$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft File: 2nNptJciuhObe2DznIi0m9uzXz0.mft (raw, json) Hash identifier: slrr8d3VW8ukB20IukoK/dWIY+9BQ/6LPyDpkZkt0Xw= Subject key identifier: C1:DD:E6:6D:5C:3F:E9:C2:E5:B4:F7:96:16:96:EF:27:34:C6:30:1A Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 0175 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft Manifest number: 0167 Signing time: Mon 21 Jul 2025 04:05:15 +0000 Manifest this update: Mon 21 Jul 2025 04:05:14 +0000 Manifest next update: Mon 28 Jul 2025 04:05:14 +0000 Files and hashes: 1: 2nNptJciuhObe2DznIi0m9uzXz0.crl (hash: Y076dS0x1dDFaO9ILSAU0JcxOnCfAiDL+GNCSrw+QL0=) 2: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (hash: 0VizvwlSvt2Typg26qLoIMnU5PdKIxjIiPdXQB++0ps=) 3: BBBEDEF46C8211EE866F5A78C4F9AE02.roa (hash: rX9KVe2qszOUPjT1pbGC+LrjEbspt/xxl2Uq6dePAdc=) 4: B7FD006A50F411EEB2008729C4F9AE02.roa (hash: HsYr8OmdjYIdRArCv8NBd7tL5J9ojAyKHb00KhjW28U=) 5: 585745526BC111EEA163E774C4F9AE02.roa (hash: Ks2Urn2far+/DcyQBS8MOk0s9n2RR8VYAIzSipmPvMk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:05:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623, serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Jul 21 04:05:14 2025 GMT Not After : Jul 28 04:05:14 2025 GMT Subject: CN=687dbc7b-169a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:65:10:9c:1e:c0:c3:d8:c6:81:a6:63:ac:28: 4b:57:36:1f:75:6f:ba:e9:1f:05:ff:3d:f9:51:bd: 81:ee:90:0b:f2:b7:2a:e8:93:0e:00:cf:ec:18:88: 7d:e9:bc:9f:40:5d:57:d3:97:06:b5:49:53:43:47: 72:1b:25:8b:5e:d7:4c:33:7b:df:97:d8:59:37:c5: 82:99:99:4e:00:d7:5c:4e:b2:1d:93:f5:ee:be:5c: 9f:6a:b8:2e:e4:18:97:c8:4e:d9:c7:b1:77:80:2c: 5b:a5:f7:e6:bb:58:ad:14:99:db:a6:f1:6b:75:f7: 5e:2d:17:3a:03:13:e0:79:62:f1:6b:9e:b0:93:60: 7d:9d:a4:ba:de:e2:cc:33:98:8b:6d:1e:41:c6:fa: 31:18:3a:3f:98:64:12:07:d8:3d:14:9b:d6:b7:c4: 2d:0a:f6:70:05:10:8c:d2:34:6c:ec:3a:6d:30:94: 38:1d:9f:85:db:fd:c5:e9:40:cc:8b:84:c6:1b:9d: b2:93:19:e9:73:c6:1b:f6:ad:73:42:fa:13:05:57: 49:24:7d:86:ef:0d:4a:da:5d:3a:3b:d1:c3:06:7d: 72:de:c3:88:6c:28:01:9a:5d:45:3d:24:c6:bc:6f: ea:73:4c:56:76:4e:d5:bd:30:68:7c:aa:2a:78:7e: 3c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:DD:E6:6D:5C:3F:E9:C2:E5:B4:F7:96:16:96:EF:27:34:C6:30:1A