$ rpki-client -vvf rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft File: aHvrJ3oFne_qK-3WevsbgjiOXrE.mft (raw, json) Hash identifier: 6AWn7/7Jrz3PrM3mLSM5SjmQ6XCi+x3BKjzi3zzgQmg= Subject key identifier: E2:D8:E8:E9:9D:33:6B:D2:B5:17:54:F7:4A:9D:09:9C:88:53:B9:D3 Authority key identifier: 68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 Certificate issuer: /CN=A9165FAD/serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Certificate serial: 07E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft Manifest number: 07CF Signing time: Sun 20 Jul 2025 21:22:18 +0000 Manifest this update: Sun 20 Jul 2025 21:22:17 +0000 Manifest next update: Sun 27 Jul 2025 21:22:17 +0000 Files and hashes: 1: aHvrJ3oFne_qK-3WevsbgjiOXrE.crl (hash: WK5VYbaK8ILdvihWwOG5HO8SMwaIWHZY+38FaaF1kMY=) 2: D19E7784AAF811EE8D8CCD25C4F9AE02.roa (hash: +XIvNmYB/5EgcsxvZK5ch01j/uNHHViQProaEC6+kLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 21:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2022 (0x7e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165FAD, serialNumber=687BEB277A059DEFEA2BEDD67AFB1B82388E5EB1 Validity Not Before: Jul 20 21:22:17 2025 GMT Not After : Jul 27 21:22:17 2025 GMT Subject: CN=687d5e0a-ff6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:d0:16:ee:2c:6d:75:66:19:0a:df:a8:b5:04: 4f:46:d8:16:6a:ac:7c:86:ce:c5:1e:6a:b4:0f:86: e6:97:df:41:c9:0e:75:d7:ce:d5:05:9a:d7:bc:0b: 54:a4:60:80:c0:47:b8:9c:ef:61:e2:a0:3c:43:61: 38:86:f3:29:ee:1d:e7:7b:6e:41:51:b3:8a:72:54: 77:62:50:2b:97:78:0e:29:56:d0:83:71:01:6f:47: 13:4c:fa:88:46:a7:1b:50:cb:2c:64:d3:3d:dd:76: 3b:fa:10:3b:3f:3a:8b:eb:b7:a7:a2:e1:2e:6c:d1: 7d:75:21:1d:cb:42:de:c7:82:84:4b:76:83:5a:11: 73:d7:8e:82:fd:d1:cc:34:be:27:2e:b2:62:15:ba: 64:b5:4f:01:ac:29:97:60:32:1a:22:be:0d:ad:6f: 2a:1e:00:52:58:f8:87:ef:49:23:e7:0d:8d:40:a7: 83:89:97:9d:46:c0:23:8b:ad:28:98:6d:f0:25:f8: d7:7e:1d:5c:05:95:8f:24:8f:6f:1c:b5:81:6b:10: 08:01:85:6c:e5:89:ad:e4:26:3a:16:de:96:f5:2a: ec:4a:ff:ea:fb:67:20:af:35:bc:50:f6:f1:21:13: 6b:f1:49:93:95:47:ec:a4:18:2b:b8:92:68:9c:a3: 55:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:D8:E8:E9:9D:33:6B:D2:B5:17:54:F7:4A:9D:09:9C:88:53:B9:D3 X509v3 Authority Key Identifier: keyid:68:7B:EB:27:7A:05:9D:EF:EA:2B:ED:D6:7A:FB:1B:82:38:8E:5E:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHvrJ3oFne_qK-3WevsbgjiOXrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165FAD/A4D7899E086611EB8A2D1535C4F9AE02/aHvrJ3oFne_qK-3WevsbgjiOXrE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:7d:d7:f9:6b:90:88:fb:af:de:fa:c4:a7:e8:0a:97:a0:9e: 