$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft File: fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft (raw, json) Hash identifier: ZoyHb501H7BgZd8dAgWV+01DaMItD2vEN1m41EUar0Y= Subject key identifier: BD:1E:2A:79:CB:B6:F7:79:44:B8:FD:FF:95:6A:38:D5:7A:8C:A1:6B Authority key identifier: 7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F Certificate issuer: /CN=A9170AF9/serialNumber=7EE3B88FB1AF0D92DBD2166125FB09CB24F1083F Certificate serial: 0621 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft Manifest number: 061C Signing time: Fri 18 Jul 2025 23:06:59 +0000 Manifest this update: Fri 18 Jul 2025 23:06:58 +0000 Manifest next update: Fri 25 Jul 2025 23:06:58 +0000 Files and hashes: 1: fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl (hash: 3tGr1R9xI+D+qG20cfE9Q0arU6YSUxkd5mJRhfU/DFA=) 2: 98212A1EA7F011EB816C331FC4F9AE02.roa (hash: OhXdNxeZYZKsEh/kQY88PZgh8U46VN9OPBnD0qrSgNI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AF9, serialNumber=7EE3B88FB1AF0D92DBD2166125FB09CB24F1083F Validity Not Before: Jul 18 23:06:58 2025 GMT Not After : Jul 25 23:06:58 2025 GMT Subject: CN=687ad393-bcd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ee:95:b0:27:bb:7b:18:bd:db:66:83:52:37: 9d:c7:70:c5:b0:c2:0b:40:93:27:5a:2b:3e:0c:4b: af:4b:f9:0e:40:c2:a8:14:96:9d:05:3b:81:a7:fc: cf:8a:b3:94:12:53:00:e8:25:ac:e8:70:73:41:19: 79:13:50:f9:8a:5b:c6:e3:6f:aa:e9:08:ce:38:b2: b6:93:77:56:39:25:98:1c:98:cb:58:83:5d:ea:3e: a9:8c:6c:2a:14:53:6b:5f:54:2b:87:a2:ea:50:4f: eb:a2:b8:41:1e:8b:55:8a:e1:2e:ce:b8:0c:c5:2e: 67:8f:b2:db:58:c0:67:e4:5a:a6:31:b1:e6:f3:a7: e1:af:10:a2:60:96:9a:27:c2:27:f9:4d:7a:ae:66: 23:ce:25:af:cd:19:1a:98:de:b2:7e:83:fd:19:e2: 86:34:23:63:e7:c1:ee:5c:2a:27:3b:a4:2e:29:9a: 8f:0f:37:3a:b2:80:d7:ff:2b:d4:a1:c1:13:a9:06: cc:d9:1f:be:45:24:7b:05:11:93:eb:58:9e:c3:62: a3:6b:f6:7e:65:51:3e:8f:01:5e:73:df:65:41:42: f0:ba:04:9a:1a:18:c5:85:76:96:00:0c:4e:a9:54: 2c:2b:7c:db:d7:02:44:d1:aa:a6:e9:89:c3:91:99: eb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:1E:2A:79:CB:B6:F7:79:44:B8:FD:FF:95:6A:38:D5:7A:8C:A1:6B X509v3 Authority Key Identifier: keyid:7E:E3:B8:8F:B1:AF:0D:92:DB:D2:16:61:25:FB:09:CB:24:F1:08:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuO4j7GvDZLb0hZhJfsJyyTxCD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AF9/29CDCD8EA7EF11EBB12DA41EC4F9AE02/fuO4j7GvDZLb0hZhJfsJyyTxCD8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:f8:75:61:6f:ab:dd:1b:7a:47:42:2a:6f:35:ac:1b:29:05: 