$ rpki-client -vvf rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft File: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft (raw, json) Hash identifier: yLmgXp0gGj8suMNU4pjBobFIiUq79U6fWwyBZWgHGaw= Subject key identifier: 64:82:45:85:E9:ED:0C:AE:BB:46:FC:FD:70:20:DF:6C:EB:58:15:55 Authority key identifier: 69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 Certificate issuer: /CN=A914FED3/serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Certificate serial: 0E17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft Manifest number: 0E01 Signing time: Sun 20 Jul 2025 17:53:02 +0000 Manifest this update: Sun 20 Jul 2025 17:53:01 +0000 Manifest next update: Sun 27 Jul 2025 17:53:01 +0000 Files and hashes: 1: aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl (hash: CmlO3V/S+B1m8ab8Tb46GgS/DDBGYKiB4TMfh8DK4Sw=) 2: F9BDC484F7B011EB84345029C4F9AE02.roa (hash: QoxSmZFkmxLXEXsdlg7AEo5bS3bmundbYECPlf6m84c=) 3: 6E8576BC0F1911F0A007DF16C4F9AE02.roa (hash: Hd+fGLIKcj2CGWAhoQMpGvllKlGgq3bRAKOqU9WwZus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:53:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3607 (0xe17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FED3, serialNumber=699F51A9D9E1456D1601BE83D8B94AD59A438233 Validity Not Before: Jul 20 17:53:01 2025 GMT Not After : Jul 27 17:53:01 2025 GMT Subject: CN=687d2cfe-43e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c8:6b:94:f5:f5:f1:ac:8d:51:ce:43:93:5b: ff:d7:14:08:6b:68:61:02:5b:62:2f:1c:e8:5a:1e: 24:fe:ed:6a:13:6a:fd:c9:06:53:a3:53:4a:44:34: 55:e7:1c:ef:d5:c2:dd:fe:35:37:b8:6f:d3:11:73: f9:62:17:57:ad:05:61:04:c6:72:28:f0:dc:10:f5: 5f:71:e8:d0:8c:0a:ab:72:96:30:16:c2:6e:2c:3d: 08:59:b1:e9:02:94:bb:d8:61:83:7f:57:55:be:7d: e4:1a:cb:b5:0c:09:b2:0b:0a:12:0a:03:76:f8:0b: ea:f2:be:3d:05:cc:9a:48:2d:3a:5c:9c:a5:6d:b5: a6:73:e3:09:6a:6e:a9:d2:3f:c6:2a:d6:87:bd:76: da:eb:49:82:1a:8f:99:42:c2:3a:0e:a2:6c:87:c1: 57:14:9d:89:7e:d9:15:0e:c9:76:89:9c:c1:89:b1: eb:7f:ab:df:de:42:a5:1d:c1:89:78:be:4d:e1:e6: e3:61:da:f1:aa:fb:0a:02:46:11:f4:f8:ec:82:ca: 94:37:e4:a6:13:d0:28:3c:ab:b6:58:4b:f8:30:eb: 3a:f1:50:6d:23:20:89:c9:6d:6f:4c:2e:3d:ee:7b: e6:a4:6c:91:13:b3:90:9c:b7:74:50:7d:ce:30:34: 97:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:82:45:85:E9:ED:0C:AE:BB:46:FC:FD:70:20:DF:6C:EB:58:15:55 X509v3 Authority Key Identifier: