$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft File: i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft (raw, json) Hash identifier: DcDdZPlHkWvEh60T4H+9eq2YNB/wTVdT5QNvtMXi/gc= Subject key identifier: 7C:31:AB:AC:38:3A:EE:14:CF:05:38:8F:E7:8A:C3:9F:FA:E5:ED:91 Authority key identifier: 8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7 Certificate issuer: /CN=A914ECD7/serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7 Certificate serial: 0205 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft Manifest number: 0201 Signing time: Fri 25 Jul 2025 02:31:01 +0000 Manifest this update: Fri 25 Jul 2025 02:31:01 +0000 Manifest next update: Fri 01 Aug 2025 02:31:01 +0000 Files and hashes: 1: i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl (hash: OW9k12AvDrudz5EoXEOcJD6QEgi6iwT1QYWtnqArWYk=) 2: FC589960568411EDAE93DA7FC4F9AE02.roa (hash: RxZVoTNoSPk+sPPkKG/4HF99n9loOp00db2bHVAlJ14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 02:31:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECD7, serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7 Validity Not Before: Jul 25 02:31:01 2025 GMT Not After : Aug 1 02:31:01 2025 GMT Subject: CN=6882ec65-30ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:02:97:26:df:99:e6:9c:4e:42:3e:87:71:e1: 69:1a:9d:fe:53:3b:98:87:73:70:b6:cd:f7:01:36: 4b:8c:f1:79:63:55:ec:6d:5d:a7:e8:b0:b6:51:94: 36:a8:48:73:1a:0d:d9:e6:49:e2:86:e0:0a:ce:b2: 70:7e:c1:c8:2e:39:5a:7c:29:4a:c5:0d:76:7c:f8: f0:0a:25:b2:ee:d1:64:2a:69:9f:20:b4:f5:80:7b: 32:fd:da:ed:37:b1:3c:b9:80:50:57:39:74:c2:4e: fa:a3:13:ae:90:88:ad:ed:6d:d8:17:65:e4:ba:1d: 26:96:e2:da:ee:99:2f:3c:0f:d2:bb:64:e5:da:37: fd:f6:57:75:dc:ab:1f:da:c5:7a:9f:bb:1c:95:e2: 6e:33:df:fb:d5:03:e3:40:35:7e:ac:31:a4:53:67: 6f:50:fa:8c:63:6d:41:e6:14:13:d9:f6:f2:ac:f1: fc:40:a3:23:10:56:9e:3f:a5:3e:4a:aa:bd:e3:37: 80:4e:15:5d:a7:f7:a5:2a:35:30:87:df:ce:59:27: ea:43:fd:59:44:db:82:8b:53:c0:0c:95:0b:ce:55: 40:5e:04:4e:4a:2a:66:50:15:d4:3a:57:f2:54:73: 78:21:01:89:a7:7a:f1:94:18:e9:0b:fd:eb:16:43: 0f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:31:AB:AC:38:3A:EE:14:CF:05:38:8F:E7:8A:C3:9F:FA:E5:ED:91 X509v3 Authority Key Identifier: keyid:8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:cb:cd:c6:a5:ce:a2:27:bf:04:fe:61:12:a9:63:a5:18:0a: 6e:b4:ec:ee:f9:53:61:df:e4:ff:6d:3d:7a:d6:01:03:d2:c8: b2:3a:ec:8f:14:a6:e8:c2:b9:d5:1f:6a:3a:ee:9f:7b:3b:03: 52:ec:a4:dd:5c:54:b3:f5:24:09:09:cd:9c:37:69:0a:d5:6c: aa:33:bf:7d:85:ee:fa:da:02:c8:77:8f:34:8e:58:d3:14:58: f0:35:4a:e5:6c:d9:c5:77:f5:5c:dc:bc:2e:ce:09:84:24:21: dc:1e:2d:6f:66:04:3e:49:e8:66:b5:69:1e:e0:92:30:8a:e6: cd:0d:47:37:92:98:6f:90:5d:84:94:31:49:41:35:7b:e6:9e: eb:f1:a1:54:ea:cc:8c:41:14:82:a4:76:99:50:e2:10:a9:30: dc:9d:9d:11:5b:cd:b1:e8:2d:6b:c9:bb:ff:f6:23:05:1c:ac: 35:86:6c:27:13:0c:52:f2:b7:88:ca:d6:54:b9:5a:8e:67:93: ef:47:77:25:c6:be:15:a6:05:40:69:6b:7c:0f:99:1a:92:b2: e8:0f:d9:f2:8f:cc:6f:90:9c:9e:44:9b:d4:0c:4e:9d:f0:d1: 19:c7:a6:8b:d9:ab:cb:ea:d0:bb:4f:f8:92:7d:56:eb:bf:f3: 4e:fd:9f:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDRDcxMTAvBgNVBAUTKDhCN0ZERUU0NkE5ODBDMDQzMzk4RkI3QjIzOUIwNTRE Q0YyMzdDRDcwHhcNMjUwNzI1MDIzMTAxWhcNMjUwODAxMDIzMTAxWjAYMRYwFAYD VQQDEw02ODgyZWM2NS0zMGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwKXJt+Z5pxOQj6HceFpGp3+UzuYh3Nwts33ATZLjPF5Y1XsbV2n6LC2UZQ2 qEhzGg3Z5knihuAKzrJwfsHILjlafClKxQ12fPjwCiWy7tFkKmmfILT1gHsy/drt N7E8uYBQVzl0wk76oxOukIit7W3YF2Xkuh0mluLa7pkvPA/Su2Tl2jf99ld13Ksf 2sV6n7scleJuM9/71QPjQDV+rDGkU2dvUPqMY21B5hQT2fbyrPH8QKMjEFaeP6U+ Sqq94zeAThVdp/elKjUwh9/OWSfqQ/1ZRNuCi1PADJULzlVAXgROSipmUBXUOlfy VHN4IQGJp3rxlBjpC/3rFkMPFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHwxq6w4 Ou4UzwU4j+eKw5/65e2RMB8GA1UdIwQYMBaAFIt/3uRqmAwEM5j7eyObBU3PI3zX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNENy9GRDkxODU5MDU2 N0UxMUVEOTgzQTlDNjFDNEY5QUUwMi9pM19lNUdxWURBUXptUHQ3STVzRlRjOGpm TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kzX2U1R3FZREFRem1QdDdJNXNGVGM4amZOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNENy9GRDkxODU5MDU2N0UxMUVEOTgzQTlDNjFDNEY5QUUwMi9pM19lNUdxWURB UXptUHQ3STVzRlRjOGpmTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxy83Gpc6iJ78E/mESqWOlGAputOzu+VNh3+T/bT161gED0siyOuyP FKbowrnVH2o67p97OwNS7KTdXFSz9SQJCc2cN2kK1WyqM799he762gLId480jljT FFjwNUrlbNnFd/Vc3LwuzgmEJCHcHi1vZgQ+SehmtWke4JIwiubNDUc3kphvkF2E lDFJQTV75p7r8aFU6syMQRSCpHaZUOIQqTDcnZ0RW82x6C1rybv/9iMFHKw1hmwn EwxS8reIytZUuVqOZ5PvR3clxr4VpgVAaWt8D5kakrLoD9nyj8xvkJyeRJvUDE6d 8NEZx6aL2avL6tC7T/iSfVbrv/NO/Z/L -----END CERTIFICATE-----Generated at Sat Jul 26 01:59:33 2025 by rpki-client