$ rpki-client -vvf rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft File: i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft (raw, json) Hash identifier: 6MVN9Auz/9I30bmBzyt8Lwqz7d812Mous/4hb6bQtUo= Subject key identifier: 6C:B1:43:08:A9:18:80:33:43:86:B2:DE:16:74:1F:EF:71:BE:98:8C Authority key identifier: 8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7 Certificate issuer: /CN=A914ECD7/serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7 Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft Manifest number: 0200 Signing time: Wed 23 Jul 2025 02:35:34 +0000 Manifest this update: Wed 23 Jul 2025 02:35:34 +0000 Manifest next update: Wed 30 Jul 2025 02:35:34 +0000 Files and hashes: 1: i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl (hash: eowaevfUV5mAfFjfpLcp7KuigTOVcfA/vWAdvWgRIK0=) 2: FC589960568411EDAE93DA7FC4F9AE02.roa (hash: RxZVoTNoSPk+sPPkKG/4HF99n9loOp00db2bHVAlJ14=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 02:35:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ECD7, serialNumber=8B7FDEE46A980C043398FB7B239B054DCF237CD7 Validity Not Before: Jul 23 02:35:34 2025 GMT Not After : Jul 30 02:35:34 2025 GMT Subject: CN=68804a76-0674 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b5:ca:7d:dc:9b:79:9e:0b:d0:6b:c0:e8:31: 19:ce:48:c8:10:b0:c4:09:60:cc:01:cf:f1:65:31: 18:f3:53:dd:87:4f:34:f2:d8:55:d5:0e:a1:1b:98: cd:6b:ec:c2:81:de:fb:de:f1:c8:32:8c:4c:a6:cb: e7:43:20:50:07:9a:27:ce:fe:fb:5c:4f:0f:fd:9c: f5:f2:6d:a2:9e:03:ed:5e:a4:de:8e:1b:be:8d:91: 44:48:e8:45:70:9a:52:f2:d2:31:a0:83:4e:68:67: 57:af:7d:4d:38:06:1d:c3:33:da:cc:0e:70:a1:e5: 28:bc:2b:e9:18:72:a4:64:bd:00:fe:c2:e6:38:df: fa:0a:1d:b8:a6:9b:33:6b:22:66:57:3f:89:a8:e2: ba:24:62:89:eb:fa:2b:70:91:0c:c0:b7:47:c9:00: fa:da:8e:66:95:2d:fe:e4:0f:71:67:40:e4:0b:a9: 20:d7:4b:3b:1c:15:e5:ff:47:92:cd:3d:c4:80:31: f8:44:2e:84:b2:fe:67:a9:7b:19:92:38:c9:eb:af: c2:ea:a8:15:d5:26:71:ab:3b:d0:9a:4d:4f:70:6c: 04:17:78:77:70:24:62:26:e8:b3:e5:e6:53:48:47: ab:b5:6c:a6:4a:de:4e:be:e2:bc:67:ce:a7:5f:d3: 40:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:B1:43:08:A9:18:80:33:43:86:B2:DE:16:74:1F:EF:71:BE:98:8C X509v3 Authority Key Identifier: keyid:8B:7F:DE:E4:6A:98:0C:04:33:98:FB:7B:23:9B:05:4D:CF:23:7C:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i3_e5GqYDAQzmPt7I5sFTc8jfNc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ECD7/FD918590567E11ED983A9C61C4F9AE02/i3_e5GqYDAQzmPt7I5sFTc8jfNc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:5a:fb:f9:b1:33:64:de:0e:94:f7:a2:0a:02:f8:e7:ce:20: 