$ rpki-client -vvf rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft File: aFCqv5vavya_oJKDAh_pE9aVbjI.mft (raw, json) Hash identifier: xsmszB875fKcruCUF3+qS+2AENR2sl+A407oAkx4AW8= Subject key identifier: EB:01:74:8B:89:BF:4A:76:C8:AE:2D:95:5C:21:6F:52:24:8F:54:66 Authority key identifier: 68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 Certificate issuer: /CN=A918F978/serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Certificate serial: 1323 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft Manifest number: 1313 Signing time: Tue 22 Jul 2025 17:11:45 +0000 Manifest this update: Tue 22 Jul 2025 17:11:45 +0000 Manifest next update: Tue 29 Jul 2025 17:11:45 +0000 Files and hashes: 1: aFCqv5vavya_oJKDAh_pE9aVbjI.crl (hash: ngDiE/EMaviG/JpjrsP6WPJGDaxk304njFj8dQqgepE=) 2: 583F2920A6E611EF9BD0C728C4F9AE02.roa (hash: QCjfIjSatqEkani4vFyMBR81W4WM4U5LTw8JrcC/R5U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 17:11:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4899 (0x1323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F978, serialNumber=6850AABF9BDABF26BFA09283021FE913D6956E32 Validity Not Before: Jul 22 17:11:45 2025 GMT Not After : Jul 29 17:11:45 2025 GMT Subject: CN=687fc651-51e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5d:8e:86:4b:40:a8:ec:e9:6f:76:e3:ce:98: a8:0f:ce:c8:0f:23:e1:a0:3f:68:3c:de:ba:15:de: 66:8d:d9:5d:85:3b:c6:9c:61:df:7f:3c:66:0e:b0: d1:9c:a1:a4:a2:2b:00:dd:60:f8:bd:8b:5f:65:6f: c4:86:cd:4d:17:b1:6a:04:fc:c7:f2:b0:f0:06:c8: 4b:02:8e:cd:c7:4e:16:e9:ed:b6:48:c0:42:29:27: 3a:5e:80:0e:90:1f:df:9e:30:14:20:eb:c7:15:98: 78:a7:83:eb:7f:51:a6:8d:99:7b:a8:db:cc:96:18: 31:14:15:d1:81:d9:3b:07:40:7c:89:8a:3e:95:62: e8:27:23:09:10:6f:dd:24:26:34:7f:45:33:7e:c9: 3c:ee:3e:72:e6:f0:c8:e1:85:06:d6:5e:34:f9:72: df:f9:71:bc:27:0a:a6:d9:80:63:06:ef:2f:51:08: 3d:b5:44:04:b3:b3:37:18:5d:05:f0:7b:01:79:7f: 6d:82:a2:69:d7:c8:75:b1:03:13:c5:4b:ca:13:56: 18:12:58:30:96:07:17:ea:53:17:f8:a8:f1:e3:29: 13:66:52:df:1f:bc:af:1b:15:6a:a7:39:35:6d:44: d5:00:94:1a:43:da:1d:e9:fe:b9:a7:8c:84:86:17: f9:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:01:74:8B:89:BF:4A:76:C8:AE:2D:95:5C:21:6F:52:24:8F:54:66 X509v3 Authority Key Identifier: keyid:68:50:AA:BF:9B:DA:BF:26:BF:A0:92:83:02:1F:E9:13:D6:95:6E:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFCqv5vavya_oJKDAh_pE9aVbjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F978/7E22B374B69B11E8AE06C616C4F9AE02/aFCqv5vavya_oJKDAh_pE9aVbjI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:30:d5:66:10:c4:7c:8a:6b:1e:e8:d8:3e:ae:d2:53:d5:86: 