$ rpki-client -vvf rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft File: CrbdJlFcU-zFsEYrTEddWn5aVTc.mft (raw, json) Hash identifier: gjpbFhiGpLcS4jx+n0oaD+WhLn1xYPx6ZHk5gGy9RIM= Subject key identifier: C7:97:A9:17:E8:9B:F9:FD:38:DE:C0:0B:67:77:B9:CB:29:F0:C5:8B Authority key identifier: 0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 Certificate issuer: /CN=A918E4B7/serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Certificate serial: 0532 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft Manifest number: 050F Signing time: Sat 19 Jul 2025 00:04:07 +0000 Manifest this update: Sat 19 Jul 2025 00:04:06 +0000 Manifest next update: Sat 26 Jul 2025 00:04:06 +0000 Files and hashes: 1: CrbdJlFcU-zFsEYrTEddWn5aVTc.crl (hash: cDCkP/YHtNcpFLP2ZYXy0P71bId9EIb+ctssO9kiNHg=) 2: BAA1B454654411EFACBF7956C4F9AE02.roa (hash: /oWh6sDf6JMhXVQFfiBK5T8ylerkJmv9WJJdVtYkSIU=) 3: 17A651BCA40E11EEAAB83671C4F9AE02.roa (hash: hF9MKD/FwgF9cY8hvh9m1ZRU6ZbNvnTiLbcgCIT5wPc=) 4: 16D4DB82A40E11EEAAB83671C4F9AE02.roa (hash: 9aBOau/kR05/ZlK4Ctxtvv3XFrOvJ/VU5zNEft0SiRE=) 5: 1ED4125C50C111EFA64C2437C4F9AE02.roa (hash: M9HaGHa7pI3ilHdh1OGWp/+WvUY2NRFrgXm0KqnYXRc=) 6: B9DEB77E654411EFACBF7956C4F9AE02.roa (hash: xYaxgWyzwtexyE7NeRo7CnQ16cP15TpfRCg28S5nmVo=) 7: ED8B1602A0D711EFB982AD62C4F9AE02.roa (hash: ERqr4ZgITrZRkOwS3AN4CJTqd2fIDLE15f/P4/QlBUI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:04:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1330 (0x532) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E4B7, serialNumber=0AB6DD26515C53ECC5B0462B4C475D5A7E5A5537 Validity Not Before: Jul 19 00:04:06 2025 GMT Not After : Jul 26 00:04:06 2025 GMT Subject: CN=687ae0f6-e31d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:06:2e:6f:c7:b2:27:f9:ba:36:3a:86:e5: fb:7c:40:c6:40:b9:3c:59:58:4b:8b:0a:8b:4e:53: dc:af:61:a2:01:48:cb:da:38:03:fe:51:b1:6d:96: ec:4a:8a:b3:08:40:f3:ec:a5:3e:09:3c:ac:75:30: b6:27:7e:ac:ec:de:10:68:38:8b:c2:07:44:79:0a: 41:ba:63:a9:34:d4:0e:c2:11:0a:0b:45:b0:79:c8: c1:47:d9:76:b6:3e:e5:34:d8:11:5f:1f:97:6c:a5: a4:29:97:b3:c9:07:c2:f0:00:85:d0:1e:6e:90:f6: 7e:01:29:d3:6d:ae:48:48:a1:02:0c:6e:6a:0d:a5: f3:40:26:8e:94:a4:71:56:27:96:fe:0c:c6:fd:db: 9a:62:b6:95:f3:1a:e3:16:dc:f0:94:d8:5f:de:e6: f3:5c:10:a7:3e:4e:b6:e6:d6:dd:34:33:58:c1:24: ac:c4:43:f1:a3:52:5f:30:e0:bc:90:34:42:ad:61: 22:ce:1f:78:22:1c:9a:3f:78:67:42:4d:01:82:ed: 4c:13:b4:a7:fa:83:f3:a9:f5:55:f9:d7:91:1e:c1: 8e:d0:f4:d4:04:a3:57:8b:4f:a9:4d:28:10:87:ec: 17:ec:d7:f4:0b:cb:22:ca:70:55:51:bc:d2:a6:84: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:97:A9:17:E8:9B:F9:FD:38:DE:C0:0B:67:77:B9:CB:29:F0:C5:8B X509v3 Authority Key Identifier: keyid:0A:B6:DD:26:51:5C:53:EC:C5:B0:46:2B:4C:47:5D:5A:7E:5A:55:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrbdJlFcU-zFsEYrTEddWn5aVTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E4B7/EB312F021EAA11ECB756BF30C4F9AE02/CrbdJlFcU-zFsEYrTEddWn5aVTc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:36:ba:dc:4e:5a:90:5e:9d:ae:b4:f5:88:f7:01:12:a7:cf: b9:96:7a:c2:05:be:e9:de:f1:00:90:a0:67:a9:64:41:29:93: 8a:3d:52:f6:98:d8:f3:9a:67:81:15:33:5c:5e:f8:68:f1:e9: 98:29:fe:5d:e0:77:e8:cc:1e:27:97:f1:01:b8:5e:0f:8a:e0: bd:ae:d0:cd:2d:1f:97:4b:14:7e:b6:fb:31:53:76:15:4b:8e: df:1e:7b:bb:a7:27:22:34:2d:2e:94:d3:28:2a:19:6e:a6:5d: 67:d7:ac:ac:b3:b9:1a:29:f6:ec:ff:47:b5:56:de:e6:8f:d0: 87:3c:34:ce:22:dc:cf:4d:a0:59:cd:b3:f3:02:9b:00:54:da: 6d:42:0c:fc:13:85:4c:f8:6d:b1:7c:cb:47:f9:38:ad:f3:b5: 63:ef:d1:ad:0e:37:a6:aa:31:02:8e:05:6a:6d:28:a5:77:86: a7:46:92:01:01:5f:37:f7:1d:54:2e:1c:ed:f5:80:c1:ac:85: 34:02:31:f1:d7:5b:ed:2b:9c:32:c9:a4:6c:2a:2d:26:e7:39: be:8f:2c:56:ad:f5:05:81:21:c4:8d:a7:5f:93:34:5f:a4:38: 94:ff:47:f8:f0:c4:54:22:9e:3c:5b:8c:74:0b:fa:d0:f9:61: 73:bb:7b:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU0QjcxMTAvBgNVBAUTKDBBQjZERDI2NTE1QzUzRUNDNUIwNDYyQjRDNDc1RDVB N0U1QTU1MzcwHhcNMjUwNzE5MDAwNDA2WhcNMjUwNzI2MDAwNDA2WjAYMRYwFAYD VQQDEw02ODdhZTBmNi1lMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyeMGLm/Hsif5ujY6huX7fEDGQLk8WVhLiwqLTlPcr2GiAUjL2jgD/lGxbZbs SoqzCEDz7KU+CTysdTC2J36s7N4QaDiLwgdEeQpBumOpNNQOwhEKC0WwecjBR9l2 tj7lNNgRXx+XbKWkKZezyQfC8ACF0B5ukPZ+ASnTba5ISKECDG5qDaXzQCaOlKRx VieW/gzG/duaYraV8xrjFtzwlNhf3ubzXBCnPk625tbdNDNYwSSsxEPxo1JfMOC8 kDRCrWEizh94IhyaP3hnQk0Bgu1ME7Sn+oPzqfVV+deRHsGO0PTUBKNXi0+pTSgQ h+wX7Nf0C8siynBVUbzSpoR9WwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMeXqRfo m/n9ON7AC2d3ucsp8MWLMB8GA1UdIwQYMBaAFAq23SZRXFPsxbBGK0xHXVp+WlU3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTRCNy9FQjMxMkYwMjFF QUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1UtekZzRVlyVEVkZFduNWFW VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NyYmRKbEZjVS16RnNFWXJURWRkV241YVZUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RTRCNy9FQjMxMkYwMjFFQUExMUVDQjc1NkJGMzBDNEY5QUUwMi9DcmJkSmxGY1Ut ekZzRVlyVEVkZFduNWFWVGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxNrrcTlqQXp2utPWI9wESp8+5lnrCBb7p3vEAkKBnqWRBKZOKPVL2 mNjzmmeBFTNcXvho8emYKf5d4HfozB4nl/EBuF4PiuC9rtDNLR+XSxR+tvsxU3YV S47fHnu7pyciNC0ulNMoKhlupl1n16yss7kaKfbs/0e1Vt7mj9CHPDTOItzPTaBZ zbPzApsAVNptQgz8E4VM+G2xfMtH+Tit87Vj79GtDjemqjECjgVqbSild4anRpIB AV839x1ULhzt9YDBrIU0AjHx11vtK5wyyaRsKi0m5zm+jyxWrfUFgSHEjadfkzRf pDiU/0f48MRUIp48W4x0C/rQ+WFzu3uQ -----END CERTIFICATE-----Generated at Sun Jul 20 11:06:47 2025 by rpki-client