$ rpki-client -vvf rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft File: cEb4mD38NwS25c1-oSgP0PUpeaA.mft (raw, json) Hash identifier: v9853HipgvWi53hdljqEDkOX+rTz3btNad0ZArmbMKE= Subject key identifier: 23:58:8F:3F:14:4D:13:22:2B:84:C8:30:44:8B:E3:4A:AD:F1:92:2F Authority key identifier: 70:46:F8:98:3D:FC:37:04:B6:E5:CD:7E:A1:28:0F:D0:F5:29:79:A0 Certificate issuer: /CN=A916320B/serialNumber=7046F8983DFC3704B6E5CD7EA1280FD0F52979A0 Certificate serial: 0BC1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft Manifest number: 0BB0 Signing time: Tue 22 Jul 2025 19:11:59 +0000 Manifest this update: Tue 22 Jul 2025 19:11:58 +0000 Manifest next update: Tue 29 Jul 2025 19:11:58 +0000 Files and hashes: 1: cEb4mD38NwS25c1-oSgP0PUpeaA.crl (hash: TO0elSLOh5EvIdHxD+xRVEomSrltdBh/fio2RxVBOdE=) 2: B9003CC84EE811EA8C045D52C4F9AE02.roa (hash: kbjVSRJWVNsKP886UTdCXje46K3vQ/OgBysCSuexrdk=) 3: 1B8483D04EEA11EA828FA155C4F9AE02.roa (hash: 0VsxW37CUzW4AoNDh7cYqP2zuBQmSz8Y4/jKr2zDwys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.crl rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3009 (0xbc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916320B, serialNumber=7046F8983DFC3704B6E5CD7EA1280FD0F52979A0 Validity Not Before: Jul 22 19:11:58 2025 GMT Not After : Jul 29 19:11:58 2025 GMT Subject: CN=687fe27e-2dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3d:d8:87:62:93:61:2d:21:69:de:e1:1d:85: e2:ce:4e:b8:7d:7b:9e:70:66:b7:d1:55:f1:3f:86: 45:7e:b6:57:2a:23:18:8a:29:12:07:af:10:f7:0c: 2e:39:29:be:e6:92:f1:34:38:5b:6c:72:7f:c7:d0: bb:30:62:60:44:b7:c5:02:7e:48:aa:18:46:e6:a2: b9:dd:6c:04:90:d2:1e:86:3d:6c:f7:08:8e:a1:ac: df:d3:3d:97:9f:94:44:ae:37:bc:0a:21:ab:33:0e: c8:d8:1f:bb:82:a3:fb:9d:99:3d:bd:29:d4:e2:79: bb:3e:ee:4f:be:cf:cc:bd:7d:45:69:c1:fb:3e:79: d8:1e:06:89:c1:76:5c:71:bb:30:e2:cd:7a:41:78: c6:89:7b:66:ef:e1:7e:a5:55:13:6d:13:44:cd:b5: 50:ea:28:cf:ca:82:3b:8f:a4:27:87:f1:96:44:10: 95:7f:7d:b9:ed:59:ad:a9:66:12:5d:5b:d1:ae:f3: 05:1b:2e:d6:de:87:d7:0e:a0:64:9b:c0:3d:5d:1c: 0d:cf:e9:af:ba:00:7e:61:e8:fc:c6:2f:0a:6a:42: c1:d7:6c:0a:9d:b9:72:31:9a:bb:05:df:7d:9e:45: fa:f0:6c:5e:43:13:52:f0:35:f2:5e:1e:ad:3a:ea: 91:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:58:8F:3F:14:4D:13:22:2B:84:C8:30:44:8B:E3:4A:AD:F1:92:2F X509v3 Authority Key Identifier: keyid:70:46:F8:98:3D:FC:37:04:B6:E5:CD:7E:A1:28:0F:D0:F5:29:79:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cEb4mD38NwS25c1-oSgP0PUpeaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916320B/0FFF7AAA27AE11EA85956E78C4F9AE02/cEb4mD38NwS25c1-oSgP0PUpeaA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:c3:d9:50:e4:52:b1:94:40:3c:f5:a6:06:78:e8:03:ab:36: 00:11:d3:b3:2e:95:1f:85:6c:f6:0e:b3:23:e5:90:8c:50:f8: 56:60:fd:8c:12:f1:da:07:93:03:90:73:6f:34:3a:2a:1a:c0: c0:6f:b5:ec:aa:b6:9b:5a:9b:99:6a:07:44:eb:3a:4f:24:5f: f0:3f:f5:de:39:f2:43:3e:85:22:02:0c:10:a7:cb:1a:14:b5: 9f:63:d2:70:18:01:9e:e2:f8:e4:f2:c3:2e:59:07:94:d8:0c: f1:61:46:8b:43:37:1a:de:13:66:89:30:81:97:fe:49:a3:80: 38:42:df:b5:17:92:c6:0a:9c:f4:6b:97:05:24:f9:df:7c:1f: b0:a1:3a:43:2f:de:3a:7b:cb:5a:6e:3c:e6:b0:84:e7:99:87: b0:f2:c2:24:94:0d:87:a7:5c:61:8a:b5:e8:66:2c:3e:22:96: e8:f6:64:4d:f0:5c:92:be:9a:2b:31:0f:c1:7c:7b:e7:7e:e5: 34:48:3c:04:1f:2c:6b:b7:f6:2d:2a:4e:de:c9:40:a3:99:ec: 60:d5:39:a6:40:02:25:ed:1b:dd:0b:f8:5e:4f:b9:5a:fc:d9: 10:0e:aa:7e:be:57:ac:18:97:af:5b:eb:b5:af:56:89:b2:cd: 88:e2:4d:91 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyMEIxMTAvBgNVBAUTKDcwNDZGODk4M0RGQzM3MDRCNkU1Q0Q3RUExMjgwRkQw RjUyOTc5QTAwHhcNMjUwNzIyMTkxMTU4WhcNMjUwNzI5MTkxMTU4WjAYMRYwFAYD VQQDEw02ODdmZTI3ZS0yZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxz3Yh2KTYS0had7hHYXizk64fXuecGa30VXxP4ZFfrZXKiMYiikSB68Q9wwu OSm+5pLxNDhbbHJ/x9C7MGJgRLfFAn5IqhhG5qK53WwEkNIehj1s9wiOoazf0z2X n5RErje8CiGrMw7I2B+7gqP7nZk9vSnU4nm7Pu5Pvs/MvX1FacH7PnnYHgaJwXZc cbsw4s16QXjGiXtm7+F+pVUTbRNEzbVQ6ijPyoI7j6Qnh/GWRBCVf3257VmtqWYS XVvRrvMFGy7W3ofXDqBkm8A9XRwNz+mvugB+Yej8xi8KakLB12wKnblyMZq7Bd99 nkX68GxeQxNS8DXyXh6tOuqRywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCNYjz8U TRMiK4TIMESL40qt8ZIvMB8GA1UdIwQYMBaAFHBG+Jg9/DcEtuXNfqEoD9D1KXmg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzIwQi8wRkZGN0FBQTI3 QUUxMUVBODU5NTZFNzhDNEY5QUUwMi9jRWI0bUQzOE53UzI1YzEtb1NnUDBQVXBl YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NFYjRtRDM4TndTMjVjMS1vU2dQMFBVcGVhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MzIwQi8wRkZGN0FBQTI3QUUxMUVBODU5NTZFNzhDNEY5QUUwMi9jRWI0bUQzOE53 UzI1YzEtb1NnUDBQVXBlYUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiw9lQ5FKxlEA89aYGeOgDqzYAEdOzLpUfhWz2DrMj5ZCMUPhWYP2M EvHaB5MDkHNvNDoqGsDAb7XsqrabWpuZagdE6zpPJF/wP/XeOfJDPoUiAgwQp8sa FLWfY9JwGAGe4vjk8sMuWQeU2AzxYUaLQzca3hNmiTCBl/5Jo4A4Qt+1F5LGCpz0 a5cFJPnffB+woTpDL946e8tabjzmsITnmYew8sIklA2Hp1xhirXoZiw+Ipbo9mRN 8FySvporMQ/BfHvnfuU0SDwEHyxrt/YtKk7eyUCjmexg1TmmQAIl7RvdC/heT7la /NkQDqp+vlesGJevW+u1r1aJss2I4k2R -----END CERTIFICATE-----Generated at Wed Jul 23 12:16:10 2025 by rpki-client