$ rpki-client -vvf rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft File: sRd7K0wt-LMG0UpkMAcob4nWnMA.mft (raw, json) Hash identifier: NcIPVDw2DPckGq4Mkq5mJKWwxehprNQWu1sk7Y4xAvM= Subject key identifier: 2D:BC:93:93:19:E6:AD:68:FA:69:80:D7:82:70:8F:F9:06:32:28:C7 Authority key identifier: B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 Certificate issuer: /CN=A915DA5A/serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Certificate serial: 0C88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft Manifest number: 0C77 Signing time: Sun 20 Jul 2025 18:22:59 +0000 Manifest this update: Sun 20 Jul 2025 18:22:58 +0000 Manifest next update: Sun 27 Jul 2025 18:22:58 +0000 Files and hashes: 1: sRd7K0wt-LMG0UpkMAcob4nWnMA.crl (hash: pnM1c6j0RJRtrDL2yMcXm17etrDr8aDyO1wRhCE0JQc=) 2: BD34B926367911F083BF6873C4F9AE02.roa (hash: m+EkNRFDxHj1FPyZ5U1ENnB32M/tNvWOK6leRT4D3kc=) 3: A869B800367611F088B7726AC4F9AE02.roa (hash: LsbbSClw7moIgeVgU48ZXAlLRVTQAq+PWzm9OXhRWr4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 18:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3208 (0xc88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DA5A, serialNumber=B1177B2B4C2DF8B306D14A643007286F89D69CC0 Validity Not Before: Jul 20 18:22:58 2025 GMT Not After : Jul 27 18:22:58 2025 GMT Subject: CN=687d3403-595e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a3:da:f0:96:7f:a8:70:c7:c1:50:b0:06:71: 8a:27:a2:a4:6c:17:ac:c2:f3:d9:b6:66:9d:34:36: 94:f1:e8:60:bc:ae:01:de:94:14:ac:46:44:fa:a2: cd:31:b4:3c:bc:e5:1b:5f:c9:de:90:bc:45:d0:eb: 9f:cb:bd:b8:3a:b0:e0:b7:55:6e:a5:a6:17:4f:7f: db:25:dc:26:41:14:03:b2:06:5c:06:af:e2:20:2d: ad:61:12:e0:b6:a5:9b:40:76:4d:62:e9:bc:95:29: 70:2c:c5:5a:e8:59:bd:8d:ff:b2:57:22:b5:48:de: be:cc:22:a2:49:8f:41:bc:df:03:f6:54:1c:7b:97: 06:9f:9a:46:99:98:9b:d3:94:99:e5:c4:67:93:54: e1:26:cc:57:00:e9:dc:e6:d5:31:94:e8:da:af:37: 8e:60:5a:c0:48:1a:9e:57:66:34:a4:b2:bb:6d:a9: 05:95:f9:09:41:71:7e:c9:1f:52:ff:bd:8c:2e:3f: cd:1e:8f:ed:0d:b7:49:7d:f1:05:53:15:ca:a6:a3: 23:dc:a9:d2:f5:20:4a:72:c5:37:df:0f:1e:ef:2f: d5:11:39:79:ed:61:f4:25:11:fc:f3:fb:6d:2b:71: 66:8a:da:46:97:9c:cc:28:59:ef:5d:4a:a3:be:97: 49:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BC:93:93:19:E6:AD:68:FA:69:80:D7:82:70:8F:F9:06:32:28:C7 X509v3 Authority Key Identifier: keyid:B1:17:7B:2B:4C:2D:F8:B3:06:D1:4A:64:30:07:28:6F:89:D6:9C:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sRd7K0wt-LMG0UpkMAcob4nWnMA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DA5A/44E770B203EE11EABCA1A16EC4F9AE02/sRd7K0wt-LMG0UpkMAcob4nWnMA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:13:92:bc:ca:60:16:e9:a9:7d:78:ea:dc:ba:c1:cb:6f:70: 