$ rpki-client -vvf rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft File: AflcxfCmuelnxvjzbH9k1CRLrHI.mft (raw, json) Hash identifier: BMnDKWrDVVWnjQtANxmsUd3++3gz/3wmxdMrGuJsbcQ= Subject key identifier: 0E:81:56:74:A2:B8:72:CE:50:E1:48:50:23:5E:55:36:12:0A:8E:66 Authority key identifier: 01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 Certificate issuer: /CN=A9169451/serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Certificate serial: 0222 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft Manifest number: 021F Signing time: Mon 21 Jul 2025 02:15:23 +0000 Manifest this update: Mon 21 Jul 2025 02:15:22 +0000 Manifest next update: Mon 28 Jul 2025 02:15:22 +0000 Files and hashes: 1: AflcxfCmuelnxvjzbH9k1CRLrHI.crl (hash: t/TnjhFqj/gVDB7CHDrlj/YhhuSGWrQbNHi4lMdfU50=) 2: 0C1EB10A3A5011ED8B4A2570C4F9AE02.roa (hash: 8tU0+bWbTseOr25wJKvheZneGGhgRMUkg1uHcFDydtY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 02:15:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169451, serialNumber=01F95CC5F0A6B9E967C6F8F36C7F64D4244BAC72 Validity Not Before: Jul 21 02:15:22 2025 GMT Not After : Jul 28 02:15:22 2025 GMT Subject: CN=687da2ba-03d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c4:88:5c:6f:39:0f:38:3d:e0:bd:16:62:13: 5f:8f:ee:be:b8:2c:57:69:fb:2c:ba:75:63:17:ba: e7:10:8b:a2:04:04:85:d1:71:65:96:e4:ca:af:f0: fd:6c:f0:4d:7b:7a:de:17:1e:08:9c:d6:8f:6d:e9: 8a:f2:ad:fd:b9:d6:8b:cf:21:e5:8c:15:2a:e6:5d: 8d:e2:fb:6e:26:9c:76:77:0d:e4:99:ed:ab:c4:d5: 57:51:99:c8:69:b0:9e:e4:f8:18:14:d8:6b:87:32: 87:50:21:65:43:90:bc:35:ad:03:5d:bd:3b:ce:67: d9:02:ff:87:14:03:e6:d5:66:07:34:c2:0a:bf:b7: 0b:51:27:51:08:7f:10:27:b6:27:b7:de:ca:c7:5a: c3:26:4b:85:88:07:f6:1b:77:26:70:a4:c7:28:ec: aa:ce:2f:2e:cc:b0:c2:c2:b2:cc:a2:21:3e:e5:3a: 39:09:c0:a2:41:26:16:79:56:ab:21:07:3b:8e:51: 2d:d6:18:6f:85:76:71:7a:c6:18:b3:b2:fe:ea:67: d5:b6:da:7b:ee:62:d9:2c:b9:d4:9f:96:18:7d:0e: a5:be:e9:ed:f6:db:87:ca:96:83:94:a1:93:40:ed: 22:61:0c:91:04:7d:3a:8f:cf:56:99:03:c9:6f:8c: 80:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:81:56:74:A2:B8:72:CE:50:E1:48:50:23:5E:55:36:12:0A:8E:66 X509v3 Authority Key Identifier: keyid:01:F9:5C:C5:F0:A6:B9:E9:67:C6:F8:F3:6C:7F:64:D4:24:4B:AC:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AflcxfCmuelnxvjzbH9k1CRLrHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169451/71DB67D43A4D11ED900DE26EC4F9AE02/AflcxfCmuelnxvjzbH9k1CRLrHI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:fc:7c:3f:41:cb:33:52:94:45:7e:e0:65:08:fa:92:fd:20: 