$ rpki-client -vvf rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft File: 71OR8qIt1l9IQxoyJt3MZbdllqk.mft (raw, json) Hash identifier: 6OFleJGNZuND95M1FE4wGYEW2M7/YLGzGd8HkegVvi4= Subject key identifier: B7:58:F6:90:5F:7E:C7:15:CA:E9:BC:10:56:0F:F4:83:E7:C9:DC:A5 Authority key identifier: EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 Certificate issuer: /CN=A9157DA9/serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft Manifest number: B3 Signing time: Fri 25 Jul 2025 06:16:57 +0000 Manifest this update: Fri 25 Jul 2025 06:16:56 +0000 Manifest next update: Fri 01 Aug 2025 06:16:56 +0000 Files and hashes: 1: 71OR8qIt1l9IQxoyJt3MZbdllqk.crl (hash: k0mNyIjT5/PB4A/zuojtcLOodBlHDgit0qlGO6GXSog=) 2: 897F96FC5A1811EFAF24E138C4F9AE02.roa (hash: V/66FKVQueBWCxe2q60voG68SskFvIkojTU44XWkp4w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:16:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157DA9, serialNumber=EF5391F2A22DD65F48431A3226DDCC65B76596A9 Validity Not Before: Jul 25 06:16:56 2025 GMT Not After : Aug 1 06:16:56 2025 GMT Subject: CN=68832159-6294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f6:c1:7a:e4:76:71:32:f5:7c:1c:e0:31:26: b5:2c:e6:2c:17:63:9e:7f:b8:ef:60:5d:0f:94:5c: a7:fd:c8:ec:1f:32:24:c8:38:6e:4b:ed:f2:a0:b5: 31:35:98:58:6b:f8:70:7b:5d:65:29:3c:10:35:a1: 63:c0:bf:07:62:e6:8a:fb:0c:67:d8:8a:fc:da:db: 65:d4:94:08:5a:c8:94:5c:11:d7:27:b5:ea:0d:1a: cb:09:c6:23:50:54:e0:f1:64:76:a4:c7:7b:98:07: bb:d8:d4:cb:0d:c8:2b:f5:a4:52:eb:8c:0c:fc:f5: 6c:42:34:0b:7b:32:f2:40:6a:03:1e:2e:7e:d9:b2: f6:c1:0b:df:0a:00:a5:e2:1a:5a:28:98:d9:d9:99: 3d:ec:ef:3d:00:6d:bc:98:9b:7f:18:84:db:90:97: bc:bb:b1:c5:15:f7:c5:a4:58:30:c9:94:a5:7a:a0: 93:e1:6c:4e:ee:bd:7c:d4:6f:7d:cb:46:3d:93:91: b0:f5:c0:11:8d:f0:17:60:28:2c:d4:b5:a7:77:00: e6:91:f6:84:9d:f4:a8:dc:7c:74:99:fb:da:ae:cf: 0a:6f:94:cf:62:49:6b:39:39:0c:47:76:94:39:85: e1:91:52:b0:8d:6a:84:4c:3c:a0:03:fd:be:ba:ff: 4e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:58:F6:90:5F:7E:C7:15:CA:E9:BC:10:56:0F:F4:83:E7:C9:DC:A5 X509v3 Authority Key Identifier: keyid:EF:53:91:F2:A2:2D:D6:5F:48:43:1A:32:26:DD:CC:65:B7:65:96:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/71OR8qIt1l9IQxoyJt3MZbdllqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157DA9/423E1AD45A1811EFBD477338C4F9AE02/71OR8qIt1l9IQxoyJt3MZbdllqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:53:9a:7b:c7:48:f1:b3:e8:61:d2:85:b8:dd:d7:69:55:29: 