$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft File: J7kXbXUBrEb9oBkmur5-vwlfko4.mft (raw, json) Hash identifier: n+Ip0OUFrDq/erRiaCSYJGpdgKh+Il68uA+RpRWJ0oo= Subject key identifier: AA:EA:A8:95:42:67:37:ED:5A:BB:02:29:C9:CD:C6:8A:4E:73:FE:A8 Authority key identifier: 27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E Certificate issuer: /CN=A9171D35/serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Certificate serial: 0EE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft Manifest number: 0ECD Signing time: Thu 24 Jul 2025 17:48:57 +0000 Manifest this update: Thu 24 Jul 2025 17:48:56 +0000 Manifest next update: Thu 31 Jul 2025 17:48:56 +0000 Files and hashes: 1: J7kXbXUBrEb9oBkmur5-vwlfko4.crl (hash: ilyjiPFuupgnY/d6EuP87yD2Hgz9+xPn0fyME80Snxg=) 2: C74924EE159F11EEBCFC135CC4F9AE02.roa (hash: 6QYV9FQpqrhneDa4DXvOdtP1INWlFJdLfJWnJ4N05bI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 17:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3809 (0xee1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D35, serialNumber=27B9176D7501AC46FDA01926BABE7EBF095F928E Validity Not Before: Jul 24 17:48:56 2025 GMT Not After : Jul 31 17:48:56 2025 GMT Subject: CN=68827208-d2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a9:3b:04:4b:08:98:f7:9e:db:6c:4f:54:67: d8:45:3c:39:37:e8:5e:b2:23:6d:8d:1a:51:67:b0: ce:f2:ff:89:bd:d2:ef:9b:8c:97:63:5e:15:63:b8: 7f:d0:ea:61:ce:10:c4:bd:5f:a3:a9:0f:11:ae:23: ff:0b:27:90:9b:72:48:27:10:e9:ee:ee:08:15:39: 55:3b:e5:22:a3:88:11:7f:5d:19:42:80:1d:92:fd: 30:7a:c6:4c:1e:de:1f:a5:36:f2:ad:a2:df:0c:02: f4:a0:1c:8d:6c:39:bc:88:db:99:d1:dd:d9:ab:f3: e8:e1:15:a7:45:eb:63:e3:44:a6:9b:ec:c1:25:7c: 69:3c:df:68:5a:a4:6d:09:3f:2d:0b:75:f7:11:10: 76:4b:b7:fc:2a:7e:7c:6a:02:55:ad:78:55:3c:8e: 39:20:dc:e6:11:bd:c1:41:66:4c:7e:19:7d:38:d4: ff:dc:89:22:e3:10:56:19:84:3c:aa:36:28:c1:2d: 6f:9a:b8:ac:75:b1:08:a0:d6:c5:bc:07:a7:b9:e6: bc:e0:92:31:c9:34:61:21:2d:35:2b:cf:51:8b:0a: c0:58:5b:68:9f:cc:45:99:4d:a6:37:9f:5f:55:d5: 20:f0:52:a5:a9:c2:3d:f7:8c:27:a3:12:80:0e:68: b4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:EA:A8:95:42:67:37:ED:5A:BB:02:29:C9:CD:C6:8A:4E:73:FE:A8 X509v3 Authority Key Identifier: keyid:27:B9:17:6D:75:01:AC:46:FD:A0:19:26:BA:BE:7E:BF:09:5F:92:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J7kXbXUBrEb9oBkmur5-vwlfko4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D35/EA4DCA1C8EDA11E98D206141C4F9AE02/J7kXbXUBrEb9oBkmur5-vwlfko4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:eb:6b:81:0d:a7:e1:fe:63:c4:56:7b:e9:97:81:b5:ec:71: 