2c:88:73:53:4e:31:ff:49:71:e6:9a:34:49:8a:c6:21:1b:55: 3c:89:5b:0f:97:2d:2c:60:de:cd:91:83:27:fd:c2:dc:e9:b9: 73:89:3c:24:c8:a4:dd:cb:4f:32:21:0c:98:49:1a:ec:ee:78: 44:f9:55:80:6d:de:cd:52:ac:b8:5b:97:67:08:ef:69:a6:e7: fb:45:64:c1:67:4c:67:c8:67:16:f5:92:46:aa:f6:e2:d1:22: ce:04:8a:4b:f4:7a:4f:5f:04:b7:d2:2d:d1:d6:43:bf:31:86: 73:f8:27:91:c0:13:c2:e3:07:2f:64:e3:f2:4c:5f:9f:a4:be: c3:a2:43:fa:84:35:83:8b:e9:46:39:8b:e7:3a:33:74:a4:cc: df:9b:df:b1:df:4f:c8:9c:d4:a3:41:b6:41:0f:60:b2:0e:1f: dc:89:4e:29:c1:01:41:9f:20:d8:9e:fe:fd:d9:06:12:50:e9: 98:44:80:52:7f:d4:98:42:7c:d0:8b:c5:3c:c6:f9:70:bd:4b: 60:61:1c:11:dc:9e:ac:a7:f3:0a:54:76:0a:93:43:28:04:93: 8a:45:69:49:9b:c1:ca:4e:21:01:fa:5e:1d:0c:d9:39:1e:ae: 82:d5:05:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVDRDcxMTAvBgNVBAUTKDhCN0ZERUU0NkE5ODBDMDQzMzk4RkI3QjIzOUIwNTRE Q0YyMzdDRDcwHhcNMjUwNzIzMDIzNTM0WhcNMjUwNzMwMDIzNTM0WjAYMRYwFAYD VQQDEw02ODgwNGE3Ni0wNjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLXKfdybeZ4L0GvA6DEZzkjIELDECWDMAc/xZTEY81Pdh0808thV1Q6hG5jN a+zCgd773vHIMoxMpsvnQyBQB5onzv77XE8P/Zz18m2ingPtXqTejhu+jZFESOhF cJpS8tIxoINOaGdXr31NOAYdwzPazA5woeUovCvpGHKkZL0A/sLmON/6Ch24ppsz ayJmVz+JqOK6JGKJ6/orcJEMwLdHyQD62o5mlS3+5A9xZ0DkC6kg10s7HBXl/0eS zT3EgDH4RC6Esv5nqXsZkjjJ66/C6qgV1SZxqzvQmk1PcGwEF3h3cCRiJuiz5eZT SEertWymSt5OvuK8Z86nX9NAGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGyxQwip GIAzQ4ay3hZ0H+9xvpiMMB8GA1UdIwQYMBaAFIt/3uRqmAwEM5j7eyObBU3PI3zX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUNENy9GRDkxODU5MDU2 N0UxMUVEOTgzQTlDNjFDNEY5QUUwMi9pM19lNUdxWURBUXptUHQ3STVzRlRjOGpm TmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kzX2U1R3FZREFRem1QdDdJNXNGVGM4amZOYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RUNENy9GRDkxODU5MDU2N0UxMUVEOTgzQTlDNjFDNEY5QUUwMi9pM19lNUdxWURB UXptUHQ3STVzRlRjOGpmTmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWWvv5sTNk3g6U96IKAvjnziAsiHNTTjH/SXHmmjRJisYhG1U8iVsP ly0sYN7NkYMn/cLc6blziTwkyKTdy08yIQyYSRrs7nhE+VWAbd7NUqy4W5dnCO9p puf7RWTBZ0xnyGcW9ZJGqvbi0SLOBIpL9HpPXwS30i3R1kO/MYZz+CeRwBPC4wcv ZOPyTF+fpL7DokP6hDWDi+lGOYvnOjN0pMzfm9+x30/InNSjQbZBD2CyDh/ciU4p wQFBnyDYnv792QYSUOmYRIBSf9SYQnzQi8U8xvlwvUtgYRwR3J6sp/MKVHYKk0Mo BJOKRWlJm8HKTiEB+l4dDNk5Hq6C1QWR -----END CERTIFICATE-----Generated at Thu Jul 24 05:02:56 2025 by rpki-client