66:ec:61:13:d8:a4:19:a6:a6:dd:23:e1:53:7d:09:6a:6f:37: fc:e6:16:d4:a0:c9:86:17:7d:e6:7e:a6:d2:f9:80:f4:d6:67: f0:37:32:64:40:f7:a7:69:9c:7a:c5:04:52:f2:60:1b:ec:fd: 22:d8:c8:f7:2b:07:f5:d7:e1:8f:90:0a:ce:95:e6:4c:a2:eb: 4b:88:e1:4b:e8:f3:cd:36:80:02:08:1a:69:e2:cc:bb:25:a3: 69:e8:eb:14:05:ce:72:26:94:49:19:23:df:d3:5b:7a:1c:4e: 61:03:55:0c:02:2c:a5:3b:2c:26:09:fa:7e:6f:42:70:94:27: 30:dd:c5:7f:e2:01:32:9b:fa:03:6f:5f:f4:7b:55:39:1d:16: ca:18:81:d6:dd:0a:a7:ef:91:fa:59:d4:69:77:a8:a9:eb:f6: 70:f5:f2:54:c0:cb:59:f9:73:cf:12:54:15:2f:62:ad:7b:cf: ec:52:2b:c4:fc:62:89:02:eb:3f:e7:25:6f:3b:d4:58:a2:b6: 97:7f:94:70:50:b1:af:fa:1b:23:be:2c:4f:52:61:0c:27:72: 47:37:bd:b7:22:fc:c3:79:a4:57:f3:12:20:3a:62:fd:3e:4e: 98:bb:a1:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRjkxMTAvBgNVBAUTKDdFRTNCODhGQjFBRjBEOTJEQkQyMTY2MTI1RkIwOUNC MjRGMTA4M0YwHhcNMjUwNzE4MjMwNjU4WhcNMjUwNzI1MjMwNjU4WjAYMRYwFAYD VQQDEw02ODdhZDM5My1iY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+6VsCe7exi922aDUjedx3DFsMILQJMnWis+DEuvS/kOQMKoFJadBTuBp/zP irOUElMA6CWs6HBzQRl5E1D5ilvG42+q6QjOOLK2k3dWOSWYHJjLWINd6j6pjGwq FFNrX1Qrh6LqUE/rorhBHotViuEuzrgMxS5nj7LbWMBn5FqmMbHm86fhrxCiYJaa J8In+U16rmYjziWvzRkamN6yfoP9GeKGNCNj58HuXConO6QuKZqPDzc6soDX/yvU ocETqQbM2R++RSR7BRGT61iew2Kja/Z+ZVE+jwFec99lQULwugSaGhjFhXaWAAxO qVQsK3zb1wJE0aqm6YnDkZnrwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL0eKnnL tvd5RLj9/5VqONV6jKFrMB8GA1UdIwQYMBaAFH7juI+xrw2S29IWYSX7Ccsk8Qg/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFGOS8yOUNEQ0Q4RUE3 RUYxMUVCQjEyREE0MUVDNEY5QUUwMi9mdU80ajdHdkRaTGIwaFpoSmZzSnl5VHhD RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1TzRqN0d2RFpMYjBoWmhKZnNKeXlUeENEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEFGOS8yOUNEQ0Q4RUE3RUYxMUVCQjEyREE0MUVDNEY5QUUwMi9mdU80ajdHdkRa TGIwaFpoSmZzSnl5VHhDRDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9+HVhb6vdG3pHQipvNawbKQVm7GET2KQZpqbdI+FTfQlqbzf85hbU oMmGF33mfqbS+YD01mfwNzJkQPenaZx6xQRS8mAb7P0i2Mj3Kwf11+GPkArOleZM outLiOFL6PPNNoACCBpp4sy7JaNp6OsUBc5yJpRJGSPf01t6HE5hA1UMAiylOywm Cfp+b0JwlCcw3cV/4gEym/oDb1/0e1U5HRbKGIHW3Qqn75H6WdRpd6ip6/Zw9fJU wMtZ+XPPElQVL2Kte8/sUivE/GKJAus/5yVvO9RYoraXf5RwULGv+hsjvixPUmEM J3JHN723IvzDeaRX8xIgOmL9Pk6Yu6EW -----END CERTIFICATE-----Generated at Sun Jul 20 06:20:53 2025 by rpki-client