$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft File: 79iPiiibFMeUQxKLu7eRtS2lEa0.mft (raw, json) Hash identifier: iLzxOjKNy+r+H3AyFaYm3Q9xTRObyIPspHKoLqkrVAo= Subject key identifier: F5:4A:0D:35:22:D4:DB:D2:41:09:6F:9D:5A:76:9C:9B:14:14:6F:7B Authority key identifier: EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD Certificate issuer: /CN=A9171D3F/serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Certificate serial: 01C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft Manifest number: 01C4 Signing time: Sat 19 Jul 2025 03:08:46 +0000 Manifest this update: Sat 19 Jul 2025 03:08:46 +0000 Manifest next update: Sat 26 Jul 2025 03:08:46 +0000 Files and hashes: 1: 79iPiiibFMeUQxKLu7eRtS2lEa0.crl (hash: jRhoAVEKK9+fh1CuEMN49CShl/f1DucI7JAGRISTu4w=) 2: 9344B512B1BA11ED8DC4D42EC4F9AE02.roa (hash: 05FYul9tCmnEluZqc+GxuuNUpvwFpQ5F6tjIORKsJIs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 455 (0x1c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3F, serialNumber=EFD88F8A289B14C79443128BBBB791B52DA511AD Validity Not Before: Jul 19 03:08:46 2025 GMT Not After : Jul 26 03:08:46 2025 GMT Subject: CN=687b0c3e-0c7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:1f:8d:ad:bc:7d:57:e2:4e:e7:7b:86:f7:b9: 0d:2d:5e:5e:d3:a7:99:22:26:fd:12:58:3b:8c:8c: d1:d5:34:66:ae:20:73:f6:db:3d:fd:a6:5a:c8:fc: 6b:d1:75:b5:44:64:14:f1:5e:f2:99:e0:48:70:74: 15:73:15:3d:2f:56:27:a2:e1:92:f9:d2:94:47:72: 70:86:79:dd:c2:75:cb:84:f8:7f:d8:ef:ab:4b:b9: 01:f9:4f:33:14:fe:14:4d:46:b8:28:13:18:3f:17: e8:6c:a5:0b:56:a0:58:db:6a:60:7f:da:13:f2:3a: e4:49:83:4f:d0:28:fd:a3:5b:b4:b8:f4:c0:f1:c5: 2b:ba:d1:4e:5d:6f:0e:1b:23:6a:1b:ca:be:9a:4b: c8:83:70:31:d6:08:1e:2c:e2:9a:06:29:b0:b1:7c: 20:3e:49:78:e2:fc:bd:3c:9e:76:87:b3:78:87:51: 19:db:83:88:f2:ed:09:57:8d:a8:0b:85:a1:a2:66: f4:d5:a9:9a:78:16:0b:cd:c7:fa:44:f5:14:8a:35: 97:05:a6:a4:9f:8a:0a:8e:80:de:2e:b1:1d:9e:ee: 9b:93:17:13:a9:f2:5b:4e:bd:1e:d7:a6:87:0b:28: a6:6b:fb:b0:1c:87:ec:8f:ee:12:c2:bd:7b:94:f2: a8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:4A:0D:35:22:D4:DB:D2:41:09:6F:9D:5A:76:9C:9B:14:14:6F:7B X509v3 Authority Key Identifier: keyid:EF:D8:8F:8A:28:9B:14:C7:94:43:12:8B:BB:B7:91:B5:2D:A5:11:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/79iPiiibFMeUQxKLu7eRtS2lEa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3F/9B9C8E6AB1B511ED99E32669C4F9AE02/79iPiiibFMeUQxKLu7eRtS2lEa0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:36:eb:1b:e0:61:c5:f7:94:86:2b:7d:6a:2e:82:36:08:66: