$ rpki-client -vvf rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft File: Br1EFUedLHUIN8XJQzYTuyWIrrg.mft (raw, json) Hash identifier: jDhgn4QtnxQ0UTuwZOTpwpCdr75EO6L/wKNDGmxtp1A= Subject key identifier: AB:AC:2A:EC:AD:35:D3:2E:3D:17:7A:C2:3D:13:89:5A:53:99:A7:BB Authority key identifier: 06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 Certificate issuer: /CN=A9177FC9/serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Certificate serial: 4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft Manifest number: 48 Signing time: Wed 23 Jul 2025 07:51:15 +0000 Manifest this update: Wed 23 Jul 2025 07:51:14 +0000 Manifest next update: Wed 30 Jul 2025 07:51:14 +0000 Files and hashes: 1: Br1EFUedLHUIN8XJQzYTuyWIrrg.crl (hash: enMPMZz02LEXxoVwJ0OU1mGPbA5lp7x+O5da901x0gc=) 2: FDD39BD607B811F0AB98B333C4F9AE02.roa (hash: qoLPoA4lZ1ha+1hCNURiczpMXcx77W01//WQ1dkufkU=) 3: FD6DA4D407B811F0AB98B333C4F9AE02.roa (hash: 1A7do/sKIO8NT6R3NBCJ/yFYUs9LFmYB3G5A768MYYA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:51:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177FC9, serialNumber=06BD4415479D2C750837C5C9433613BB2588AEB8 Validity Not Before: Jul 23 07:51:14 2025 GMT Not After : Jul 30 07:51:14 2025 GMT Subject: CN=68809473-9af4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a7:bc:66:1d:d3:c1:17:1b:07:85:e5:14:c1: ff:1d:1c:6c:51:62:3a:ae:e3:72:96:77:8c:67:56: ce:5c:53:83:39:85:54:3b:b5:c4:9f:90:c7:28:fe: 71:47:6c:5b:32:12:d5:46:a3:57:c8:45:b4:6d:5a: 20:d4:03:6c:7b:2e:51:36:33:af:6f:94:40:d4:6d: e5:c1:8f:25:b9:a7:a6:7f:19:43:c9:3b:09:20:56: b5:56:8a:08:5a:66:bc:dc:ec:8c:4f:06:78:18:4c: 74:14:ed:b9:db:a0:a7:fc:bd:64:4b:ec:9f:f4:a0: c1:9e:ba:2a:e8:e1:2e:e7:2a:b4:fa:ef:93:44:36: 34:cc:5a:2e:d2:38:30:65:58:4f:0d:4b:dc:0f:64: a4:5c:b3:9c:7f:af:9a:9e:67:d1:82:85:d3:95:77: 22:b2:f2:0f:32:f6:26:68:d4:86:5e:52:93:61:84: ae:46:38:a2:e8:2b:cd:b1:90:5e:d6:15:a7:f1:a2: 93:98:b0:41:48:3a:f4:59:af:fc:d0:bb:e2:23:65: 24:95:f2:98:86:83:16:94:bf:fc:f4:95:cd:82:4e: dd:55:f7:33:1f:13:f2:6b:4a:f5:27:cb:88:73:f4: 6c:71:07:b9:4f:11:27:70:33:36:76:d1:43:70:bc: 2e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AC:2A:EC:AD:35:D3:2E:3D:17:7A:C2:3D:13:89:5A:53:99:A7:BB X509v3 Authority Key Identifier: keyid:06:BD:44:15:47:9D:2C:75:08:37:C5:C9:43:36:13:BB:25:88:AE:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Br1EFUedLHUIN8XJQzYTuyWIrrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177FC9/F3CBF550075111F0818A5433C4F9AE02/Br1EFUedLHUIN8XJQzYTuyWIrrg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2c:88:5f:84:d8:04:ff:3b:c3:c6:18:8b:43:83:64:25:a1:db: b7:99:90:37:98:0b:4b:84:44:f3:36:30:9c:c5:d3:51:9f:d2: 9c:d5:19:ea:25:88:5d:97:5e:c1:24:dc:24:ef:35:64:b8:99: e1:5e:1a:0b:f2:2e:db:f4:3c:0d:78:08:12:03:71:01:27:ad: 77:5c:b4:32:7f:1d:6b:d1:d3:19:00:e6:5e:77:8b:8c:fd:1a: 96:aa:66:ec:11:52:c8:44:fc:d0:e9:7d:5c:4f:f0:6b:88:5d: 62:39:07:32:ca:6d:94:c9:9b:06:2b:cb:b4:d4:c6:54:91:db: 1c:06:4c:0e:03:f7:d6:42:b0:76:b6:2e:ae:83:3a:67:f7:64: fa:65:a9:ff:5d:8f:03:35:91:1a:2d:ea:87:f3:c3:39:cb:cf: 15:fd:04:56:7c:a3:44:96:7a:69:e3:57:8e:b7:8d:8e:bc:19: f4:34:6e:93:27:34:92:29:a0:11:36:dd:9c:c6:41:0b:16:57: f2:f7:0f:c1:70:64:55:ae:02:aa:cd:2e:b3:58:6c:36:64:90: 2a:c8:a8:e0:9f:d3:0d:45:09:ac:08:26:d1:fc:fd:5b:b4:76: 93:0f:77:10:d7:7c:fa:14:15:87:92:8d:b8:68:b7:27:4f:62: 05:50:c2:3a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 N0ZDOTExMC8GA1UEBRMoMDZCRDQ0MTU0NzlEMkM3NTA4MzdDNUM5NDMzNjEzQkIy NTg4QUVCODAeFw0yNTA3MjMwNzUxMTRaFw0yNTA3MzAwNzUxMTRaMBgxFjAUBgNV BAMTDTY4ODA5NDczLTlhZjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyp7xmHdPBFxsHheUUwf8dHGxRYjqu43KWd4xnVs5cU4M5hVQ7tcSfkMco/nFH bFsyEtVGo1fIRbRtWiDUA2x7LlE2M69vlEDUbeXBjyW5p6Z/GUPJOwkgVrVWigha Zrzc7IxPBngYTHQU7bnboKf8vWRL7J/0oMGeuiro4S7nKrT675NENjTMWi7SODBl WE8NS9wPZKRcs5x/r5qeZ9GChdOVdyKy8g8y9iZo1IZeUpNhhK5GOKLoK82xkF7W FafxopOYsEFIOvRZr/zQu+IjZSSV8piGgxaUv/z0lc2CTt1V9zMfE/JrSvUny4hz 9GxxB7lPESdwMzZ20UNwvC4tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUq6wq7K01 0y49F3rCPROJWlOZp7swHwYDVR0jBBgwFoAUBr1EFUedLHUIN8XJQzYTuyWIrrgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3RkM5L0YzQ0JGNTUwMDc1 MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhVSU44WEpRellUdXlXSXJy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQnIxRUZVZWRMSFVJTjhYSlF6WVR1eVdJcnJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3 RkM5L0YzQ0JGNTUwMDc1MTExRjA4MThBNTQzM0M0RjlBRTAyL0JyMUVGVWVkTEhV SU44WEpRellUdXlXSXJyZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACyIX4TYBP87w8YYi0ODZCWh27eZkDeYC0uERPM2MJzF01Gf0pzVGeol iF2XXsEk3CTvNWS4meFeGgvyLtv0PA14CBIDcQEnrXdctDJ/HWvR0xkA5l53i4z9 GpaqZuwRUshE/NDpfVxP8GuIXWI5BzLKbZTJmwYry7TUxlSR2xwGTA4D99ZCsHa2 Lq6DOmf3ZPplqf9djwM1kRot6ofzwznLzxX9BFZ8o0SWemnjV463jY68GfQ0bpMn NJIpoBE23ZzGQQsWV/L3D8FwZFWuAqrNLrNYbDZkkCrIqOCf0w1FCawIJtH8/Vu0 dpMPdxDXfPoUFYeSjbhotydPYgVQwjo= -----END CERTIFICATE-----Generated at Thu Jul 24 12:11:39 2025 by rpki-client