$ rpki-client -vvf rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft File: mm0VemfN-P9qHM6gPkPkwtlb-G0.mft (raw, json) Hash identifier: 1YfAFWvd7B1N/ozDN1MMtbJsxqLC7QKyF4GjfmCgY6A= Subject key identifier: 42:D5:88:35:5C:93:6E:17:34:9A:F9:8F:F6:B0:F5:64:44:D7:11:9F Authority key identifier: 9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D Certificate issuer: /CN=A915E777/serialNumber=9A6D157A67CDF8FF6A1CCEA03E43E4C2D95BF86D Certificate serial: 0FAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft Manifest number: 0FAB Signing time: Fri 18 Jul 2025 17:41:08 +0000 Manifest this update: Fri 18 Jul 2025 17:41:08 +0000 Manifest next update: Fri 25 Jul 2025 17:41:08 +0000 Files and hashes: 1: mm0VemfN-P9qHM6gPkPkwtlb-G0.crl (hash: n4dGrXaa0ZKg6bsxdNDwA2I0HJrqfeh7yo4I2m2DCj8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.crl rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4011 (0xfab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E777, serialNumber=9A6D157A67CDF8FF6A1CCEA03E43E4C2D95BF86D Validity Not Before: Jul 18 17:41:08 2025 GMT Not After : Jul 25 17:41:08 2025 GMT Subject: CN=687a8734-ffeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:b7:af:9d:ec:3d:4f:65:0c:65:00:a0:72:d0: 1f:e4:fe:80:77:52:d7:8b:aa:48:39:68:1a:d6:e3: 58:57:55:7c:73:d5:35:2e:13:aa:8e:86:95:ef:d3: 99:b5:75:79:22:e4:ac:37:82:62:ad:0c:15:69:12: 5d:d4:c3:4f:9a:41:65:f1:0e:ed:b4:ba:e9:ed:ef: af:0a:0c:ec:24:ef:9e:ee:a2:a2:ff:55:d6:1d:2c: 0a:80:37:e5:63:0d:9a:bd:1d:af:4e:30:73:c4:ac: a5:38:58:2c:c1:72:e6:58:97:73:f4:30:8d:ec:d2: 72:01:50:28:d1:ba:ea:a0:c8:49:70:8b:bb:93:7e: 8d:ab:02:88:d1:26:20:b2:c4:19:44:05:91:d7:65: 79:88:7e:69:64:37:2c:1f:75:97:2f:cf:67:e4:9d: 9f:68:33:95:f7:65:8d:b4:79:e2:3c:b1:d5:e7:45: eb:c4:80:f9:1e:37:4f:f2:20:dc:ae:c4:c1:ae:cf: 8a:4d:d0:37:c7:48:64:a7:8d:a8:78:17:e5:47:b7: f5:61:b0:42:2c:ec:05:e8:0c:79:cd:45:3e:6f:04: 04:d5:bb:2a:8e:f7:63:df:06:b7:81:05:5a:cc:7a: a7:ab:08:62:24:8d:79:ca:50:92:b6:86:a7:d3:02: 23:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:D5:88:35:5C:93:6E:17:34:9A:F9:8F:F6:B0:F5:64:44:D7:11:9F X509v3 Authority Key Identifier: keyid:9A:6D:15:7A:67:CD:F8:FF:6A:1C:CE:A0:3E:43:E4:C2:D9:5B:F8:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mm0VemfN-P9qHM6gPkPkwtlb-G0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E777/66A403625CE811E9A2EDF32BC4F9AE02/mm0VemfN-P9qHM6gPkPkwtlb-G0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:65:0b:d1:18:96:f4:15:cc:b9:ad:3a:99:99:86:ee:b8:4b: 