$ rpki-client -vvf rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft File: cFErPTLQXcMlQemOV1oxxTIHNkg.mft (raw, json) Hash identifier: QGh4E+qC1JxJuwZKR+fyvutqjbXXy+N1bhxciLJ/8EQ= Subject key identifier: 1D:1B:5D:4B:BF:4C:B6:B8:BF:E5:85:AC:55:73:96:5F:9C:A0:1E:52 Authority key identifier: 70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 Certificate issuer: /CN=A918D75D/serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Certificate serial: 0625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft Manifest number: 0620 Signing time: Tue 22 Jul 2025 23:08:15 +0000 Manifest this update: Tue 22 Jul 2025 23:08:13 +0000 Manifest next update: Tue 29 Jul 2025 23:08:13 +0000 Files and hashes: 1: cFErPTLQXcMlQemOV1oxxTIHNkg.crl (hash: 1sdt8VpzCcgmZmkMMJU2dwAfzj15uicS3X6/Gk0a3NU=) 2: D0763FECA68A11EB9F23D74FC4F9AE02.roa (hash: otn7zJrk0PPbtnlH9qLQ0UvTzJRXUBW5NBaU6fJKloc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D75D, serialNumber=70512B3D32D05DC32541E98E575A31C532073648 Validity Not Before: Jul 22 23:08:13 2025 GMT Not After : Jul 29 23:08:13 2025 GMT Subject: CN=688019de-229a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:38:d1:21:78:cb:ad:ff:5c:e8:53:d9:f6:21: 46:4a:65:e6:8a:6d:80:b2:87:aa:0f:e4:c4:de:fa: 99:88:1a:1c:cf:68:7f:1b:44:27:9f:3f:3d:82:b5: ad:5b:66:53:10:6c:d8:e3:8c:f2:e9:e6:de:d7:b0: aa:c0:71:bb:87:78:b3:64:f8:22:77:4d:b4:1d:e1: f6:cd:22:5e:87:84:61:fa:7f:c3:29:c9:99:85:2e: 00:0e:31:b2:17:d1:2b:b6:37:4b:c8:b6:d6:3c:29: 9d:97:24:26:55:7e:19:6b:20:43:55:eb:9c:0b:2c: 5a:5a:cc:9f:d1:5b:f6:ff:fb:4b:b4:07:6e:fd:32: 95:71:2d:61:5f:8e:72:e3:32:0e:98:11:13:3a:37: d8:da:f8:a9:76:56:9e:1e:cc:54:77:a8:6a:2f:ff: 8c:73:e6:01:b6:96:b2:1a:52:b4:3a:cf:cf:be:13: 89:75:f1:42:4b:4c:5b:7e:0e:00:71:40:1c:3d:23: c4:0f:a1:3b:bd:74:f7:1b:ca:a5:3a:25:ed:43:b7: 43:76:b1:8d:83:ac:bd:0c:3f:c9:dc:ff:fc:32:db: 68:0b:bf:5b:7d:f4:68:2d:6f:9e:14:91:1c:ae:3c: 88:85:f1:f6:24:fd:c5:26:42:13:d8:90:45:cf:59: 51:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:1B:5D:4B:BF:4C:B6:B8:BF:E5:85:AC:55:73:96:5F:9C:A0:1E:52 X509v3 Authority Key Identifier: keyid:70:51:2B:3D:32:D0:5D:C3:25:41:E9:8E:57:5A:31:C5:32:07:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cFErPTLQXcMlQemOV1oxxTIHNkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D75D/7E272F7CA68911EBA44B024FC4F9AE02/cFErPTLQXcMlQemOV1oxxTIHNkg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:3b:8b:10:26:d9:90:e9:bb:c2:f8:f8:ce:63:d5:73:bf:62: ce:19:b4:b7:59:d1:4e:81:62:2e:90:21:5f:c6:a7:41:6c:a4: f3:c5:ad:a5:40:cb:2c:f7:28:fc:6a:3c:25:f0:fb:72:b3:12: db:0b:97:62:47:31:2a:d9:f1:f9:9b:49:c2:4e:f2:a2:97:7b: f6:a3:97:54:1f:36:1d:82:7a:7a:fb:77:f8:1a:a9:4d:83:59: 6c:2e:e4:47:e7:a0:dd:4c:d8:a6:23:6b:32:a2:92:40:60:57: 1f:59:c8:fd:a0:13:70:4f:a8:bf:f3:9a:6f:f2:00:18:3f:c8: d1:1b:e5:9d:90:17:f2:a1:56:fc:d6:73:5d:3e:d7:1b:cf:48: 20:3e:a5:87:d1:dd:cc:57:2f:14:8f:09:ef:ab:a6:c3:1d:f0: 57:df:38:2c:47:d7:f3:f1:c8:0a:fb:db:59:14:b3:62:44:b0: cc:48:9b:65:71:75:ed:13:e1:d4:2c:91:a6:17:6d:11:ff:d5: 8e:57:9a:0f:f4:89:2b:f3:5b:e1:32:6f:05:67:9e:ef:98:ca: 5a:88:cc:4e:a5:cd:77:e3:f6:97:b0:41:9c:e3:35:76:05:5b: 1f:da:f1:b7:a8:5a:bb:d3:49:9f:c0:79:de:16:c1:1b:27:8d: 00:d2:a8:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQ3NUQxMTAvBgNVBAUTKDcwNTEyQjNEMzJEMDVEQzMyNTQxRTk4RTU3NUEzMUM1 MzIwNzM2NDgwHhcNMjUwNzIyMjMwODEzWhcNMjUwNzI5MjMwODEzWjAYMRYwFAYD VQQDEw02ODgwMTlkZS0yMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzjRIXjLrf9c6FPZ9iFGSmXmim2AsoeqD+TE3vqZiBocz2h/G0Qnnz89grWt W2ZTEGzY44zy6ebe17CqwHG7h3izZPgid020HeH2zSJeh4Rh+n/DKcmZhS4ADjGy F9ErtjdLyLbWPCmdlyQmVX4ZayBDVeucCyxaWsyf0Vv2//tLtAdu/TKVcS1hX45y 4zIOmBETOjfY2vipdlaeHsxUd6hqL/+Mc+YBtpayGlK0Os/PvhOJdfFCS0xbfg4A cUAcPSPED6E7vXT3G8qlOiXtQ7dDdrGNg6y9DD/J3P/8MttoC79bffRoLW+eFJEc rjyIhfH2JP3FJkIT2JBFz1lR8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB0bXUu/ TLa4v+WFrFVzll+coB5SMB8GA1UdIwQYMBaAFHBRKz0y0F3DJUHpjldaMcUyBzZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDc1RC83RTI3MkY3Q0E2 ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhjTWxRZW1PVjFveHhUSUhO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NGRXJQVExRWGNNbFFlbU9WMW94eFRJSE5rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDc1RC83RTI3MkY3Q0E2ODkxMUVCQTQ0QjAyNEZDNEY5QUUwMi9jRkVyUFRMUVhj TWxRZW1PVjFveHhUSUhOa2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCO4sQJtmQ6bvC+PjOY9Vzv2LOGbS3WdFOgWIukCFfxqdBbKTzxa2l QMss9yj8ajwl8PtysxLbC5diRzEq2fH5m0nCTvKil3v2o5dUHzYdgnp6+3f4GqlN g1lsLuRH56DdTNimI2syopJAYFcfWcj9oBNwT6i/85pv8gAYP8jRG+WdkBfyoVb8 1nNdPtcbz0ggPqWH0d3MVy8Ujwnvq6bDHfBX3zgsR9fz8cgK+9tZFLNiRLDMSJtl cXXtE+HULJGmF20R/9WOV5oP9Ikr81vhMm8FZ57vmMpaiMxOpc134/aXsEGc4zV2 BVsf2vG3qFq700mfwHneFsEbJ40A0qj1 -----END CERTIFICATE-----Generated at Wed Jul 23 02:23:33 2025 by rpki-client