$ rpki-client -vvf rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft File: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft (raw, json) Hash identifier: LUhQpl744LlYa8ri1xzzl9Uz7oXtzlZkctSY8TwkDAU= Subject key identifier: 29:2B:93:41:86:39:07:64:FE:1B:CA:DA:77:C6:B9:7C:9D:68:10:BD Authority key identifier: E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 Certificate issuer: /CN=A915E005/serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Certificate serial: 221B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft Manifest number: 220B Signing time: Fri 18 Jul 2025 15:59:10 +0000 Manifest this update: Fri 18 Jul 2025 15:59:10 +0000 Manifest next update: Fri 25 Jul 2025 15:59:10 +0000 Files and hashes: 1: 4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl (hash: zb6rxbe4HTEWDIBkshtI1gHMIe4GeTkKpquMO1rUy6s=) 2: CD4CD0B654F311E7AC64ED3AC4F9AE02.roa (hash: iH2xmS1GVsSNNCZWscwdxJt8FMGLF9Yh7e5xIVsXSm8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 15:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8731 (0x221b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E005, serialNumber=E02BEEE88D835BD0E4254CA08D7C03BC57197484 Validity Not Before: Jul 18 15:59:10 2025 GMT Not After : Jul 25 15:59:10 2025 GMT Subject: CN=687a6f4e-a0b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c2:e5:28:8d:cb:11:21:c7:b0:73:5b:4c:09: 02:ef:c8:f4:8b:f3:14:e8:c3:5c:fd:b3:c9:0d:40: de:3e:af:f3:f8:ec:28:df:68:a6:67:7e:5e:9a:b7: d2:c2:d6:53:40:2e:2b:bb:f6:b4:87:24:45:34:da: ef:ca:f2:83:75:d0:2d:8b:2e:cf:fb:b1:19:06:61: 14:3a:7f:35:ed:9d:5f:32:27:e4:52:53:12:82:87: a2:50:bb:f7:85:73:19:eb:e1:33:4a:a2:dc:4b:ae: 13:58:e7:5e:12:74:61:98:c8:34:37:96:07:25:90: 6e:74:85:7d:e6:7b:ed:70:42:1d:bd:a9:86:9e:ee: 3c:24:82:3e:e8:51:55:94:d2:02:c0:52:93:b2:35: 6c:92:29:a3:5e:e3:8a:32:60:d8:1f:6b:05:25:87: 19:03:32:69:01:9d:71:35:62:39:13:e8:a6:f9:70: fd:63:c5:f7:3a:03:7d:32:75:79:12:56:1b:28:e2: 4a:b1:f2:a3:8c:24:5c:94:44:aa:87:c3:0e:39:49: d7:37:85:30:37:f4:ae:bd:5d:c7:60:74:21:dc:37: 7c:b6:6a:d6:ec:be:d7:5d:5d:d5:dc:26:32:40:d2: ce:7a:ca:b3:b8:0b:03:91:bf:0c:4d:a8:a6:0f:68: 62:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:2B:93:41:86:39:07:64:FE:1B:CA:DA:77:C6:B9:7C:9D:68:10:BD X509v3 Authority Key Identifier: keyid:E0:2B:EE:E8:8D:83:5B:D0:E4:25:4C:A0:8D:7C:03:BC:57:19:74:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E005/9BE781FEC69911E5B0AFE54EC4F9AE02/4Cvu6I2DW9DkJUygjXwDvFcZdIQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:e7:fe:d3:2c:f0:59:c4:07:61:e9:e5:1d:46:e4:90:87:e4: b0:d8:67:9c:fe:9e:3d:aa:25:99:05:73:a4:1e:15:e2:4e:2c: 65:0b:6e:aa:cb:2a:1f:15:fa:d2:d0:d4:cf:81:d3:33:ed:4b: d4:52:f8:d4:1a:29:3d:fd:5a:0f:3f:c1:68:10:2f:45:92:02: e6:d3:49:3a:df:a1:be:67:20:d1:e7:8a:0a:2b:f7:9c:c6:64: a0:ae:33:51:aa:28:72:dc:a8:e9:35:fe:c1:db:31:06:5d:78: 58:7d:30:6f:e7:13:4b:1d:0d:9f:9e:d7:df:f1:71:f7:5a:6a: 44:41:bd:bc:02:e8:d5:f1:3f:6c:19:fe:21:52:20:87:65:38: f1:7d:be:a4:25:bc:0e:7c:95:13:be:5f:7c:7c:be:f9:cf:31: 56:d5:bd:45:f9:c8:0c:79:75:60:11:2b:94:42:aa:47:07:4e: 6c:dd:58:3f:78:c5:0b:3b:9e:a7:4a:1b:9e:11:fd:fb:df:ad: 8b:e6:f0:ba:90:4c:ef:5b:fb:b3:c6:82:92:57:ed:1a:e8:5f: 2b:6b:b9:8a:7e:15:0b:05:75:06:8a:d6:89:63:6e:ef:e1:f5: 0f:54:44:ce:79:80:34:4a:3c:89:93:d8:18:98:3c:93:20:e5: 17:8b:57:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUUwMDUxMTAvBgNVBAUTKEUwMkJFRUU4OEQ4MzVCRDBFNDI1NENBMDhEN0MwM0JD NTcxOTc0ODQwHhcNMjUwNzE4MTU1OTEwWhcNMjUwNzI1MTU1OTEwWjAYMRYwFAYD VQQDEw02ODdhNmY0ZS1hMGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sLlKI3LESHHsHNbTAkC78j0i/MU6MNc/bPJDUDePq/z+Owo32imZ35emrfS wtZTQC4ru/a0hyRFNNrvyvKDddAtiy7P+7EZBmEUOn817Z1fMifkUlMSgoeiULv3 hXMZ6+EzSqLcS64TWOdeEnRhmMg0N5YHJZBudIV95nvtcEIdvamGnu48JII+6FFV lNICwFKTsjVskimjXuOKMmDYH2sFJYcZAzJpAZ1xNWI5E+im+XD9Y8X3OgN9MnV5 ElYbKOJKsfKjjCRclESqh8MOOUnXN4UwN/SuvV3HYHQh3Dd8tmrW7L7XXV3V3CYy QNLOesqzuAsDkb8MTaimD2hiqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCkrk0GG OQdk/hvK2nfGuXydaBC9MB8GA1UdIwQYMBaAFOAr7uiNg1vQ5CVMoI18A7xXGXSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTAwNS85QkU3ODFGRUM2 OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5RGtKVXlnalh3RHZGY1pk SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRDdnU2STJEVzlEa0pVeWdqWHdEdkZjWmRJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAwNS85QkU3ODFGRUM2OTkxMUU1QjBBRkU1NEVDNEY5QUUwMi80Q3Z1NkkyRFc5 RGtKVXlnalh3RHZGY1pkSVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBB5/7TLPBZxAdh6eUdRuSQh+Sw2Gec/p49qiWZBXOkHhXiTixlC26q yyofFfrS0NTPgdMz7UvUUvjUGik9/VoPP8FoEC9FkgLm00k636G+ZyDR54oKK/ec xmSgrjNRqihy3KjpNf7B2zEGXXhYfTBv5xNLHQ2fntff8XH3WmpEQb28AujV8T9s Gf4hUiCHZTjxfb6kJbwOfJUTvl98fL75zzFW1b1F+cgMeXVgESuUQqpHB05s3Vg/ eMULO56nShueEf37362L5vC6kEzvW/uzxoKSV+0a6F8ra7mKfhULBXUGitaJY27v 4fUPVETOeYA0SjyJk9gYmDyTIOUXi1fT -----END CERTIFICATE-----Generated at Sun Jul 20 03:49:10 2025 by rpki-client