8b:2b:76:17:5c:cd:e1:6b:d3:cc:15:f1:15:6a:b2:42:7c:aa: f4:d0:fb:77:61:0d:5c:94:6e:e3:c0:a6:61:c6:75:6c:43:03: 7a:f6:3b:4f:3f:77:58:3f:71:19:2c:1a:5b:36:af:a1:60:b5: 88:6b:73:99:3e:85:db:db:4b:52:09:fb:2a:ed:79:17:f3:f6: a1:2d:25:af:c9:24:b2:48:d4:e2:0e:83:70:ba:db:32:39:5e: 6d:37:fd:f1:1e:16:19:19:b0:ab:3e:92:31:4a:26:6f:f7:5b: 80:48:b3:4c:c1:eb:06:52:d7:83:5f:24:f3:04:2f:52:48:96: 9f:bc:26:2e:f9:ee:03:86:b5:67:79:17:f8:1c:14:3e:8f:4a: c4:e3:19:b3:9d:b9:68:2c:5e:11:81:4b:69:67:0d:df:85:58: b0:5a:a9:00:bb:6b:7b:c6:2b:1b:76:56:68:fe:0f:15:67:42: b5:9b:88:f3:cd:e9:e9:1c:5d:47:47:67:57:9c:03:84:88:fa: 0a:8e:2d:1d:72:55:77:cc:07:f9:04:a2:d4:94:81:35:f0:c2: 8e:94:b1:3f:ce:01:8d:b8:c7:e8:22:83:01:e6:7e:d4:a7:44: 7a:f4:6c:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3NzcxMTAvBgNVBAUTKDlBNkQxNTdBNjdDREY4RkY2QTFDQ0VBMDNFNDNFNEMy RDk1QkY4NkQwHhcNMjUwNzE4MTc0MTA4WhcNMjUwNzI1MTc0MTA4WjAYMRYwFAYD VQQDEw02ODdhODczNC1mZmViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo7evnew9T2UMZQCgctAf5P6Ad1LXi6pIOWga1uNYV1V8c9U1LhOqjoaV79OZ tXV5IuSsN4JirQwVaRJd1MNPmkFl8Q7ttLrp7e+vCgzsJO+e7qKi/1XWHSwKgDfl Yw2avR2vTjBzxKylOFgswXLmWJdz9DCN7NJyAVAo0brqoMhJcIu7k36NqwKI0SYg ssQZRAWR12V5iH5pZDcsH3WXL89n5J2faDOV92WNtHniPLHV50XrxID5HjdP8iDc rsTBrs+KTdA3x0hkp42oeBflR7f1YbBCLOwF6Ax5zUU+bwQE1bsqjvdj3wa3gQVa zHqnqwhiJI15ylCStoan0wIjdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFELViDVc k24XNJr5j/aw9WRE1xGfMB8GA1UdIwQYMBaAFJptFXpnzfj/ahzOoD5D5MLZW/ht MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc3Ny82NkE0MDM2MjVD RTgxMUU5QTJFREYzMkJDNEY5QUUwMi9tbTBWZW1mTi1QOXFITTZnUGtQa3d0bGIt RzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21tMFZlbWZOLVA5cUhNNmdQa1Brd3RsYi1HMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTc3Ny82NkE0MDM2MjVDRTgxMUU5QTJFREYzMkJDNEY5QUUwMi9tbTBWZW1mTi1Q OXFITTZnUGtQa3d0bGItRzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBoZQvRGJb0Fcy5rTqZmYbuuEuLK3YXXM3ha9PMFfEVarJCfKr00Pt3 YQ1clG7jwKZhxnVsQwN69jtPP3dYP3EZLBpbNq+hYLWIa3OZPoXb20tSCfsq7XkX 8/ahLSWvySSySNTiDoNwutsyOV5tN/3xHhYZGbCrPpIxSiZv91uASLNMwesGUteD XyTzBC9SSJafvCYu+e4DhrVneRf4HBQ+j0rE4xmznbloLF4RgUtpZw3fhViwWqkA u2t7xisbdlZo/g8VZ0K1m4jzzenpHF1HR2dXnAOEiPoKji0dclV3zAf5BKLUlIE1 8MKOlLE/zgGNuMfoIoMB5n7Up0R69GxO -----END CERTIFICATE-----Generated at Sun Jul 20 08:03:05 2025 by rpki-client