$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft File: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft (raw, json) Hash identifier: GqUlBRE4rO1jShpG1iFD3j33uGo4MxVpM60iP5H0QX4= Subject key identifier: 54:AD:62:E0:51:B0:82:9F:70:BF:1B:94:FB:33:FC:2B:69:B1:38:97 Authority key identifier: FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 Certificate issuer: /CN=A9167CB5/serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft Manifest number: D6 Signing time: Fri 25 Jul 2025 05:51:48 +0000 Manifest this update: Fri 25 Jul 2025 05:51:47 +0000 Manifest next update: Fri 01 Aug 2025 05:51:47 +0000 Files and hashes: 1: -oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl (hash: RV365fak6TrKED+TWMQv6h3lII25pdVPkLR2L4AHhZQ=) 2: D16A1B5C225711EF975F6747C4F9AE02.roa (hash: Oq3D4ezYunPFGiMcUlxoGy2jtufjcwOjdtjOKgqjtFk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 05:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CB5, serialNumber=FA811F52E5195A429D706D19C003237C3209AA37 Validity Not Before: Jul 25 05:51:47 2025 GMT Not After : Aug 1 05:51:47 2025 GMT Subject: CN=68831b74-f55b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fd:f5:23:32:a4:3f:a8:ca:b6:0b:cd:dc:af: 52:77:6d:e8:c4:38:93:86:ba:b0:3f:7c:62:d7:c3: 02:80:85:6f:20:82:c8:19:db:cc:9a:04:3d:8d:fb: ab:1a:e6:0b:20:1c:a0:5a:cb:9e:fa:4c:c0:3d:bd: 03:d5:74:7b:c8:18:1a:13:fd:94:5f:99:79:88:66: 5f:61:36:49:b0:e8:4f:3d:19:bc:ac:b6:54:a6:b9: 9b:19:c8:4f:5f:a7:44:6f:1c:58:09:e5:2d:ec:01: 39:a2:4f:1d:b4:c9:71:00:b8:5a:aa:90:ff:be:7c: a1:08:5d:d4:52:83:e2:ae:af:6a:7f:53:3a:7a:65: 23:5f:50:86:03:fe:6c:94:ae:2c:7a:d6:6d:b1:ba: 50:9b:ce:0c:5d:3d:f1:96:e9:2e:76:83:8d:a8:1d: d1:82:7d:23:5d:e4:95:74:b4:ea:b8:0f:5e:b7:53: 53:94:56:3d:ae:cc:37:a6:a8:75:6b:41:a1:d0:f8: ef:e6:b6:46:de:8a:72:4a:1a:cd:29:44:57:66:6d: b7:da:16:6e:82:bc:95:16:de:cc:bf:46:32:ab:58: cc:20:fe:89:35:fe:d3:2c:07:3b:12:46:86:74:fb: 32:c5:34:84:05:b4:9f:83:ba:0d:cc:20:15:d5:c6: 82:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:AD:62:E0:51:B0:82:9F:70:BF:1B:94:FB:33:FC:2B:69:B1:38:97 X509v3 Authority Key Identifier: keyid:FA:81:1F:52:E5:19:5A:42:9D:70:6D:19:C0:03:23:7C:32:09:AA:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CB5/FA37C63E225611EFB7561F46C4F9AE02/-oEfUuUZWkKdcG0ZwAMjfDIJqjc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:28:57:f9:2e:e7:d2:3e:66:13:16:a2:2e:24:e3:76:87:e7: 8c:de:5a:7f:14:80:aa:be:81:95:88:2d:bc:73:1a:f8:e7:fb: c9:d1:37:77:03:d6:1f:12:eb:4c:5d:87:7e:46:be:f1:2b:96: 67:af:fc:b1:0d:e7:fc:4d:21:d5:a8:8f:b1:36:68:49:6d:59: 03:f0:a6:a9:1c:c9:81:79:f1:9f:0d:91:ab:7a:f4:2e:73:13: ef:83:db:eb:7a:cc:3a:07:da:1f:c9:21:e4:72:10:34:ae:bc: 20:48:b8:57:85:94:9f:9f:2a:e2:2a:87:46:cb:e1:f0:5a:ee: f1:a5:d1:a6:07:89:20:9f:e6:a8:e9:af:36:78:1f:17:94:a2: c9:b8:cb:0f:4d:b2:76:d7:be:e2:13:7c:ed:4e:df:de:32:85: 81:07:5b:78:33:0c:d6:2e:27:e9:bb:06:9f:6a:46:f2:a0:4d: 25:f2:0d:c8:75:5d:bc:d5:00:f6:ae:af:a3:43:08:db:43:94: dc:01:41:fb:e8:74:64:52:12:14:8b:e7:f5:ab:b1:14:e4:b7: 77:3e:75:c8:01:00:49:98:d6:d4:43:3d:54:d4:cf:5f:67:5c: 9f:c1:ff:d0:f0:99:57:f2:4e:06:d7:b8:48:78:cc:a3:71:0e: ea:99:4f:52 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQjUxMTAvBgNVBAUTKEZBODExRjUyRTUxOTVBNDI5RDcwNkQxOUMwMDMyMzdD MzIwOUFBMzcwHhcNMjUwNzI1MDU1MTQ3WhcNMjUwODAxMDU1MTQ3WjAYMRYwFAYD VQQDEw02ODgzMWI3NC1mNTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwv31IzKkP6jKtgvN3K9Sd23oxDiThrqwP3xi18MCgIVvIILIGdvMmgQ9jfur GuYLIBygWsue+kzAPb0D1XR7yBgaE/2UX5l5iGZfYTZJsOhPPRm8rLZUprmbGchP X6dEbxxYCeUt7AE5ok8dtMlxALhaqpD/vnyhCF3UUoPirq9qf1M6emUjX1CGA/5s lK4setZtsbpQm84MXT3xlukudoONqB3Rgn0jXeSVdLTquA9et1NTlFY9rsw3pqh1 a0Gh0Pjv5rZG3opyShrNKURXZm232hZugryVFt7Mv0Yyq1jMIP6JNf7TLAc7EkaG dPsyxTSEBbSfg7oNzCAV1caCLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFStYuBR sIKfcL8blPsz/CtpsTiXMB8GA1UdIwQYMBaAFPqBH1LlGVpCnXBtGcADI3wyCao3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NCNS9GQTM3QzYzRTIy NTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldrS2RjRzBad0FNamZESUpx amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1vRWZVdVVaV2tLZGNHMFp3QU1qZkRJSnFqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0NCNS9GQTM3QzYzRTIyNTYxMUVGQjc1NjFGNDZDNEY5QUUwMi8tb0VmVXVVWldr S2RjRzBad0FNamZESUpxamMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALKFf5LufSPmYTFqIuJON2h+eM3lp/FICqvoGViC28cxr45/vJ0Td3 A9YfEutMXYd+Rr7xK5Znr/yxDef8TSHVqI+xNmhJbVkD8KapHMmBefGfDZGrevQu cxPvg9vresw6B9ofySHkchA0rrwgSLhXhZSfnyriKodGy+HwWu7xpdGmB4kgn+ao 6a82eB8XlKLJuMsPTbJ2177iE3ztTt/eMoWBB1t4MwzWLifpuwafakbyoE0l8g3I dV281QD2rq+jQwjbQ5TcAUH76HRkUhIUi+f1q7EU5Ld3PnXIAQBJmNbUQz1U1M9f Z1yfwf/Q8JlX8k4G17hIeMyjcQ7qmU9S -----END CERTIFICATE-----Generated at Sat Jul 26 02:03:19 2025 by rpki-client