$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft File: SHy2MxcaDd84rLtq0e2K5pZVhgo.mft (raw, json) Hash identifier: Q0mhN3jJI4Ru6rQpazzDgileJpBiKRiJcvFJZNEdHZY= Subject key identifier: 37:7F:6B:73:FA:85:8A:43:98:47:0B:CC:34:67:D2:BA:CF:51:B5:FA Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 01B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft Manifest number: 01B5 Signing time: Mon 21 Jul 2025 03:11:31 +0000 Manifest this update: Mon 21 Jul 2025 03:11:30 +0000 Manifest next update: Mon 28 Jul 2025 03:11:30 +0000 Files and hashes: 1: SHy2MxcaDd84rLtq0e2K5pZVhgo.crl (hash: 8gjjMrS889ns8vpDR3jWtJVAsJDVlkPYGKJaj1L9Rfw=) 2: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (hash: wjMufEaDH/y4s6T5wRstNmQqRorcPZgCttuLv7sLSbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 03:11:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 440 (0x1b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E, serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Jul 21 03:11:30 2025 GMT Not After : Jul 28 03:11:30 2025 GMT Subject: CN=687dafe3-9e6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:de:b2:9d:f3:c2:c2:d1:a9:83:7b:c3:67:4f: 76:63:d7:58:62:29:80:a6:8f:2e:32:84:c9:8e:99: a5:1f:75:be:80:ec:b2:48:10:68:23:f4:18:80:82: 63:e2:fe:f2:83:ae:c0:cd:d5:c0:96:22:55:a2:82: 7f:a0:2d:5a:b9:a2:ec:5c:76:0f:bb:60:28:1a:bf: c2:1b:3e:ac:0e:fc:b6:3a:6e:b4:c3:44:77:4d:78: 8e:9b:1d:98:88:aa:dd:c1:de:11:5e:42:0a:3c:41: e4:5c:1e:01:24:10:1a:e4:d7:17:dd:71:47:bf:5c: 0b:2a:ab:f8:e2:89:f1:c8:3c:7e:09:ec:8e:f8:36: 70:7c:5b:ed:20:39:e4:3d:e7:01:b0:d9:9b:7b:89: 61:68:36:91:a2:07:8b:55:4e:d9:f7:0d:e2:d2:4e: 8b:99:2a:d2:34:88:24:5e:4f:e7:81:a5:2b:3a:ab: 18:f6:aa:78:bc:7b:a0:f9:1f:69:ff:e8:24:00:43: 51:4d:04:30:16:23:83:3d:9e:fe:97:ba:4e:ce:42: d5:c9:85:da:57:fc:96:ad:ee:d4:af:32:0b:f4:66: 57:24:19:b9:02:78:72:28:17:f7:44:9e:07:9b:b1: 8b:04:51:59:df:a2:aa:6b:19:36:f4:f6:a3:a2:4b: 88:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:7F:6B:73:FA:85:8A:43:98:47:0B:CC:34:67:D2:BA:CF:51:B5:FA X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:eb:93:cb:ad:47:cc:be:d9:69:13:28:3c:60:8a:53:52:ab: 60:33:bf:a0:e4:94:c9:07:a1:13:50:35:a6:b3:0c:50:af:3f: 56:73:a1:e4:4d:67:ee:70:52:73:9d:6b:d5:72:64:92:52:d3: aa:fa:d2:b2:d6:54:da:5b:6b:93:d1:ec:11:8b:10:d9:59:c1: 55:9f:d4:5b:4f:a5:e0:c9:6d:0a:df:02:91:d8:b8:37:7c:cb: b0:45:b0:8b:3d:77:f9:75:70:80:8b:cd:cc:4d:98:c1:72:37: 68:50:8e:2e:a7:4b:e7:07:7f:00:9e:65:79:de:37:b7:fa:1a: d7:76:26:4a:d0:2a:c2:66:9a:57:6b:f8:04:5e:5e:fc:2a:ea: ba:06:a0:7e:2e:97:c6:30:14:71:4d:f8:d3:47:6d:f6:1f:26: 11:b8:65:e7:c6:5f:48:86:bc:b8:40:f9:df:65:ec:c8:68:a9: e6:ca:20:1b:ea:72:3c:dd:59:0b:16:a4:6c:39:8d:be:06:79: d8:e9:3e:5c:8f:2d:da:9f:83:8e:fb:28:d5:6c:b5:dc:d5:72: 89:66:02:47:e8:9d:ea:96:41:be:17:0c:41:ef:b0:35:18:0d: 1f:a3:65:2b:8c:77:64:23:53:44:34:1b:fa:2f:47:29:94:14: 74:0f:67:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjUwNzIxMDMxMTMwWhcNMjUwNzI4MDMxMTMwWjAYMRYwFAYD VQQDEw02ODdkYWZlMy05ZTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA496ynfPCwtGpg3vDZ092Y9dYYimApo8uMoTJjpmlH3W+gOyySBBoI/QYgIJj 4v7yg67AzdXAliJVooJ/oC1auaLsXHYPu2AoGr/CGz6sDvy2Om60w0R3TXiOmx2Y iKrdwd4RXkIKPEHkXB4BJBAa5NcX3XFHv1wLKqv44onxyDx+CeyO+DZwfFvtIDnk PecBsNmbe4lhaDaRogeLVU7Z9w3i0k6LmSrSNIgkXk/ngaUrOqsY9qp4vHug+R9p /+gkAENRTQQwFiODPZ7+l7pOzkLVyYXaV/yWre7UrzIL9GZXJBm5AnhyKBf3RJ4H m7GLBFFZ36Kqaxk29PajokuIUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDd/a3P6 hYpDmEcLzDRn0rrPUbX6MB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk5RS82QzEzNTQzNEM5RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURk ODRyTHRxMGUySzVwWlZoZ28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN65PLrUfMvtlpEyg8YIpTUqtgM7+g5JTJB6ETUDWmswxQrz9Wc6Hk TWfucFJznWvVcmSSUtOq+tKy1lTaW2uT0ewRixDZWcFVn9RbT6XgyW0K3wKR2Lg3 fMuwRbCLPXf5dXCAi83MTZjBcjdoUI4up0vnB38AnmV53je3+hrXdiZK0CrCZppX a/gEXl78Kuq6BqB+LpfGMBRxTfjTR232HyYRuGXnxl9Ihry4QPnfZezIaKnmyiAb 6nI83VkLFqRsOY2+BnnY6T5cjy3an4OO+yjVbLXc1XKJZgJH6J3qlkG+FwxB77A1 GA0fo2UrjHdkI1NENBv6L0cplBR0D2dD -----END CERTIFICATE-----Generated at Mon Jul 21 07:11:02 2025 by rpki-client