6e:9c:b0:89:b0:eb:b1:ac:b8:1d:c3:06:2a:cb:77:a4:11:98: b5:f2:4d:95:f4:7c:f9:2c:5f:eb:f5:ce:aa:da:e2:85:fd:33: 5f:22:45:17:57:26:c4:14:bc:8f:a7:6e:20:64:2e:fe:6b:63: d7:33:28:4d:51:ca:ef:28:c7:e3:9e:52:10:5f:f6:57:40:a1: 0d:fc:69:7e:43:b3:46:70:c0:7d:7b:3a:9a:c6:8b:72:29:a1: 4b:46:bc:b4:1b:6f:be:05:56:45:c3:6a:00:c7:f5:30:5f:2d: 2b:71:65:c3:b2:50:15:68:12:bd:65:98:c0:08:b6:94:7e:9a: 9f:10:73:57:cd:4b:e5:5d:d6:ad:18:fa:ed:e7:af:85:12:ba: 69:4b:6b:72:0e:0a:4b:07:94:fe:ba:6a:57:6e:76:ce:dd:d2: 81:11:a1:d1:24:63:3e:57:36:22:ac:70:4f:8b:dd:15:de:b2: 42:f7:4e:3f:bf:38:a8:f1:3b:39:32:c0:43:6a:c9:6e:d9:ff: 58:b0:6d:6e:4d:93:2f:29:c0:fa:e3:de:fb:cf:d8:db:2d:f0: ac:dc:94:ab:98:18:a6:4c:fe:f6:cd:d3:3f:7e:b0:ef:5a:10: 7d:b5:5b:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURBNUExMTAvBgNVBAUTKEIxMTc3QjJCNEMyREY4QjMwNkQxNEE2NDMwMDcyODZG ODlENjlDQzAwHhcNMjUwNzIwMTgyMjU4WhcNMjUwNzI3MTgyMjU4WjAYMRYwFAYD VQQDEw02ODdkMzQwMy01OTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06Pa8JZ/qHDHwVCwBnGKJ6KkbBeswvPZtmadNDaU8ehgvK4B3pQUrEZE+qLN MbQ8vOUbX8nekLxF0Oufy724OrDgt1VupaYXT3/bJdwmQRQDsgZcBq/iIC2tYRLg tqWbQHZNYum8lSlwLMVa6Fm9jf+yVyK1SN6+zCKiSY9BvN8D9lQce5cGn5pGmZib 05SZ5cRnk1ThJsxXAOnc5tUxlOjarzeOYFrASBqeV2Y0pLK7bakFlfkJQXF+yR9S /72MLj/NHo/tDbdJffEFUxXKpqMj3KnS9SBKcsU33w8e7y/VETl57WH0JRH88/tt K3FmitpGl5zMKFnvXUqjvpdJJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC28k5MZ 5q1o+mmA14Jwj/kGMijHMB8GA1UdIwQYMBaAFLEXeytMLfizBtFKZDAHKG+J1pzA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REE1QS80NEU3NzBCMjAz RUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1MTUcwVXBrTUFjb2I0bldu TUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NSZDdLMHd0LUxNRzBVcGtNQWNvYjRuV25NQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 REE1QS80NEU3NzBCMjAzRUUxMUVBQkNBMUExNkVDNEY5QUUwMi9zUmQ3SzB3dC1M TUcwVXBrTUFjb2I0blduTUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+E5K8ymAW6al9eOrcusHLb3BunLCJsOuxrLgdwwYqy3ekEZi18k2V 9Hz5LF/r9c6q2uKF/TNfIkUXVybEFLyPp24gZC7+a2PXMyhNUcrvKMfjnlIQX/ZX QKEN/Gl+Q7NGcMB9ezqaxotyKaFLRry0G2++BVZFw2oAx/UwXy0rcWXDslAVaBK9 ZZjACLaUfpqfEHNXzUvlXdatGPrt56+FErppS2tyDgpLB5T+umpXbnbO3dKBEaHR JGM+VzYirHBPi90V3rJC904/vzio8Ts5MsBDaslu2f9YsG1uTZMvKcD64977z9jb LfCs3JSrmBimTP72zdM/frDvWhB9tVuC -----END CERTIFICATE-----Generated at Tue Jul 22 11:55:16 2025 by rpki-client