0f:ba: 57:83:e8:7e:83:54:d7:32:4e:9b:40:ab:04:08:68: b6:f5:a1:7b:d4:22:96:d3:0f:63:2c:d3:d2:98:2e: 58:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BC:BB:FE:39:7D:2C:57:33:A8:12:AA:AC:A0:70:C4:0A:98:DC:1E X509v3 Authority Key Identifier: keyid:D4:ED:33:8A:5E:20:87:D8:2E:F4:C2:F6:45:99:B4:11:12:72:E5:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1O0zil4gh9gu9ML2RZm0ERJy5eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECA4/7AE9FED63A7B11EBB7869C24C4F9AE02/1O0zil4gh9gu9ML2RZm0ERJy5eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:8e:5b:3d:45:66:32:d0:00:bd:0b:49:1e:21:2f:12:df:e0: cb:66:91:b2:52:89:53:42:ac:39:28:4f:8b:69:e4:d5:2b:39: b2:8a:22:d9:74:84:52:68:9f:6c:7c:2e:a4:43:f8:1c:96:20: a7:8f:13:34:0b:a6:e0:bf:fa:f3:72:50:63:04:d2:51:d2:96: 1a:80:f4:11:0d:0e:f0:4f:e4:33:ed:3b:dd:20:1f:4b:26:58: ff:5d:92:ba:e1:77:f6:d4:5d:ec:8a:ee:f0:24:bb:eb:f3:a7: 44:c4:e6:71:30:d1:02:7d:83:74:fa:fa:64:04:7c:39:60:e6: bf:10:c4:62:ba:20:31:fa:db:32:47:c8:b7:53:86:87:e3:a1: 23:2f:05:2f:44:d9:08:e6:4e:8a:a5:10:c6:e8:43:96:a9:e7: 93:86:41:da:dc:a9:df:c7:9b:be:ec:d1:7a:88:d4:37:a7:6b: 1f:b1:22:af:33:5e:44:2f:99:a1:52:40:dd:cc:b5:5a:0c:4e: e5:a3:4f:60:36:ec:a5:65:e0:8f:d6:42:06:fc:c3:d1:bd:ac: 39:23:8c:32:d9:b5:7b:c9:3d:c0:0a:21:cd:de:70:a1:83:10: 0f:1c:8c:e0:44:d9:a7:11:04:0a:0c:24:04:8a:a7:1b:30:16: 94:f3:91:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDQTQxMTAvBgNVBAUTKEQ0RUQzMzhBNUUyMDg3RDgyRUY0QzJGNjQ1OTlCNDEx MTI3MkU1RTAwHhcNMjUwNzI2MjE1ODMxWhcNMjUwODAyMjE1ODMxWjAYMRYwFAYD VQQDEw02ODg1NGY4Ny1lZTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6P/pcQ11tx/qUBh8S9gz6+cUYC57Gj0eEY4WKHk2hEDGV7jkn1/fi7eIzLVs ouAs/FOdP8aU4yRWGlc+mR+sF01FG7DmY9EH+CVCRnVWgFP8kr8jGdkDS3Zy0Y0t 9m+ufGKPGGkB9CfguqIOrMFsdfYORxRhltLhiwvhvVVXacH+Abw3bQs8BJnIASii MXVJY5YmWXW2BoctLlitNYNGaJ/fdh+jm32o63TwV7JlOZhjk6DH+NiuAO9xrmFA 9Ef5+ZauzRDjKDjt/NreFLuNb5I6IGraL5CPv0O0jTvMD7pXg+h+g1TXMk6bQKsE CGi29aF71CKW0w9jLNPSmC5Y9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC28u/45 fSxXM6gSqqygcMQKmNweMB8GA1UdIwQYMBaAFNTtM4peIIfYLvTC9kWZtBEScuXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNBNC83QUU5RkVENjNB N0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5Z3U5TUwyUlptMEVSSnk1 ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFPMHppbDRnaDlndTlNTDJSWm0wRVJKeTVlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNBNC83QUU5RkVENjNBN0IxMUVCQjc4NjlDMjRDNEY5QUUwMi8xTzB6aWw0Z2g5 Z3U5TUwyUlptMEVSSnk1ZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOjls9RWYy0AC9C0keIS8S3+DLZpGyUolTQqw5KE+LaeTVKzmyiiLZ dIRSaJ9sfC6kQ/gcliCnjxM0C6bgv/rzclBjBNJR0pYagPQRDQ7wT+Qz7TvdIB9L Jlj/XZK64Xf21F3siu7wJLvr86dExOZxMNECfYN0+vpkBHw5YOa/EMRiuiAx+tsy R8i3U4aH46EjLwUvRNkI5k6KpRDG6EOWqeeThkHa3Knfx5u+7NF6iNQ3p2sfsSKv M15EL5mhUkDdzLVaDE7lo09gNuylZeCP1kIG/MPRvaw5I4wy2bV7yT3ACiHN3nCh gxAPHIzgRNmnEQQKDCQEiqcbMBaU85Eh -----END CERTIFICATE-----Generated at Mon Jul 28 04:05:45 2025 by rpki-client