$ rpki-client -vvf rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft File: 7LIDs03q4KEdAVCjDvK0opkdepg.mft (raw, json) Hash identifier: rQS+yjzqgZdNKECXR9DkRoFxzky8LHUJ2i4xUOMkyWo= Subject key identifier: 52:C5:B9:67:51:4E:FA:A1:75:23:06:6A:7F:76:D0:9A:43:ED:C6:5D Authority key identifier: EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 Certificate issuer: /CN=A9189529/serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Certificate serial: 19E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft Manifest number: 19E1 Signing time: Sun 20 Jul 2025 16:24:43 +0000 Manifest this update: Sun 20 Jul 2025 16:24:43 +0000 Manifest next update: Sun 27 Jul 2025 16:24:43 +0000 Files and hashes: 1: 7LIDs03q4KEdAVCjDvK0opkdepg.crl (hash: mHnmb1jiogiiQAmZGAyXln2xHiGMf61tZS6f5c3YSFc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 16:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6625 (0x19e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189529, serialNumber=ECB203B34DEAE0A11D0150A30EF2B4A2991D7A98 Validity Not Before: Jul 20 16:24:43 2025 GMT Not After : Jul 27 16:24:43 2025 GMT Subject: CN=687d184b-734d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:39:05:33:69:4e:1e:99:76:a3:36:d1:c3:83: 14:11:09:e5:b6:80:bc:80:ee:d8:aa:a0:d0:68:62: 01:5e:22:ec:c5:c1:d8:eb:3b:fc:2a:36:d2:a1:6d: 67:b1:f9:ca:77:aa:0c:b2:3d:a3:f1:56:43:93:21: f7:c5:91:22:e2:12:ca:cc:ae:02:53:f4:3e:af:0c: dd:87:95:32:ff:03:b1:df:f7:90:6a:b7:11:95:a7: d3:8a:9d:a3:e6:55:f9:62:4a:87:83:69:77:89:fd: ed:35:de:80:6d:69:1d:48:22:cb:2a:74:38:ff:43: 67:d0:53:83:29:ca:4f:b2:a6:55:02:47:d2:49:c1: cc:41:af:fe:8d:6c:68:e2:8c:40:89:32:f7:20:65: 3b:8f:a4:17:49:fb:f2:bc:ed:ff:38:bc:60:cb:15: 41:8d:f8:71:45:4d:ab:9c:ea:10:d8:ae:22:14:bf: 67:d9:3f:23:fd:b1:55:1e:75:86:ee:d7:9b:a5:6d: d6:a9:5e:e8:a0:ad:94:65:43:b4:97:46:1d:5a:d5: 2d:4e:5d:31:49:88:5f:86:3f:92:22:c9:69:2e:27: ef:75:98:98:51:2b:fa:87:d9:3b:14:ab:06:9c:b2: 0f:6c:7a:30:76:5a:df:3c:ac:75:e2:7d:82:c6:0c: ae:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C5:B9:67:51:4E:FA:A1:75:23:06:6A:7F:76:D0:9A:43:ED:C6:5D X509v3 Authority Key Identifier: keyid:EC:B2:03:B3:4D:EA:E0:A1:1D:01:50:A3:0E:F2:B4:A2:99:1D:7A:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7LIDs03q4KEdAVCjDvK0opkdepg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189529/6929F2C25BBE11E78977E023C4F9AE02/7LIDs03q4KEdAVCjDvK0opkdepg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:e3:4d:cc:39:b5:c7:01:bf:22:df:14:f1:17:cc:7a:2c:2a: