$ rpki-client -vvf rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft File: 5ufguvNPIMPZye8md2gF84JGO4Y.mft (raw, json) Hash identifier: BFS747FneYRbPjbdc4RI3IJezTVZy3ZaFyg7KxLIgNo= Subject key identifier: 22:B2:14:55:F5:96:D4:65:7F:A6:23:22:50:B0:0C:1F:A7:56:AE:39 Authority key identifier: E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 Certificate issuer: /CN=A9160BD2/serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Certificate serial: 0689 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft Manifest number: 0684 Signing time: Fri 18 Jul 2025 22:35:23 +0000 Manifest this update: Fri 18 Jul 2025 22:35:22 +0000 Manifest next update: Fri 25 Jul 2025 22:35:22 +0000 Files and hashes: 1: 5ufguvNPIMPZye8md2gF84JGO4Y.crl (hash: NMI1+9VSfADqIG+gereyQCDLvVjMApr0barNCYxo8XA=) 2: 159A3C967D7211EBA0A7FF60C4F9AE02.roa (hash: Zxo0mKrJYkISVsqHRZIlLeBZhk5GaXEPMnvmTBTNLew=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:35:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160BD2, serialNumber=E6E7E0BAF34F20C3D9C9EF26776805F382463B86 Validity Not Before: Jul 18 22:35:22 2025 GMT Not After : Jul 25 22:35:22 2025 GMT Subject: CN=687acc2b-7b36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9e:0e:b8:86:c2:06:2a:40:f9:fd:7c:a9:ee: b7:5f:99:99:4a:9a:25:bd:f6:2e:13:96:c9:aa:4d: 05:b3:42:42:85:4e:b2:71:4e:a7:86:2d:62:8e:27: 5c:c9:d2:1a:7d:ba:38:7d:43:59:f4:68:ff:e2:bc: 1d:83:73:c5:03:34:ac:ae:f9:12:c8:43:2b:f9:85: 15:6e:eb:91:05:23:cb:db:00:35:2b:7f:fa:7c:08: f1:02:ea:ad:30:6c:1e:7c:81:f3:c6:7d:13:d4:62: 8d:cf:4a:b0:80:3b:30:70:6f:65:0a:39:4d:1d:a7: 96:f5:40:f5:59:9a:2b:c5:e4:48:ef:fb:ea:64:a7: b5:08:e7:e5:3d:fd:0e:d2:69:14:0f:02:e8:a6:73: 68:07:d1:a6:f1:6c:78:4d:2a:43:ce:45:e8:2e:ef: 70:14:0c:98:c6:d1:57:57:19:25:1c:9b:ad:00:8f: 73:3b:20:80:d7:27:2c:12:9f:7f:41:90:16:3d:09: 24:63:53:ae:e5:25:d5:b9:49:e2:34:b8:f8:9a:7e: 0f:59:c9:1e:ae:17:e4:99:7a:b2:0a:36:e6:63:d8: d8:6c:67:6a:9f:f9:b7:d9:79:a6:ad:eb:6f:f9:f6: df:30:3b:d9:e6:8b:16:bc:e9:45:3a:af:64:42:bc: ef:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:B2:14:55:F5:96:D4:65:7F:A6:23:22:50:B0:0C:1F:A7:56:AE:39 X509v3 Authority Key Identifier: keyid:E6:E7:E0:BA:F3:4F:20:C3:D9:C9:EF:26:77:68:05:F3:82:46:3B:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5ufguvNPIMPZye8md2gF84JGO4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160BD2/E7E904007D6F11EB86111147C4F9AE02/5ufguvNPIMPZye8md2gF84JGO4Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:1d:40:86:2a:bf:76:79:31:35:9b:6b:7d:89:8f:4f:3d:d8: 