d9:92:4c:82:2d:d2:b1:8e:b3:5d:17:90:fb:d6:ce:5b:3f:5f: 43:9d:9a:59:8e:11:68:de:ca:67:d0:33:8a:77:5a:d4:1a:64: 52:c5:0a:2d:4e:c8:30:6a:4f:20:a7:37:20:e2:a2:3b:ca:b2: 68:8d:9a:d7:7b:b6:cd:49:52:4a:5c:09:bc:1a:59:b8:6f:e7: 2b:c9:c3:74:9f:d3:b4:a5:7e:30:3a:1f:eb:65:60:32:95:1b: d5:fd:c1:ef:24:e9:49:e5:f3:eb:19:83:4b:94:53:a3:dd:fe: 06:66:e0:24:b3:44:ec:64:31:07:f4:a5:4f:aa:0b:96:d6:97: 94:00:a8:e4:a6:9f:a4:05:74:16:cf:fa:37:8d:c7:fd:36:56: 42:84:c9:e0:25:40:77:63:f6:b7:88:95:a7:30:4b:08:bd:ae: 2d:0a:ea:ef:cb:1c:86:5f:e1:90:77:19:cf:d4:3c:6d:1a:05: 27:5b:c2:35:54:7f:ee:54:ac:73:5c:45:01:12:74:a1:e6:55: c5:04:7f:59:02:06:8c:89:2d:99:e3:7b:d7:7b:b9:d6:83:c3: b9:da:2f:39:af:6f:d4:25:cb:74:36:05:21:2e:b9:01:82:2f: 61:89:e6:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAccwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0YxMTAvBgNVBAUTKEVGRDg4RjhBMjg5QjE0Qzc5NDQzMTI4QkJCQjc5MUI1 MkRBNTExQUQwHhcNMjUwNzE5MDMwODQ2WhcNMjUwNzI2MDMwODQ2WjAYMRYwFAYD VQQDEw02ODdiMGMzZS0wYzdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2h+Nrbx9V+JO53uG97kNLV5e06eZIib9Elg7jIzR1TRmriBz9ts9/aZayPxr 0XW1RGQU8V7ymeBIcHQVcxU9L1YnouGS+dKUR3JwhnndwnXLhPh/2O+rS7kB+U8z FP4UTUa4KBMYPxfobKULVqBY22pgf9oT8jrkSYNP0Cj9o1u0uPTA8cUrutFOXW8O GyNqG8q+mkvIg3Ax1ggeLOKaBimwsXwgPkl44vy9PJ52h7N4h1EZ24OI8u0JV42o C4Whomb01amaeBYLzcf6RPUUijWXBaakn4oKjoDeLrEdnu6bkxcTqfJbTr0e16aH Cyima/uwHIfsj+4Swr17lPKoTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPVKDTUi 1NvSQQlvnVp2nJsUFG97MB8GA1UdIwQYMBaAFO/Yj4oomxTHlEMSi7u3kbUtpRGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzRi85QjlDOEU2QUIx QjUxMUVEOTlFMzI2NjlDNEY5QUUwMi83OWlQaWlpYkZNZVVReEtMdTdlUnRTMmxF YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc5aVBpaWliRk1lVVF4S0x1N2VSdFMybEVhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MUQzRi85QjlDOEU2QUIxQjUxMUVEOTlFMzI2NjlDNEY5QUUwMi83OWlQaWlpYkZN ZVVReEtMdTdlUnRTMmxFYTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkNusb4GHF95SGK31qLoI2CGbZkkyCLdKxjrNdF5D71s5bP19DnZpZ jhFo3spn0DOKd1rUGmRSxQotTsgwak8gpzcg4qI7yrJojZrXe7bNSVJKXAm8Glm4 b+crycN0n9O0pX4wOh/rZWAylRvV/cHvJOlJ5fPrGYNLlFOj3f4GZuAks0TsZDEH 9KVPqguW1peUAKjkpp+kBXQWz/o3jcf9NlZChMngJUB3Y/a3iJWnMEsIva4tCurv yxyGX+GQdxnP1DxtGgUnW8I1VH/uVKxzXEUBEnSh5lXFBH9ZAgaMiS2Z43vXe7nW g8O52i85r2/UJct0NgUhLrkBgi9hieYd -----END CERTIFICATE-----Generated at Sun Jul 20 15:08:54 2025 by rpki-client