$ rpki-client -vvf rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft File: Br1EFUedLHUIN8XJQzYTuyWIrrg.mft (raw, json) Hash identifier: SOmCrXiWJZdvPii7kWjzR9JrgQBG2UwjYJelmfPUX8s= Subject key identifier: C1:5F:09:8B:5F:1C:B3:E7:0C:D9:5A:FA:1A:03:97:1C:C9:EE:43:2B Authority key identifier: 06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 Certificate issuer: /CN=A9177FC9/serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Certificate serial: 4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft Manifest number: 47 Signing time: Mon 21 Jul 2025 07:42:26 +0000 Manifest this update: Mon 21 Jul 2025 07:42:25 +0000 Manifest next update: Mon 28 Jul 2025 07:42:25 +0000 Files and hashes: 1: Br1EFUedLHUIN8XJQzYTuyWIrrg.crl (hash: R9uWdkrtttgSIiHrMZGFKNpY404lcMDaKB5QjbwHy4Y=) 2: FDD39BD607B811F0AB98B333C4F9AE02.roa (hash: qoLPoA4lZ1ha+1hCNURiczpMXcx77W01//WQ1dkufkU=) 3: FD6DA4D407B811F0AB98B333C4F9AE02.roa (hash: 1A7do/sKIO8NT6R3NBCJ/yFYUs9LFmYB3G5A768MYYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:42:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177FC9, serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Validity Not Before: Jul 21 07:42:25 2025 GMT Not After : Jul 28 07:42:25 2025 GMT Subject: CN=687def62-9fd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:72:ba:93:a5:59:46:0d:73:6d:10:da:d1:9e: 6f:80:b4:fe:1b:fe:5e:4b:89:40:b7:a8:22:b4:a5: e3:a0:f6:cb:4b:e4:3d:35:f8:e4:ab:a2:9b:41:e9: ab:e6:8d:83:ae:88:21:13:6d:a3:ee:cf:37:97:49: 9d:74:46:bd:8b:3b:10:82:62:9a:82:fc:d8:b6:ff: 45:9c:41:50:ab:2f:73:0c:ee:65:97:b4:e3:f5:b7: d1:40:3e:32:a3:a5:c8:70:8c:a3:27:86:96:35:8d: f3:de:95:b2:44:19:9b:bb:b1:21:1d:ae:52:09:22: 2f:5c:71:ed:3a:30:9c:d1:73:6e:aa:b8:e8:a6:36: a2:94:09:3f:46:9a:6a:c3:d8:0c:f5:0b:f9:45:c9: 02:20:4e:5b:be:65:25:7b:cf:fb:27:e9:27:77:d2: d1:b6:08:84:1f:3e:9d:33:02:74:59:18:a7:80:7f: 56:4b:cc:7f:7f:e4:39:8f:01:79:fc:4e:30:46:2e: e6:f4:a8:26:6f:b6:6c:fc:2a:bd:39:45:11:a0:bd: 74:74:08:ed:6d:48:5e:b9:b5:af:80:3b:71:72:5e: a0:f4:fe:ff:3f:a3:88:9c:54:39:a1:23:f3:8b:6b: ab:bb:0c:bb:84:a2:73:91:31:fc:47:c6:3e:61:95: 4c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:5F:09:8B:5F:1C:B3:E7:0C:D9:5A:FA:1A:03:97:1C:C9:EE:43:2B X509v3 Authority Key Identifier: keyid:06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:21:ff:96:ac:e2:59:f6:9a:2e:f7:a6:f1:cb:d2:ec:69:1b: 