$ rpki-client -vvf rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft File: Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft (raw, json) Hash identifier: d0xE6YUXgD1Rvry6juSrXutuCtCZ9tVTg8ahGGpLQXU= Subject key identifier: 29:71:CD:11:CA:C5:5B:41:BC:01:8D:13:F3:75:C8:51:8F:6B:FA:6E Authority key identifier: 15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 Certificate issuer: /CN=A916B0EA/serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Certificate serial: 0846 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft Manifest number: 1479 Signing time: Tue 22 Jul 2025 18:47:00 +0000 Manifest this update: Tue 22 Jul 2025 18:47:00 +0000 Manifest next update: Tue 29 Jul 2025 18:47:00 +0000 Files and hashes: 1: Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl (hash: Vt2dd+VqKFY0mEQy3GEoNDGdHjFg/k/E80ak9Yv98MM=) 2: 6535FEC0345C11F0B4126F3CC4F9AE02.roa (hash: pjUqvx9LjqZcGK0IESA4LP1Wg4xMY3NQqlqvkln9QM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:47:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B0EA, serialNumber=15DF79A00739BC39B7178925958DFEE99BE00D42 Validity Not Before: Jul 22 18:47:00 2025 GMT Not After : Jul 29 18:47:00 2025 GMT Subject: CN=687fdca4-83fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8f:3a:33:8d:45:08:1a:d7:e8:13:a5:c3:21: b3:a6:ed:c6:04:36:25:97:13:78:84:77:d0:78:8e: 87:de:cf:5e:24:fd:e0:53:04:e5:0d:9e:d3:d0:e7: 1f:1c:8c:f4:fc:52:ee:20:e6:25:8b:96:23:6f:54: 50:89:e5:dc:ec:5f:24:30:5c:a6:f2:e6:36:f4:88: a2:01:89:55:77:1f:16:21:36:a5:5c:39:a5:18:87: 10:13:29:84:8d:5d:75:dc:5c:77:0c:7f:5e:ba:3d: bc:0e:c6:47:1e:89:82:ff:5f:a5:94:16:7c:71:9c: c3:78:ff:93:38:15:0a:0c:f9:a0:cd:85:d8:9b:68: 8e:22:fe:45:b8:0c:7d:69:2e:9b:5a:83:d3:52:c5: f6:12:47:d1:35:45:f8:08:e5:b1:58:d6:c9:fc:f4: d7:67:07:5c:d7:2b:ed:e6:0c:68:8e:9c:63:dd:73: 16:28:28:1b:08:ae:89:05:18:c2:50:3e:41:f0:3c: 2e:4c:dd:9e:ea:a1:91:64:41:7a:3c:1b:b2:eb:a9: b9:4c:8b:c2:97:db:48:f9:03:92:67:5e:b6:bd:54: 6f:8c:f1:cd:05:bf:55:a6:c2:42:e4:bc:0c:d6:9f: cc:90:ca:15:8a:ba:f5:1a:96:4f:be:c7:5f:6a:92: 5e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:71:CD:11:CA:C5:5B:41:BC:01:8D:13:F3:75:C8:51:8F:6B:FA:6E X509v3 Authority Key Identifier: keyid:15:DF:79:A0:07:39:BC:39:B7:17:89:25:95:8D:FE:E9:9B:E0:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fd95oAc5vDm3F4kllY3-6ZvgDUI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B0EA/4D8E49B00B7411EAA584001CC4F9AE02/Fd95oAc5vDm3F4kllY3-6ZvgDUI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:ae:67:1a:50:68:8e:37:7a:8d:30:2f:3d:a9:33:96:ec:92: 