$ rpki-client -vvf rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft File: a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft (raw, json) Hash identifier: zwm15mvokEFkK8peWtVsQ+kEc+Bcc3psnSgLLjMHg5A= Subject key identifier: 11:BE:6F:81:F1:3C:C3:9C:79:90:F0:58:86:8D:91:0E:32:19:EE:8E Authority key identifier: 6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E Certificate issuer: /CN=A9165BD7/serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft Manifest number: 01B5 Signing time: Sat 19 Jul 2025 03:19:06 +0000 Manifest this update: Sat 19 Jul 2025 03:19:06 +0000 Manifest next update: Sat 26 Jul 2025 03:19:06 +0000 Files and hashes: 1: a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl (hash: ms161Ow5IRG9wnHgjlmmIztUOwF2h0WA5prUww6LlJw=) 2: A92EC53AC95B11ED9ABE6935C4F9AE02.roa (hash: gnoiGXKkrmhYTwfXU41IB03BpkGU00B0FHz74SrCkdc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:19:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165BD7, serialNumber=6B4957662AD4C21BD422A87DB41B8BCFC9D6DD8E Validity Not Before: Jul 19 03:19:06 2025 GMT Not After : Jul 26 03:19:06 2025 GMT Subject: CN=687b0eaa-1cc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:6d:5d:4f:5e:47:44:33:94:cb:54:a3:c4:1a: 69:a1:b4:f4:74:de:6a:83:e3:79:60:c2:c0:b9:ca: 74:38:53:ea:11:61:17:12:dd:25:9d:27:36:b2:d8: 33:0c:e1:75:4f:4e:ab:6f:4a:57:b4:14:15:0d:eb: 09:e5:69:ae:6a:88:a2:0d:a1:07:43:e3:c5:17:d1: db:8e:88:20:a2:e6:05:e1:8c:66:2e:ac:f8:e5:d3: ff:fc:71:1a:b0:ce:26:38:28:b1:c1:d9:73:15:1e: 0d:0b:82:e8:21:eb:e3:69:9d:fe:1e:bc:1f:ad:93: d1:9f:06:d2:a0:16:55:cc:7a:e6:55:bf:9e:72:7e: 0f:de:f0:5b:be:c7:72:a4:98:02:1f:16:9c:63:13: 06:20:d4:6e:24:1f:ff:49:ef:70:8b:88:12:9b:06: a4:5a:b3:b7:2c:5e:ec:89:5e:05:f9:ca:74:b2:57: 75:73:e1:0b:f9:de:fc:df:e9:66:d9:8e:c9:70:af: 6b:90:20:51:e8:e9:da:77:69:44:c0:b5:0d:f7:ad: a1:4a:f8:d4:05:4b:47:da:21:b3:78:99:0e:aa:f9: 6c:94:27:f5:4f:c2:3b:6e:f3:5f:87:e8:fb:17:dc: 98:8a:fe:25:c8:19:63:bb:7e:bf:2f:a5:98:f2:db: 5a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:BE:6F:81:F1:3C:C3:9C:79:90:F0:58:86:8D:91:0E:32:19:EE:8E X509v3 Authority Key Identifier: keyid:6B:49:57:66:2A:D4:C2:1B:D4:22:A8:7D:B4:1B:8B:CF:C9:D6:DD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a0lXZirUwhvUIqh9tBuLz8nW3Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165BD7/8A62C82AC95811ED918E8C34C4F9AE02/a0lXZirUwhvUIqh9tBuLz8nW3Y4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:d7:1b:58:cd:45:e5:74:31:37:5a:9d:00:d5:67:d9:cd:4d: 