$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft File: p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft (raw, json) Hash identifier: 0KsY0FP6A4PPpx13Z8hA0nGzCRK7zsJvbnCfoCWQra4= Subject key identifier: 47:6D:DC:EB:82:FA:F9:66:32:85:E9:53:4C:9E:45:D8:23:93:98:EB Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0E16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft Manifest number: 0E0E Signing time: Tue 22 Jul 2025 18:00:13 +0000 Manifest this update: Tue 22 Jul 2025 18:00:12 +0000 Manifest next update: Tue 29 Jul 2025 18:00:12 +0000 Files and hashes: 1: p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl (hash: L7m1K0Fm4omIiXzsgvqfe3TxeyGnzNV4LcLiUD9qRFg=) 2: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (hash: mx4Am+cBFSXiPddaACrFcI512PsDACEUWWDSLjunmeM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3606 (0xe16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297, serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Jul 22 18:00:12 2025 GMT Not After : Jul 29 18:00:12 2025 GMT Subject: CN=687fd1ad-7b9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c8:d2:53:71:1a:bf:0a:7b:e7:09:29:e1:f2: 33:8a:69:7c:c5:2b:09:d9:99:f0:ef:c4:f8:d3:e3: 8a:31:4d:d5:92:d1:11:5a:e9:b5:1d:86:f0:13:dd: da:43:f9:39:23:a7:27:3f:4d:b1:e0:9c:ab:97:ea: 2c:fb:f8:7a:8f:14:b0:a8:c4:28:7f:70:c4:4f:49: 49:05:26:ae:c2:aa:1c:87:de:e3:c3:0e:12:37:d9: e8:c4:14:96:a6:a7:79:c5:24:55:e3:35:e0:fe:23: dd:af:31:ff:22:43:b3:4d:23:77:fe:f6:e6:ae:62: d9:4a:db:43:d8:fd:49:b7:cd:fb:68:43:f9:cf:2e: 38:af:ce:76:ee:15:2d:7a:ab:be:ce:90:b8:c7:0d: 65:f5:ae:95:2c:52:57:92:f8:e2:9d:c6:47:c4:32: d8:59:ed:ba:68:52:a2:cc:0e:54:05:3b:e8:be:59: 6c:30:da:17:8b:fd:44:0e:52:1b:e2:c7:43:05:aa: 72:30:9a:db:f6:14:27:65:ff:c5:06:0a:b1:cd:f4: 92:a5:72:5a:fb:7f:0c:24:bc:f1:d6:36:8a:98:ec: ba:54:2a:cd:e6:4f:9d:b2:6b:9f:ff:90:41:04:fd: 87:7e:85:7f:8c:18:74:64:33:f5:bd:dd:42:04:6e: fb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6D:DC:EB:82:FA:F9:66:32:85:E9:53:4C:9E:45:D8:23:93:98:EB X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:3f:22:3e:39:dc:33:38:91:e7:30:70:81:4e:35:9b:18:2c: f5:a7:26:4e:4c:f5:52:a6:f2:1e:58:2e:06:d0:4c:e7:17:4d: c8:85:58:bb:71:b6:b8:e1:f5:a0:c9:16:f2:a6:7d:da:8c:18: fa:c3:d7:0d:b0:32:df:af:7f:cc:b3:df:9c:d7:7b:f8:8b:64: c2:f3:f8:7d:82:3f:de:09:d1:51:86:f8:23:82:d8:dc:9f:90: 50:9a:f5:b2:f6:2e:1f:ff:93:0c:27:85:de:92:03:93:26:38: fa:2c:8e:5f:ce:28:01:f4:65:c5:a8:08:d2:3b:e3:33:c7:d9: 2a:83:d8:51:a2:df:6b:ec:ce:8e:47:18:a5:17:5e:50:f9:49: cf:74:96:21:e1:6c:6e:ba:cf:d4:c6:77:11:ea:a3:25:00:4a: 29:c4:c1:d9:6c:43:10:51:b4:8c:ad:be:4a:97:91:20:aa:36: 42:e8:83:00:06:07:04:bf:34:d6:8c:de:f0:ce:ea:ba:6b:69: bd:83:76:b6:4d:cc:c0:33:1b:3a:3f:be:d6:a1:18:50:9c:82: f2:56:ea:71:8b:41:fe:c7:3c:78:43:a0:2b:5f:59:ae:13:5f: b1:ad:3c:ba:47:2f:a4:91:ce:8f:d7:95:aa:c9:f8:82:1f:f6: 82:14:4d:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjUwNzIyMTgwMDEyWhcNMjUwNzI5MTgwMDEyWjAYMRYwFAYD VQQDEw02ODdmZDFhZC03YjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MjSU3Eavwp75wkp4fIziml8xSsJ2Znw78T40+OKMU3VktERWum1HYbwE93a Q/k5I6cnP02x4Jyrl+os+/h6jxSwqMQof3DET0lJBSauwqoch97jww4SN9noxBSW pqd5xSRV4zXg/iPdrzH/IkOzTSN3/vbmrmLZSttD2P1Jt837aEP5zy44r8527hUt equ+zpC4xw1l9a6VLFJXkvjincZHxDLYWe26aFKizA5UBTvovllsMNoXi/1EDlIb 4sdDBapyMJrb9hQnZf/FBgqxzfSSpXJa+38MJLzx1jaKmOy6VCrN5k+dsmuf/5BB BP2HfoV/jBh0ZDP1vd1CBG77/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdt3OuC +vlmMoXpU0yeRdgjk5jrMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTI5Ny80MzAxRkRCRUFGNkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThO angyelljMUFzU1lHc01hTVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcPyI+OdwzOJHnMHCBTjWbGCz1pyZOTPVSpvIeWC4G0EznF03IhVi7 cba44fWgyRbypn3ajBj6w9cNsDLfr3/Ms9+c13v4i2TC8/h9gj/eCdFRhvgjgtjc n5BQmvWy9i4f/5MMJ4XekgOTJjj6LI5fzigB9GXFqAjSO+Mzx9kqg9hRot9r7M6O RxilF15Q+UnPdJYh4Wxuus/UxncR6qMlAEopxMHZbEMQUbSMrb5Kl5EgqjZC6IMA BgcEvzTWjN7wzuq6a2m9g3a2TczAMxs6P77WoRhQnILyVupxi0H+xzx4Q6ArX1mu E1+xrTy6Ry+kkc6P15WqyfiCH/aCFE3B -----END CERTIFICATE-----Generated at Wed Jul 23 12:18:18 2025 by rpki-client