$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft File: cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft (raw, json) Hash identifier: OWCT85RMCV7UrVmucCeewyVdS2doV+LopZEmH3RZPMo= Subject key identifier: 9B:91:1A:E8:A8:17:54:49:85:EC:C4:57:F2:01:97:BB:A2:76:9E:D2 Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 1333 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft Manifest number: 12E0 Signing time: Fri 18 Jul 2025 17:14:47 +0000 Manifest this update: Fri 18 Jul 2025 17:14:47 +0000 Manifest next update: Fri 25 Jul 2025 17:14:47 +0000 Files and hashes: 1: cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl (hash: tdPVCZuhASBuSOT4NHuhRNxQsJjKM/DmxXnL2X4RPac=) 2: 3B38CB22BA7011EA80520A63C4F9AE02.roa (hash: RkoS7hrQ2QANNm5sx/5d46X4OvIfq/xZ9DC2wpSUEMo=) 3: 2227B66CF97B11EFA2B83631C4F9AE02.roa (hash: Qmv4NznXsRfVMeI2JKAwy+QoVAJUJQXFMJng7cjxgg4=) 4: 75522B0A002B11EA855CA925C4F9AE02.roa (hash: dlzvcYSMpJJECDfUD2ttn05KUyNlgHjyRd5FKOecZPA=) 5: 6E0B5938066711EFA1505F46C4F9AE02.roa (hash: o9qMusGN5GDjUkb5guKhyMehJeu6p5DVF2ITp61z0FM=) 6: 8C163A62FD4611EE8FAE061EC4F9AE02.roa (hash: SPUciNl7sWVHesGHpuLeYdUCLi+DEMRmn3hpjUZkkzo=) 7: EB429364CA3811EE99BEB838C4F9AE02.roa (hash: CxE2LzQTUSnICEBxSLSJi2DaFZfd5DCFRNbdjbleYco=) 8: DEF977A6E53611EB81682769C4F9AE02.roa (hash: hs6gBEHf+NcXloE+gZDvY1hGrieoi7+2YWZ5lbTwNRY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:14:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4915 (0x1333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Jul 18 17:14:47 2025 GMT Not After : Jul 25 17:14:47 2025 GMT Subject: CN=687a8107-c49a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:09:3f:35:61:d5:86:17:92:29:64:b9:4c:52: 8a:5b:cd:26:86:8a:3d:bb:f0:3e:c6:48:9c:e1:db: f1:f8:10:bc:c5:58:d3:21:5f:b3:14:de:2d:2c:c3: f7:19:1f:6e:e9:33:78:a3:c4:e1:ba:dd:bc:2a:03: c5:2a:03:dc:be:40:2e:38:35:b2:cc:74:42:f1:e1: 69:92:b6:17:71:10:92:46:93:c1:a4:9a:1e:90:33: 1e:90:46:48:40:1e:16:db:3f:f3:5b:03:e5:5e:c8: ba:5c:65:41:c7:9b:80:a5:2e:67:74:b7:f2:22:99: c4:0d:c8:b8:82:4d:a4:24:16:5e:03:e0:64:1f:20: d8:ed:1f:e7:74:4d:a9:7e:ce:96:d0:5c:e9:98:e2: f7:eb:92:5f:87:67:b5:be:17:03:cc:49:d0:49:56: 4a:19:c1:2d:03:b0:1e:4b:f0:17:7f:86:4c:dc:db: e2:3e:f0:44:c3:28:39:b5:b8:8b:1e:71:69:2d:1f: 9f:6c:bd:4f:73:8e:ff:2e:1e:69:7f:63:e1:5c:0a: