$ rpki-client -vvf rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft File: o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft (raw, json) Hash identifier: w1wyrPVTxb/bBkP+9xTzJIlCZ/dWCKqgJUp3309zoV0= Subject key identifier: 56:9E:E7:AA:76:B6:25:9C:D4:B0:60:F6:2A:A9:BF:98:DB:3E:57:DE Authority key identifier: A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 Certificate issuer: /CN=A914F6AF/serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft Manifest number: 01EA Signing time: Sat 19 Jul 2025 02:43:22 +0000 Manifest this update: Sat 19 Jul 2025 02:43:21 +0000 Manifest next update: Sat 26 Jul 2025 02:43:21 +0000 Files and hashes: 1: o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl (hash: OBWIeH2xjjcl7wWqr+QEjzxGIhf8LY5kqkfeHoSZYNo=) 2: CCCA3842714711EDBB61A87FC4F9AE02.roa (hash: ph/hTIyNCTBKdvnOQ1KHBJ908JBT9ekK4yiE8SJtW4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F6AF, serialNumber=A3D250C5D52C5A8AC67BA021884D191A5D4A7182 Validity Not Before: Jul 19 02:43:21 2025 GMT Not After : Jul 26 02:43:21 2025 GMT Subject: CN=687b0649-8e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:76:5a:5e:24:25:ab:56:97:1b:01:05:91:74: f9:c2:97:e5:ba:4e:8c:db:9b:bd:cb:fc:29:87:c4: 25:ef:43:5f:e8:37:85:0f:0c:e8:8a:c3:32:ba:65: e6:56:c1:0b:92:57:8e:e8:09:a5:70:fd:ae:29:6e: 55:26:95:97:23:ff:4a:af:83:66:a6:0e:94:c1:db: bd:6e:b7:4f:e9:b3:b5:5b:c4:8f:c2:0c:92:10:f1: 89:83:d0:93:de:59:a7:61:88:dc:f1:9a:b6:4c:8a: 0a:1f:87:00:4c:d7:6d:34:fc:26:20:66:2d:b3:a7: 2c:a9:cc:a1:e5:d7:a8:7c:27:d0:79:37:9a:e9:fa: 14:d4:76:b6:51:5d:98:d2:3b:07:fb:fb:ec:bc:bf: 0f:1d:db:c7:82:97:80:1b:51:ba:4d:80:be:48:1f: c7:97:c5:a4:93:d5:ca:9b:7a:44:0c:cd:13:26:94: f2:60:cc:c4:fb:10:a8:40:1b:8e:7e:05:78:16:28: be:4a:0c:ee:94:fe:ad:7c:0e:eb:c3:fb:5e:6e:75: 47:bd:1d:37:45:7b:ff:d4:20:09:5b:ee:40:50:df: 40:55:17:bf:7d:e8:33:a7:86:92:a6:4c:96:bf:1c: cc:b1:34:c3:40:23:59:0c:4e:53:eb:9c:29:4a:f6: 97:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9E:E7:AA:76:B6:25:9C:D4:B0:60:F6:2A:A9:BF:98:DB:3E:57:DE X509v3 Authority Key Identifier: keyid:A3:D2:50:C5:D5:2C:5A:8A:C6:7B:A0:21:88:4D:19:1A:5D:4A:71:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9JQxdUsWorGe6AhiE0ZGl1KcYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F6AF/F6D8DA9C714411ED9FDF3D12C4F9AE02/o9JQxdUsWorGe6AhiE0ZGl1KcYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:90:f9:6d:b0:bb:d2:87:fc:61:09:72:8f:37:1b:bc:ec:44: c8:ec:44:18:c5:21:78:d6:85:51:19:7b:b5:04:e1:b8:86:8f: 6b:33:34:3d:e1:38:e4:a3:6a:f0:64:c6:2b:81:05:a6:17:78: b5:95:5b:44:48:97:f5:c8:9c:2f:ec:66:8d:17:90:a8:95:e6: da:4f:05:c6:09:ab:df:3e:48:d1:24:2e:cb:40:e1:25:f9:c0: 09:9a:bb:63:5f:f1:a6:77:1c:0c:43:b8:99:c6:91:46:5a:b3: 23:11:c1:38:10:44:f1:bc:3d:b5:63:55:af:4c:1c:26:3a:48: 1a:0f:00:13:55:90:1f:89:ba:34:3f:ba:ad:23:1e:f2:30:1c: 3f:2e:85:b2:84:d6:96:e3:63:18:07:0d:a0:df:ca:ca:b8:d5: cc:8a:ec:58:42:4d:1e:8a:29:c0:dc:de:8b:97:f3:9a:d8:94: e8:52:e8:59:eb:7f:c0:7a:c8:8a:8f:99:3b:79:08:b4:4d:49: 74:fe:83:ad:e9:d5:20:f7:51:25:7c:df:8b:6c:e4:73:47:8b: 96:00:68:e9:0e:2d:81:5d:b3:b7:6f:9a:21:bf:ea:d3:4a:ab: 60:e4:b7:43:e5:92:85:e6:d6:99:df:58:87:ca:e7:7d:13:a6: fa:03:65:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEY2QUYxMTAvBgNVBAUTKEEzRDI1MEM1RDUyQzVBOEFDNjdCQTAyMTg4NEQxOTFB NUQ0QTcxODIwHhcNMjUwNzE5MDI0MzIxWhcNMjUwNzI2MDI0MzIxWjAYMRYwFAYD VQQDEw02ODdiMDY0OS04ZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunZaXiQlq1aXGwEFkXT5wpfluk6M25u9y/wph8Ql70Nf6DeFDwzoisMyumXm VsELkleO6AmlcP2uKW5VJpWXI/9Kr4Nmpg6Uwdu9brdP6bO1W8SPwgySEPGJg9CT 3lmnYYjc8Zq2TIoKH4cATNdtNPwmIGYts6csqcyh5deofCfQeTea6foU1Ha2UV2Y 0jsH+/vsvL8PHdvHgpeAG1G6TYC+SB/Hl8Wkk9XKm3pEDM0TJpTyYMzE+xCoQBuO fgV4Fii+SgzulP6tfA7rw/tebnVHvR03RXv/1CAJW+5AUN9AVRe/fegzp4aSpkyW vxzMsTTDQCNZDE5T65wpSvaXfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFae56p2 tiWc1LBg9iqpv5jbPlfeMB8GA1UdIwQYMBaAFKPSUMXVLFqKxnugIYhNGRpdSnGC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjZBRi9GNkQ4REE5Qzcx NDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dvckdlNkFoaUUwWkdsMUtj WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL285SlF4ZFVzV29yR2U2QWhpRTBaR2wxS2NZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RjZBRi9GNkQ4REE5QzcxNDQxMUVEOUZERjNEMTJDNEY5QUUwMi9vOUpReGRVc1dv ckdlNkFoaUUwWkdsMUtjWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFkPltsLvSh/xhCXKPNxu87ETI7EQYxSF41oVRGXu1BOG4ho9rMzQ9 4Tjko2rwZMYrgQWmF3i1lVtESJf1yJwv7GaNF5ColebaTwXGCavfPkjRJC7LQOEl +cAJmrtjX/GmdxwMQ7iZxpFGWrMjEcE4EETxvD21Y1WvTBwmOkgaDwATVZAfibo0 P7qtIx7yMBw/LoWyhNaW42MYBw2g38rKuNXMiuxYQk0eiinA3N6Ll/Oa2JToUuhZ 63/AesiKj5k7eQi0TUl0/oOt6dUg91ElfN+LbORzR4uWAGjpDi2BXbO3b5ohv+rT Sqtg5LdD5ZKF5taZ31iHyud9E6b6A2UL -----END CERTIFICATE-----Generated at Sun Jul 20 07:41:40 2025 by rpki-client