28:c2:48:17:a9:33:1a:2d:9f:6c:4f:d9:7b:02:7e:d6:f2:ec: b4:7f:f1:53:25:97:70:79:73:ea:33:2d:6a:72:61:97:b4:42: 0e:a0:1a:9c:b2:ec:6d:95:26:55:1a:b3:dd:4a:cc:75:4f:79: 9a:b4:92:7f:07:bf:8b:b1:db:41:30:55:d5:15:ee:3e:b1:ee: 43:33:0c:97:30:e6:e6:80:6d:72:03:4f:33:bd:49:2d:da:bd: 83:97:fc:10:23:87:c8:b4:a1:18:20:e0:84:2e:69:44:19:1d: c5:33:06:a8:3a:a9:8a:46:7e:e1:7f:6f:58:f2:bf:8b:b5:c6: b3:de:51:b7:e6:07:2a:55:51:01:0b:2d:36:2d:26:95:31:a6: 1c:80:61:ac:e7:93:33:d9:e9:88:bc:1e:d0:4e:98:47:9b:e7: d3:28:5d:bc:bc:60:16:d8:4b:63:85:5c:53:95:ec:97:40:62: cc:49:ac:d3:f0:2b:52:4f:02:3e:82:12:39:20:81:36:a2:6e: 29:55:68:5b:26:ca:47:28:ed:31:2e:a9:31:c4:3c:5f:bb:7a: 57:ab:97:fe:ac:82:ea:63:02:69:7c:62:93:9b:54:e6:17:1b: b8:f6:69:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY5NzgxMTAvBgNVBAUTKDY4NTBBQUJGOUJEQUJGMjZCRkEwOTI4MzAyMUZFOTEz RDY5NTZFMzIwHhcNMjUwNzIyMTcxMTQ1WhcNMjUwNzI5MTcxMTQ1WjAYMRYwFAYD VQQDEw02ODdmYzY1MS01MWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArl2OhktAqOzpb3bjzpioD87IDyPhoD9oPN66Fd5mjdldhTvGnGHffzxmDrDR nKGkoisA3WD4vYtfZW/Ehs1NF7FqBPzH8rDwBshLAo7Nx04W6e22SMBCKSc6XoAO kB/fnjAUIOvHFZh4p4Prf1GmjZl7qNvMlhgxFBXRgdk7B0B8iYo+lWLoJyMJEG/d JCY0f0Uzfsk87j5y5vDI4YUG1l40+XLf+XG8Jwqm2YBjBu8vUQg9tUQEs7M3GF0F 8HsBeX9tgqJp18h1sQMTxUvKE1YYElgwlgcX6lMX+Kjx4ykTZlLfH7yvGxVqpzk1 bUTVAJQaQ9od6f65p4yEhhf5YwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsBdIuJ v0p2yK4tlVwhb1Ikj1RmMB8GA1UdIwQYMBaAFGhQqr+b2r8mv6CSgwIf6RPWlW4y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Rjk3OC83RTIyQjM3NEI2 OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5YV9vSktEQWhfcEU5YVZi akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGQ3F2NXZhdnlhX29KS0RBaF9wRTlhVmJqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Rjk3OC83RTIyQjM3NEI2OUIxMUU4QUUwNkM2MTZDNEY5QUUwMi9hRkNxdjV2YXZ5 YV9vSktEQWhfcEU5YVZiakkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8MNVmEMR8imse6Ng+rtJT1YYowkgXqTMaLZ9sT9l7An7W8uy0f/FT JZdweXPqMy1qcmGXtEIOoBqcsuxtlSZVGrPdSsx1T3matJJ/B7+LsdtBMFXVFe4+ se5DMwyXMObmgG1yA08zvUkt2r2Dl/wQI4fItKEYIOCELmlEGR3FMwaoOqmKRn7h f29Y8r+Ltcaz3lG35gcqVVEBCy02LSaVMaYcgGGs55Mz2emIvB7QTphHm+fTKF28 vGAW2EtjhVxTleyXQGLMSazT8CtSTwI+ghI5IIE2om4pVWhbJspHKO0xLqkxxDxf u3pXq5f+rILqYwJpfGKTm1TmFxu49mlQ -----END CERTIFICATE-----Generated at Wed Jul 23 19:41:01 2025 by rpki-client