3f:9a:22:10:d9:35:94:13:d2:fb:96:d4:30:0f:46:45:e5:30: 4f:c8:d1:09:c1:ca:32:2f:0c:c6:9b:2b:c9:8c:46:1d:70:dd: f5:de:cc:75:a4:94:29:00:19:32:81:6d:98:97:14:ef:04:78: b8:19:c1:01:a6:f8:2c:ce:57:5a:58:cf:17:11:54:ad:36:74: c6:b4:77:81:ae:b4:90:17:22:07:1b:95:f9:dd:e1:f8:c4:92: 15:44:a7:a5:1f:9e:c5:a3:dd:b1:ec:70:af:37:aa:52:98:da: 21:39:87:2a:17:28:5c:c3:b8:d5:d1:44:64:27:28:d3:89:1b: 06:8a:1b:4c:a3:7c:25:c5:c5:41:18:66:86:8a:e2:de:49:5e: 5d:6e:d0:53:8e:74:ed:3c:b3:79:ca:cc:42:43:be:dc:15:79: 19:04:c2:60:43:c0:70:03:c7:de:5d:0c:73:e3:47:cd:40:18: 77:9d:e2:7a:b4:cf:e7:4d:3f:82:22:0c:2e:35:ab:69:be:f7: 18:92:aa:36:ce:cd:c6:b5:f1:de:18:45:76:f7:9b:de:ee:6e: e6:76:7d:ee:0b:0d:43:7d:c8:69:0b:f4:f2:1d:98:c4:ef:13: 10:80:56:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdEQTkxMTAvBgNVBAUTKEVGNTM5MUYyQTIyREQ2NUY0ODQzMUEzMjI2RERDQzY1 Qjc2NTk2QTkwHhcNMjUwNzI1MDYxNjU2WhcNMjUwODAxMDYxNjU2WjAYMRYwFAYD VQQDEw02ODgzMjE1OS02Mjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/bBeuR2cTL1fBzgMSa1LOYsF2Oef7jvYF0PlFyn/cjsHzIkyDhuS+3yoLUx NZhYa/hwe11lKTwQNaFjwL8HYuaK+wxn2Ir82ttl1JQIWsiUXBHXJ7XqDRrLCcYj UFTg8WR2pMd7mAe72NTLDcgr9aRS64wM/PVsQjQLezLyQGoDHi5+2bL2wQvfCgCl 4hpaKJjZ2Zk97O89AG28mJt/GITbkJe8u7HFFffFpFgwyZSleqCT4WxO7r181G99 y0Y9k5Gw9cARjfAXYCgs1LWndwDmkfaEnfSo3Hx0mfvars8Kb5TPYklrOTkMR3aU OYXhkVKwjWqETDygA/2+uv9OmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLdY9pBf fscVyum8EFYP9IPnydylMB8GA1UdIwQYMBaAFO9TkfKiLdZfSEMaMibdzGW3ZZap MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0RBOS80MjNFMUFENDVB MTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFsOUlReG95SnQzTVpiZGxs cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcxT1I4cUl0MWw5SVF4b3lKdDNNWmJkbGxxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0RBOS80MjNFMUFENDVBMTgxMUVGQkQ0NzczMzhDNEY5QUUwMi83MU9SOHFJdDFs OUlReG95SnQzTVpiZGxscWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxU5p7x0jxs+hh0oW43ddpVSk/miIQ2TWUE9L7ltQwD0ZF5TBPyNEJ wcoyLwzGmyvJjEYdcN313sx1pJQpABkygW2YlxTvBHi4GcEBpvgszldaWM8XEVSt NnTGtHeBrrSQFyIHG5X53eH4xJIVRKelH57Fo92x7HCvN6pSmNohOYcqFyhcw7jV 0URkJyjTiRsGihtMo3wlxcVBGGaGiuLeSV5dbtBTjnTtPLN5ysxCQ77cFXkZBMJg Q8BwA8feXQxz40fNQBh3neJ6tM/nTT+CIgwuNatpvvcYkqo2zs3GtfHeGEV295ve 7m7mdn3uCw1DfchpC/TyHZjE7xMQgFZh -----END CERTIFICATE-----Generated at Sun Jul 27 02:06:22 2025 by rpki-client