83:9f:0a:93:d9:ae:de:73:4b:8f:9a:9a:bf:ef:59:26:90:2f: af:0e:61:83:96:14:1f:64:51:90:b3:2f:14:ed:c5:42:26:9a: c7:56:34:b7:ae:ad:a6:58:96:d5:b1:0e:d0:e0:cb:ac:5b:06: 98:35:e8:5b:3d:93:e1:70:ca:d8:d8:b6:4d:9a:68:e3:5a:6f: 4e:a8:3f:ef:9e:b7:d2:d2:5d:9c:b8:29:e9:14:86:1e:1d:90: d4:99:d3:3c:ac:92:d6:61:37:e4:08:ac:2e:69:12:79:03:63: f0:9a:f3:bd:dc:2e:5f:4e:66:d1:d6:7c:be:45:ad:6c:53:e7: 57:e8:4b:2b:89:14:d0:25:75:1f:78:98:52:3e:13:a1:b7:54: a9:ac:52:a0:9b:bd:02:5a:ee:4d:e4:45:d3:98:7d:03:1f:66: a2:2d:52:dd:73:39:fc:0b:8c:c0:bd:62:3d:e9:48:3e:97:18: f6:63:af:1c:fa:a1:69:f0:b0:24:d0:21:75:0d:0f:a4:b4:73: 66:c4:d0:c6:87:8e:d8:87:50:ba:d1:95:7e:f8:00:ef:30:9a: 9f:23:78:b5:ae:eb:52:2b:f5:0a:6d:9c:d7:e0:9c:20:95:37: 7e:4e:cd:0d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 N0ZDOTExMC8GA1UEBRMoMDZCRDQ0MTU0NzlEMkM3NTA4MzdDNUM5NDMzNjEzQkIy NTg4QUVCODAeFw0yNTA3MjEwNzQyMjVaFw0yNTA3MjgwNzQyMjVaMBgxFjAUBgNV BAMTDTY4N2RlZjYyLTlmZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgcrqTpVlGDXNtENrRnm+AtP4b/l5LiUC3qCK0peOg9stL5D01+OSroptB6avm jYOuiCETbaPuzzeXSZ10Rr2LOxCCYpqC/Ni2/0WcQVCrL3MM7mWXtOP1t9FAPjKj pchwjKMnhpY1jfPelbJEGZu7sSEdrlIJIi9cce06MJzRc26quOimNqKUCT9GmmrD 2Az1C/lFyQIgTlu+ZSV7z/sn6Sd30tG2CIQfPp0zAnRZGKeAf1ZLzH9/5DmPAXn8 TjBGLub0qCZvtmz8Kr05RRGgvXR0CO1tSF65ta+AO3FyXqD0/v8/o4icVDmhI/OL a6u7DLuEonORMfxHxj5hlUwzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUwV8Ji18c s+cM2Vr6GgOXHMnuQyswHwYDVR0jBBgwFoAUBr1EFUedLHUIN8XJQzYTuyWIrrgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3RkM5L0YzQ0JGNTUwMDc1 MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhVSU44WEpRellUdXlXSXJy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQnIxRUZVZWRMSFVJTjhYSlF6WVR1eVdJcnJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 RkM5L0YzQ0JGNTUwMDc1MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhV SU44WEpRellUdXlXSXJyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHwh/5as4ln2mi73pvHL0uxpG4OfCpPZrt5zS4+amr/vWSaQL68OYYOW FB9kUZCzLxTtxUImmsdWNLeuraZYltWxDtDgy6xbBpg16Fs9k+FwytjYtk2aaONa b06oP++et9LSXZy4KekUhh4dkNSZ0zysktZhN+QIrC5pEnkDY/Ca873cLl9OZtHW fL5FrWxT51foSyuJFNAldR94mFI+E6G3VKmsUqCbvQJa7k3kRdOYfQMfZqItUt1z OfwLjMC9Yj3pSD6XGPZjrxz6oWnwsCTQIXUND6S0c2bE0MaHjtiHULrRlX74AO8w mp8jeLWu61Ir9QptnNfgnCCVN35OzQ0= -----END CERTIFICATE-----Generated at Wed Jul 23 02:14:04 2025 by rpki-client