7f:63:32:37:4d:c3:14:d6:1f:56:cf:57:fa:a9:f4:76:e5:d0: bb:fe:8a:4e:c6:c4:ae:a4:09:7a:76:aa:fd:94:97:0a:2f:25: 49:db:70:71:5d:d5:34:a8:35:2e:c0:4d:4a:f6:04:c2:af:28: 73:a8:ed:bf:39:64:1f:6f:98:75:a5:ea:e1:89:33:9e:76:ef: bf:06:b9:3f:4b:57:01:56:0f:48:4c:19:73:59:c9:ff:0b:0b: 2b:ed:a8:fb:24:57:26:a1:99:bf:20:7e:7b:4f:5e:b5:ae:c1: 5f:e8:26:00:ff:c2:7e:86:69:ff:de:af:c7:f8:93:e7:62:7d: d5:b9:c9:41:08:4a:7c:41:84:e4:bb:e3:48:75:3d:01:27:dc: c5:6a:c8:18:53:2e:e1:41:72:a4:28:ca:cd:f6:51:5d:48:e2: e4:e1:3a:e0:07:f5:b9:03:7c:70:64:71:2b:df:3c:d2:9e:5b: aa:e3:af:a5:ab:e3:e4:90:4b:1a:a5:bc:d5:33:be:cd:a4:d9: fe:e1:ad:ef:9d:80:89:d2:57:25:29:4d:7e:83:4e:e8:97:93: 2d:e5:b8:bc:da:a5:dc:28:7a:45:d9:c0:75:9d:48:13:6b:fe: 02:cd:18:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBCRDIxMTAvBgNVBAUTKEU2RTdFMEJBRjM0RjIwQzNEOUM5RUYyNjc3NjgwNUYz ODI0NjNCODYwHhcNMjUwNzE4MjIzNTIyWhcNMjUwNzI1MjIzNTIyWjAYMRYwFAYD VQQDEw02ODdhY2MyYi03YjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3J4OuIbCBipA+f18qe63X5mZSpolvfYuE5bJqk0Fs0JChU6ycU6nhi1ijidc ydIafbo4fUNZ9Gj/4rwdg3PFAzSsrvkSyEMr+YUVbuuRBSPL2wA1K3/6fAjxAuqt MGwefIHzxn0T1GKNz0qwgDswcG9lCjlNHaeW9UD1WZorxeRI7/vqZKe1COflPf0O 0mkUDwLopnNoB9Gm8Wx4TSpDzkXoLu9wFAyYxtFXVxklHJutAI9zOyCA1ycsEp9/ QZAWPQkkY1Ou5SXVuUniNLj4mn4PWckerhfkmXqyCjbmY9jYbGdqn/m32Xmmretv +fbfMDvZ5osWvOlFOq9kQrzvMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCKyFFX1 ltRlf6YjIlCwDB+nVq45MB8GA1UdIwQYMBaAFObn4LrzTyDD2cnvJndoBfOCRjuG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEJEMi9FN0U5MDQwMDdE NkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElNUFp5ZThtZDJnRjg0SkdP NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV1Zmd1dk5QSU1QWnllOG1kMmdGODRKR080WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEJEMi9FN0U5MDQwMDdENkYxMUVCODYxMTExNDdDNEY5QUUwMi81dWZndXZOUElN UFp5ZThtZDJnRjg0SkdPNFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXHUCGKr92eTE1m2t9iY9PPdh/YzI3TcMU1h9Wz1f6qfR25dC7/opO xsSupAl6dqr9lJcKLyVJ23BxXdU0qDUuwE1K9gTCryhzqO2/OWQfb5h1perhiTOe du+/Brk/S1cBVg9ITBlzWcn/Cwsr7aj7JFcmoZm/IH57T161rsFf6CYA/8J+hmn/ 3q/H+JPnYn3VuclBCEp8QYTku+NIdT0BJ9zFasgYUy7hQXKkKMrN9lFdSOLk4Trg B/W5A3xwZHEr3zzSnluq46+lq+PkkEsapbzVM77NpNn+4a3vnYCJ0lclKU1+g07o l5Mt5bi82qXcKHpF2cB1nUgTa/4CzRiF -----END CERTIFICATE-----Generated at Sun Jul 20 07:01:52 2025 by rpki-client