af:d7:d4:83:51:ae:2b:fc:69:73:19:2c:6f:67:0c:c3:de:43: 89:44:3a:e7:3b:b4:c0:3e:e1:e8:ca:c5:e8:09:9c:18:a8:78: 18:53:a7:42:71:43:e1:38:54:c4:8c:2b:da:b8:1e:6f:70:de: 80:68:c5:7c:45:85:48:c2:2f:21:bf:2c:44:16:e4:81:ec:6b: 29:07:88:b5:c5:64:c1:9e:d5:64:76:11:52:75:59:3a:5f:40: 03:0e:22:36:73:db:4b:1e:ec:18:67:50:a1:0f:74:3b:2b:4a: 5b:15:f3:e8:e1:89:91:7d:28:7e:6f:e6:e4:bb:7a:88:b7:68: 14:72:e2:bf:85:ee:fe:d9:3a:56:b2:2f:1b:08:0c:fd:56:ba: 56:71:6a:5a:1f:76:ae:e8:c4:2a:c4:23:d7:ea:98:27:a6:2a: 13:73:8d:5a:82:cc:ae:bc:13:42:89:83:a2:9b:21:fe:b7:db: 98:99:36:28:32:58:87:be:65:ff:2e:fb:ec:e2:98:d8:9a:be: df:ae:1e:67:d2:64:cd:2e:0e:59:82:55:10:7b:39:f0:fa:d3: c6:b3:7c:31:d0:54:80:17:8f:17:5e:b5:2f:09:7d:b0:64:d4: 9f:20:61:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk1MjkxMTAvBgNVBAUTKEVDQjIwM0IzNERFQUUwQTExRDAxNTBBMzBFRjJCNEEy OTkxRDdBOTgwHhcNMjUwNzIwMTYyNDQzWhcNMjUwNzI3MTYyNDQzWjAYMRYwFAYD VQQDEw02ODdkMTg0Yi03MzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DkFM2lOHpl2ozbRw4MUEQnltoC8gO7YqqDQaGIBXiLsxcHY6zv8KjbSoW1n sfnKd6oMsj2j8VZDkyH3xZEi4hLKzK4CU/Q+rwzdh5Uy/wOx3/eQarcRlafTip2j 5lX5YkqHg2l3if3tNd6AbWkdSCLLKnQ4/0Nn0FODKcpPsqZVAkfSScHMQa/+jWxo 4oxAiTL3IGU7j6QXSfvyvO3/OLxgyxVBjfhxRU2rnOoQ2K4iFL9n2T8j/bFVHnWG 7tebpW3WqV7ooK2UZUO0l0YdWtUtTl0xSYhfhj+SIslpLifvdZiYUSv6h9k7FKsG nLIPbHowdlrfPKx14n2CxgyuFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFLFuWdR TvqhdSMGan920JpD7cZdMB8GA1UdIwQYMBaAFOyyA7NN6uChHQFQow7ytKKZHXqY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTUyOS82OTI5RjJDMjVC QkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRLRWRBVkNqRHZLMG9wa2Rl cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdMSURzMDNxNEtFZEFWQ2pEdkswb3BrZGVwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTUyOS82OTI5RjJDMjVCQkUxMUU3ODk3N0UwMjNDNEY5QUUwMi83TElEczAzcTRL RWRBVkNqRHZLMG9wa2RlcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7403MObXHAb8i3xTxF8x6LCqv19SDUa4r/GlzGSxvZwzD3kOJRDrn O7TAPuHoysXoCZwYqHgYU6dCcUPhOFTEjCvauB5vcN6AaMV8RYVIwi8hvyxEFuSB 7GspB4i1xWTBntVkdhFSdVk6X0ADDiI2c9tLHuwYZ1ChD3Q7K0pbFfPo4YmRfSh+ b+bku3qIt2gUcuK/he7+2TpWsi8bCAz9VrpWcWpaH3au6MQqxCPX6pgnpioTc41a gsyuvBNCiYOimyH+t9uYmTYoMliHvmX/Lvvs4pjYmr7frh5n0mTNLg5ZglUQeznw +tPGs3wx0FSAF48XXrUvCX2wZNSfIGHt -----END CERTIFICATE-----Generated at Mon Jul 21 13:23:57 2025 by rpki-client