$ rpki-client -vvf rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft File: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft (raw, json) Hash identifier: w+B1pqS953YamtzQNAFdBvtGKvmq0+PjrBKaaen4GFI= Subject key identifier: C1:54:67:A3:32:D1:42:6D:25:4D:91:82:4E:5F:89:E2:39:AD:94:9E Authority key identifier: 45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 Certificate issuer: /CN=A9178580/serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Certificate serial: 064F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft Manifest number: 0649 Signing time: Fri 18 Jul 2025 22:55:47 +0000 Manifest this update: Fri 18 Jul 2025 22:55:46 +0000 Manifest next update: Fri 25 Jul 2025 22:55:46 +0000 Files and hashes: 1: Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl (hash: EK4gUpdASEeXqL6m7FU2qfTdTBbYtFum53OptSuXC6k=) 2: EA266BB0965911EB9A717E21C4F9AE02.roa (hash: unXzVSB7rlCBOdPMYdpaMnBlAZNAT9x8+AUdN+A92PI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1615 (0x64f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178580, serialNumber=45C9B9BD47D821848599A67D7F22956E0913C7F6 Validity Not Before: Jul 18 22:55:46 2025 GMT Not After : Jul 25 22:55:46 2025 GMT Subject: CN=687ad0f2-1bb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:83:4c:29:df:f4:6f:87:f9:13:d6:1a:9d:31: a6:43:a8:92:87:ea:85:d0:5e:1d:7d:7d:18:fa:f4: 78:b5:80:0c:8f:f3:6d:84:d9:f5:33:06:73:57:1c: 9b:61:9a:73:5c:12:14:06:57:fd:a1:ff:e6:93:32: b5:e2:84:c5:bd:7d:40:86:0c:73:4d:d9:51:66:dd: a1:ab:ef:5b:da:ad:66:53:97:29:40:bf:81:ea:4b: 81:ff:34:9d:05:19:de:0c:f4:fd:ad:ab:50:29:5a: 77:74:e1:1e:0f:ff:3a:32:80:35:f1:93:82:39:04: 2f:ce:6e:90:24:95:44:0c:4b:d6:2b:80:ee:38:78: a3:74:79:28:2f:65:d5:ca:23:42:04:65:35:e1:ce: cf:54:38:bc:b3:27:71:64:bd:94:53:2d:61:26:c1: 8b:6c:85:93:a0:22:c5:03:a7:71:2d:88:d8:8b:3a: 5c:b1:39:22:da:b2:03:0c:98:42:d7:e3:47:e1:85: 59:aa:25:3e:e0:15:db:21:a9:62:3a:19:a0:3c:dd: 04:6d:ae:1c:c8:b8:9d:43:19:8f:6f:cf:64:91:d9: 7e:bb:55:94:6d:38:4c:cf:b8:a3:12:5e:dc:04:d3: 23:be:03:8b:00:a0:76:31:75:91:bc:41:dc:ea:f4: 70:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:54:67:A3:32:D1:42:6D:25:4D:91:82:4E:5F:89:E2:39:AD:94:9E X509v3 Authority Key Identifier: keyid:45:C9:B9:BD:47:D8:21:84:85:99:A6:7D:7F:22:95:6E:09:13:C7:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178580/39F966F8965811EBADF4641FC4F9AE02/Rcm5vUfYIYSFmaZ9fyKVbgkTx_Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:a1:1f:85:97:af:f7:fb:0d:98:ea:44:9a:8a:1f:ad:f2:f2: e2:98:60:71:0e:f2:56:c3:79:4c:be:6d:93:80:6f:32:e6:76: 75:ba:2b:06:78:2b:42:0f:d9:08:bd:25:77:27:3c:e0:39:e7: 4c:18:94:bb:77:60:47:9e:18:02:4c:c5:8f:a2:a8:a8:87:4a: 21:ab:e5:bf:f0:bd:2b:7f:0a:48:91:1a:94:0e:9f:14:a0:a6: 8b:39:52:57:4b:93:e4:45:48:37:05:87:da:89:f5:81:d4:22: 50:60:17:73:1e:33:e1:80:e3:65:a7:66:10:e7:9b:f4:f7:33: 95:cf:ac:8c:34:ad:33:46:10:c7:99:6b:af:b1:ae:17:a8:63: ea:f7:2c:b3:e9:e1:21:7f:f8:98:80:1f:0b:95:f5:ae:79:16: 4a:4a:d4:35:3a:15:47:37:de:49:2b:f2:f0:ab:77:18:69:f3: fa:45:09:6f:7f:58:c5:89:b6:44:64:aa:17:b9:d9:72:90:54: ec:bf:ab:17:4d:90:a8:1a:10:8c:11:71:1a:f5:b8:18:c9:3f: 6c:97:e9:c1:31:8f:ec:7e:5e:4e:18:94:46:f2:35:79:51:ce: 9d:fd:d2:b2:10:9f:a4:10:f1:fe:a8:86:1c:22:4a:a1:d3:96: 89:a3:d9:a6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg1ODAxMTAvBgNVBAUTKDQ1QzlCOUJENDdEODIxODQ4NTk5QTY3RDdGMjI5NTZF MDkxM0M3RjYwHhcNMjUwNzE4MjI1NTQ2WhcNMjUwNzI1MjI1NTQ2WjAYMRYwFAYD VQQDEw02ODdhZDBmMi0xYmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwoNMKd/0b4f5E9YanTGmQ6iSh+qF0F4dfX0Y+vR4tYAMj/NthNn1MwZzVxyb YZpzXBIUBlf9of/mkzK14oTFvX1AhgxzTdlRZt2hq+9b2q1mU5cpQL+B6kuB/zSd BRneDPT9ratQKVp3dOEeD/86MoA18ZOCOQQvzm6QJJVEDEvWK4DuOHijdHkoL2XV yiNCBGU14c7PVDi8sydxZL2UUy1hJsGLbIWToCLFA6dxLYjYizpcsTki2rIDDJhC 1+NH4YVZqiU+4BXbIaliOhmgPN0Eba4cyLidQxmPb89kkdl+u1WUbThMz7ijEl7c BNMjvgOLAKB2MXWRvEHc6vRwqQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFUZ6My 0UJtJU2Rgk5fieI5rZSeMB8GA1UdIwQYMBaAFEXJub1H2CGEhZmmfX8ilW4JE8f2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODU4MC8zOUY5NjZGODk2 NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZU0ZtYVo5ZnlLVmJna1R4 X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JjbTV2VWZZSVlTRm1hWjlmeUtWYmdrVHhfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 ODU4MC8zOUY5NjZGODk2NTgxMUVCQURGNDY0MUZDNEY5QUUwMi9SY201dlVmWUlZ U0ZtYVo5ZnlLVmJna1R4X1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAgoR+Fl6/3+w2Y6kSaih+t8vLimGBxDvJWw3lMvm2TgG8y5nZ1uisG eCtCD9kIvSV3JzzgOedMGJS7d2BHnhgCTMWPoqioh0ohq+W/8L0rfwpIkRqUDp8U oKaLOVJXS5PkRUg3BYfaifWB1CJQYBdzHjPhgONlp2YQ55v09zOVz6yMNK0zRhDH mWuvsa4XqGPq9yyz6eEhf/iYgB8LlfWueRZKStQ1OhVHN95JK/Lwq3cYafP6RQlv f1jFibZEZKoXudlykFTsv6sXTZCoGhCMEXEa9bgYyT9sl+nBMY/sfl5OGJRG8jV5 Uc6d/dKyEJ+kEPH+qIYcIkqh05aJo9mm -----END CERTIFICATE-----Generated at Sun Jul 20 07:15:49 2025 by rpki-client