fc:3b:bc:be:22:81:d3:24:ef:62:e6:b0:27:72:41: 11:25:ab:14:66:d1:9d:08:2e:30:49:89:4a:33:ca: 28:f1:72:de:17:95:04:66:8e:fc:f6:13:f3:7d:79: 24:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:91:1A:E8:A8:17:54:49:85:EC:C4:57:F2:01:97:BB:A2:76:9E:D2 X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:a9:48:28:9e:5e:3c:7f:ae:2b:61:15:81:44:7f:a7:c9:99: 80:13:df:41:54:b0:e1:b5:c5:d5:7e:c1:1f:6e:c3:f6:12:6d: a8:56:cc:b3:99:2a:fb:95:44:9e:c9:bd:e5:cb:cb:c1:92:b2: 63:5f:63:c1:4f:c3:7c:35:c9:d1:2a:11:3c:4b:f4:ff:0a:fa: 9c:df:0d:c7:2b:61:18:7f:3a:71:91:1a:31:b7:69:a7:e8:66: 83:19:6c:c6:ec:6a:80:c5:b5:f6:f8:83:fc:b6:d2:42:d1:49: 56:1c:09:f1:25:90:2e:75:08:58:7c:cc:19:d7:45:97:19:02: f5:6a:8a:b6:1e:83:7b:ca:f2:cd:93:bb:54:8b:a5:07:7d:45: 9f:b0:20:9e:cf:5e:9c:e6:51:55:a1:04:1f:03:0f:e0:d2:c6: 2f:53:dd:c7:a5:e7:30:e6:e0:e4:bb:50:a0:64:ce:2d:c0:34: 97:46:6e:f1:42:64:4f:d9:b3:4b:4f:bf:0e:7f:81:b3:e1:f1: fc:b5:3a:2e:e0:50:4f:06:74:87:d7:d8:b9:ff:28:d2:e3:a0: 27:0c:9a:db:bb:cd:af:08:7e:69:08:66:00:e8:36:e6:e0:a8: aa:a2:6b:ed:7f:cb:fc:92:c9:4a:89:e9:38:d7:04:96:16:65: 94:75:c8:11 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjUwNzE4MTcxNDQ3WhcNMjUwNzI1MTcxNDQ3WjAYMRYwFAYD VQQDEw02ODdhODEwNy1jNDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAk/NWHVhheSKWS5TFKKW80mhoo9u/A+xkic4dvx+BC8xVjTIV+zFN4tLMP3 GR9u6TN4o8Thut28KgPFKgPcvkAuODWyzHRC8eFpkrYXcRCSRpPBpJoekDMekEZI QB4W2z/zWwPlXsi6XGVBx5uApS5ndLfyIpnEDci4gk2kJBZeA+BkHyDY7R/ndE2p fs6W0FzpmOL365Jfh2e1vhcDzEnQSVZKGcEtA7AeS/AXf4ZM3NviPvBEwyg5tbiL HnFpLR+fbL1Pc47/Lh5pf2PhXAr8O7y+IoHTJO9i5rAnckERJasUZtGdCC4wSYlK M8oo8XLeF5UEZo789hPzfXkk8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJuRGuio F1RJhezEV/IBl7uidp7SMB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTk4My8xNjczMEQyMENEMEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1RO Y3JSVnRvdG1jWlFCQzdHcDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5qUgonl48f64rYRWBRH+nyZmAE99BVLDhtcXVfsEfbsP2Em2oVsyz mSr7lUSeyb3ly8vBkrJjX2PBT8N8NcnRKhE8S/T/Cvqc3w3HK2EYfzpxkRoxt2mn 6GaDGWzG7GqAxbX2+IP8ttJC0UlWHAnxJZAudQhYfMwZ10WXGQL1aoq2HoN7yvLN k7tUi6UHfUWfsCCez16c5lFVoQQfAw/g0sYvU93Hpecw5uDku1CgZM4twDSXRm7x QmRP2bNLT78Of4Gz4fH8tTou4FBPBnSH19i5/yjS46AnDJrbu82vCH5pCGYA6Dbm 4Kiqomvtf8v8kslKiek41wSWFmWUdcgR -----END CERTIFICATE-----Generated at Sun Jul 20 13:11:49 2025 by rpki-client