keyid:69:9F:51:A9:D9:E1:45:6D:16:01:BE:83:D8:B9:4A:D5:9A:43:82:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FED3/F8584F7CB38A11E987288166C4F9AE02/aZ9RqdnhRW0WAb6D2LlK1ZpDgjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:39:96:8a:67:35:c1:d1:30:d8:93:0f:94:d3:b9:6c:82:55: 2f:0f:5f:85:af:42:22:63:97:9e:cc:57:b1:3a:7b:57:19:f8: 8d:e4:8e:37:42:16:00:9e:ad:9e:37:1e:10:b8:ae:ec:76:0c: 64:a8:e4:18:c7:15:8b:6e:d2:e4:5f:1f:e7:34:a7:1e:6b:a7: d5:ce:3a:f4:09:f1:8e:15:ff:33:24:8d:7f:f7:21:ff:09:fa: b9:88:85:51:3a:3d:b0:a0:64:27:34:f3:b0:9c:55:ad:f2:d0: 12:c6:3a:ae:c5:25:55:b0:a1:29:57:82:5c:dc:49:16:d0:d9: 73:2a:85:22:81:03:3e:5f:c6:1f:68:77:93:72:3a:7c:d7:31: 91:1c:c4:6e:fc:d2:1f:d8:89:f3:e5:b7:5e:1b:c6:b8:70:25: bc:97:f1:45:73:b3:af:b5:e4:26:86:42:64:35:c4:f2:43:65: e6:4c:f5:1c:07:f1:87:d6:71:80:1e:05:9a:9e:86:57:34:1d: 66:69:94:55:67:e9:4a:72:e3:f3:78:3d:45:76:28:fe:a1:3c: ae:48:af:d7:fd:2b:ab:71:1d:3d:94:9a:10:0f:c3:d0:a9:69: 61:37:53:1a:57:cb:f2:12:ea:26:7a:be:95:77:35:ce:21:c8: dc:8d:20:e2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFRDMxMTAvBgNVBAUTKDY5OUY1MUE5RDlFMTQ1NkQxNjAxQkU4M0Q4Qjk0QUQ1 OUE0MzgyMzMwHhcNMjUwNzIwMTc1MzAxWhcNMjUwNzI3MTc1MzAxWjAYMRYwFAYD VQQDEw02ODdkMmNmZS00M2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwshrlPX18ayNUc5Dk1v/1xQIa2hhAltiLxzoWh4k/u1qE2r9yQZTo1NKRDRV 5xzv1cLd/jU3uG/TEXP5YhdXrQVhBMZyKPDcEPVfcejQjAqrcpYwFsJuLD0IWbHp ApS72GGDf1dVvn3kGsu1DAmyCwoSCgN2+Avq8r49BcyaSC06XJylbbWmc+MJam6p 0j/GKtaHvXba60mCGo+ZQsI6DqJsh8FXFJ2JftkVDsl2iZzBibHrf6vf3kKlHcGJ eL5N4ebjYdrxqvsKAkYR9PjsgsqUN+SmE9AoPKu2WEv4MOs68VBtIyCJyW1vTC49 7nvmpGyRE7OQnLd0UH3OMDSX0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGSCRYXp 7Qyuu0b8/XAg32zrWBVVMB8GA1UdIwQYMBaAFGmfUanZ4UVtFgG+g9i5StWaQ4Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkVEMy9GODU4NEY3Q0Iz OEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJXMFdBYjZEMkxsSzFacERn ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FaOVJxZG5oUlcwV0FiNkQyTGxLMVpwRGdqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RkVEMy9GODU4NEY3Q0IzOEExMUU5ODcyODgxNjZDNEY5QUUwMi9hWjlScWRuaFJX MFdBYjZEMkxsSzFacERnak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7OZaKZzXB0TDYkw+U07lsglUvD1+Fr0IiY5eezFexOntXGfiN5I43 QhYAnq2eNx4QuK7sdgxkqOQYxxWLbtLkXx/nNKcea6fVzjr0CfGOFf8zJI1/9yH/ Cfq5iIVROj2woGQnNPOwnFWt8tASxjquxSVVsKEpV4Jc3EkW0NlzKoUigQM+X8Yf aHeTcjp81zGRHMRu/NIf2Inz5bdeG8a4cCW8l/FFc7OvteQmhkJkNcTyQ2XmTPUc B/GH1nGAHgWanoZXNB1maZRVZ+lKcuPzeD1Fdij+oTyuSK/X/SurcR09lJoQD8PQ qWlhN1MaV8vyEuomer6VdzXOIcjcjSDi -----END CERTIFICATE-----Generated at Tue Jul 22 05:10:33 2025 by rpki-client