8e:2a:46:bd:d8:0c:05:25:26:a5:1d:37:d4:1e:8c:57:e7:ca: 5f:ed:fb:52:e6:5b:9b:a2:c5:5c:bf:5b:6f:00:44:ce:c9:9e: 97:95:4d:46:ba:87:55:db:04:35:28:37:9b:3f:21:b6:de:fe: fa:94:55:16:83:79:70:2d:d7:5c:55:5c:62:83:fd:a2:dd:71: db:40:c7:55:bc:d2:ae:d7:7f:f5:5d:ce:8d:aa:e0:3a:7b:c4: 7c:df:a7:08:fb:3c:58:11:dc:70:27:07:21:35:42:cc:68:4a: ee:81:15:cf:a1:f8:7a:6f:15:34:8a:ea:c4:ae:62:6e:dd:20: ff:05:99:82:c2:6c:70:6f:5c:9b:1e:74:cf:6b:47:40:a9:5c: 9a:a4:2b:d4:59:ef:53:91:f2:77:6b:18:80:41:e9:e4:0b:33: 5a:ff:fa:e2:d9:12:ca:ee:40:59:0d:06:46:c8:e9:3f:a9:24: 2e:cc:f1:14:6b:c8:93:70:5a:50:15:15:23:0f:62:ea:ef:19: ad:70:4f:f8:d1:86:59:ec:12:85:1d:6e:b4:a9:e7:32:85:e2: fb:35:51:b7:ff:58:00:1f:53:36:35:f7:f9:2f:e6:d4:5b:32: fc:a7:36:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVCRDcxMTAvBgNVBAUTKDZCNDk1NzY2MkFENEMyMUJENDIyQTg3REI0MUI4QkNG QzlENkREOEUwHhcNMjUwNzE5MDMxOTA2WhcNMjUwNzI2MDMxOTA2WjAYMRYwFAYD VQQDEw02ODdiMGVhYS0xY2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz21dT15HRDOUy1SjxBppobT0dN5qg+N5YMLAucp0OFPqEWEXEt0lnSc2stgz DOF1T06rb0pXtBQVDesJ5WmuaoiiDaEHQ+PFF9HbjoggouYF4YxmLqz45dP//HEa sM4mOCixwdlzFR4NC4LoIevjaZ3+HrwfrZPRnwbSoBZVzHrmVb+ecn4P3vBbvsdy pJgCHxacYxMGINRuJB//Se9wi4gSmwakWrO3LF7siV4F+cp0sld1c+EL+d783+lm 2Y7JcK9rkCBR6Onad2lEwLUN962hSvjUBUtH2iGzeJkOqvlslCf1T8I7bvNfh+j7 F9yYiv4lyBlju36/L6WY8tta+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBG+b4Hx PMOceZDwWIaNkQ4yGe6OMB8GA1UdIwQYMBaAFGtJV2Yq1MIb1CKofbQbi8/J1t2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUJENy84QTYyQzgyQUM5 NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdodlVJcWg5dEJ1THo4blcz WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2EwbFhaaXJVd2h2VUlxaDl0QnVMejhuVzNZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUJENy84QTYyQzgyQUM5NTgxMUVEOTE4RThDMzRDNEY5QUUwMi9hMGxYWmlyVXdo dlVJcWg5dEJ1THo4blczWTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCD1xtYzUXldDE3Wp0A1WfZzU2OKka92AwFJSalHTfUHoxX58pf7ftS 5lubosVcv1tvAETOyZ6XlU1GuodV2wQ1KDebPyG23v76lFUWg3lwLddcVVxig/2i 3XHbQMdVvNKu13/1Xc6NquA6e8R836cI+zxYEdxwJwchNULMaErugRXPofh6bxU0 iurErmJu3SD/BZmCwmxwb1ybHnTPa0dAqVyapCvUWe9TkfJ3axiAQenkCzNa//ri 2RLK7kBZDQZGyOk/qSQuzPEUa8iTcFpQFRUjD2Lq7xmtcE/40YZZ7BKFHW60qecy heL7NVG3/1gAH1M2Nff5L+bUWzL8pzaW -----END CERTIFICATE-----Generated at Sun Jul 20 07:55:36 2025 by rpki-client