X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:a8:04:4f:0e:16:8b:83:36:e2:39:8d:6c:2c:b6:92:fe:4b: 22:71:70:c5:ba:4f:8c:b2:1b:e8:3c:6b:a9:3a:1a:bf:00:85: c1:9e:84:44:dd:20:1c:c9:b7:15:bb:82:a3:c5:06:81:a4:d9: e2:53:5c:56:31:4f:62:c2:7e:17:a9:57:6f:45:c3:bb:b8:c0: b2:3e:b6:22:e7:3d:ff:05:95:ee:0a:6b:e4:71:11:1f:14:50: ea:8c:26:7b:09:c3:b3:1e:c8:1b:22:59:b6:ef:0d:ec:61:10: 3b:51:ea:1e:db:8f:2f:7d:84:9f:c5:68:fd:4a:fd:fa:c4:6d: 3c:fe:1e:ca:f2:f2:46:a9:b4:c2:47:1d:24:92:1a:74:f8:00: 33:00:01:b7:4d:90:c3:89:f7:df:90:a5:75:ee:13:f0:c8:e2: 68:fc:64:9f:ad:62:b5:4d:27:f3:ed:c0:1f:46:15:1c:b2:55: 69:09:8f:10:89:6e:bf:62:4a:8b:30:df:ff:38:01:ea:93:39: a7:23:9f:92:68:20:52:82:5e:3f:eb:7f:91:d5:43:6b:d1:d7: 4c:48:c2:8e:8b:c2:d9:e3:b0:99:f0:64:11:59:41:68:e3:20: 14:12:ca:09:e6:f8:c6:f4:c3:12:e6:d4:5c:84:3e:2c:ef:cb: 47:21:f2:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U2MjMxMTAvBgNVBAUTKERBNzM2OUI0OTcyMkJBMTM5QjdCNjBGMzlDODhCNDlC REJCMzVGM0QwHhcNMjUwNzIxMDQwNTE0WhcNMjUwNzI4MDQwNTE0WjAYMRYwFAYD VQQDEw02ODdkYmM3Yi0xNjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmUQnB7Aw9jGgaZjrChLVzYfdW+66R8F/z35Ub2B7pAL8rcq6JMOAM/sGIh9 6byfQF1X05cGtUlTQ0dyGyWLXtdMM3vfl9hZN8WCmZlOANdcTrIdk/Xuvlyfargu 5BiXyE7Zx7F3gCxbpffmu1itFJnbpvFrdfdeLRc6AxPgeWLxa56wk2B9naS63uLM M5iLbR5BxvoxGDo/mGQSB9g9FJvWt8QtCvZwBRCM0jRs7DptMJQ4HZ+F2/3F6UDM i4TGG52ykxnpc8Yb9q1zQvoTBVdJJH2G7w1K2l06O9HDBn1y3sOIbCgBml1FPSTG vG/qc0xWdk7VvTBofKoqeH48HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMHd5m1c P+nC5bT3lhaW7yc0xjAaMB8GA1UdIwQYMBaAFNpzabSXIroTm3tg85yItJvbs189 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTYyMy9BMjVENDg5RTUw NDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVoT2JlMkR6bklpMG05dXpY ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTYyMy9BMjVENDg5RTUwNDcxMUVFQjY3NzM2NURDNEY5QUUwMi8ybk5wdEpjaXVo T2JlMkR6bklpMG05dXpYejAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChqARPDhaLgzbiOY1sLLaS/ksicXDFuk+MshvoPGupOhq/AIXBnoRE 3SAcybcVu4KjxQaBpNniU1xWMU9iwn4XqVdvRcO7uMCyPrYi5z3/BZXuCmvkcREf FFDqjCZ7CcOzHsgbIlm27w3sYRA7Ueoe248vfYSfxWj9Sv36xG08/h7K8vJGqbTC Rx0kkhp0+AAzAAG3TZDDifffkKV17hPwyOJo/GSfrWK1TSfz7cAfRhUcslVpCY8Q iW6/YkqLMN//OAHqkzmnI5+SaCBSgl4/63+R1UNr0ddMSMKOi8LZ47CZ8GQRWUFo 4yAUEsoJ5vjG9MMS5tRchD4s78tHIfIV -----END CERTIFICATE-----Generated at Wed Jul 23 02:31:32 2025 by rpki-client