$ rpki-client -vvf rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft File: capYzfG2vXwm5hp1GKTQrSyfGhQ.mft (raw, json) Hash identifier: xs7QQM83Y2VolNWDFo+sYYD1fpR52gRQ/fRupK/mkkU= Subject key identifier: 12:53:77:D2:30:53:CB:7F:C9:C6:76:7D:DF:E8:1C:7A:86:C1:39:58 Authority key identifier: 71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 Certificate issuer: /CN=A9165A0B/serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Certificate serial: 08CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft Manifest number: 08A2 Signing time: Sun 20 Jul 2025 20:44:00 +0000 Manifest this update: Sun 20 Jul 2025 20:43:59 +0000 Manifest next update: Sun 27 Jul 2025 20:43:59 +0000 Files and hashes: 1: capYzfG2vXwm5hp1GKTQrSyfGhQ.crl (hash: K7aUlZoyzmw9AWkcGSD2qlu8izKYOtGrBbTRU+5k4cM=) 2: 8C51AEF8C4FB11EAAEAE7C1DC4F9AE02.roa (hash: ulEoG77MrSiwSYhpxeW0HQs0UzURtgxGQwYkMWVPA0Q=) 3: 8BA9C1CAC4FB11EAAEAE7C1DC4F9AE02.roa (hash: fZLciG+K7KBAB8NViLLV71yANJqxZTohTScAC7z2iIU=) 4: 90606AD670AA11ED8DAE4C5AC4F9AE02.roa (hash: K/SJXrHKSaQpDMVLZJrukFZmfGOIIuOIUDxauUWHXXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:43:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2252 (0x8cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165A0B, serialNumber=71AA58CDF1B6BD7C26E61A7518A4D0AD2C9F1A14 Validity Not Before: Jul 20 20:43:59 2025 GMT Not After : Jul 27 20:43:59 2025 GMT Subject: CN=687d550f-07ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:80:69:a9:4b:7d:04:ad:1a:8f:1d:9e:6d:46: 38:fd:b8:b7:ad:1f:34:34:69:89:c4:47:44:3e:3d: 9c:cc:a5:61:e2:4a:46:03:6a:5a:06:ca:f6:3d:80: 4e:b7:5d:c5:9c:2a:59:69:7a:65:b4:bf:ab:ee:7b: 39:fe:7c:aa:0b:89:b7:6c:3d:86:48:64:1f:37:62: 40:51:d3:65:44:f4:43:27:52:c0:ef:c7:63:65:44: ee:f3:67:5c:48:5f:6c:b1:14:34:1e:ec:e5:d8:b0: 6f:15:ec:90:77:96:e1:bd:a5:31:a6:6e:b3:98:7c: c5:c3:7b:a7:87:db:e8:6c:2b:e3:6e:89:65:98:2a: b2:a3:33:db:ff:89:4a:b8:8b:cc:3c:3e:18:c8:37: 9e:66:ff:d8:21:da:0a:21:13:21:be:76:71:70:b6: df:b3:d4:0d:48:a7:33:d3:a2:98:d9:59:22:cb:8e: 63:c4:7a:e7:c6:9d:bc:a9:c7:db:25:26:29:97:fb: 2e:2b:c4:08:b6:a1:a9:03:bc:02:27:b9:b5:0c:d5: 28:42:00:84:3f:26:d3:7a:10:b5:e5:d9:04:97:88: 92:47:55:6e:64:98:80:29:8f:eb:4a:31:88:8c:19: 87:2c:02:64:24:46:e5:51:f3:ae:b4:ac:9e:50:5f: 92:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:53:77:D2:30:53:CB:7F:C9:C6:76:7D:DF:E8:1C:7A:86:C1:39:58 X509v3 Authority Key Identifier: keyid:71:AA:58:CD:F1:B6:BD:7C:26:E6:1A:75:18:A4:D0:AD:2C:9F:1A:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/capYzfG2vXwm5hp1GKTQrSyfGhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165A0B/15586F42C4F811EA8B9B4C13C4F9AE02/capYzfG2vXwm5hp1GKTQrSyfGhQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:93:5c:d6:cd:65:bb:36:09:e4:03:89:67:85:b4:52:f6:2f: e5:d9:1a:07:c2:bb:f9:da:b2:fa:ca:9f:8f:1d:74:2e:2c:da: 6d:57:ab:5f:bd:a9:d6:ca:89:ce:85:d0:f0:7b:86:f9:06:af: a4:d9:59:ce:bc:de:0a:ba:38:ba:d2:dc:c5:54:62:23:0c:17: 61:5a:02:e0:89:b2:c6:b6:4b:c5:ae:88:e4:f7:72:98:52:7a: 3f:88:f1:2e:e7:0a:b6:bc:2a:21:a8:ad:1a:3f:f4:71:a8:b9: 41:af:f5:2a:aa:cc:7a:e8:cf:34:30:b1:4b:47:12:e0:fd:b1: c5:13:0d:a6:86:05:b1:fd:92:7c:a4:9a:8e:7f:a9:2e:00:d3: 2e:e4:be:78:da:ba:91:c3:f8:dc:a7:88:fa:37:29:9a:7c:98: 69:6f:d5:75:83:9b:44:3e:5e:4e:d0:c7:f4:e2:60:17:9f:44: e9:70:9a:a3:60:6b:85:75:00:2f:92:f0:c2:71:f6:80:63:a1: ce:68:0a:c3:fb:e3:76:f4:3c:1c:18:ff:10:37:fb:82:60:b3: 35:16:3b:ed:8c:a1:31:89:7a:24:d4:67:fc:f6:ce:66:78:66: 10:5e:db:66:de:92:ea:f4:37:17:06:24:54:88:47:31:f6:3c: 03:67:50:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVBMEIxMTAvBgNVBAUTKDcxQUE1OENERjFCNkJEN0MyNkU2MUE3NTE4QTREMEFE MkM5RjFBMTQwHhcNMjUwNzIwMjA0MzU5WhcNMjUwNzI3MjA0MzU5WjAYMRYwFAYD VQQDEw02ODdkNTUwZi0wN2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqoBpqUt9BK0ajx2ebUY4/bi3rR80NGmJxEdEPj2czKVh4kpGA2paBsr2PYBO t13FnCpZaXpltL+r7ns5/nyqC4m3bD2GSGQfN2JAUdNlRPRDJ1LA78djZUTu82dc SF9ssRQ0Huzl2LBvFeyQd5bhvaUxpm6zmHzFw3unh9vobCvjbollmCqyozPb/4lK uIvMPD4YyDeeZv/YIdoKIRMhvnZxcLbfs9QNSKcz06KY2Vkiy45jxHrnxp28qcfb JSYpl/suK8QItqGpA7wCJ7m1DNUoQgCEPybTehC15dkEl4iSR1VuZJiAKY/rSjGI jBmHLAJkJEblUfOutKyeUF+S+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJTd9Iw U8t/ycZ2fd/oHHqGwTlYMB8GA1UdIwQYMBaAFHGqWM3xtr18JuYadRik0K0snxoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUEwQi8xNTU4NkY0MkM0 RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZYd201aHAxR0tUUXJTeWZH aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NhcFl6Zkcydlh3bTVocDFHS1RRclN5ZkdoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUEwQi8xNTU4NkY0MkM0RjgxMUVBOEI5QjRDMTNDNEY5QUUwMi9jYXBZemZHMnZY d201aHAxR0tUUXJTeWZHaFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmk1zWzWW7NgnkA4lnhbRS9i/l2RoHwrv52rL6yp+PHXQuLNptV6tf vanWyonOhdDwe4b5Bq+k2VnOvN4Kuji60tzFVGIjDBdhWgLgibLGtkvFrojk93KY Uno/iPEu5wq2vCohqK0aP/RxqLlBr/Uqqsx66M80MLFLRxLg/bHFEw2mhgWx/ZJ8 pJqOf6kuANMu5L542rqRw/jcp4j6NymafJhpb9V1g5tEPl5O0Mf04mAXn0TpcJqj YGuFdQAvkvDCcfaAY6HOaArD++N29DwcGP8QN/uCYLM1FjvtjKExiXok1Gf89s5m eGYQXttm3pLq9DcXBiRUiEcx9jwDZ1BB -----END CERTIFICATE-----Generated at Tue Jul 22 00:23:26 2025 by rpki-client