22:85:47:d0:56:7c:d8:09:26:f9:ec:07:d1:29:e5:ba:15:c9: 47:bb:65:2b:60:81:bf:04:44:ec:42:35:33:ca:40:17:3e:c9: 1b:a0:d7:66:24:11:c5:6b:c1:4f:e9:ae:6d:5f:7a:db:65:20: 27:0b:22:2b:ce:3a:8a:e8:6a:78:c3:99:9f:ec:3f:42:f1:30: 75:7e:0a:33:aa:0c:6f:5c:da:95:38:1f:8a:45:27:7c:81:92: cf:b9:aa:ea:bc:e0:9f:d3:a4:ed:f2:bb:e0:56:85:49:9d:40: fe:db:45:b8:e8:f0:89:16:4b:49:72:6d:a1:22:92:ef:e7:e0: 1b:f5:41:23:de:73:f4:92:d0:af:73:c2:44:71:e8:77:41:8f: 3a:9b:95:11:3a:68:17:4d:0e:5c:eb:18:fd:11:28:0b:bc:6f: 5f:11:89:d7:72:e6:9d:69:6a:24:e3:e4:88:97:ac:c9:9f:3b: 43:0b:20:c6:e9:15:ec:3b:ef:e4:df:b4:6f:df:02:8e:5f:d0: f8:20:a7:d0:51:95:d0:13:19:93:de:0e:ba:7c:5e:dc:84:71: c2:67:2f:79:21:b4:c5:48:b7:7d:15:49:1c:c4:2d:90:4f:41: 57:98:01:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIwRUExMTAvBgNVBAUTKDE1REY3OUEwMDczOUJDMzlCNzE3ODkyNTk1OERGRUU5 OUJFMDBENDIwHhcNMjUwNzIyMTg0NzAwWhcNMjUwNzI5MTg0NzAwWjAYMRYwFAYD VQQDEw02ODdmZGNhNC04M2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzY86M41FCBrX6BOlwyGzpu3GBDYllxN4hHfQeI6H3s9eJP3gUwTlDZ7T0Ocf HIz0/FLuIOYli5Yjb1RQieXc7F8kMFym8uY29IiiAYlVdx8WITalXDmlGIcQEymE jV113Fx3DH9euj28DsZHHomC/1+llBZ8cZzDeP+TOBUKDPmgzYXYm2iOIv5FuAx9 aS6bWoPTUsX2EkfRNUX4COWxWNbJ/PTXZwdc1yvt5gxojpxj3XMWKCgbCK6JBRjC UD5B8DwuTN2e6qGRZEF6PBuy66m5TIvCl9tI+QOSZ162vVRvjPHNBb9VpsJC5LwM 1p/MkMoVirr1GpZPvsdfapJekwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFClxzRHK xVtBvAGNE/N1yFGPa/puMB8GA1UdIwQYMBaAFBXfeaAHObw5txeJJZWN/umb4A1C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjBFQS80RDhFNDlCMDBC NzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZEbTNGNGtsbFkzLTZadmdE VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZkOTVvQWM1dkRtM0Y0a2xsWTMtNlp2Z0RVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjBFQS80RDhFNDlCMDBCNzQxMUVBQTU4NDAwMUNDNEY5QUUwMi9GZDk1b0FjNXZE bTNGNGtsbFkzLTZadmdEVUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTrmcaUGiON3qNMC89qTOW7JIihUfQVnzYCSb57AfRKeW6FclHu2Ur YIG/BETsQjUzykAXPskboNdmJBHFa8FP6a5tX3rbZSAnCyIrzjqK6Gp4w5mf7D9C 8TB1fgozqgxvXNqVOB+KRSd8gZLPuarqvOCf06Tt8rvgVoVJnUD+20W46PCJFktJ cm2hIpLv5+Ab9UEj3nP0ktCvc8JEceh3QY86m5UROmgXTQ5c6xj9ESgLvG9fEYnX cuadaWok4+SIl6zJnztDCyDG6RXsO+/k37Rv3wKOX9D4IKfQUZXQExmT3g66fF7c hHHCZy95IbTFSLd9FUkcxC2QT0FXmAFC -----END CERTIFICATE-----Generated at Wed Jul 23 06:28:53 2025 by rpki-client