9c:b8:94:85:8c:69:33:5f:f5:2c:db:87:0a:f6:4a:c9:c2:ed: e8:9a:7e:33:5c:1d:bd:b5:fa:4e:0f:8a:4f:02:a8:25:56:5f: d1:2d:40:af:e3:5f:93:0e:ce:8c:17:4c:da:aa:b6:db:8d:22: 0f:4b:85:b5:a3:d3:6f:3f:d2:5b:0a:d7:ef:4f:74:3e:f8:d1: 40:11:73:e9:c7:f1:c9:b0:64:b2:e6:ec:f7:3a:b1:0a:af:c6: ec:13:ed:f7:33:f4:8b:3a:80:73:4d:1e:d2:84:ac:34:f7:a6: 65:92:22:50:43:a6:da:69:67:e4:8c:cd:46:76:e9:81:e4:b2: 5e:23:38:21:a5:1d:67:95:f6:2a:00:9b:53:e7:02:99:f2:d7: f4:6e:ae:36:03:6b:65:db:6d:af:a8:3a:bb:3c:4e:c4:49:74: 33:c3:dc:de:20:51:4a:46:07:14:05:f7:c3:e9:3c:fd:af:a3: 16:1a:f4:7f:82:cb:7e:8b:30:f7:7a:d3:61:be:38:a7:1c:ba: b1:be:88:d4:3a:67:e1:87:85:95:0d:41:3c:7a:69:ab:68:20: 61:8b:da:25:40:15:a1:d5:4f:70:59:57:33:05:68:89:93:4e: b5:98:21:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk0NTExMTAvBgNVBAUTKDAxRjk1Q0M1RjBBNkI5RTk2N0M2RjhGMzZDN0Y2NEQ0 MjQ0QkFDNzIwHhcNMjUwNzIxMDIxNTIyWhcNMjUwNzI4MDIxNTIyWjAYMRYwFAYD VQQDEw02ODdkYTJiYS0wM2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MSIXG85Dzg94L0WYhNfj+6+uCxXafssunVjF7rnEIuiBASF0XFlluTKr/D9 bPBNe3reFx4InNaPbemK8q39udaLzyHljBUq5l2N4vtuJpx2dw3kme2rxNVXUZnI abCe5PgYFNhrhzKHUCFlQ5C8Na0DXb07zmfZAv+HFAPm1WYHNMIKv7cLUSdRCH8Q J7Ynt97Kx1rDJkuFiAf2G3cmcKTHKOyqzi8uzLDCwrLMoiE+5To5CcCiQSYWeVar IQc7jlEt1hhvhXZxesYYs7L+6mfVttp77mLZLLnUn5YYfQ6lvunt9tuHypaDlKGT QO0iYQyRBH06j89WmQPJb4yAIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA6BVnSi uHLOUOFIUCNeVTYSCo5mMB8GA1UdIwQYMBaAFAH5XMXwprnpZ8b482x/ZNQkS6xy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTQ1MS83MURCNjdENDNB NEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVlbG54dmp6Ykg5azFDUkxy SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FmbGN4ZkNtdWVsbnh2anpiSDlrMUNSTHJISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTQ1MS83MURCNjdENDNBNEQxMUVEOTAwREUyNkVDNEY5QUUwMi9BZmxjeGZDbXVl bG54dmp6Ykg5azFDUkxySEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAu/Hw/QcszUpRFfuBlCPqS/SCcuJSFjGkzX/Us24cK9krJwu3omn4z XB29tfpOD4pPAqglVl/RLUCv41+TDs6MF0zaqrbbjSIPS4W1o9NvP9JbCtfvT3Q+ +NFAEXPpx/HJsGSy5uz3OrEKr8bsE+33M/SLOoBzTR7ShKw096ZlkiJQQ6baaWfk jM1GdumB5LJeIzghpR1nlfYqAJtT5wKZ8tf0bq42A2tl222vqDq7PE7ESXQzw9ze IFFKRgcUBffD6Tz9r6MWGvR/gst+izD3etNhvjinHLqxvojUOmfhh4WVDUE8emmr aCBhi9olQBWh1U9wWVczBWiJk061mCGC -----END CERTIFICATE-----Generated at Mon Jul 21 08:05:56 2025 by rpki-client