34:75:8d:a8:22:96:81:99:35:e4:69:8b:18:8c:eb:0d:b3:ca: 5b:a8:91:13:57:35:39:34:e0:10:28:e7:46:47:91:7a:ce:bd: 4c:39:e6:6c:81:8f:31:91:7d:9f:80:81:0c:52:d3:f4:cb:e9: 0d:52:59:4b:90:18:54:62:71:52:bf:a6:51:88:1c:97:94:79: 7a:cd:54:c5:58:26:6c:9c:34:11:36:68:a0:b8:25:c5:50:9c: b0:35:67:48:d4:82:1a:f0:11:34:d2:13:a0:7f:a7:d4:48:4b: 56:aa:73:f5:44:a9:e6:99:6e:6e:6f:a0:1d:58:f0:7a:ca:3b: ce:f4:39:c0:b6:a6:48:05:47:4a:b1:ef:3c:83:56:25:5a:65: 4f:fe:b6:f9:ee:ee:64:76:42:d1:85:d2:d4:85:b0:96:97:e3: 74:d1:ee:f3:10:9f:70:b9:9b:e8:8b:c0:9e:f7:7f:0f:d5:41: 35:d5:1a:67:f2:01:78:35:d4:60:f2:31:9e:fe:d5:89:cb:1f: 23:e0:c8:b6:e9:d0:62:5c:8a:86:74:26:09:86:d0:1f:70:4e: 9c:5a:3b:94:bc:3d:eb:f0:c8:6d:76:4a:1b:75:ff:af:e0:99: 3d:5c:7a:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEMzUxMTAvBgNVBAUTKDI3QjkxNzZENzUwMUFDNDZGREEwMTkyNkJBQkU3RUJG MDk1RjkyOEUwHhcNMjUwNzI0MTc0ODU2WhcNMjUwNzMxMTc0ODU2WjAYMRYwFAYD VQQDEw02ODgyNzIwOC1kMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwqk7BEsImPee22xPVGfYRTw5N+hesiNtjRpRZ7DO8v+JvdLvm4yXY14VY7h/ 0OphzhDEvV+jqQ8RriP/CyeQm3JIJxDp7u4IFTlVO+Uio4gRf10ZQoAdkv0wesZM Ht4fpTbyraLfDAL0oByNbDm8iNuZ0d3Zq/Po4RWnRetj40Smm+zBJXxpPN9oWqRt CT8tC3X3ERB2S7f8Kn58agJVrXhVPI45INzmEb3BQWZMfhl9ONT/3Iki4xBWGYQ8 qjYowS1vmrisdbEIoNbFvAenuea84JIxyTRhIS01K89RiwrAWFton8xFmU2mN59f VdUg8FKlqcI994wnoxKADmi0gQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrqqJVC ZzftWrsCKcnNxopOc/6oMB8GA1UdIwQYMBaAFCe5F211AaxG/aAZJrq+fr8JX5KO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzNS9FQTREQ0ExQzhF REExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJFYjlvQmttdXI1LXZ3bGZr bzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0o3a1hiWFVCckViOW9Ca211cjUtdndsZmtvNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzNS9FQTREQ0ExQzhFREExMUU5OEQyMDYxNDFDNEY5QUUwMi9KN2tYYlhVQnJF YjlvQmttdXI1LXZ3bGZrbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCd62uBDafh/mPEVnvpl4G17HE0dY2oIpaBmTXkaYsYjOsNs8pbqJET VzU5NOAQKOdGR5F6zr1MOeZsgY8xkX2fgIEMUtP0y+kNUllLkBhUYnFSv6ZRiByX lHl6zVTFWCZsnDQRNmiguCXFUJywNWdI1IIa8BE00hOgf6fUSEtWqnP1RKnmmW5u b6AdWPB6yjvO9DnAtqZIBUdKse88g1YlWmVP/rb57u5kdkLRhdLUhbCWl+N00e7z EJ9wuZvoi8Ce938P1UE11Rpn8gF4NdRg8jGe/tWJyx8j4Mi26dBiXIqGdCYJhtAf cE6cWjuUvD3r8Mhtdkobdf+v4Jk9XHpd -----END CERTIFICATE-----Generated at Sat Jul 26 08:06:05 2025 by rpki-client