0f:0c:5c:e9:82:96:c5:89:92:2e:f1:57:6d:0a:03:8a:89:a9: ef:18:74:20:bd:91:05:fc:12:88:d4:e8:c5:a3:3f:e8:bc:5f: f7:84:82:71:af:8e:e5:5b:4f:31:3a:ee:3c:20:8f:0f:f5:27: ed:0a:bc:6b:5d:9c:17:2d:d9:44:59:26:6c:54:54:77:6c:d9: f0:0e:24:d3:05:8a:75:65:0e:05:e4:57:8e:2f:c5:fd:85:c8: 57:4c:03:2c:e4:fa:71:32:8f:30:97:dc:34:30:3a:a5:dd:b6: fd:e3:23:9f:b0:bb:4a:03:13:b4:2a:1d:57:39:e8:ae:d9:de: 3e:ed:d7:18:fc:00:c4:d2:78:f5:23:d0:45:cf:e0:ac:18:75: 1a:2f:b8:bc:a2:5c:d0:52:37:52:55:a7:db:31:3f:5e:e5:68: 9e:0a:04:db:93:e8:11:37:aa:27:80:da:ec:22:c2:01:49:49: 92:d7:27:04:3b:8e:26:04:80:58:f9:ee:15:24:56:83:09:8d: 97:df:e5:dd:39:bb:0b:d5:01:04:06:fe:96:9e:51:e0:a3:4d: 8c:c1:3a:fd:5e:3e:b4:b7:8e:bd:eb:fc:78:42:65:54:52:5f: 7a:02:81:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVGQUQxMTAvBgNVBAUTKDY4N0JFQjI3N0EwNTlERUZFQTJCRURENjdBRkIxQjgy Mzg4RTVFQjEwHhcNMjUwNzIwMjEyMjE3WhcNMjUwNzI3MjEyMjE3WjAYMRYwFAYD VQQDEw02ODdkNWUwYS1mZjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8NAW7ixtdWYZCt+otQRPRtgWaqx8hs7FHmq0D4bml99ByQ51187VBZrXvAtU pGCAwEe4nO9h4qA8Q2E4hvMp7h3ne25BUbOKclR3YlArl3gOKVbQg3EBb0cTTPqI RqcbUMssZNM93XY7+hA7PzqL67enouEubNF9dSEdy0Lex4KES3aDWhFz146C/dHM NL4nLrJiFbpktU8BrCmXYDIaIr4NrW8qHgBSWPiH70kj5w2NQKeDiZedRsAji60o mG3wJfjXfh1cBZWPJI9vHLWBaxAIAYVs5Ymt5CY6Ft6W9SrsSv/q+2cgrzW8UPbx IRNr8UmTlUfspBgruJJonKNVTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOLY6Omd M2vStRdU90qdCZyIU7nTMB8GA1UdIwQYMBaAFGh76yd6BZ3v6ivt1nr7G4I4jl6x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUZBRC9BNEQ3ODk5RTA4 NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5lX3FLLTNXZXZzYmdqaU9Y ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIdnJKM29GbmVfcUstM1dldnNiZ2ppT1hyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NUZBRC9BNEQ3ODk5RTA4NjYxMUVCOEEyRDE1MzVDNEY5QUUwMi9hSHZySjNvRm5l X3FLLTNXZXZzYmdqaU9YckUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNfdf5a5CI+6/e+sSn6AqXoJ4PDFzpgpbFiZIu8VdtCgOKianvGHQg vZEF/BKI1OjFoz/ovF/3hIJxr47lW08xOu48II8P9SftCrxrXZwXLdlEWSZsVFR3 bNnwDiTTBYp1ZQ4F5FeOL8X9hchXTAMs5PpxMo8wl9w0MDql3bb94yOfsLtKAxO0 Kh1XOeiu2d4+7dcY/ADE0nj1I9BFz+CsGHUaL7i8olzQUjdSVafbMT9e5WieCgTb k+gRN6ongNrsIsIBSUmS1ycEO44mBIBY+e4VJFaDCY2X3+XdObsL1QEEBv6WnlHg o02MwTr9Xj60t4696/x4QmVUUl96AoHc -----END CERTIFICATE-----Generated at Mon Jul 21 07:29:20 2025 by rpki-client